This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft File: hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft (raw, json) Hash identifier: tYJ+tQKei1I6z/Gkm2/WiTWIwtoclaWymeJfHNcT45A= Subject key identifier: E5:05:BA:BA:CE:CC:E1:A1:A7:4D:31:D1:C7:63:E2:37:A8:C7:10:1A Authority key identifier: 84:D6:01:A8:B0:EA:5C:B2:4C:5E:C4:F8:5D:22:67:D8:21:93:1C:02 Certificate issuer: /CN=84d601a8b0ea5cb24c5ec4f85d2267d821931c02 Certificate serial: 019AF2E44B0D1502BAAF749FB513FEBE679C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hNYBqLDqXLJMXsT4XSJn2CGTHAI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft Manifest number: 0A7C Signing time: Sat 06 Dec 2025 09:00:38 +0000 Manifest this update: Sat 06 Dec 2025 09:00:38 +0000 Manifest next update: Sun 07 Dec 2025 09:00:38 +0000 Files and hashes: 1: _v0NtmG5_yKo9LL9efw9jEUpiWQ.roa (hash: WV8iO5bnkC8NMndORk/JEXPjs9aVxMgYQxrcXgM1XWk=) 2: hNYBqLDqXLJMXsT4XSJn2CGTHAI.crl (hash: e30FU7b2gmI91MJ5d4svuwtt+TEZ7ViXRVbPeLdlNOg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.crl rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft rsync://rpki.ripe.net/repository/DEFAULT/hNYBqLDqXLJMXsT4XSJn2CGTHAI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:e4:4b:0d:15:02:ba:af:74:9f:b5:13:fe:be:67:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84d601a8b0ea5cb24c5ec4f85d2267d821931c02 Validity Not Before: Dec 6 09:00:38 2025 GMT Not After : Dec 7 09:00:38 2025 GMT Subject: CN=e505babacecce1a1a74d31d1c763e237a8c7101a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:f3:11:e6:09:0d:ad:b2:e7:16:b4:0b:55:f6: e4:97:85:f7:6a:e1:4f:87:c4:0b:68:dc:21:72:68: 38:95:10:26:8e:ec:f5:f9:ec:22:99:6d:d7:f9:f8: b8:ec:d0:22:cc:0f:5c:db:f4:e3:63:ae:02:12:00: 25:48:c1:bd:6b:ba:f8:91:3b:9e:8f:3b:b4:68:bd: 16:79:c4:d0:c6:5e:63:e6:51:f6:69:c0:71:6e:9f: d0:1f:59:5f:90:21:59:bd:f5:db:aa:c8:22:2e:cc: 4a:e2:7e:70:73:83:e6:dd:1e:55:4c:a8:c6:f1:67: 82:e2:c1:79:03:52:33:8e:33:12:fa:b7:7b:71:20: cc:4e:8f:50:b7:3a:4a:e0:70:82:7b:32:4c:c9:d6: f8:e9:74:24:f5:e1:fe:40:d5:9c:a4:d8:ce:14:65: ec:41:aa:0d:12:74:f2:7a:9c:92:30:fb:c1:c5:78: 67:ee:0f:e6:9a:30:0e:6c:d6:4b:2a:08:6f:7a:42: 3d:55:a4:cc:79:7c:8b:12:e1:4d:4a:70:28:5a:01: cf:ee:25:f4:74:3f:05:55:ee:40:2b:53:d4:b0:f4: 35:8e:90:5c:5f:2d:44:18:36:85:fb:2b:9a:bc:5a: b7:dd:2a:d4:36:0a:af:3e:7c:a7:ce:cf:03:db:bf: b4:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:05:BA:BA:CE:CC:E1:A1:A7:4D:31:D1:C7:63:E2:37:A8:C7:10:1A X509v3 Authority Key Identifier: keyid:84:D6:01:A8:B0:EA:5C:B2:4C:5E:C4:F8:5D:22:67:D8:21:93:1C:02 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hNYBqLDqXLJMXsT4XSJn2CGTHAI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 12:15:e4:36:8f:d3:14:02:99:8d:34:9b:6f:26:51:0d:49:05: f1:f9:82:ea:7a:6a:92:41:1a:fe:11:91:ed:a0:6b:ea:a2:ef: 3e:b5:57:d1:5f:a1:30:29:0a:3d:af:17:e8:0a:ad:f9:07:a7: c3:fd:ed:66:41:a4:b5:2e:62:95:c3:fe:8d:de:a4:9c:43:e8: 18:8d:17:2c:91:05:f8:6b:74:fa:42:bf:16:eb:e5:b8:15:1c: 02:9b:aa:cb:ee:d3:b7:79:71:bf:56:72:b2:63:05:2c:f1:4c: a3:fe:99:4e:a0:47:a8:80:03:e0:35:b3:80:ba:85:68:3e:9d: 34:a3:c8:c2:6f:e5:29:af:36:0f:9e:c0:e2:74:f7:07:8b:c6: bb:bb:5b:4f:0e:19:a2:63:39:3f:ca:77:7c:9c:26:e1:d4:fa: 80:1a:45:00:6e:c9:1a:b2:68:97:77:e4:c7:7a:e2:bf:63:d4: e5:c6:f0:34:24:ac:eb:c7:04:6e:9c:c1:10:f1:96:ec:d3:cd: cb:e5:83:37:9c:cc:53:d2:11:3c:f5:6d:80:22:e6:25:60:24: 46:a7:a0:11:9e:75:03:d3:9d:f4:58:7a:de:e2:91:e5:29:8a: 38:3b:3f:8d:06:4f:77:9a:a7:b7:35:fa:b7:ba:ef:a6:94:c0: 65:2e:b7:e6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZry5EsNFQK6r3SftRP+vmecMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0ZDYwMWE4YjBlYTVjYjI0YzVlYzRmODVkMjI2N2Q4MjE5 MzFjMDIwHhcNMjUxMjA2MDkwMDM4WhcNMjUxMjA3MDkwMDM4WjAzMTEwLwYDVQQD EyhlNTA1YmFiYWNlY2NlMWExYTc0ZDMxZDFjNzYzZTIzN2E4YzcxMDFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6/MR5gkNrbLnFrQLVfbkl4X3auFP h8QLaNwhcmg4lRAmjuz1+ewimW3X+fi47NAizA9c2/TjY64CEgAlSMG9a7r4kTue jzu0aL0WecTQxl5j5lH2acBxbp/QH1lfkCFZvfXbqsgiLsxK4n5wc4Pm3R5VTKjG 8WeC4sF5A1IzjjMS+rd7cSDMTo9QtzpK4HCCezJMydb46XQk9eH+QNWcpNjOFGXs QaoNEnTyepySMPvBxXhn7g/mmjAObNZLKghvekI9VaTMeXyLEuFNSnAoWgHP7iX0 dD8FVe5AK1PUsPQ1jpBcXy1EGDaF+yuavFq33SrUNgqvPnynzs8D27+01QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOUFurrOzOGhp00x0cdj4jeoxxAaMB8GA1UdIwQY MBaAFITWAaiw6lyyTF7E+F0iZ9ghkxwCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaE5ZQnFMRHFYTEpNWHNUNFhTSm4yQ0dUSEFJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC8yNTA5NDYtZGE2Ni00YTk0LWJhZTYt ZWU3N2Q3NWMzMjVlLzEvaE5ZQnFMRHFYTEpNWHNUNFhTSm4yQ0dUSEFJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NC8yNTA5NDYtZGE2Ni00YTk0LWJhZTYtZWU3N2Q3NWMzMjVl LzEvaE5ZQnFMRHFYTEpNWHNUNFhTSm4yQ0dUSEFJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEhXkNo/T FAKZjTSbbyZRDUkF8fmC6npqkkEa/hGR7aBr6qLvPrVX0V+hMCkKPa8X6Aqt+Qen w/3tZkGktS5ilcP+jd6knEPoGI0XLJEF+Gt0+kK/FuvluBUcApuqy+7Tt3lxv1Zy smMFLPFMo/6ZTqBHqIAD4DWzgLqFaD6dNKPIwm/lKa82D57A4nT3B4vGu7tbTw4Z omM5P8p3fJwm4dT6gBpFAG7JGrJol3fkx3riv2PU5cbwNCSs68cEbpzBEPGW7NPN y+WDN5zMU9IRPPVtgCLmJWAkRqegEZ51A9Od9Fh63uKR5SmKODs/jQZPd5qntzX6 t7rvppTAZS635g== -----END CERTIFICATE-----Generated at Sat Dec 6 10:38:58 2025 by rpki-client