This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft File: hbYRoLfUM0t6I5XozOew48m4OOg.mft (raw, json) Hash identifier: ml7PdPGFVNL0wqhx93bxKCKDHRQ2SNqpHJEC3tRdEgo= Subject key identifier: BB:2A:75:FE:B1:6A:15:BF:B8:47:D1:88:48:27:31:08:DA:4E:CB:CD Authority key identifier: 85:B6:11:A0:B7:D4:33:4B:7A:23:95:E8:CC:E7:B0:E3:C9:B8:38:E8 Certificate issuer: /CN=85b611a0b7d4334b7a2395e8cce7b0e3c9b838e8 Certificate serial: 019AF12D6CD023AC783322B9BF283A807A1C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft Manifest number: 1269 Signing time: Sat 06 Dec 2025 01:01:17 +0000 Manifest this update: Sat 06 Dec 2025 01:01:17 +0000 Manifest next update: Sun 07 Dec 2025 01:01:17 +0000 Files and hashes: 1: GqM4YVlqC8-erWafuFUuhTFle_c.roa (hash: i4cVcC9yh3IAaqw92giD4QCQEZ24C42b9AxtQz5mdqI=) 2: V5ey2q7KwpxyFqlUebHjJUU7ouc.roa (hash: Yxgk3WfNc3AICgrW7BBAgfdy4JGwXPs53GHlVT7wvGA=) 3: hbYRoLfUM0t6I5XozOew48m4OOg.crl (hash: U4CWXp+6zbUF7RJHIf6CJbcRGszOMU5iRCXZfhONHtM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.crl rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:6c:d0:23:ac:78:33:22:b9:bf:28:3a:80:7a:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85b611a0b7d4334b7a2395e8cce7b0e3c9b838e8 Validity Not Before: Dec 6 01:01:17 2025 GMT Not After : Dec 7 01:01:17 2025 GMT Subject: CN=bb2a75feb16a15bfb847d18848273108da4ecbcd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:52:3d:e2:ef:76:dd:23:0c:af:b8:41:66:7a: 6f:98:64:7b:3b:98:e7:ae:c9:22:9e:61:da:38:9e: 8f:7b:f8:1b:ae:50:de:c9:e4:80:51:65:37:30:0d: ca:0a:a0:e3:14:59:cb:28:19:70:c3:16:e9:6b:12: ee:5a:21:fa:e2:be:53:45:67:56:34:12:81:14:b4: e3:79:a2:09:08:76:03:a8:79:db:e2:ee:f5:41:f3: 90:2f:3a:3a:c4:ec:1d:9a:e9:30:81:b8:af:ef:79: e4:63:ac:33:eb:32:3e:cc:dd:ae:cf:90:26:47:f5: 35:74:93:a6:65:d9:f0:cc:76:41:96:9f:cb:25:de: d7:d8:0d:78:68:a7:d7:ba:66:0a:33:c6:f3:36:44: 44:05:42:6c:10:cc:ae:00:6f:54:bc:ba:f9:eb:ac: 88:41:78:65:d3:71:3c:33:9e:48:89:26:5a:07:16: 3f:ce:4c:06:38:e9:0a:f0:bc:41:1c:cf:b0:3e:ea: f8:7b:6b:30:60:f2:e9:33:9c:10:65:15:e1:03:eb: 3b:3b:55:41:e4:77:e4:cb:37:d6:91:f8:cc:49:92: 9c:0f:38:c6:7e:87:f2:e3:a7:54:8e:fb:18:9c:b9: d1:e5:31:c3:14:6c:94:db:52:a6:7a:da:45:d2:8f: d2:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:2A:75:FE:B1:6A:15:BF:B8:47:D1:88:48:27:31:08:DA:4E:CB:CD X509v3 Authority Key Identifier: keyid:85:B6:11:A0:B7:D4:33:4B:7A:23:95:E8:CC:E7:B0:E3:C9:B8:38:E8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1a:95:bd:98:11:52:db:cb:5b:97:20:a8:ae:4c:90:d6:54:20: 06:8c:00:4c:2d:35:c6:98:55:50:89:e8:3a:c7:2a:ec:58:07: 56:43:e6:23:c6:30:dd:49:54:73:12:40:0b:45:8e:19:72:06: 81:80:95:30:39:73:6d:74:5a:e7:a0:77:14:a3:ff:7d:c7:25: c8:02:ae:b0:cb:65:7b:3f:2b:19:70:db:63:f8:07:c0:70:db: 2b:04:ca:24:e6:f2:23:24:a4:af:23:cd:83:3e:29:16:96:08: 9f:1f:6a:c9:4b:b3:48:36:3f:69:0f:64:94:f9:45:a3:10:40: 9d:ac:f7:bc:ce:c0:22:76:84:c5:24:bc:2c:1e:f6:98:bc:37: a1:0a:2b:70:e7:db:38:be:37:9a:e2:a2:cc:3f:41:a9:a2:5f: 9a:7e:43:3c:f0:d4:18:9e:b0:4d:0e:5f:3f:09:38:4c:d2:a8: 69:5a:b4:1e:4e:1a:38:20:0a:b9:1d:8c:2e:5d:b0:22:5a:20: a0:af:57:0b:13:75:25:f3:f8:b6:79:1d:98:e0:ac:7c:03:30: 04:c4:71:3a:e3:69:27:b8:61:91:fa:68:eb:80:8c:c3:b6:c0: 0c:dd:c6:28:c6:d6:0e:f8:4d:9d:5d:7d:60:3b:8d:54:98:47: da:ea:1c:97 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLWzQI6x4MyK5vyg6gHocMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1YjYxMWEwYjdkNDMzNGI3YTIzOTVlOGNjZTdiMGUzYzli ODM4ZTgwHhcNMjUxMjA2MDEwMTE3WhcNMjUxMjA3MDEwMTE3WjAzMTEwLwYDVQQD EyhiYjJhNzVmZWIxNmExNWJmYjg0N2QxODg0ODI3MzEwOGRhNGVjYmNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtlI94u923SMMr7hBZnpvmGR7O5jn rskinmHaOJ6Pe/gbrlDeyeSAUWU3MA3KCqDjFFnLKBlwwxbpaxLuWiH64r5TRWdW NBKBFLTjeaIJCHYDqHnb4u71QfOQLzo6xOwdmukwgbiv73nkY6wz6zI+zN2uz5Am R/U1dJOmZdnwzHZBlp/LJd7X2A14aKfXumYKM8bzNkREBUJsEMyuAG9UvLr566yI QXhl03E8M55IiSZaBxY/zkwGOOkK8LxBHM+wPur4e2swYPLpM5wQZRXhA+s7O1VB 5HfkyzfWkfjMSZKcDzjGfofy46dUjvsYnLnR5THDFGyU21KmetpF0o/SBwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLsqdf6xahW/uEfRiEgnMQjaTsvNMB8GA1UdIwQY MBaAFIW2EaC31DNLeiOV6MznsOPJuDjoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGJZUm9MZlVNMHQ2STVYb3pPZXc0OG00T09nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC85ZDU2M2QtYzQ3MC00M2IzLTgyYmIt ODhjYjRlNzEwNmVhLzEvaGJZUm9MZlVNMHQ2STVYb3pPZXc0OG00T09nLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OC85ZDU2M2QtYzQ3MC00M2IzLTgyYmItODhjYjRlNzEwNmVh LzEvaGJZUm9MZlVNMHQ2STVYb3pPZXc0OG00T09nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGpW9mBFS 28tblyCorkyQ1lQgBowATC01xphVUInoOscq7FgHVkPmI8Yw3UlUcxJAC0WOGXIG gYCVMDlzbXRa56B3FKP/fcclyAKusMtlez8rGXDbY/gHwHDbKwTKJObyIySkryPN gz4pFpYInx9qyUuzSDY/aQ9klPlFoxBAnaz3vM7AInaExSS8LB72mLw3oQorcOfb OL43muKizD9BqaJfmn5DPPDUGJ6wTQ5fPwk4TNKoaVq0Hk4aOCAKuR2MLl2wIlog oK9XCxN1JfP4tnkdmOCsfAMwBMRxOuNpJ7hhkfpo64CMw7bADN3GKMbWDvhNnV19 YDuNVJhH2uoclw== -----END CERTIFICATE-----Generated at Sat Dec 6 07:06:20 2025 by rpki-client