This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/e6845d-1c3c-48d6-a6b2-d605c53a35be/1/huGrpgDN5ewxgxmxVZS2irlslWw.mft File: huGrpgDN5ewxgxmxVZS2irlslWw.mft (raw, json) Hash identifier: iwoGR3Jr9iSnrnmEonRpb9ynzJFYXGZhDG4dNm9rfFM= Subject key identifier: 89:4E:B1:76:6C:CC:30:90:39:42:B6:07:97:CC:EB:3E:7A:7A:4D:76 Authority key identifier: 86:E1:AB:A6:00:CD:E5:EC:31:83:19:B1:55:94:B6:8A:B9:6C:95:6C Certificate issuer: /CN=86e1aba600cde5ec318319b15594b68ab96c956c Certificate serial: 019AF276637079E732CB3141BE2E1D45825E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/huGrpgDN5ewxgxmxVZS2irlslWw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/e6845d-1c3c-48d6-a6b2-d605c53a35be/1/huGrpgDN5ewxgxmxVZS2irlslWw.mft Manifest number: 1064 Signing time: Sat 06 Dec 2025 07:00:36 +0000 Manifest this update: Sat 06 Dec 2025 07:00:36 +0000 Manifest next update: Sun 07 Dec 2025 07:00:36 +0000 Files and hashes: 1: Q7vNAscnF-4OhkgVonOsxeJBDjA.roa (hash: 0ioDa0FuPDgR/Y4yLPplBITqL6YDwLS4b5dcomdJX+s=) 2: huGrpgDN5ewxgxmxVZS2irlslWw.crl (hash: vP7fu9WBp6DlXm+KzdmaFVhdu70y+bQ6BrftILMVgnc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/e6845d-1c3c-48d6-a6b2-d605c53a35be/1/huGrpgDN5ewxgxmxVZS2irlslWw.crl rsync://rpki.ripe.net/repository/DEFAULT/99/e6845d-1c3c-48d6-a6b2-d605c53a35be/1/huGrpgDN5ewxgxmxVZS2irlslWw.mft rsync://rpki.ripe.net/repository/DEFAULT/huGrpgDN5ewxgxmxVZS2irlslWw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:63:70:79:e7:32:cb:31:41:be:2e:1d:45:82:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86e1aba600cde5ec318319b15594b68ab96c956c Validity Not Before: Dec 6 07:00:36 2025 GMT Not After : Dec 7 07:00:36 2025 GMT Subject: CN=894eb1766ccc30903942b60797cceb3e7a7a4d76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:7a:a0:35:99:50:bb:c6:73:a1:74:e8:03:1e: f4:30:69:16:64:12:46:ac:c7:3d:dd:ab:6a:ad:33: 8d:5d:12:b6:20:6e:bd:22:dd:ba:39:ef:b3:04:12: 3e:ee:43:cb:7a:5a:ef:08:4b:9b:61:a0:23:1a:1b: d3:94:89:e1:f2:19:90:64:55:a5:a2:7b:95:7b:64: 32:e5:97:99:fc:82:c9:e0:96:29:29:46:25:db:44: 37:c9:ef:17:3b:92:38:cc:fb:df:6c:97:78:d7:df: 7c:d7:c4:99:8b:89:0a:3c:75:a6:3d:2c:1b:7d:ff: c0:c4:11:a8:6d:e0:86:0e:a3:38:7e:fe:40:aa:53: ec:80:bc:43:b0:3c:c9:4d:11:e8:9b:f1:b0:91:88: bf:6e:d7:c4:4c:32:5d:2b:27:ec:87:b1:d0:ed:c0: b8:50:07:1f:53:b1:b3:48:e0:af:66:1e:34:64:2c: 73:e5:40:3e:de:07:6f:e2:ee:e6:82:cd:86:17:84: 56:b4:15:39:c5:7a:57:e1:07:e1:85:60:a7:a9:81: a2:ab:32:0c:c5:61:aa:d3:a0:3b:a4:0e:7e:14:59: 4f:fc:b9:e9:e8:24:d3:64:d4:a5:10:7d:54:40:37: bb:32:13:af:54:f6:4a:f7:82:92:1a:28:b3:29:e0: 73:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:4E:B1:76:6C:CC:30:90:39:42:B6:07:97:CC:EB:3E:7A:7A:4D:76 X509v3 Authority Key Identifier: keyid:86:E1:AB:A6:00:CD:E5:EC:31:83:19:B1:55:94:B6:8A:B9:6C:95:6C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/huGrpgDN5ewxgxmxVZS2irlslWw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/e6845d-1c3c-48d6-a6b2-d605c53a35be/1/huGrpgDN5ewxgxmxVZS2irlslWw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/99/e6845d-1c3c-48d6-a6b2-d605c53a35be/1/huGrpgDN5ewxgxmxVZS2irlslWw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:f4:45:f0:f4:de:1a:7c:fa:bb:90:8b:99:a2:64:71:b0:1a: 7c:df:6d:09:6e:8d:08:85:df:33:e8:16:8c:b0:c4:92:35:a7: 2f:8f:98:75:d8:44:da:10:68:36:d8:32:28:5b:3c:94:b1:9c: 44:bf:a0:c7:fd:ff:09:e2:f7:65:05:7d:49:05:dd:3a:b1:42: 93:97:4f:4b:4a:27:7d:2e:9e:05:b8:ee:f7:5c:03:a2:79:83: 74:13:64:26:c8:29:36:69:7c:e9:92:4b:22:65:33:37:c1:3c: 97:5b:6b:e5:5e:12:54:be:45:60:67:45:17:f2:21:c1:c5:61: ca:d0:66:6c:e2:dc:55:02:40:53:e4:d8:40:9e:73:e7:2f:13: ea:c7:4a:c7:7b:77:37:d6:dc:20:c5:8e:cd:b5:ad:19:e0:68: 18:01:38:08:cd:9a:85:d4:d6:c7:0c:fe:5a:99:32:bd:ed:7a: 46:48:bb:c8:00:e9:59:47:99:e1:b8:de:a7:46:2c:45:9d:00: 65:e7:fa:71:a9:68:ec:12:32:25:bd:3c:a7:07:b1:82:d3:42: 2b:fd:1f:bb:f4:31:0a:bd:ab:92:69:2d:a1:f0:72:56:52:82: 9d:4c:0c:a4:58:a2:0c:26:1f:9c:7f:a7:57:36:c6:82:af:d9: d0:10:6f:a8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydmNweecyyzFBvi4dRYJeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2ZTFhYmE2MDBjZGU1ZWMzMTgzMTliMTU1OTRiNjhhYjk2 Yzk1NmMwHhcNMjUxMjA2MDcwMDM2WhcNMjUxMjA3MDcwMDM2WjAzMTEwLwYDVQQD Eyg4OTRlYjE3NjZjY2MzMDkwMzk0MmI2MDc5N2NjZWIzZTdhN2E0ZDc2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9nqgNZlQu8ZzoXToAx70MGkWZBJG rMc93atqrTONXRK2IG69It26Oe+zBBI+7kPLelrvCEubYaAjGhvTlInh8hmQZFWl onuVe2Qy5ZeZ/ILJ4JYpKUYl20Q3ye8XO5I4zPvfbJd4199818SZi4kKPHWmPSwb ff/AxBGobeCGDqM4fv5AqlPsgLxDsDzJTRHom/GwkYi/btfETDJdKyfsh7HQ7cC4 UAcfU7GzSOCvZh40ZCxz5UA+3gdv4u7mgs2GF4RWtBU5xXpX4QfhhWCnqYGiqzIM xWGq06A7pA5+FFlP/Lnp6CTTZNSlEH1UQDe7MhOvVPZK94KSGiizKeBzyQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIlOsXZszDCQOUK2B5fM6z56ek12MB8GA1UdIwQY MBaAFIbhq6YAzeXsMYMZsVWUtoq5bJVsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHVHcnBnRE41ZXd4Z3hteFZaUzJpcmxzbFd3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS9lNjg0NWQtMWMzYy00OGQ2LWE2YjIt ZDYwNWM1M2EzNWJlLzEvaHVHcnBnRE41ZXd4Z3hteFZaUzJpcmxzbFd3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OS9lNjg0NWQtMWMzYy00OGQ2LWE2YjItZDYwNWM1M2EzNWJl LzEvaHVHcnBnRE41ZXd4Z3hteFZaUzJpcmxzbFd3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIfRF8PTe Gnz6u5CLmaJkcbAafN9tCW6NCIXfM+gWjLDEkjWnL4+YddhE2hBoNtgyKFs8lLGc RL+gx/3/CeL3ZQV9SQXdOrFCk5dPS0onfS6eBbju91wDonmDdBNkJsgpNml86ZJL ImUzN8E8l1tr5V4SVL5FYGdFF/IhwcVhytBmbOLcVQJAU+TYQJ5z5y8T6sdKx3t3 N9bcIMWOzbWtGeBoGAE4CM2ahdTWxwz+Wpkyve16Rki7yADpWUeZ4bjep0YsRZ0A Zef6calo7BIyJb08pwexgtNCK/0fu/QxCr2rkmktofByVlKCnUwMpFiiDCYfnH+n VzbGgq/Z0BBvqA== -----END CERTIFICATE-----Generated at Sat Dec 6 12:41:51 2025 by rpki-client