This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/hAKSSGHLwIjGVahyU1qQMQige_E.mft File: hAKSSGHLwIjGVahyU1qQMQige_E.mft (raw, json) Hash identifier: vndRVvMzypUl31j2fTfYXotJ/EdJ79uv6JZmdad/d58= Subject key identifier: 46:80:EC:C0:05:A6:31:A6:9D:8B:90:6B:D4:E5:A5:3A:4C:95:1B:A8 Authority key identifier: 84:02:92:48:61:CB:C0:88:C6:55:A8:72:53:5A:90:31:08:A0:7B:F1 Certificate issuer: /CN=8402924861cbc088c655a872535a903108a07bf1 Certificate serial: 019AF76609E903E234C26A83A1DFC7D46CA4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hAKSSGHLwIjGVahyU1qQMQige_E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/hAKSSGHLwIjGVahyU1qQMQige_E.mft Manifest number: 139D Signing time: Sun 07 Dec 2025 06:00:50 +0000 Manifest this update: Sun 07 Dec 2025 06:00:50 +0000 Manifest next update: Mon 08 Dec 2025 06:00:50 +0000 Files and hashes: 1: V4HzyqT3UdFuM-GyIseILy4xTfQ.roa (hash: 1TwXBA5f5XgP5uZG5yeFX6kZqTX4W9t72jbcfsBpAgw=) 2: hAKSSGHLwIjGVahyU1qQMQige_E.crl (hash: cIYzdGZeFuB6jch/ipqZhkWxj4Dbnqwkb91X7m88jrM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/hAKSSGHLwIjGVahyU1qQMQige_E.crl rsync://rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/hAKSSGHLwIjGVahyU1qQMQige_E.mft rsync://rpki.ripe.net/repository/DEFAULT/hAKSSGHLwIjGVahyU1qQMQige_E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 08 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f7:66:09:e9:03:e2:34:c2:6a:83:a1:df:c7:d4:6c:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8402924861cbc088c655a872535a903108a07bf1 Validity Not Before: Dec 7 06:00:50 2025 GMT Not After : Dec 8 06:00:50 2025 GMT Subject: CN=4680ecc005a631a69d8b906bd4e5a53a4c951ba8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:5b:2d:d8:7f:a2:12:af:80:57:ce:63:d6:83: d4:83:7d:b5:90:a7:e0:f2:10:c6:f7:c6:81:b3:cd: b3:07:60:22:bd:91:4b:52:14:a9:f3:8c:05:7b:84: 0a:87:32:7b:f4:51:10:ed:77:d3:e3:7b:5d:fe:18: 3b:17:53:71:c1:85:16:65:59:72:5d:77:1e:c2:4b: 55:d8:99:12:40:f5:c5:23:23:e5:1a:79:84:3f:4b: 45:cb:e2:91:1e:bf:2b:79:44:be:5c:9e:81:e3:76: 26:69:7b:a4:f4:2d:ee:57:e0:0e:fa:16:e7:f7:bf: 09:94:fd:d3:28:28:5c:73:0a:bb:e2:f8:55:0d:cf: 81:22:03:8a:11:63:c9:03:ef:18:22:4f:a1:d7:ae: a2:02:82:8c:0e:29:c6:f5:34:aa:9a:3b:5f:f4:e6: 68:27:4d:67:00:96:b7:9f:9d:b0:56:3f:fb:6e:e3: d6:d5:2b:dc:79:e0:5f:20:96:e1:55:30:57:b5:cf: a3:71:ef:fb:01:70:7c:20:c9:97:05:79:07:4c:f5: 1a:a0:66:f5:ac:9f:00:f1:bd:6c:6a:8d:e0:20:bc: e9:45:8a:1c:dc:f9:6e:d5:94:c0:3b:d4:8a:9e:bb: a4:40:89:56:6c:12:af:1c:7d:3b:ce:9d:80:d6:76: 0d:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:80:EC:C0:05:A6:31:A6:9D:8B:90:6B:D4:E5:A5:3A:4C:95:1B:A8 X509v3 Authority Key Identifier: keyid:84:02:92:48:61:CB:C0:88:C6:55:A8:72:53:5A:90:31:08:A0:7B:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hAKSSGHLwIjGVahyU1qQMQige_E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/hAKSSGHLwIjGVahyU1qQMQige_E.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/hAKSSGHLwIjGVahyU1qQMQige_E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 74:3c:31:96:a8:71:95:39:9e:03:84:6e:26:4f:dd:72:45:e8: 2d:c7:57:4f:3b:fd:f2:78:c0:d8:b3:fb:5c:03:9d:55:76:35: df:6f:36:b9:df:e0:b9:ce:1f:41:b9:c2:9a:cf:dd:77:6a:62: 5c:cc:8b:7e:73:c8:c3:65:32:ef:90:b1:42:04:7a:83:cd:ed: 95:0a:0a:34:ff:08:84:39:e9:c4:77:94:70:6d:ca:7a:ac:af: 40:f0:bd:9e:d3:c5:13:c9:1a:e6:58:d0:23:6d:41:97:0d:55: cf:3d:9c:c4:02:bb:4b:c0:76:fb:68:d0:d1:1f:bc:19:1e:41: 7d:b1:03:d8:81:8b:4e:0d:be:ec:02:6a:6f:70:13:32:dc:07: be:ea:51:fb:dc:56:d7:32:a9:64:c6:c1:52:8d:53:ac:7a:d2: f0:17:77:74:a6:e9:f2:bd:ef:1c:63:4b:82:35:33:bc:f2:a7: d5:5f:cb:20:19:08:f1:8c:4c:e0:74:54:9b:7a:dc:c7:fb:f4: 27:90:b1:44:06:db:c8:bc:3b:4a:9c:36:21:50:62:b2:3a:ed: 51:99:37:3a:42:47:63:dc:ff:8c:9d:6b:9d:a0:a0:99:fc:c8: 62:73:37:37:c3:6a:69:57:9e:28:4c:5e:4c:45:4a:f3:df:a0: 4b:49:b0:80 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr3ZgnpA+I0wmqDod/H1GykMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0MDI5MjQ4NjFjYmMwODhjNjU1YTg3MjUzNWE5MDMxMDhh MDdiZjEwHhcNMjUxMjA3MDYwMDUwWhcNMjUxMjA4MDYwMDUwWjAzMTEwLwYDVQQD Eyg0NjgwZWNjMDA1YTYzMWE2OWQ4YjkwNmJkNGU1YTUzYTRjOTUxYmE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Vst2H+iEq+AV85j1oPUg321kKfg 8hDG98aBs82zB2AivZFLUhSp84wFe4QKhzJ79FEQ7XfT43td/hg7F1NxwYUWZVly XXcewktV2JkSQPXFIyPlGnmEP0tFy+KRHr8reUS+XJ6B43YmaXuk9C3uV+AO+hbn 978JlP3TKChccwq74vhVDc+BIgOKEWPJA+8YIk+h166iAoKMDinG9TSqmjtf9OZo J01nAJa3n52wVj/7buPW1SvceeBfIJbhVTBXtc+jce/7AXB8IMmXBXkHTPUaoGb1 rJ8A8b1sao3gILzpRYoc3Plu1ZTAO9SKnrukQIlWbBKvHH07zp2A1nYNFQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEaA7MAFpjGmnYuQa9TlpTpMlRuoMB8GA1UdIwQY MBaAFIQCkkhhy8CIxlWoclNakDEIoHvxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaEFLU1NHSEx3SWpHVmFoeVUxcVFNUWlnZV9FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi8wOTI0ZmEtNTRmYi00MjU0LWI2NGUt MGFjOWIzYmFlNmY1LzEvaEFLU1NHSEx3SWpHVmFoeVUxcVFNUWlnZV9FLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Zi8wOTI0ZmEtNTRmYi00MjU0LWI2NGUtMGFjOWIzYmFlNmY1 LzEvaEFLU1NHSEx3SWpHVmFoeVUxcVFNUWlnZV9FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdDwxlqhx lTmeA4RuJk/dckXoLcdXTzv98njA2LP7XAOdVXY13282ud/guc4fQbnCms/dd2pi XMyLfnPIw2Uy75CxQgR6g83tlQoKNP8IhDnpxHeUcG3KeqyvQPC9ntPFE8ka5ljQ I21Blw1Vzz2cxAK7S8B2+2jQ0R+8GR5BfbED2IGLTg2+7AJqb3ATMtwHvupR+9xW 1zKpZMbBUo1TrHrS8Bd3dKbp8r3vHGNLgjUzvPKn1V/LIBkI8YxM4HRUm3rcx/v0 J5CxRAbbyLw7Spw2IVBisjrtUZk3OkJHY9z/jJ1rnaCgmfzIYnM3N8NqaVeeKExe TEVK89+gS0mwgA== -----END CERTIFICATE-----Generated at Sun Dec 7 13:47:56 2025 by rpki-client