This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/3bbd37-d3cb-415b-a38a-d415067a8f76/1/hyDPLDSRRvabop66wMiCKIEcovE.mft File: hyDPLDSRRvabop66wMiCKIEcovE.mft (raw, json) Hash identifier: sIil3pxKuZUtHOnzCMOKwT5DSONczxjK4+URvVl+HII= Subject key identifier: F5:22:09:C1:4F:9F:25:20:3C:54:7A:7A:1B:CD:E1:81:72:8B:57:75 Authority key identifier: 87:20:CF:2C:34:91:46:F6:9B:A2:9E:BA:C0:C8:82:28:81:1C:A2:F1 Certificate issuer: /CN=8720cf2c349146f69ba29ebac0c88228811ca2f1 Certificate serial: 019AF12D9B2D98B85823697C83C711610F4A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hyDPLDSRRvabop66wMiCKIEcovE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/3bbd37-d3cb-415b-a38a-d415067a8f76/1/hyDPLDSRRvabop66wMiCKIEcovE.mft Manifest number: 0B2D Signing time: Sat 06 Dec 2025 01:01:29 +0000 Manifest this update: Sat 06 Dec 2025 01:01:29 +0000 Manifest next update: Sun 07 Dec 2025 01:01:29 +0000 Files and hashes: 1: hyDPLDSRRvabop66wMiCKIEcovE.crl (hash: 3GT+/k7z/opwpRKvvVqhgIBFIDFtNMXt2CJXjYxZQoI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/3bbd37-d3cb-415b-a38a-d415067a8f76/1/hyDPLDSRRvabop66wMiCKIEcovE.crl rsync://rpki.ripe.net/repository/DEFAULT/a9/3bbd37-d3cb-415b-a38a-d415067a8f76/1/hyDPLDSRRvabop66wMiCKIEcovE.mft rsync://rpki.ripe.net/repository/DEFAULT/hyDPLDSRRvabop66wMiCKIEcovE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:9b:2d:98:b8:58:23:69:7c:83:c7:11:61:0f:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8720cf2c349146f69ba29ebac0c88228811ca2f1 Validity Not Before: Dec 6 01:01:29 2025 GMT Not After : Dec 7 01:01:29 2025 GMT Subject: CN=f52209c14f9f25203c547a7a1bcde181728b5775 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:f8:88:96:5b:d4:13:10:33:40:e4:00:ac:1d: 43:20:7d:21:98:1c:c6:64:8b:1d:c1:90:8e:f4:92: 53:36:85:67:b5:b2:3e:10:b4:03:e5:70:d2:e7:8b: 4a:c8:42:2f:89:33:e6:55:25:4e:2f:83:c2:42:b1: d2:69:a6:e2:4a:95:e8:ed:c6:62:5b:f2:9d:fb:63: 8c:1c:e1:2b:21:a4:11:3b:52:b9:f7:c5:58:e5:63: f0:38:bf:56:77:7c:92:ea:14:b9:ce:71:1f:b8:a0: c9:92:56:e3:3f:c5:d2:e3:3a:83:70:f9:ef:04:55: 8b:0b:10:dc:9e:2e:e4:d0:8a:57:04:6a:3b:31:d5: 08:7f:ca:3d:53:6c:c6:6c:e2:8e:79:85:44:04:17: 9a:01:fc:b3:29:6c:87:66:4f:cf:78:4e:d5:b3:ed: 98:c6:63:0e:8d:77:14:83:0a:02:4c:62:ed:25:64: f1:41:36:00:3d:39:ad:bd:1c:5f:07:0a:56:71:df: c5:62:62:da:aa:11:af:56:e0:5e:19:bc:98:7f:65: e6:c1:7d:fc:00:dc:1a:56:9a:9c:b7:35:18:5e:58: a3:09:87:2c:5c:90:c5:ae:f6:bc:f3:88:f0:af:86: 28:6f:5e:d3:4f:d5:0f:8d:a2:0c:64:80:a4:92:8d: ae:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:22:09:C1:4F:9F:25:20:3C:54:7A:7A:1B:CD:E1:81:72:8B:57:75 X509v3 Authority Key Identifier: keyid:87:20:CF:2C:34:91:46:F6:9B:A2:9E:BA:C0:C8:82:28:81:1C:A2:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hyDPLDSRRvabop66wMiCKIEcovE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/3bbd37-d3cb-415b-a38a-d415067a8f76/1/hyDPLDSRRvabop66wMiCKIEcovE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/3bbd37-d3cb-415b-a38a-d415067a8f76/1/hyDPLDSRRvabop66wMiCKIEcovE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 49:1d:4b:28:00:12:ea:38:ef:14:92:de:d2:5f:ff:1d:55:fc: 8e:7d:97:4a:72:57:9d:86:ed:03:c4:8b:0c:c8:59:b3:8a:4c: b2:2d:08:05:82:96:0b:56:99:34:a8:35:65:c1:58:bd:19:b9: 26:9e:a6:ea:d0:de:1e:01:d6:77:ba:46:86:79:13:c7:0e:fe: fa:ca:a1:bf:7c:e6:56:cf:ff:ab:eb:41:28:e6:cb:23:2c:40: bf:b2:1f:95:0e:85:80:22:38:36:20:26:9c:1f:26:13:15:7c: af:61:66:d8:62:d8:48:c3:ab:33:d2:11:24:21:ec:db:fd:9d: 6b:cf:cd:45:e4:12:66:27:af:a7:b9:ac:58:28:28:30:8b:9c: 24:2c:d3:d4:33:b5:c1:92:fb:34:55:1f:13:64:ba:4d:06:d6: b7:0b:74:cd:74:45:88:6c:03:98:82:c9:f3:9d:82:51:b9:a9: 44:1b:96:cd:0f:9e:5c:a5:af:e6:9c:3d:94:09:7d:3b:4c:10: 2b:cf:a4:65:de:ac:22:4a:3c:c8:fa:4f:25:06:fb:2d:25:69: 8f:b7:04:bd:f6:04:5a:44:b2:df:20:9d:90:a6:03:6a:1a:eb: 2b:8d:a1:7a:a1:5d:75:85:54:08:e1:17:1e:e6:62:05:6f:07: d8:ff:25:ac -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLZstmLhYI2l8g8cRYQ9KMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3MjBjZjJjMzQ5MTQ2ZjY5YmEyOWViYWMwYzg4MjI4ODEx Y2EyZjEwHhcNMjUxMjA2MDEwMTI5WhcNMjUxMjA3MDEwMTI5WjAzMTEwLwYDVQQD EyhmNTIyMDljMTRmOWYyNTIwM2M1NDdhN2ExYmNkZTE4MTcyOGI1Nzc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxviIllvUExAzQOQArB1DIH0hmBzG ZIsdwZCO9JJTNoVntbI+ELQD5XDS54tKyEIviTPmVSVOL4PCQrHSaabiSpXo7cZi W/Kd+2OMHOErIaQRO1K598VY5WPwOL9Wd3yS6hS5znEfuKDJklbjP8XS4zqDcPnv BFWLCxDcni7k0IpXBGo7MdUIf8o9U2zGbOKOeYVEBBeaAfyzKWyHZk/PeE7Vs+2Y xmMOjXcUgwoCTGLtJWTxQTYAPTmtvRxfBwpWcd/FYmLaqhGvVuBeGbyYf2XmwX38 ANwaVpqctzUYXlijCYcsXJDFrva884jwr4Yob17TT9UPjaIMZICkko2utQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPUiCcFPnyUgPFR6ehvN4YFyi1d1MB8GA1UdIwQY MBaAFIcgzyw0kUb2m6KeusDIgiiBHKLxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHlEUExEU1JSdmFib3A2NndNaUNLSUVjb3ZFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS8zYmJkMzctZDNjYi00MTViLWEzOGEt ZDQxNTA2N2E4Zjc2LzEvaHlEUExEU1JSdmFib3A2NndNaUNLSUVjb3ZFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOS8zYmJkMzctZDNjYi00MTViLWEzOGEtZDQxNTA2N2E4Zjc2 LzEvaHlEUExEU1JSdmFib3A2NndNaUNLSUVjb3ZFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASR1LKAAS 6jjvFJLe0l//HVX8jn2XSnJXnYbtA8SLDMhZs4pMsi0IBYKWC1aZNKg1ZcFYvRm5 Jp6m6tDeHgHWd7pGhnkTxw7++sqhv3zmVs//q+tBKObLIyxAv7IflQ6FgCI4NiAm nB8mExV8r2Fm2GLYSMOrM9IRJCHs2/2da8/NReQSZievp7msWCgoMIucJCzT1DO1 wZL7NFUfE2S6TQbWtwt0zXRFiGwDmILJ852CUbmpRBuWzQ+eXKWv5pw9lAl9O0wQ K8+kZd6sIko8yPpPJQb7LSVpj7cEvfYEWkSy3yCdkKYDahrrK42heqFddYVUCOEX HuZiBW8H2P8lrA== -----END CERTIFICATE-----Generated at Sat Dec 6 06:58:49 2025 by rpki-client