This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft File: HY6N9cAxEHEY2mHymrT0GdKdWoo.mft (raw, json) Hash identifier: u5Uzp3W9VNBXSzxrcGLZQ7jMI2L2U9w3m4faCtDAeTg= Subject key identifier: A5:B0:41:33:18:D3:1C:D3:B5:80:03:28:86:0A:1F:E1:C9:9E:0B:0B Authority key identifier: 1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A Certificate issuer: /CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a Certificate serial: 019AF088881DC4AC57AC14E4F20EADD57451 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft Manifest number: 0376 Signing time: Fri 05 Dec 2025 22:01:10 +0000 Manifest this update: Fri 05 Dec 2025 22:01:10 +0000 Manifest next update: Sat 06 Dec 2025 22:01:10 +0000 Files and hashes: 1: HY6N9cAxEHEY2mHymrT0GdKdWoo.crl (hash: 4ENvcOLftPGh9sL3QQW/SA2LVsFcgl8o70KwWAdFe1o=) 2: aMYTDoy-atROFcdvcAZ3DJlPN5M.roa (hash: xs/811bK0GOCRDo/JHIlphnjgoQcSZGktyUSLqywPok=) 3: hc_WEE647lzFURB_xuAQSI93cMk.roa (hash: dEd68WTNgomGf/knb8KdzL0EdhKoQSwJyVCrqzwbNzU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 22:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:88:88:1d:c4:ac:57:ac:14:e4:f2:0e:ad:d5:74:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a Validity Not Before: Dec 5 22:01:10 2025 GMT Not After : Dec 6 22:01:10 2025 GMT Subject: CN=a5b0413318d31cd3b5800328860a1fe1c99e0b0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:4a:10:81:5e:82:34:58:7a:a0:3e:6f:b6:c7: b2:32:f6:6f:83:d6:38:34:ee:f3:c2:73:69:eb:06: cd:68:e3:bf:3a:90:f9:96:ff:60:7d:91:b3:8d:b6: 22:45:95:53:ab:35:b7:fc:20:a8:9b:03:c7:13:74: a0:e6:13:2e:da:f2:71:5f:8a:f5:28:56:9b:70:f0: 6f:9e:d6:45:79:f8:a9:5a:77:a2:f6:80:a1:f2:dd: d5:a0:13:fe:b4:84:74:a9:66:f6:52:2f:fe:d8:06: 41:a0:b3:1c:5f:af:7b:fb:0b:96:35:eb:c6:36:6c: c8:ff:f1:f1:73:ce:da:1b:2a:aa:4a:ec:76:ea:1b: c4:6f:79:ce:84:f3:9a:13:51:ad:3b:d7:1c:16:83: 5e:aa:b2:f2:4c:2f:ad:d0:fd:ef:bf:80:dd:9e:ce: 8f:3e:61:23:be:d9:8b:3c:07:31:e7:c0:7a:27:89: 43:08:58:ea:02:73:36:f4:fc:d2:0f:a4:ff:f5:ca: 2c:42:c3:ad:7e:7d:fd:92:98:76:cb:6d:16:1c:db: 5c:91:b6:5b:df:f2:95:12:0d:c3:3b:bf:07:db:07: c1:71:63:4f:51:cd:07:4a:12:cc:50:05:e1:3e:e7: 18:30:ef:e2:8e:a7:2a:bf:aa:60:1d:0f:38:f2:88: e5:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:B0:41:33:18:D3:1C:D3:B5:80:03:28:86:0A:1F:E1:C9:9E:0B:0B X509v3 Authority Key Identifier: keyid:1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:00:88:52:55:8f:e5:27:ce:1d:91:92:3d:08:fc:46:fb:f5: 52:ce:4f:35:c2:46:10:8f:69:19:d3:ed:0a:37:78:f1:2a:d4: 14:75:51:53:45:66:a6:77:90:5e:73:e3:38:ac:d6:c0:4b:6f: 03:d9:cc:2c:e7:6b:48:31:06:c7:af:3f:2b:70:ed:12:d4:45: ac:22:f7:17:30:a2:b2:16:e3:12:2d:2b:2b:05:43:72:8a:25: b8:e1:04:31:67:aa:34:37:6a:fc:8b:1b:1d:fb:f9:a8:99:b1: 0f:29:6b:b9:6c:26:03:c4:b1:b1:dd:c0:9a:31:50:8a:eb:ac: 77:6c:8f:62:d8:46:de:dd:c8:d2:6f:1a:52:44:fd:6a:c5:02: 26:ee:48:ab:20:b5:fa:33:2c:1c:a4:07:06:89:77:7e:46:b4: 64:77:a3:4d:87:ee:74:b8:26:ff:70:28:13:3f:7b:c6:a9:10: 5d:57:5d:ab:ac:c8:b3:52:83:6e:78:50:c6:b4:1b:4d:67:df: e8:ac:d8:d1:91:ee:ac:51:7f:b4:0a:c6:b5:b3:9b:a4:d3:87: c9:55:46:de:7e:7c:fe:3c:42:d8:b9:88:ef:9b:7b:f0:ea:c8: 31:39:30:40:5e:10:0e:8a:31:1e:e2:18:76:ed:85:25:c9:79: da:f8:e1:47 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwiIgdxKxXrBTk8g6t1XRRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkOGU4ZGY1YzAzMTEwNzExOGRhNjFmMjlhYjRmNDE5ZDI5 ZDVhOGEwHhcNMjUxMjA1MjIwMTEwWhcNMjUxMjA2MjIwMTEwWjAzMTEwLwYDVQQD EyhhNWIwNDEzMzE4ZDMxY2QzYjU4MDAzMjg4NjBhMWZlMWM5OWUwYjBiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArEoQgV6CNFh6oD5vtseyMvZvg9Y4 NO7zwnNp6wbNaOO/OpD5lv9gfZGzjbYiRZVTqzW3/CComwPHE3Sg5hMu2vJxX4r1 KFabcPBvntZFefipWnei9oCh8t3VoBP+tIR0qWb2Ui/+2AZBoLMcX697+wuWNevG NmzI//Hxc87aGyqqSux26hvEb3nOhPOaE1GtO9ccFoNeqrLyTC+t0P3vv4Ddns6P PmEjvtmLPAcx58B6J4lDCFjqAnM29PzSD6T/9cosQsOtfn39kph2y20WHNtckbZb 3/KVEg3DO78H2wfBcWNPUc0HShLMUAXhPucYMO/ijqcqv6pgHQ848ojl2QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKWwQTMY0xzTtYADKIYKH+HJngsLMB8GA1UdIwQY MBaAFB2OjfXAMRBxGNph8pq09BnSnVqKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSFk2TjljQXhFSEVZMm1IeW1yVDBHZEtkV29vLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS81NWFjNjctOWM3Ni00ODkzLTg5YTUt YjFkMzhiMTNmZGE5LzEvSFk2TjljQXhFSEVZMm1IeW1yVDBHZEtkV29vLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS81NWFjNjctOWM3Ni00ODkzLTg5YTUtYjFkMzhiMTNmZGE5 LzEvSFk2TjljQXhFSEVZMm1IeW1yVDBHZEtkV29vLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZQCIUlWP 5SfOHZGSPQj8Rvv1Us5PNcJGEI9pGdPtCjd48SrUFHVRU0VmpneQXnPjOKzWwEtv A9nMLOdrSDEGx68/K3DtEtRFrCL3FzCishbjEi0rKwVDcooluOEEMWeqNDdq/Isb Hfv5qJmxDylruWwmA8Sxsd3AmjFQiuusd2yPYthG3t3I0m8aUkT9asUCJu5IqyC1 +jMsHKQHBol3fka0ZHejTYfudLgm/3AoEz97xqkQXVddq6zIs1KDbnhQxrQbTWff 6KzY0ZHurFF/tArGtbObpNOHyVVG3n58/jxC2LmI75t78OrIMTkwQF4QDooxHuIY du2FJcl52vjhRw== -----END CERTIFICATE-----Generated at Sat Dec 6 07:16:20 2025 by rpki-client