This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/761b17-6cb5-47fd-8c4f-efa6789fd972/1/RHxS2B7cEklkSteUvgKK-Q4CShY.mft File: RHxS2B7cEklkSteUvgKK-Q4CShY.mft (raw, json) Hash identifier: DeEcLTfIdLGetGz/0W6witdOzBQaEiEX5Q2FYCpBVek= Subject key identifier: 8C:DD:F0:B3:A6:FF:09:F3:F0:45:61:5B:B3:47:8B:F3:55:87:CE:2F Authority key identifier: 44:7C:52:D8:1E:DC:12:49:64:4A:D7:94:BE:02:8A:F9:0E:02:4A:16 Certificate issuer: /CN=447c52d81edc1249644ad794be028af90e024a16 Certificate serial: 019AF1D1CF4F2FA5D6FDECC5C853A6F74671 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RHxS2B7cEklkSteUvgKK-Q4CShY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/761b17-6cb5-47fd-8c4f-efa6789fd972/1/RHxS2B7cEklkSteUvgKK-Q4CShY.mft Manifest number: 0B0D Signing time: Sat 06 Dec 2025 04:00:50 +0000 Manifest this update: Sat 06 Dec 2025 04:00:50 +0000 Manifest next update: Sun 07 Dec 2025 04:00:50 +0000 Files and hashes: 1: 0RTmTUPTdqVwMU5i8iRqJZA86F0.roa (hash: eIjsDcha7FolfU5e8Eelou/OO0UBzir5atE5Gevb/B4=) 2: RHxS2B7cEklkSteUvgKK-Q4CShY.crl (hash: VSFBBnwMACwPOR1jmQrUhZNrbWOg++F9wsRMaubF4Tk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/761b17-6cb5-47fd-8c4f-efa6789fd972/1/RHxS2B7cEklkSteUvgKK-Q4CShY.crl rsync://rpki.ripe.net/repository/DEFAULT/b8/761b17-6cb5-47fd-8c4f-efa6789fd972/1/RHxS2B7cEklkSteUvgKK-Q4CShY.mft rsync://rpki.ripe.net/repository/DEFAULT/RHxS2B7cEklkSteUvgKK-Q4CShY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d1:cf:4f:2f:a5:d6:fd:ec:c5:c8:53:a6:f7:46:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=447c52d81edc1249644ad794be028af90e024a16 Validity Not Before: Dec 6 04:00:50 2025 GMT Not After : Dec 7 04:00:50 2025 GMT Subject: CN=8cddf0b3a6ff09f3f045615bb3478bf35587ce2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:0d:90:da:0a:2c:ec:6f:92:6e:32:d5:d8:bb: c2:3f:a4:9f:88:a6:ea:ae:e0:84:89:67:1e:da:75: 74:4c:9f:cf:3b:e9:0c:f1:a9:e4:14:39:43:15:af: fb:06:f1:de:84:18:41:f5:06:89:2c:a5:6c:82:ae: 46:60:b2:b7:d9:6b:a2:a3:57:1d:0e:8d:32:bf:47: 35:8b:46:3a:fb:de:2d:3a:46:34:74:be:f4:0a:40: cf:d2:e3:41:26:62:66:cc:23:a4:4c:75:2c:8d:49: 1a:c8:7d:54:7e:8f:34:fa:4e:f1:89:75:e1:8f:d7: ea:60:37:ca:f1:ec:1b:e5:46:19:e9:61:d9:e7:5c: c9:4a:9e:35:94:75:9a:57:97:c9:4a:f2:83:e9:fa: 9f:6c:23:b4:ca:fd:98:88:07:b9:74:cd:39:2c:bd: ea:87:48:fa:54:18:6a:f5:a7:34:51:f8:25:82:64: 3a:c5:b8:a0:81:43:08:f6:22:25:36:d3:90:7e:1e: 05:51:f2:4c:8b:63:3e:6f:f2:1b:07:b4:5f:02:dd: 46:59:c1:68:34:32:ba:22:a1:75:3e:7e:66:55:71: 45:15:9c:c4:d6:15:16:fa:5d:36:d7:23:9f:2d:53: 7b:7e:3f:b9:0f:61:b2:8b:ea:33:e7:64:bc:6e:f5: 9b:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:DD:F0:B3:A6:FF:09:F3:F0:45:61:5B:B3:47:8B:F3:55:87:CE:2F X509v3 Authority Key Identifier: keyid:44:7C:52:D8:1E:DC:12:49:64:4A:D7:94:BE:02:8A:F9:0E:02:4A:16 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RHxS2B7cEklkSteUvgKK-Q4CShY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/761b17-6cb5-47fd-8c4f-efa6789fd972/1/RHxS2B7cEklkSteUvgKK-Q4CShY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/761b17-6cb5-47fd-8c4f-efa6789fd972/1/RHxS2B7cEklkSteUvgKK-Q4CShY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:fc:95:0b:e2:fb:75:5a:5a:17:f3:e0:c3:c9:20:6f:a0:05: 2f:79:e8:5a:82:2b:48:76:dd:f5:92:c5:f6:2d:60:41:32:d6: 0d:7e:5a:8a:a3:15:8b:a2:98:43:be:6b:95:5b:61:63:48:00: 68:fd:c4:aa:3f:5d:a5:94:28:ac:66:6e:fd:85:ba:62:b0:3d: a0:2c:2f:25:6a:65:ad:e7:6f:00:7b:ec:5e:02:66:9d:bf:cb: 77:de:32:22:c2:d2:40:4a:83:c3:b1:b6:70:f8:c6:ce:4a:1b: 4d:ef:27:21:d2:9f:c3:33:52:6e:e6:52:04:17:3e:60:6f:3b: b6:b4:b6:0d:94:4b:b0:87:e2:a2:e8:4b:bf:e4:31:0e:37:04: 65:38:e8:ea:a5:95:f4:7b:8f:b3:ea:f8:2b:a9:af:ff:41:47: fa:5a:d6:31:08:f7:ab:62:9b:d9:92:fb:be:8b:1d:f3:4a:c7: c5:b0:cf:e4:ca:20:67:8a:d9:85:68:96:a5:2c:83:66:c7:98: 95:98:71:89:f3:bb:60:ff:c8:b8:29:c5:14:bd:da:d8:9d:b8: 6a:87:f2:6f:66:13:8c:52:aa:50:64:53:69:c7:69:18:6d:ce: 99:3c:3e:df:6a:fb:62:da:cc:42:44:b6:2e:ec:64:5b:fd:b2: 6d:74:c1:e3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0c9PL6XW/ezFyFOm90ZxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ0N2M1MmQ4MWVkYzEyNDk2NDRhZDc5NGJlMDI4YWY5MGUw MjRhMTYwHhcNMjUxMjA2MDQwMDUwWhcNMjUxMjA3MDQwMDUwWjAzMTEwLwYDVQQD Eyg4Y2RkZjBiM2E2ZmYwOWYzZjA0NTYxNWJiMzQ3OGJmMzU1ODdjZTJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3Q2Q2gos7G+SbjLV2LvCP6SfiKbq ruCEiWce2nV0TJ/PO+kM8ankFDlDFa/7BvHehBhB9QaJLKVsgq5GYLK32Wuio1cd Do0yv0c1i0Y6+94tOkY0dL70CkDP0uNBJmJmzCOkTHUsjUkayH1Ufo80+k7xiXXh j9fqYDfK8ewb5UYZ6WHZ51zJSp41lHWaV5fJSvKD6fqfbCO0yv2YiAe5dM05LL3q h0j6VBhq9ac0UfglgmQ6xbiggUMI9iIlNtOQfh4FUfJMi2M+b/IbB7RfAt1GWcFo NDK6IqF1Pn5mVXFFFZzE1hUW+l021yOfLVN7fj+5D2Gyi+oz52S8bvWbEQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIzd8LOm/wnz8EVhW7NHi/NVh84vMB8GA1UdIwQY MBaAFER8Utge3BJJZErXlL4CivkOAkoWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUkh4UzJCN2NFa2xrU3RlVXZnS0stUTRDU2hZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC83NjFiMTctNmNiNS00N2ZkLThjNGYt ZWZhNjc4OWZkOTcyLzEvUkh4UzJCN2NFa2xrU3RlVXZnS0stUTRDU2hZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOC83NjFiMTctNmNiNS00N2ZkLThjNGYtZWZhNjc4OWZkOTcy LzEvUkh4UzJCN2NFa2xrU3RlVXZnS0stUTRDU2hZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK/yVC+L7 dVpaF/Pgw8kgb6AFL3noWoIrSHbd9ZLF9i1gQTLWDX5aiqMVi6KYQ75rlVthY0gA aP3Eqj9dpZQorGZu/YW6YrA9oCwvJWplredvAHvsXgJmnb/Ld94yIsLSQEqDw7G2 cPjGzkobTe8nIdKfwzNSbuZSBBc+YG87trS2DZRLsIfiouhLv+QxDjcEZTjo6qWV 9HuPs+r4K6mv/0FH+lrWMQj3q2Kb2ZL7vosd80rHxbDP5MogZ4rZhWiWpSyDZseY lZhxifO7YP/IuCnFFL3a2J24aofyb2YTjFKqUGRTacdpGG3OmTw+32r7YtrMQkS2 LuxkW/2ybXTB4w== -----END CERTIFICATE-----Generated at Sat Dec 6 07:26:23 2025 by rpki-client