This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft File: hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft (raw, json) Hash identifier: I1sX4EM7qhA0+ZIQIcj7OfLThW+ewglQe3MOh/SZOP4= Subject key identifier: 24:97:C0:A9:77:23:E3:2D:C8:5D:A9:7B:68:1D:25:28:22:98:B7:75 Authority key identifier: 85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD Certificate issuer: /CN=85d0e763f935c171694f172056eb44209db2e2cd Certificate serial: 019AF49C3972F81874B7DED762162ACAA85E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft Manifest number: 1383 Signing time: Sat 06 Dec 2025 17:01:10 +0000 Manifest this update: Sat 06 Dec 2025 17:01:10 +0000 Manifest next update: Sun 07 Dec 2025 17:01:10 +0000 Files and hashes: 1: 2Il6q-ZqOuI80bOhmO2ATk_4gjA.roa (hash: qZ2AvjwfuN5RofSpAulT+zvOokvk9hdo9R5gBG6wVV8=) 2: EqxVNlycylxq6ufI9ng2ltdK1KM.roa (hash: b+kpuQsONfGhMD7qgwxZkbzW/4IKkzNE5v/myC4W0qY=) 3: MceCU4XPd0t7fhZxTxvxReumv1Q.roa (hash: 5TdX80iYVUkF2JY7Z9ZEOYjAnRhS8f4vWckTIPnEXdo=) 4: QdYIwbhgXZFZDGrsD1bCfWnJfNM.roa (hash: GAa3KktDwm+TlBojUO7F6LnOQMJ0zxC/VLgeFCn23pI=) 5: V1rb0y6iu1TTOsIZQYPUPITNZdc.roa (hash: 4TLj9uQX2T55ymBodPD3FK/tTeE67Ngmw9g4awglSqU=) 6: Yjrt4HsK8wh6pJI81KOUWlnSEwg.roa (hash: XmuwPChIn1UvgMab/4oMWsQTN7bkJ51y5zUd1xVolH0=) 7: aaic0TQ08KDxqNotu0QjynGFp8k.roa (hash: y+rn4gyMmixGkyVVHgb8Zj+xOMFFm7BJm3FAMYf/M4M=) 8: cO2-NOuH2RV4sPciOdoA32su67Q.roa (hash: 9jc3V+7f0q1/c2NMI1faaA1MEEx9FCl4Vp7wxvOlyNU=) 9: euovkC8FzqkWizkBlJiIPuOidbU.roa (hash: NVQ3tcOFWDZctMMGjmKl2U9mGUa0NK9LjFLKrJC2iHM=) 10: gdNItxWNsM4KiGU05OylhksApCc.roa (hash: WiPvUqderzx9CicZMrqZIDKRBrczrFFx57GnwN1V0lI=) 11: hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl (hash: quvRdNA9okYu6Tw+JxZOYRsa8r+4cXQOPQXzTq2Qfbs=) 12: o1oWSbF99ChHezdi7-NEtS6WqIQ.roa (hash: ssh+w8HWpTpbSb7HfHBqwKGeOCK5JvaJKAWgtYiNFsU=) 13: oMpZucICfk-8ZesIjg26RzH9z8Q.roa (hash: avfjdtl0mm9+afn2EBtC58m5oIaLp8/rBFhWdaYQq6o=) 14: zYeF4EOXDH9wga2Hl1a9xt43c_E.roa (hash: qprf7Kh7V9oLipnyoiqapOwT3fD2c8ij+cCs23g5KeE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:9c:39:72:f8:18:74:b7:de:d7:62:16:2a:ca:a8:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85d0e763f935c171694f172056eb44209db2e2cd Validity Not Before: Dec 6 17:01:10 2025 GMT Not After : Dec 7 17:01:10 2025 GMT Subject: CN=2497c0a97723e32dc85da97b681d25282298b775 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:cd:ff:7a:bc:b9:0d:5b:41:81:46:2b:49:a8: 92:3b:db:70:a3:9d:9f:b4:b9:70:61:53:36:58:ae: 64:39:23:8d:49:9e:e6:b1:2f:23:c7:f4:b1:f7:50: 1a:eb:fc:c6:11:49:da:00:86:cd:f2:f8:23:9b:d7: ed:b0:3f:93:2c:0b:9d:d1:1d:cd:37:31:7b:7d:32: fb:56:52:1f:14:be:19:25:98:14:5a:58:4c:95:ac: 27:a5:2b:e9:3b:bd:9a:e5:30:32:17:45:49:18:3e: f9:37:23:df:2c:8c:77:86:ab:f5:c7:e7:8f:2b:fa: b5:56:b8:cb:11:5b:76:80:48:0b:75:07:b3:df:7d: dd:61:86:a8:86:80:0d:a6:ed:14:07:35:7b:07:28: 95:b1:0a:2e:a3:4f:82:2b:3d:0f:f8:4f:3f:f6:04: f1:f8:4b:b9:80:5b:0c:62:1c:c1:b7:89:24:74:b5: 7f:5e:74:6d:ee:2d:0f:6a:35:be:b1:99:b4:ce:ba: 0d:29:f6:fd:b1:90:4d:2e:8e:40:a8:fb:7b:88:84: 32:89:18:3c:92:fa:fb:84:af:b7:1a:36:b1:9b:a5: 1b:0f:3e:7c:03:dd:39:b4:58:ea:eb:65:78:7d:bd: 9e:08:eb:4d:1f:c0:30:a9:52:e8:ab:82:7a:d7:d7: f6:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:97:C0:A9:77:23:E3:2D:C8:5D:A9:7B:68:1D:25:28:22:98:B7:75 X509v3 Authority Key Identifier: keyid:85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:36:03:5d:09:77:c5:10:cf:f4:77:c8:48:5c:f8:3d:5d:3d: c6:f5:be:7b:5f:f8:ba:72:23:31:a7:5f:b0:ae:73:eb:fa:c4: 1d:01:78:9c:50:f7:79:89:74:1f:ff:b9:8c:b4:25:4a:3c:c9: 8a:1a:8a:59:47:6a:c3:ec:59:08:e7:94:4a:51:20:12:c2:f7: 95:4f:58:1a:c6:29:f9:e8:cb:ef:f4:d2:cf:4c:59:54:7d:69: a1:ab:10:63:dd:e6:f1:06:53:72:55:b8:04:89:ca:64:30:ce: 98:80:60:a1:c8:66:71:9a:b4:52:ab:16:c6:13:0f:25:2c:68: 95:2b:a7:a9:9c:35:25:1c:14:0e:15:e4:3e:c3:a5:2b:b6:6b: 9c:fb:2d:06:2a:35:a3:8a:31:b0:d7:0f:2d:cd:56:9e:11:a4: 05:6f:82:df:b7:13:ba:5a:de:1a:7e:99:13:10:11:8d:44:75: 0b:d4:e5:44:8e:6d:2d:b5:fd:21:fa:98:05:be:2f:b0:d5:d1: 6d:b2:6b:f3:36:7f:5b:bd:e2:42:cd:fa:83:f7:9f:81:29:67: a0:ff:94:0a:31:b1:9b:9f:81:db:15:a1:8e:65:54:14:4d:78: 87:96:6b:7e:97:7a:d8:05:76:ce:6b:00:3f:a7:85:15:f7:e1: 80:ef:2f:0e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0nDly+Bh0t97XYhYqyqheMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1ZDBlNzYzZjkzNWMxNzE2OTRmMTcyMDU2ZWI0NDIwOWRi MmUyY2QwHhcNMjUxMjA2MTcwMTEwWhcNMjUxMjA3MTcwMTEwWjAzMTEwLwYDVQQD EygyNDk3YzBhOTc3MjNlMzJkYzg1ZGE5N2I2ODFkMjUyODIyOThiNzc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0s3/ery5DVtBgUYrSaiSO9two52f tLlwYVM2WK5kOSONSZ7msS8jx/Sx91Aa6/zGEUnaAIbN8vgjm9ftsD+TLAud0R3N NzF7fTL7VlIfFL4ZJZgUWlhMlawnpSvpO72a5TAyF0VJGD75NyPfLIx3hqv1x+eP K/q1VrjLEVt2gEgLdQez333dYYaohoANpu0UBzV7ByiVsQouo0+CKz0P+E8/9gTx +Eu5gFsMYhzBt4kkdLV/XnRt7i0PajW+sZm0zroNKfb9sZBNLo5AqPt7iIQyiRg8 kvr7hK+3Gjaxm6UbDz58A905tFjq62V4fb2eCOtNH8AwqVLoq4J619f2gwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCSXwKl3I+MtyF2pe2gdJSgimLd1MB8GA1UdIwQY MBaAFIXQ52P5NcFxaU8XIFbrRCCdsuLNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi83NDY0MTAtMDI2Yi00NWM5LTgxY2Qt ZjEyODM1ZjAyNDdiLzEvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi83NDY0MTAtMDI2Yi00NWM5LTgxY2QtZjEyODM1ZjAyNDdi LzEvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATjYDXQl3 xRDP9HfISFz4PV09xvW+e1/4unIjMadfsK5z6/rEHQF4nFD3eYl0H/+5jLQlSjzJ ihqKWUdqw+xZCOeUSlEgEsL3lU9YGsYp+ejL7/TSz0xZVH1poasQY93m8QZTclW4 BInKZDDOmIBgochmcZq0UqsWxhMPJSxolSunqZw1JRwUDhXkPsOlK7ZrnPstBio1 o4oxsNcPLc1WnhGkBW+C37cTulreGn6ZExARjUR1C9TlRI5tLbX9IfqYBb4vsNXR bbJr8zZ/W73iQs36g/efgSlnoP+UCjGxm5+B2xWhjmVUFE14h5Zrfpd62AV2zmsA P6eFFffhgO8vDg== -----END CERTIFICATE-----Generated at Sat Dec 6 19:38:39 2025 by rpki-client