This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft File: h9tx9pGbDvmO78mWSSiodRAjagM.mft (raw, json) Hash identifier: Imdcbq9WGy93kZvTGJ4sQ/03cdwltTEd0JYKDx6zPSg= Subject key identifier: DE:2E:2C:19:67:55:88:EE:56:22:36:9E:E3:27:A6:EE:AF:EB:5A:8C Authority key identifier: 87:DB:71:F6:91:9B:0E:F9:8E:EF:C9:96:49:28:A8:75:10:23:6A:03 Certificate issuer: /CN=87db71f6919b0ef98eefc9964928a87510236a03 Certificate serial: 019AF3F716FAC5023278731A5162BF68910D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h9tx9pGbDvmO78mWSSiodRAjagM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft Manifest number: 0C16 Signing time: Sat 06 Dec 2025 14:00:47 +0000 Manifest this update: Sat 06 Dec 2025 14:00:47 +0000 Manifest next update: Sun 07 Dec 2025 14:00:47 +0000 Files and hashes: 1: h9tx9pGbDvmO78mWSSiodRAjagM.crl (hash: QGJZXRN6AP1eDEUmGL3ES+4DFVYfDccb7diFEy695pE=) 2: k9VkkHu7wqpz0IelVxE8bU-qY6o.roa (hash: vCMb7FvkUh1quiKigDU5pU3f6Rl+/OZ8cn/L/kTas88=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft rsync://rpki.ripe.net/repository/DEFAULT/h9tx9pGbDvmO78mWSSiodRAjagM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:f7:16:fa:c5:02:32:78:73:1a:51:62:bf:68:91:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87db71f6919b0ef98eefc9964928a87510236a03 Validity Not Before: Dec 6 14:00:47 2025 GMT Not After : Dec 7 14:00:47 2025 GMT Subject: CN=de2e2c19675588ee5622369ee327a6eeafeb5a8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:7c:4c:15:42:92:b1:bc:0b:0e:d8:91:d8:a8: 7a:01:b8:48:0f:13:5c:40:95:62:0c:e2:04:92:40: ab:81:3c:47:42:fb:c7:58:58:9e:fd:de:c1:90:76: c2:48:11:a9:66:59:bf:64:22:c5:89:28:04:4d:78: 1b:f5:8a:de:7b:23:17:ab:1d:04:56:e4:dd:49:f7: 4f:0a:05:b4:3d:30:a8:2a:95:95:75:7e:32:ea:56: e9:63:87:e6:5a:ee:7d:a8:4a:02:3d:f6:1d:38:1b: 50:9e:55:a5:f1:01:53:f5:f6:df:15:a9:02:4e:1a: a5:b4:0e:c4:41:a6:6c:fb:06:b6:6d:0b:de:88:8f: 70:dc:a5:1b:1a:d2:79:6a:c4:b6:d4:e7:a2:56:f0: e8:18:51:fe:07:9d:de:b4:6b:d2:92:d0:8b:1c:b5: cf:a7:24:1e:a6:bf:a8:b6:80:45:09:ee:70:91:4d: 63:23:e2:f5:83:44:b5:fd:5d:36:6d:e3:29:0d:ea: d4:42:68:58:35:59:0e:c2:1d:89:a5:c3:34:08:78: f1:1c:cf:77:fb:2f:09:6b:fd:de:f5:a5:b8:1a:c1: 52:a7:88:76:3e:dd:b1:1c:67:2d:43:b4:81:2a:b4: 60:fe:2d:ce:da:de:0b:d6:5c:24:c6:7a:4e:05:34: 93:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:2E:2C:19:67:55:88:EE:56:22:36:9E:E3:27:A6:EE:AF:EB:5A:8C X509v3 Authority Key Identifier: keyid:87:DB:71:F6:91:9B:0E:F9:8E:EF:C9:96:49:28:A8:75:10:23:6A:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h9tx9pGbDvmO78mWSSiodRAjagM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 60:40:a4:d5:34:31:44:89:48:bb:4a:3d:32:08:18:1a:dd:d4: 7c:f0:a3:56:d6:d7:23:8e:69:59:ad:0f:b7:24:71:0a:59:c5: 8c:c7:da:f8:7f:b0:44:4e:fb:92:f3:33:a5:57:05:45:94:02: c8:f0:63:e7:8a:25:1c:af:49:31:43:6a:f5:66:40:30:8f:f5: 71:4e:d6:f7:f7:e3:8d:f4:bc:03:e5:5d:b6:95:bc:fd:cf:33: 0b:fd:b9:87:f7:12:17:db:f9:66:69:cb:bf:a7:1d:e6:b4:d3: 4d:e1:8c:91:d6:a5:b7:e5:fa:93:4c:8c:fe:9a:60:e9:18:10: 30:9f:5a:24:dd:4e:d5:a5:6c:66:2b:ec:ba:07:de:cb:0f:2d: 90:04:85:fa:2c:6c:1f:b5:dd:bf:e2:22:41:6a:85:36:a4:e4: 95:8e:1a:50:6d:47:d4:82:62:f4:67:a7:31:b7:bb:04:23:80: bd:70:8e:ab:db:52:0b:d9:57:b8:a8:8f:7e:eb:ce:cf:55:5e: da:9c:5a:8b:4e:8a:f7:4a:b2:e1:49:55:5e:5c:7a:54:96:39: 16:dc:34:04:0b:78:96:5e:17:0c:4a:bf:50:81:a0:6b:f2:2f: 5b:63:87:98:f6:d3:bb:4e:5a:fd:92:35:e3:38:24:b7:5e:dd: 18:54:b2:3e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrz9xb6xQIyeHMaUWK/aJENMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3ZGI3MWY2OTE5YjBlZjk4ZWVmYzk5NjQ5MjhhODc1MTAy MzZhMDMwHhcNMjUxMjA2MTQwMDQ3WhcNMjUxMjA3MTQwMDQ3WjAzMTEwLwYDVQQD EyhkZTJlMmMxOTY3NTU4OGVlNTYyMjM2OWVlMzI3YTZlZWFmZWI1YThjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqHxMFUKSsbwLDtiR2Kh6AbhIDxNc QJViDOIEkkCrgTxHQvvHWFie/d7BkHbCSBGpZlm/ZCLFiSgETXgb9YreeyMXqx0E VuTdSfdPCgW0PTCoKpWVdX4y6lbpY4fmWu59qEoCPfYdOBtQnlWl8QFT9fbfFakC ThqltA7EQaZs+wa2bQveiI9w3KUbGtJ5asS21OeiVvDoGFH+B53etGvSktCLHLXP pyQepr+otoBFCe5wkU1jI+L1g0S1/V02beMpDerUQmhYNVkOwh2JpcM0CHjxHM93 +y8Ja/3e9aW4GsFSp4h2Pt2xHGctQ7SBKrRg/i3O2t4L1lwkxnpOBTSTDQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN4uLBlnVYjuViI2nuMnpu6v61qMMB8GA1UdIwQY MBaAFIfbcfaRmw75ju/JlkkoqHUQI2oDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaDl0eDlwR2JEdm1PNzhtV1NTaW9kUkFqYWdNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi9lZjYyNzctNzBiNS00MzQ4LWE1ODIt OTA0YTA4MDMxYTlmLzEvaDl0eDlwR2JEdm1PNzhtV1NTaW9kUkFqYWdNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi9lZjYyNzctNzBiNS00MzQ4LWE1ODItOTA0YTA4MDMxYTlm LzEvaDl0eDlwR2JEdm1PNzhtV1NTaW9kUkFqYWdNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYECk1TQx RIlIu0o9MggYGt3UfPCjVtbXI45pWa0PtyRxClnFjMfa+H+wRE77kvMzpVcFRZQC yPBj54olHK9JMUNq9WZAMI/1cU7W9/fjjfS8A+VdtpW8/c8zC/25h/cSF9v5ZmnL v6cd5rTTTeGMkdalt+X6k0yM/ppg6RgQMJ9aJN1O1aVsZivsugfeyw8tkASF+ixs H7Xdv+IiQWqFNqTklY4aUG1H1IJi9GenMbe7BCOAvXCOq9tSC9lXuKiPfuvOz1Ve 2pxai06K90qy4UlVXlx6VJY5Ftw0BAt4ll4XDEq/UIGga/IvW2OHmPbTu05a/ZI1 4zgkt17dGFSyPg== -----END CERTIFICATE-----Generated at Sat Dec 6 20:04:13 2025 by rpki-client