This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.mft File: hiTz9mHyS-X-9kHcci5c9ayHOJ4.mft (raw, json) Hash identifier: UVfMYhMQqUVFq0ssIwt3rhBmb43kqQWp0/i3sQWkHOU= Subject key identifier: 32:BC:FD:90:84:F5:0B:E3:3A:1F:25:F7:74:5C:53:10:85:87:40:F0 Authority key identifier: 86:24:F3:F6:61:F2:4B:E5:FE:F6:41:DC:72:2E:5C:F5:AC:87:38:9E Certificate issuer: /CN=8624f3f661f24be5fef641dc722e5cf5ac87389e Certificate serial: 019AF5AF23AC709143BBDD5194ECA59FE0DB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hiTz9mHyS-X-9kHcci5c9ayHOJ4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.mft Manifest number: 0DA6 Signing time: Sat 06 Dec 2025 22:01:27 +0000 Manifest this update: Sat 06 Dec 2025 22:01:27 +0000 Manifest next update: Sun 07 Dec 2025 22:01:27 +0000 Files and hashes: 1: MWwCkyjKodNxojuXE4ToQXLtm5w.roa (hash: Ak0owLXzMtwfRek9KqA/lWNxi61mLQqKV5qpbUxSWP4=) 2: NLcJ1zHiWemoNGCQqxBLJZM1epY.roa (hash: sN7g+z3kFVXgkKd1egNCxj+JRztRoGDD2QPyWEFToRI=) 3: hiTz9mHyS-X-9kHcci5c9ayHOJ4.crl (hash: xwWX6KPnJ9lgG9wWMpKSo0q4ypr1vRDI9s4UmyLTMJk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.crl rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.mft rsync://rpki.ripe.net/repository/DEFAULT/hiTz9mHyS-X-9kHcci5c9ayHOJ4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:af:23:ac:70:91:43:bb:dd:51:94:ec:a5:9f:e0:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8624f3f661f24be5fef641dc722e5cf5ac87389e Validity Not Before: Dec 6 22:01:27 2025 GMT Not After : Dec 7 22:01:27 2025 GMT Subject: CN=32bcfd9084f50be33a1f25f7745c5310858740f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ac:f8:1d:c9:78:90:72:78:98:3d:b1:02:38: 81:fa:ff:5e:5a:29:bb:ab:31:e5:e6:11:74:80:dd: bf:7d:64:62:75:b1:11:e0:6e:da:1a:ce:c7:18:08: d8:b1:6c:e5:de:89:b3:77:cc:45:ea:a0:5b:93:d0: e5:d0:3d:7d:ae:fd:43:62:02:87:c6:2b:03:93:e6: 6a:a8:6a:c3:61:a7:df:5e:18:fa:93:17:75:af:98: 2b:f1:e7:6c:98:91:46:c9:45:fb:48:68:1c:20:a3: 74:23:97:c3:77:7c:14:f7:b2:1a:6e:f5:d7:ab:06: c5:6b:85:95:01:fe:15:28:15:66:0b:89:3b:5a:46: 4e:bb:33:55:75:94:c0:3b:c9:01:b1:32:4b:11:42: 0e:7b:d4:75:8d:5a:25:b5:8d:43:6a:25:68:6c:64: e6:76:2b:76:cd:70:0b:20:b7:e9:e4:3a:d8:bb:e5: 96:22:ae:ac:2e:bc:e7:e1:9a:03:bc:ba:86:2f:5f: b4:2a:28:45:3b:85:05:b3:86:60:17:09:d3:c2:49: b4:a7:33:e8:ac:27:ce:c3:c4:28:46:50:30:6f:f4: 47:0f:79:fa:e5:1f:18:5f:c3:41:98:87:54:70:1e: 73:3b:65:f5:5d:ef:08:cc:bf:eb:aa:37:22:c4:cd: e8:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:BC:FD:90:84:F5:0B:E3:3A:1F:25:F7:74:5C:53:10:85:87:40:F0 X509v3 Authority Key Identifier: keyid:86:24:F3:F6:61:F2:4B:E5:FE:F6:41:DC:72:2E:5C:F5:AC:87:38:9E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hiTz9mHyS-X-9kHcci5c9ayHOJ4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 43:c4:27:18:7e:ad:4a:0f:11:4f:f3:48:74:dc:85:c3:81:e8: 9a:59:59:ac:78:38:73:a7:8a:56:44:97:f6:9a:47:8e:c3:bb: 99:01:fc:77:16:aa:bb:e5:b6:25:88:c6:df:21:3a:92:6c:a5: b8:a8:58:fc:81:b3:80:f4:f3:97:ee:f6:75:4b:79:e1:d4:70: 65:e7:ca:0d:48:87:41:13:6a:e4:5b:cc:9c:d5:ba:7c:32:97: 98:0b:3a:5c:5e:cf:d9:ff:2a:47:3a:d8:14:3a:41:49:0f:42: ef:d9:49:99:38:14:31:af:c2:3e:74:5e:2f:1e:05:35:2b:81: b6:ca:8f:55:6d:e5:45:1f:8e:25:5c:67:88:58:f7:66:4d:2c: e6:77:ca:13:69:90:71:6a:fd:85:ca:5d:db:da:1d:ab:00:a6: 9b:e8:84:77:c8:52:58:df:1e:8a:fd:c1:52:c8:ef:6a:07:9e: de:43:00:77:a0:97:69:58:0b:13:ba:42:69:5f:5e:ed:42:c6: af:1b:a2:cb:34:ad:69:27:98:c9:5b:8d:30:6f:3a:f7:5f:d3: 85:8f:70:fa:8e:e5:e8:1c:d0:ed:4a:b1:00:7d:85:03:fe:67: 2a:87:ff:5e:72:16:47:24:bc:df:c3:47:12:bf:a9:cd:56:72: 19:36:c2:71 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1ryOscJFDu91RlOyln+DbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2MjRmM2Y2NjFmMjRiZTVmZWY2NDFkYzcyMmU1Y2Y1YWM4 NzM4OWUwHhcNMjUxMjA2MjIwMTI3WhcNMjUxMjA3MjIwMTI3WjAzMTEwLwYDVQQD EygzMmJjZmQ5MDg0ZjUwYmUzM2ExZjI1Zjc3NDVjNTMxMDg1ODc0MGYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqqz4Hcl4kHJ4mD2xAjiB+v9eWim7 qzHl5hF0gN2/fWRidbER4G7aGs7HGAjYsWzl3omzd8xF6qBbk9Dl0D19rv1DYgKH xisDk+ZqqGrDYaffXhj6kxd1r5gr8edsmJFGyUX7SGgcIKN0I5fDd3wU97IabvXX qwbFa4WVAf4VKBVmC4k7WkZOuzNVdZTAO8kBsTJLEUIOe9R1jVoltY1DaiVobGTm dit2zXALILfp5DrYu+WWIq6sLrzn4ZoDvLqGL1+0KihFO4UFs4ZgFwnTwkm0pzPo rCfOw8QoRlAwb/RHD3n65R8YX8NBmIdUcB5zO2X1Xe8IzL/rqjcixM3oDwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDK8/ZCE9QvjOh8l93RcUxCFh0DwMB8GA1UdIwQY MBaAFIYk8/Zh8kvl/vZB3HIuXPWshzieMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGlUejltSHlTLVgtOWtIY2NpNWM5YXlIT0o0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi8yZDk1OGMtODg3OC00MzIzLWJlZGMt MjVlNTM1YzhhNWI5LzEvaGlUejltSHlTLVgtOWtIY2NpNWM5YXlIT0o0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMi8yZDk1OGMtODg3OC00MzIzLWJlZGMtMjVlNTM1YzhhNWI5 LzEvaGlUejltSHlTLVgtOWtIY2NpNWM5YXlIT0o0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQ8QnGH6t Sg8RT/NIdNyFw4HomllZrHg4c6eKVkSX9ppHjsO7mQH8dxaqu+W2JYjG3yE6kmyl uKhY/IGzgPTzl+72dUt54dRwZefKDUiHQRNq5FvMnNW6fDKXmAs6XF7P2f8qRzrY FDpBSQ9C79lJmTgUMa/CPnReLx4FNSuBtsqPVW3lRR+OJVxniFj3Zk0s5nfKE2mQ cWr9hcpd29odqwCmm+iEd8hSWN8eiv3BUsjvagee3kMAd6CXaVgLE7pCaV9e7ULG rxuiyzStaSeYyVuNMG8691/ThY9w+o7l6BzQ7UqxAH2FA/5nKof/XnIWRyS838NH Er+pzVZyGTbCcQ== -----END CERTIFICATE-----Generated at Sun Dec 7 04:13:55 2025 by rpki-client