This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/HjbeJ5dHJ6oARrPpyNBiRnRUElU.mft File: HjbeJ5dHJ6oARrPpyNBiRnRUElU.mft (raw, json) Hash identifier: 89ZWOLhKJdoYuujAyBTVvT7blLIaD/yDbp2FLoYGbZM= Subject key identifier: 55:84:F8:6C:F4:C2:B5:72:40:11:41:BB:49:EB:60:56:E1:6E:60:69 Authority key identifier: 1E:36:DE:27:97:47:27:AA:00:46:B3:E9:C8:D0:62:46:74:54:12:55 Certificate issuer: /CN=1e36de27974727aa0046b3e9c8d0624674541255 Certificate serial: 019AF277019490C7876BA83FD42C748F70DF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HjbeJ5dHJ6oARrPpyNBiRnRUElU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/HjbeJ5dHJ6oARrPpyNBiRnRUElU.mft Manifest number: 0D0E Signing time: Sat 06 Dec 2025 07:01:16 +0000 Manifest this update: Sat 06 Dec 2025 07:01:16 +0000 Manifest next update: Sun 07 Dec 2025 07:01:16 +0000 Files and hashes: 1: 89ZdTmp7S2NunnuoGSf_2vtgPY8.roa (hash: bPa9rSCPFw03d28VXPa3N71Ifao0FpVDusG0bNmLxwE=) 2: HjbeJ5dHJ6oARrPpyNBiRnRUElU.crl (hash: nnNgluq2619yXrOKVyvuX30KrUoI+6frADuyipcEXt4=) 3: kc5iSTCS2Wj8DpgYXFD3Z8kI0-w.roa (hash: uGP+3hnsQtTfTdEoExGqurh/AYLhmRguK0+ycdKSTRo=) 4: ozQ0B3nPhW9yGj6eBSj3bv5_jKQ.roa (hash: 52z0loKl64IpfsA33HSHXJF3VKeUhqS7Sku5ZE137X0=) 5: rZWoVR8go-ETzcAh50MLSM8Nmkw.roa (hash: cgavxAlOshWtjoy57HjDWJFVrT3Fp0YJu3pSKWnrDaQ=) 6: sGh4leOiqeUbD9ETXq4INosKjgA.roa (hash: zQNus8r96YCQp+l8cgOvwchxCyXBB9NQl2BAMnnD1SE=) 7: uEJBzVK3M-XYQB_W3073suGkObo.roa (hash: vdpPJtCVEUnTylhlR6ZitULgZ+bB4+/4WOwiBodz65k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/HjbeJ5dHJ6oARrPpyNBiRnRUElU.crl rsync://rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/HjbeJ5dHJ6oARrPpyNBiRnRUElU.mft rsync://rpki.ripe.net/repository/DEFAULT/HjbeJ5dHJ6oARrPpyNBiRnRUElU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:77:01:94:90:c7:87:6b:a8:3f:d4:2c:74:8f:70:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1e36de27974727aa0046b3e9c8d0624674541255 Validity Not Before: Dec 6 07:01:16 2025 GMT Not After : Dec 7 07:01:16 2025 GMT Subject: CN=5584f86cf4c2b572401141bb49eb6056e16e6069 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d0:6e:d8:60:e6:d7:df:10:bf:f7:09:fe:ac: 34:d7:40:f6:e3:c5:76:f2:26:3d:e8:06:cd:43:80: f0:5b:87:29:47:aa:ae:48:c1:93:31:77:d0:8c:37: 1f:aa:18:59:7b:05:1f:3d:0e:17:86:3c:be:f3:3d: 12:f7:cb:96:59:09:77:9f:9c:e5:82:c8:ba:37:7a: b3:ef:ff:17:77:11:c2:c4:d5:81:5b:02:4e:3e:71: 37:ec:33:24:19:bb:5b:a4:d0:ed:f0:40:1e:e8:31: 58:d9:b3:94:fa:0d:93:a2:42:b9:94:09:d8:9b:8a: ff:d9:1a:f4:b0:28:86:62:e3:75:3c:a6:85:ab:a3: 97:98:d9:68:1e:76:fe:0b:58:ca:3f:b6:d3:e9:a4: 69:fa:fe:d5:32:0e:b6:2c:b5:48:7c:41:60:22:8d: 44:4a:b3:56:6d:f3:b6:cb:0f:ed:ad:b3:55:5c:ed: 9a:cc:e7:3e:29:35:20:64:bc:56:42:71:93:5c:42: d1:57:93:53:ba:c1:47:80:75:f3:ca:e1:bf:49:28: 6c:92:38:3c:f4:9a:2c:f1:c9:17:e2:e6:55:83:65: 49:3b:d6:d5:45:a1:79:ce:2c:48:56:ef:df:77:71: 7b:af:be:cc:7a:b8:49:cd:fe:35:d2:63:af:e8:12: 4a:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:84:F8:6C:F4:C2:B5:72:40:11:41:BB:49:EB:60:56:E1:6E:60:69 X509v3 Authority Key Identifier: keyid:1E:36:DE:27:97:47:27:AA:00:46:B3:E9:C8:D0:62:46:74:54:12:55 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HjbeJ5dHJ6oARrPpyNBiRnRUElU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/HjbeJ5dHJ6oARrPpyNBiRnRUElU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/HjbeJ5dHJ6oARrPpyNBiRnRUElU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 13:f1:cb:14:5f:66:05:3a:d2:32:21:14:ba:9f:47:ee:39:64: 3a:14:9d:c9:f9:bb:d0:e4:2c:90:7f:5e:00:f0:68:d9:03:2e: 85:55:51:3a:80:0e:d1:da:0d:ee:77:f0:8a:f3:c7:c5:95:78: 5c:b4:18:51:31:16:3d:d0:59:0d:01:c6:f3:7d:db:42:2f:0c: 69:aa:ae:5b:df:ef:ed:04:ee:38:c8:a6:ea:f7:2f:f3:37:6c: f0:c9:bf:3e:d2:ec:b8:6f:e5:c3:27:b7:95:83:b4:b8:82:6a: e4:77:45:f0:5d:4b:44:32:dd:1b:aa:1b:5b:09:85:5b:50:ba: d8:5b:89:53:79:5e:86:a7:86:ff:d1:79:7b:d9:a8:a3:db:b9: ca:23:5e:3e:45:ee:bf:d1:b1:d6:f3:56:0d:1e:de:85:3a:48: 3e:ed:3b:ff:90:78:e9:9f:93:7b:a1:3f:28:32:78:d3:1d:e3: 5a:a3:2d:3c:4d:4f:34:00:da:79:59:6c:62:c9:84:d1:97:b4: 22:9c:3f:1c:44:5b:7d:fb:5e:a8:6c:e3:ea:c9:d1:23:ae:23: a6:5a:b0:d8:29:0a:b1:e1:89:c7:02:30:b1:ce:14:23:62:fe: bd:42:c2:57:7c:cb:a3:3f:66:9f:21:86:09:bc:c7:4c:de:db: 03:28:2f:f5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydwGUkMeHa6g/1Cx0j3DfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlMzZkZTI3OTc0NzI3YWEwMDQ2YjNlOWM4ZDA2MjQ2NzQ1 NDEyNTUwHhcNMjUxMjA2MDcwMTE2WhcNMjUxMjA3MDcwMTE2WjAzMTEwLwYDVQQD Eyg1NTg0Zjg2Y2Y0YzJiNTcyNDAxMTQxYmI0OWViNjA1NmUxNmU2MDY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArtBu2GDm198Qv/cJ/qw010D248V2 8iY96AbNQ4DwW4cpR6quSMGTMXfQjDcfqhhZewUfPQ4Xhjy+8z0S98uWWQl3n5zl gsi6N3qz7/8XdxHCxNWBWwJOPnE37DMkGbtbpNDt8EAe6DFY2bOU+g2TokK5lAnY m4r/2Rr0sCiGYuN1PKaFq6OXmNloHnb+C1jKP7bT6aRp+v7VMg62LLVIfEFgIo1E SrNWbfO2yw/trbNVXO2azOc+KTUgZLxWQnGTXELRV5NTusFHgHXzyuG/SShskjg8 9Jos8ckX4uZVg2VJO9bVRaF5zixIVu/fd3F7r77MerhJzf410mOv6BJKNwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFWE+Gz0wrVyQBFBu0nrYFbhbmBpMB8GA1UdIwQY MBaAFB423ieXRyeqAEaz6cjQYkZ0VBJVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSGpiZUo1ZEhKNm9BUnJQcHlOQmlSblJVRWxVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy81OWU4YzMtNjI2Yi00ZWNlLThlMzkt ZGY3OTNhOTQwYmFiLzEvSGpiZUo1ZEhKNm9BUnJQcHlOQmlSblJVRWxVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNy81OWU4YzMtNjI2Yi00ZWNlLThlMzktZGY3OTNhOTQwYmFi LzEvSGpiZUo1ZEhKNm9BUnJQcHlOQmlSblJVRWxVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE/HLFF9m BTrSMiEUup9H7jlkOhSdyfm70OQskH9eAPBo2QMuhVVROoAO0doN7nfwivPHxZV4 XLQYUTEWPdBZDQHG833bQi8MaaquW9/v7QTuOMim6vcv8zds8Mm/PtLsuG/lwye3 lYO0uIJq5HdF8F1LRDLdG6obWwmFW1C62FuJU3lehqeG/9F5e9moo9u5yiNePkXu v9Gx1vNWDR7ehTpIPu07/5B46Z+Te6E/KDJ40x3jWqMtPE1PNADaeVlsYsmE0Ze0 Ipw/HERbffteqGzj6snRI64jplqw2CkKseGJxwIwsc4UI2L+vULCV3zLoz9mnyGG CbzHTN7bAygv9Q== -----END CERTIFICATE-----Generated at Sat Dec 6 12:51:11 2025 by rpki-client