This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft File: hnWNin7SGnQXLM7sM4xk02sDeNQ.mft (raw, json) Hash identifier: kjLl3LA2oQbtwPetSRynfYQaqReJ91CWEceRuDeQNT0= Subject key identifier: C6:EC:AC:E2:1C:16:92:3E:F7:35:59:72:08:CE:01:23:68:01:72:F8 Authority key identifier: 86:75:8D:8A:7E:D2:1A:74:17:2C:CE:EC:33:8C:64:D3:6B:03:78:D4 Certificate issuer: /CN=86758d8a7ed21a74172cceec338c64d36b0378d4 Certificate serial: 019B3EA3BDCC092D1A792075858D275D058F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hnWNin7SGnQXLM7sM4xk02sDeNQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft Manifest number: 05F1 Signing time: Sun 21 Dec 2025 02:01:16 +0000 Manifest this update: Sun 21 Dec 2025 02:01:16 +0000 Manifest next update: Mon 22 Dec 2025 02:01:16 +0000 Files and hashes: 1: Tmqal5XUVoUE8c77AFlzaqU97c0.roa (hash: r3d2ZcS64ApbYh564RwP4TPidKg35TEhpwQ3BNXhcQw=) 2: hnWNin7SGnQXLM7sM4xk02sDeNQ.crl (hash: y6mzQWTtE0MR573o9it4pmmQXjF4S9Mn2bgGtOcliZc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.crl rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft rsync://rpki.ripe.net/repository/DEFAULT/hnWNin7SGnQXLM7sM4xk02sDeNQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3e:a3:bd:cc:09:2d:1a:79:20:75:85:8d:27:5d:05:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86758d8a7ed21a74172cceec338c64d36b0378d4 Validity Not Before: Dec 21 02:01:16 2025 GMT Not After : Dec 22 02:01:16 2025 GMT Subject: CN=c6ecace21c16923ef735597208ce0123680172f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:25:5e:54:b0:70:7a:dd:ed:f1:96:a8:c0:05: cb:dc:84:d1:54:5d:f3:07:46:3c:2e:a4:c5:72:36: 8d:28:bd:e5:91:89:c3:b8:ca:24:1d:2b:35:9f:49: 36:99:1d:fa:ad:c5:39:57:54:70:1d:1b:da:0c:5d: df:45:3b:30:61:35:db:05:5c:c6:ea:d9:ec:ed:95: b9:eb:23:51:9f:f4:4d:d4:99:00:37:a4:85:a2:e0: c5:6f:2b:44:eb:37:8e:e8:a5:ef:18:da:c8:95:01: 5c:56:76:8f:f7:b6:ef:ad:65:c3:ad:96:72:69:cf: b9:76:bd:97:1f:80:89:c1:90:93:ec:86:0d:90:40: c4:2c:5e:c8:29:71:33:01:47:99:7e:60:3b:59:b1: af:88:f8:d2:79:35:2e:73:70:58:52:e0:63:df:b8: 5a:f7:b2:79:31:55:c2:eb:e6:a7:f1:a2:1d:5a:ed: 42:35:a4:57:23:d1:fa:c4:2f:7d:f6:3d:c4:1a:c8: 0a:98:6b:3c:64:b9:a1:3b:cf:92:7c:c4:3d:ee:d1: f8:99:3a:f9:99:5c:05:7c:fe:6a:ea:0c:36:b2:67: b9:15:0d:a1:fd:9a:cb:d3:9e:ed:54:0c:f3:ab:6e: 28:49:ff:51:a1:58:3e:bd:2a:1e:b8:88:e6:51:e3: c0:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:EC:AC:E2:1C:16:92:3E:F7:35:59:72:08:CE:01:23:68:01:72:F8 X509v3 Authority Key Identifier: keyid:86:75:8D:8A:7E:D2:1A:74:17:2C:CE:EC:33:8C:64:D3:6B:03:78:D4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hnWNin7SGnQXLM7sM4xk02sDeNQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:aa:30:7c:07:08:29:a6:dd:cf:17:5f:9c:f5:94:07:4b:84: f2:2d:33:6a:c6:87:79:da:3a:f1:fb:1a:4b:48:57:fb:a2:47: 1b:59:09:4a:4a:d8:f4:33:46:4b:f3:e0:b5:de:f5:51:c5:6e: 8a:93:d9:f0:ce:84:08:de:61:7b:15:86:49:d9:48:49:7c:d5: 10:60:21:ef:20:17:1e:e8:9b:29:17:4a:1d:58:45:23:89:6b: 8f:1e:a3:e6:e0:14:ca:ca:3c:d0:f3:04:6e:58:3f:e4:b7:d9: f3:ed:a6:a3:00:a6:4c:20:30:9d:27:49:a9:a8:44:3b:65:9b: 2d:70:3a:a5:a3:12:17:d0:7e:85:de:1a:2f:7c:71:67:48:f2: d7:8d:3d:ad:b4:7a:ad:bc:36:6c:b0:f0:08:7c:33:a6:ac:e6: c0:8b:23:ac:6f:74:95:7c:bd:46:79:96:74:d7:4c:88:5e:29: e7:a0:ed:9d:24:59:5b:5b:df:07:ed:1f:1e:0e:90:37:f3:df: 61:b1:26:6e:a4:63:af:3b:db:d0:1e:c9:b1:35:23:fa:f9:85: 8e:06:a1:10:74:bc:52:37:a1:7e:d8:89:f5:f8:73:9a:07:d6: 48:0f:41:36:00:3a:f0:ea:b5:20:a1:bb:73:e3:31:f6:34:36: b6:78:d7:4e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs+o73MCS0aeSB1hY0nXQWPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2NzU4ZDhhN2VkMjFhNzQxNzJjY2VlYzMzOGM2NGQzNmIw Mzc4ZDQwHhcNMjUxMjIxMDIwMTE2WhcNMjUxMjIyMDIwMTE2WjAzMTEwLwYDVQQD EyhjNmVjYWNlMjFjMTY5MjNlZjczNTU5NzIwOGNlMDEyMzY4MDE3MmY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtSVeVLBwet3t8ZaowAXL3ITRVF3z B0Y8LqTFcjaNKL3lkYnDuMokHSs1n0k2mR36rcU5V1RwHRvaDF3fRTswYTXbBVzG 6tns7ZW56yNRn/RN1JkAN6SFouDFbytE6zeO6KXvGNrIlQFcVnaP97bvrWXDrZZy ac+5dr2XH4CJwZCT7IYNkEDELF7IKXEzAUeZfmA7WbGviPjSeTUuc3BYUuBj37ha 97J5MVXC6+an8aIdWu1CNaRXI9H6xC999j3EGsgKmGs8ZLmhO8+SfMQ97tH4mTr5 mVwFfP5q6gw2sme5FQ2h/ZrL057tVAzzq24oSf9RoVg+vSoeuIjmUePAfQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMbsrOIcFpI+9zVZcgjOASNoAXL4MB8GA1UdIwQY MBaAFIZ1jYp+0hp0FyzO7DOMZNNrA3jUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaG5XTmluN1NHblFYTE03c000eGswMnNEZU5RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi9lNTVhOWItMmZhMC00YWY0LTkwZGQt Y2RhY2I4NDY3MTg3LzEvaG5XTmluN1NHblFYTE03c000eGswMnNEZU5RLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYi9lNTVhOWItMmZhMC00YWY0LTkwZGQtY2RhY2I4NDY3MTg3 LzEvaG5XTmluN1NHblFYTE03c000eGswMnNEZU5RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWKowfAcI KabdzxdfnPWUB0uE8i0zasaHedo68fsaS0hX+6JHG1kJSkrY9DNGS/Pgtd71UcVu ipPZ8M6ECN5hexWGSdlISXzVEGAh7yAXHuibKRdKHVhFI4lrjx6j5uAUyso80PME blg/5LfZ8+2mowCmTCAwnSdJqahEO2WbLXA6paMSF9B+hd4aL3xxZ0jy1409rbR6 rbw2bLDwCHwzpqzmwIsjrG90lXy9RnmWdNdMiF4p56DtnSRZW1vfB+0fHg6QN/Pf YbEmbqRjrzvb0B7JsTUj+vmFjgahEHS8UjehftiJ9fhzmgfWSA9BNgA68Oq1IKG7 c+Mx9jQ2tnjXTg== -----END CERTIFICATE-----Generated at Sun Dec 21 10:32:40 2025 by rpki-client