This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.mft File: hiGwt9-gp4iPde_yDzIUWgs_DdU.mft (raw, json) Hash identifier: Tg33PEdAnEIzJ6JUEilYUd58pYCdY5gQfwr+3vBOh2M= Subject key identifier: 19:46:97:F1:DB:3F:62:73:40:17:54:BD:9A:5D:53:4A:3F:39:21:46 Authority key identifier: 86:21:B0:B7:DF:A0:A7:88:8F:75:EF:F2:0F:32:14:5A:0B:3F:0D:D5 Certificate issuer: /CN=8621b0b7dfa0a7888f75eff20f32145a0b3f0dd5 Certificate serial: 019AF2771C243B173F87067C25BBA33637B8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hiGwt9-gp4iPde_yDzIUWgs_DdU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.mft Manifest number: 1762 Signing time: Sat 06 Dec 2025 07:01:23 +0000 Manifest this update: Sat 06 Dec 2025 07:01:23 +0000 Manifest next update: Sun 07 Dec 2025 07:01:23 +0000 Files and hashes: 1: E7w56iH6n62Qtx76-l21Wicx0tI.roa (hash: mYbpZ2jovxydBfbzCm7J8lBecdgedCJGDSbz9EY1aRY=) 2: hiGwt9-gp4iPde_yDzIUWgs_DdU.crl (hash: unbY1uIZgsQZc/Ku3+sOLiVWCElR+0r5Z5HanF0KH5o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.crl rsync://rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.mft rsync://rpki.ripe.net/repository/DEFAULT/hiGwt9-gp4iPde_yDzIUWgs_DdU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:77:1c:24:3b:17:3f:87:06:7c:25:bb:a3:36:37:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8621b0b7dfa0a7888f75eff20f32145a0b3f0dd5 Validity Not Before: Dec 6 07:01:23 2025 GMT Not After : Dec 7 07:01:23 2025 GMT Subject: CN=194697f1db3f6273401754bd9a5d534a3f392146 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:a6:c4:a6:4b:4d:ae:c2:9b:49:42:35:1e:a5: e5:59:f1:77:af:a9:bd:12:4d:b7:dc:bd:37:7b:5f: 79:e4:0c:87:2f:26:e7:5c:83:93:cf:8b:d6:7d:44: 89:c1:e2:c6:f3:a0:7f:2e:e3:a2:79:e3:04:f5:49: ec:ac:a2:13:ab:b0:6c:89:3f:a4:7f:3d:d3:17:0b: c9:71:5d:a1:74:5d:e0:ae:c6:26:b5:de:cb:a4:ef: e7:97:77:36:26:7f:de:bd:33:5a:12:fc:6b:f3:18: ca:76:a6:a6:3e:f1:9e:f4:52:4d:ad:4b:1b:5e:56: 54:7a:3b:01:3c:4f:ed:6b:df:8a:ed:e6:1e:28:f3: 03:2d:78:2a:9d:7b:2e:22:73:0e:ae:ec:12:31:b5: 89:a7:cf:5b:a8:ce:85:7c:03:54:a5:4b:81:60:e4: da:0c:83:76:a0:1d:b4:43:81:48:38:71:79:50:88: 87:6f:14:aa:dd:be:7b:ab:88:dd:97:4d:d0:c8:78: a8:77:68:f1:b4:1f:5a:c5:e2:98:a4:7b:f5:7d:5e: 68:86:9a:9c:59:d7:4b:74:6a:c9:5d:55:28:f9:bd: 03:ea:e3:96:71:47:23:65:ba:04:7a:83:14:3c:29: c5:d9:96:95:ed:28:ea:49:3f:8c:24:52:dc:38:11: d4:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:46:97:F1:DB:3F:62:73:40:17:54:BD:9A:5D:53:4A:3F:39:21:46 X509v3 Authority Key Identifier: keyid:86:21:B0:B7:DF:A0:A7:88:8F:75:EF:F2:0F:32:14:5A:0B:3F:0D:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hiGwt9-gp4iPde_yDzIUWgs_DdU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 13:7b:f4:e5:e5:3d:d9:5c:10:b9:c6:ea:46:79:72:15:55:ec: 9a:3c:d0:d9:af:6c:c6:26:09:d0:7a:4d:ec:09:a6:c2:28:6c: 64:6c:18:0e:80:73:4b:a4:45:47:46:99:fe:db:ff:9a:58:2d: 25:97:5c:12:b0:0d:e2:3c:43:c1:38:36:f3:e5:40:64:0b:4c: a3:67:71:61:00:1a:fa:38:13:29:45:6d:8b:c6:16:c5:b0:59: 2d:b2:f1:ad:42:d7:ad:f1:fb:99:25:a8:0a:fb:97:66:37:05: e4:4f:6f:48:b5:a4:21:08:9b:bb:42:4d:97:0e:e5:7e:24:ce: f8:2a:bd:63:0d:90:fa:b8:3a:cb:98:7e:dd:91:b2:1c:c0:35: 9b:d6:5b:62:20:38:36:6d:30:89:34:25:8a:c5:d4:d0:4c:79: 7f:3a:9c:7b:17:13:b8:be:34:aa:d2:a8:d3:18:bc:b5:b6:52: 0a:f0:da:59:a5:70:c5:ac:03:17:e4:ce:81:8a:66:e3:e6:5b: b9:c2:1f:48:e0:aa:dc:b1:0d:c9:f9:90:b1:37:1d:5b:63:f8: e7:cf:64:48:2d:38:c9:59:cd:c3:b4:c5:ff:3e:00:3e:1f:4c: 25:00:6d:03:12:00:4a:34:7b:1c:b5:8e:fe:39:68:bc:4d:3a: 3f:9a:17:3e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydxwkOxc/hwZ8JbujNje4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2MjFiMGI3ZGZhMGE3ODg4Zjc1ZWZmMjBmMzIxNDVhMGIz ZjBkZDUwHhcNMjUxMjA2MDcwMTIzWhcNMjUxMjA3MDcwMTIzWjAzMTEwLwYDVQQD EygxOTQ2OTdmMWRiM2Y2MjczNDAxNzU0YmQ5YTVkNTM0YTNmMzkyMTQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo6bEpktNrsKbSUI1HqXlWfF3r6m9 Ek233L03e1955AyHLybnXIOTz4vWfUSJweLG86B/LuOieeME9UnsrKITq7BsiT+k fz3TFwvJcV2hdF3grsYmtd7LpO/nl3c2Jn/evTNaEvxr8xjKdqamPvGe9FJNrUsb XlZUejsBPE/ta9+K7eYeKPMDLXgqnXsuInMOruwSMbWJp89bqM6FfANUpUuBYOTa DIN2oB20Q4FIOHF5UIiHbxSq3b57q4jdl03QyHiod2jxtB9axeKYpHv1fV5ohpqc WddLdGrJXVUo+b0D6uOWcUcjZboEeoMUPCnF2ZaV7SjqST+MJFLcOBHUWwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBlGl/HbP2JzQBdUvZpdU0o/OSFGMB8GA1UdIwQY MBaAFIYhsLffoKeIj3Xv8g8yFFoLPw3VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGlHd3Q5LWdwNGlQZGVfeUR6SVVXZ3NfRGRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZi9iYTA1NzktYTFlNy00YjI0LTgwMzMt NmIzZTBhYTJjYmIyLzEvaGlHd3Q5LWdwNGlQZGVfeUR6SVVXZ3NfRGRVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZi9iYTA1NzktYTFlNy00YjI0LTgwMzMtNmIzZTBhYTJjYmIy LzEvaGlHd3Q5LWdwNGlQZGVfeUR6SVVXZ3NfRGRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE3v05eU9 2VwQucbqRnlyFVXsmjzQ2a9sxiYJ0HpN7AmmwihsZGwYDoBzS6RFR0aZ/tv/mlgt JZdcErAN4jxDwTg28+VAZAtMo2dxYQAa+jgTKUVti8YWxbBZLbLxrULXrfH7mSWo CvuXZjcF5E9vSLWkIQibu0JNlw7lfiTO+Cq9Yw2Q+rg6y5h+3ZGyHMA1m9ZbYiA4 Nm0wiTQlisXU0Ex5fzqcexcTuL40qtKo0xi8tbZSCvDaWaVwxawDF+TOgYpm4+Zb ucIfSOCq3LENyfmQsTcdW2P4589kSC04yVnNw7TF/z4APh9MJQBtAxIASjR7HLWO /jlovE06P5oXPg== -----END CERTIFICATE-----Generated at Sat Dec 6 10:36:07 2025 by rpki-client