This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.mft File: hR1ONNTkhTnBcEUdTiYTiIf26SI.mft (raw, json) Hash identifier: mUfQkNedP2GRMUM79GW6ohrTUjoRPzWq4cAi8Ky7WQE= Subject key identifier: 67:FC:ED:DF:D4:15:0D:E3:CE:78:DC:9A:3E:17:A5:A7:6E:7A:D8:1E Authority key identifier: 85:1D:4E:34:D4:E4:85:39:C1:70:45:1D:4E:26:13:88:87:F6:E9:22 Certificate issuer: /CN=851d4e34d4e48539c170451d4e26138887f6e922 Certificate serial: 019AF19AD7D21B9E9899F4E7EE2A0A6058E1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hR1ONNTkhTnBcEUdTiYTiIf26SI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.mft Manifest number: 130D Signing time: Sat 06 Dec 2025 03:00:48 +0000 Manifest this update: Sat 06 Dec 2025 03:00:48 +0000 Manifest next update: Sun 07 Dec 2025 03:00:48 +0000 Files and hashes: 1: EgrdXaLN-vc8C2zZS8RN3DywvDo.roa (hash: hzm54PDUPW3onP/qtSLZRsQOvKv3wuQ4riGx7IRQcQA=) 2: hR1ONNTkhTnBcEUdTiYTiIf26SI.crl (hash: hccXUAY+w0oYJVechHFSW1a4PNZP89Po1qOxDQc+bHc=) 3: rAaiXMvO9i5snovqluPbyo_QCN0.roa (hash: pt3vDzVbNzSpy4PSZ8+XX3gpZBn6uEG/ZRILx9TbDQc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.mft rsync://rpki.ripe.net/repository/DEFAULT/hR1ONNTkhTnBcEUdTiYTiIf26SI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 03:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9a:d7:d2:1b:9e:98:99:f4:e7:ee:2a:0a:60:58:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=851d4e34d4e48539c170451d4e26138887f6e922 Validity Not Before: Dec 6 03:00:48 2025 GMT Not After : Dec 7 03:00:48 2025 GMT Subject: CN=67fceddfd4150de3ce78dc9a3e17a5a76e7ad81e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:fc:67:3b:28:cd:b7:a3:6a:de:e0:fc:83:55: de:3e:8e:06:b1:9c:b1:01:af:44:30:c8:f7:d3:8d: c2:3a:0e:98:68:e5:01:1e:65:f4:d6:80:e0:b0:75: a9:aa:29:03:b7:cd:e5:08:bf:61:70:3d:45:01:43: f4:3a:0c:13:6f:ab:d8:63:de:83:18:3d:24:54:c9: 2e:07:b5:0a:f2:11:4d:e8:a0:ff:9e:81:e8:60:34: 60:82:c7:42:d8:1d:78:e0:36:f0:69:e2:c8:91:62: 24:1e:bb:a7:79:02:23:7c:79:e5:4a:af:f5:ef:68: 77:be:38:d6:6a:37:2c:8e:c0:fb:74:1c:4f:6f:b5: 91:18:cd:47:1c:dc:8b:73:e3:0a:b4:35:bc:8d:b8: 21:9c:31:92:f4:9f:b7:40:5e:c8:2c:84:ff:de:7e: 5a:ea:6f:5f:50:21:1b:30:4e:e6:2d:a5:dc:a4:3f: 24:09:7f:91:7d:3a:04:bc:a6:3e:53:bb:79:ce:4e: 45:43:72:d5:82:40:0d:e6:e1:10:8b:4b:5f:40:02: 26:b4:84:ee:d8:cd:67:13:67:17:42:49:ef:9e:39: f9:8b:d8:0a:d8:09:fb:fd:e0:a3:3a:53:4e:f9:1d: 24:9b:92:60:03:2b:d9:bd:c0:db:35:5e:0d:76:2b: 64:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:FC:ED:DF:D4:15:0D:E3:CE:78:DC:9A:3E:17:A5:A7:6E:7A:D8:1E X509v3 Authority Key Identifier: keyid:85:1D:4E:34:D4:E4:85:39:C1:70:45:1D:4E:26:13:88:87:F6:E9:22 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hR1ONNTkhTnBcEUdTiYTiIf26SI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/bf1589-6adf-44b3-9746-81c4055148e0/1/hR1ONNTkhTnBcEUdTiYTiIf26SI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0d:2c:40:47:e2:10:1c:46:35:58:1d:4f:03:1c:77:ca:71:56: 64:50:a6:27:7f:3e:0e:a0:96:6d:35:7e:0e:98:f9:48:c6:78: 66:fa:68:36:54:ba:cc:1d:3a:26:84:2c:ca:b7:a2:9b:b0:9f: 7e:fb:65:e9:ad:6b:c5:e0:ad:79:5d:89:81:28:66:d7:0f:90: 5e:76:38:09:c5:80:8b:cc:ab:86:e4:8a:11:db:1b:b8:d4:68: 76:be:60:f6:73:4b:89:81:cf:ac:08:4c:ce:42:ed:7c:52:19: 1a:e0:06:e9:6a:6f:f3:a8:6b:7e:88:7b:75:0a:f6:78:fe:83: 67:3c:c5:a7:03:90:af:2e:4e:d5:70:b0:45:78:9e:ef:70:7b: 9a:63:89:e1:b0:e8:60:6a:9f:c6:e6:91:1d:0a:6e:0b:8d:a8: cd:8f:8e:24:4f:7e:55:e0:aa:f7:29:be:e8:cc:c2:ce:ce:ff: ae:4d:7c:0e:e7:f2:ae:76:9d:03:ae:e4:c3:7b:bb:0f:9e:74: f3:39:c6:85:02:16:4e:90:d2:f6:29:83:7e:fc:93:01:9b:b9: c1:8e:a9:94:7f:fe:09:60:b4:23:2a:87:0a:34:67:c8:73:cd: 54:08:64:ba:b3:0e:bc:02:30:f7:dc:63:ae:84:ff:ab:04:00: af:32:aa:0d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmtfSG56YmfTn7ioKYFjhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1MWQ0ZTM0ZDRlNDg1MzljMTcwNDUxZDRlMjYxMzg4ODdm NmU5MjIwHhcNMjUxMjA2MDMwMDQ4WhcNMjUxMjA3MDMwMDQ4WjAzMTEwLwYDVQQD Eyg2N2ZjZWRkZmQ0MTUwZGUzY2U3OGRjOWEzZTE3YTVhNzZlN2FkODFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArvxnOyjNt6Nq3uD8g1XePo4GsZyx Aa9EMMj3043COg6YaOUBHmX01oDgsHWpqikDt83lCL9hcD1FAUP0OgwTb6vYY96D GD0kVMkuB7UK8hFN6KD/noHoYDRggsdC2B144DbwaeLIkWIkHruneQIjfHnlSq/1 72h3vjjWajcsjsD7dBxPb7WRGM1HHNyLc+MKtDW8jbghnDGS9J+3QF7ILIT/3n5a 6m9fUCEbME7mLaXcpD8kCX+RfToEvKY+U7t5zk5FQ3LVgkAN5uEQi0tfQAImtITu 2M1nE2cXQknvnjn5i9gK2An7/eCjOlNO+R0km5JgAyvZvcDbNV4NditkzQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGf87d/UFQ3jznjcmj4XpaduetgeMB8GA1UdIwQY MBaAFIUdTjTU5IU5wXBFHU4mE4iH9ukiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaFIxT05OVGtoVG5CY0VVZFRpWVRpSWYyNlNJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS9iZjE1ODktNmFkZi00NGIzLTk3NDYt ODFjNDA1NTE0OGUwLzEvaFIxT05OVGtoVG5CY0VVZFRpWVRpSWYyNlNJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS9iZjE1ODktNmFkZi00NGIzLTk3NDYtODFjNDA1NTE0OGUw LzEvaFIxT05OVGtoVG5CY0VVZFRpWVRpSWYyNlNJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADSxAR+IQ HEY1WB1PAxx3ynFWZFCmJ38+DqCWbTV+Dpj5SMZ4ZvpoNlS6zB06JoQsyreim7Cf fvtl6a1rxeCteV2JgShm1w+QXnY4CcWAi8yrhuSKEdsbuNRodr5g9nNLiYHPrAhM zkLtfFIZGuAG6Wpv86hrfoh7dQr2eP6DZzzFpwOQry5O1XCwRXie73B7mmOJ4bDo YGqfxuaRHQpuC42ozY+OJE9+VeCq9ym+6MzCzs7/rk18DufyrnadA67kw3u7D550 8znGhQIWTpDS9imDfvyTAZu5wY6plH/+CWC0IyqHCjRnyHPNVAhkurMOvAIw99xj roT/qwQArzKqDQ== -----END CERTIFICATE-----Generated at Sat Dec 6 12:06:56 2025 by rpki-client