This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft File: hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft (raw, json) Hash identifier: sT7raIiQc8JJmLR+9qqBRCU19ap1Ijwu3x+rgqdNn+Y= Subject key identifier: 54:4E:A2:CE:E1:13:95:9E:1F:2E:17:21:3D:CA:21:46:5A:F9:2F:D8 Authority key identifier: 86:38:41:50:6D:02:61:31:96:50:57:40:9A:16:04:A5:67:1F:05:41 Certificate issuer: /CN=863841506d026131965057409a1604a5671f0541 Certificate serial: 019B30E79B7CCCFAD101F6C91B6D9F560605 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft Manifest number: 054A Signing time: Thu 18 Dec 2025 10:00:43 +0000 Manifest this update: Thu 18 Dec 2025 10:00:43 +0000 Manifest next update: Fri 19 Dec 2025 10:00:43 +0000 Files and hashes: 1: hXap7hNXLEAQarnfnwYswdCAdkQ.roa (hash: bNhK/WdUp/9xvJiGhX97CJWQhZiON1WPJ6uWrAYKvFI=) 2: hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl (hash: Hui2MSAjCybfqwa4ykWfDGv7FYJNgPa4UF1OlS+Tg2k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 10:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:30:e7:9b:7c:cc:fa:d1:01:f6:c9:1b:6d:9f:56:06:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=863841506d026131965057409a1604a5671f0541 Validity Not Before: Dec 18 10:00:43 2025 GMT Not After : Dec 19 10:00:43 2025 GMT Subject: CN=544ea2cee113959e1f2e17213dca21465af92fd8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:10:99:86:9f:82:32:93:77:7f:f5:c4:8a:f4: b1:d0:70:7d:58:16:4c:e4:33:c0:a7:cf:1b:21:db: 08:dd:00:ef:b6:ef:43:27:40:0d:a0:8d:e7:e7:70: 0c:d5:5e:86:1c:42:59:56:d2:37:4d:ea:3d:d8:b9: 1c:44:ac:51:1a:28:e9:d2:3d:96:97:87:f2:b2:90: 3f:ae:fa:fc:65:12:e0:37:39:3e:79:96:18:5f:48: 81:9b:40:14:54:91:60:8f:e6:5a:f8:98:f3:20:84: 8a:2f:9e:4c:73:b4:92:70:60:91:3a:bd:31:62:32: 0c:7f:77:9b:75:38:41:40:ef:c9:fd:42:9b:ec:91: e7:04:3e:59:14:85:e0:41:6d:c5:d1:24:23:f8:7e: 31:6d:26:9f:c3:3d:a9:87:07:a6:c7:93:0d:a3:dc: 4e:c3:61:e4:a5:ea:b1:d8:bd:8b:16:b0:ba:0c:47: 0c:c5:9c:ea:44:f2:06:15:50:02:af:f2:79:92:a4: de:2b:b0:a7:65:e8:ed:16:9e:c2:a3:a7:bf:be:5c: 10:11:62:d5:92:15:ef:d1:3e:50:cc:8e:d8:8f:dd: 10:be:49:3f:f6:1d:98:6b:28:8e:a1:74:5f:d4:ae: a5:b2:99:11:0b:57:94:83:34:45:a8:94:ee:53:f1: b0:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:4E:A2:CE:E1:13:95:9E:1F:2E:17:21:3D:CA:21:46:5A:F9:2F:D8 X509v3 Authority Key Identifier: keyid:86:38:41:50:6D:02:61:31:96:50:57:40:9A:16:04:A5:67:1F:05:41 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 33:f9:0b:f3:28:f6:e1:65:1a:51:c1:87:a2:1e:40:a2:d5:68: e7:e3:b8:9d:9a:a7:73:96:ac:ac:30:80:99:2e:14:84:bc:02: 9e:fd:bb:c7:02:2f:9e:6c:fa:43:84:23:93:80:2a:42:0e:44: 9d:0a:f8:b7:90:15:38:5c:d1:a4:81:8c:da:73:b1:c3:fb:12: b7:c0:0d:3b:63:83:eb:39:b5:0b:c3:bb:e2:a5:d6:04:57:21: cd:c8:a3:0d:23:e3:de:7c:91:a5:b7:b5:dd:75:74:b6:92:f1: da:d9:dc:20:07:1e:34:bb:95:c0:bc:43:f8:16:8a:e6:e5:e0: 47:2e:7c:16:8b:ca:df:6b:e1:0a:d9:81:74:4f:de:50:54:1a: 66:eb:68:25:64:89:05:5f:36:69:9e:bb:01:7e:7d:61:2d:22: 1e:8a:0a:1e:58:0e:cd:80:e1:9a:82:42:46:44:91:d2:df:3e: 8f:c0:6c:5c:d9:63:4d:8b:42:20:66:4c:a0:bb:a7:d6:4a:0b: 0c:c1:e5:f1:1f:db:7c:e3:42:0e:fa:bd:5f:36:fb:87:65:d9: fd:dd:34:70:27:0e:b8:38:65:c7:fe:15:fb:54:4d:cb:10:a8: 7a:bb:c8:5d:ec:ee:58:03:e0:c2:56:a0:cd:bd:d7:59:b9:1c: a8:6a:50:e0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsw55t8zPrRAfbJG22fVgYFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2Mzg0MTUwNmQwMjYxMzE5NjUwNTc0MDlhMTYwNGE1Njcx ZjA1NDEwHhcNMjUxMjE4MTAwMDQzWhcNMjUxMjE5MTAwMDQzWjAzMTEwLwYDVQQD Eyg1NDRlYTJjZWUxMTM5NTllMWYyZTE3MjEzZGNhMjE0NjVhZjkyZmQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlxCZhp+CMpN3f/XEivSx0HB9WBZM 5DPAp88bIdsI3QDvtu9DJ0ANoI3n53AM1V6GHEJZVtI3Teo92LkcRKxRGijp0j2W l4fyspA/rvr8ZRLgNzk+eZYYX0iBm0AUVJFgj+Za+JjzIISKL55Mc7SScGCROr0x YjIMf3ebdThBQO/J/UKb7JHnBD5ZFIXgQW3F0SQj+H4xbSafwz2phwemx5MNo9xO w2Hkpeqx2L2LFrC6DEcMxZzqRPIGFVACr/J5kqTeK7CnZejtFp7Co6e/vlwQEWLV khXv0T5QzI7Yj90Qvkk/9h2YayiOoXRf1K6lspkRC1eUgzRFqJTuU/GwawIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFROos7hE5WeHy4XIT3KIUZa+S/YMB8GA1UdIwQY MBaAFIY4QVBtAmExllBXQJoWBKVnHwVBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGpoQlVHMENZVEdXVUZkQW1oWUVwV2NmQlVFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi8xZjE1NjMtYjMzMS00M2E5LWI5Y2Mt M2JmYTA1MDkyMDFmLzEvaGpoQlVHMENZVEdXVUZkQW1oWUVwV2NmQlVFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi8xZjE1NjMtYjMzMS00M2E5LWI5Y2MtM2JmYTA1MDkyMDFm LzEvaGpoQlVHMENZVEdXVUZkQW1oWUVwV2NmQlVFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAM/kL8yj2 4WUaUcGHoh5AotVo5+O4nZqnc5asrDCAmS4UhLwCnv27xwIvnmz6Q4Qjk4AqQg5E nQr4t5AVOFzRpIGM2nOxw/sSt8ANO2OD6zm1C8O74qXWBFchzcijDSPj3nyRpbe1 3XV0tpLx2tncIAceNLuVwLxD+BaK5uXgRy58FovK32vhCtmBdE/eUFQaZutoJWSJ BV82aZ67AX59YS0iHooKHlgOzYDhmoJCRkSR0t8+j8BsXNljTYtCIGZMoLun1koL DMHl8R/bfONCDvq9Xzb7h2XZ/d00cCcOuDhlx/4V+1RNyxCoervIXezuWAPgwlag zb3XWbkcqGpQ4A== -----END CERTIFICATE-----Generated at Thu Dec 18 15:27:19 2025 by rpki-client