This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft File: hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft (raw, json) Hash identifier: M3mnjpzrLI/L/XtIJXQtpsf+BDfufK2/F+kkOEREqog= Subject key identifier: 56:68:22:99:79:A9:DA:8B:71:41:DF:22:9B:2D:13:08:93:BC:E1:E9 Authority key identifier: 86:38:41:50:6D:02:61:31:96:50:57:40:9A:16:04:A5:67:1F:05:41 Certificate issuer: /CN=863841506d026131965057409a1604a5671f0541 Certificate serial: 019AF12CEADC80136E42A62F15FBDC1AB1AC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft Manifest number: 0529 Signing time: Sat 06 Dec 2025 01:00:44 +0000 Manifest this update: Sat 06 Dec 2025 01:00:44 +0000 Manifest next update: Sun 07 Dec 2025 01:00:44 +0000 Files and hashes: 1: hXap7hNXLEAQarnfnwYswdCAdkQ.roa (hash: bNhK/WdUp/9xvJiGhX97CJWQhZiON1WPJ6uWrAYKvFI=) 2: hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl (hash: al/CiskJl3NevCnYL0QZjcAlnROYoJUiK5asXxW8D4U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2c:ea:dc:80:13:6e:42:a6:2f:15:fb:dc:1a:b1:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=863841506d026131965057409a1604a5671f0541 Validity Not Before: Dec 6 01:00:44 2025 GMT Not After : Dec 7 01:00:44 2025 GMT Subject: CN=5668229979a9da8b7141df229b2d130893bce1e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:84:d9:04:3f:bb:f8:6e:2f:db:50:c8:6a:83: bf:c8:be:f1:79:1b:12:3c:b8:44:51:d4:e9:d4:2a: 3e:b1:ac:6e:31:b2:20:ba:03:85:72:9a:85:2b:bb: ab:dc:74:c5:04:1e:ee:e9:9d:c5:dd:a4:57:95:93: 3c:a4:1b:c1:b9:34:d3:4c:2f:2e:02:45:e3:fc:46: 2a:24:75:de:d9:ce:30:c1:4d:1b:98:fb:d9:03:97: 53:d1:db:a2:71:e7:89:3f:38:b7:e6:59:a3:a8:f0: c2:c5:57:dc:8f:82:72:d1:57:06:a1:b8:eb:9e:96: 2c:fc:eb:4d:15:dd:f5:c6:f4:8b:b9:83:b2:9c:db: ca:41:94:1a:f2:f5:f6:da:d4:23:15:a5:3d:13:22: 9d:a4:37:2a:df:5f:d6:6f:5b:37:e5:9f:a3:29:5a: 1a:fc:78:11:07:1c:4f:77:2d:ec:f4:fb:86:0f:49: d2:08:ac:0d:47:60:74:ff:62:19:34:1d:f9:89:bf: 18:d1:9d:5d:35:6c:12:eb:a4:c9:b5:ea:d2:ac:32: bb:bf:7d:fb:ab:73:12:6b:f9:28:ca:23:98:40:a9: bd:0d:b5:26:88:86:01:ae:7f:dc:c0:1d:54:42:bb: 89:26:51:50:1c:85:87:80:e7:23:a0:1e:4d:e3:b4: 7e:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:68:22:99:79:A9:DA:8B:71:41:DF:22:9B:2D:13:08:93:BC:E1:E9 X509v3 Authority Key Identifier: keyid:86:38:41:50:6D:02:61:31:96:50:57:40:9A:16:04:A5:67:1F:05:41 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 19:19:7f:fd:71:75:0d:39:59:3c:01:dc:2e:f6:1b:1e:3a:30: 3f:de:b7:34:65:03:47:03:fe:6c:bd:10:c2:6d:0d:1a:85:59: d1:c5:92:69:10:6f:35:25:94:f4:6e:75:4e:c5:57:6f:ed:9e: 52:e5:ef:69:d0:ce:d6:23:6e:c3:aa:da:92:0a:45:f3:3c:4d: 5d:4f:30:44:5e:35:4c:bf:0f:b5:e3:c2:a8:62:7e:fa:bf:04: 11:16:c2:ad:a3:c8:5c:f9:68:b5:d6:23:14:74:54:09:39:04: 3f:9f:57:39:f5:53:35:53:7d:cd:de:82:df:61:13:c8:ec:f4: cf:98:f1:7d:98:a7:b6:5d:31:3a:6b:bf:6b:12:31:97:82:d4: a9:b2:79:11:3a:05:08:c9:cd:76:74:ba:9f:ae:b5:1c:2c:7d: 06:96:dc:ce:65:1b:7a:0f:f2:36:85:b6:ac:90:13:7f:22:8c: 85:a1:9b:05:6d:a6:98:c2:9a:9d:bb:f1:79:29:73:62:78:4c: d2:c8:f8:f2:54:f4:21:f6:c4:65:35:fa:8b:75:59:69:57:0e: 91:41:dd:07:36:8c:12:9e:25:c7:54:63:0f:43:58:88:90:06: a0:cd:bc:73:65:e8:1a:d6:47:52:90:64:dd:ba:1c:88:5a:e0: 20:03:f1:0b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLOrcgBNuQqYvFfvcGrGsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2Mzg0MTUwNmQwMjYxMzE5NjUwNTc0MDlhMTYwNGE1Njcx ZjA1NDEwHhcNMjUxMjA2MDEwMDQ0WhcNMjUxMjA3MDEwMDQ0WjAzMTEwLwYDVQQD Eyg1NjY4MjI5OTc5YTlkYThiNzE0MWRmMjI5YjJkMTMwODkzYmNlMWU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvoTZBD+7+G4v21DIaoO/yL7xeRsS PLhEUdTp1Co+saxuMbIgugOFcpqFK7ur3HTFBB7u6Z3F3aRXlZM8pBvBuTTTTC8u AkXj/EYqJHXe2c4wwU0bmPvZA5dT0duiceeJPzi35lmjqPDCxVfcj4Jy0VcGobjr npYs/OtNFd31xvSLuYOynNvKQZQa8vX22tQjFaU9EyKdpDcq31/Wb1s35Z+jKVoa /HgRBxxPdy3s9PuGD0nSCKwNR2B0/2IZNB35ib8Y0Z1dNWwS66TJterSrDK7v337 q3MSa/koyiOYQKm9DbUmiIYBrn/cwB1UQruJJlFQHIWHgOcjoB5N47R+gQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFZoIpl5qdqLcUHfIpstEwiTvOHpMB8GA1UdIwQY MBaAFIY4QVBtAmExllBXQJoWBKVnHwVBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGpoQlVHMENZVEdXVUZkQW1oWUVwV2NmQlVFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi8xZjE1NjMtYjMzMS00M2E5LWI5Y2Mt M2JmYTA1MDkyMDFmLzEvaGpoQlVHMENZVEdXVUZkQW1oWUVwV2NmQlVFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi8xZjE1NjMtYjMzMS00M2E5LWI5Y2MtM2JmYTA1MDkyMDFm LzEvaGpoQlVHMENZVEdXVUZkQW1oWUVwV2NmQlVFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGRl//XF1 DTlZPAHcLvYbHjowP963NGUDRwP+bL0Qwm0NGoVZ0cWSaRBvNSWU9G51TsVXb+2e UuXvadDO1iNuw6rakgpF8zxNXU8wRF41TL8PtePCqGJ++r8EERbCraPIXPlotdYj FHRUCTkEP59XOfVTNVN9zd6C32ETyOz0z5jxfZintl0xOmu/axIxl4LUqbJ5EToF CMnNdnS6n661HCx9BpbczmUbeg/yNoW2rJATfyKMhaGbBW2mmMKanbvxeSlzYnhM 0sj48lT0IfbEZTX6i3VZaVcOkUHdBzaMEp4lx1RjD0NYiJAGoM28c2XoGtZHUpBk 3bociFrgIAPxCw== -----END CERTIFICATE-----Generated at Sat Dec 6 09:21:33 2025 by rpki-client