This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.mft File: hdycVeFZfohWTa9WflpGZZeMe4U.mft (raw, json) Hash identifier: j4NzFU85a2Mcmumy95hebtiAzo5ocJ4R9ll6ZTVB5i8= Subject key identifier: CF:A1:96:5B:A3:8C:C9:17:70:5C:25:2F:7D:CB:62:54:20:61:BA:EB Authority key identifier: 85:DC:9C:55:E1:59:7E:88:56:4D:AF:56:7E:5A:46:65:97:8C:7B:85 Certificate issuer: /CN=85dc9c55e1597e88564daf567e5a4665978c7b85 Certificate serial: 019AF087E7C25D6C275247F691BE30429C74 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdycVeFZfohWTa9WflpGZZeMe4U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.mft Manifest number: 11A3 Signing time: Fri 05 Dec 2025 22:00:29 +0000 Manifest this update: Fri 05 Dec 2025 22:00:29 +0000 Manifest next update: Sat 06 Dec 2025 22:00:29 +0000 Files and hashes: 1: 0pi9IaQq2fBWcGfcpKeC_IHzvEQ.roa (hash: 7NVRHz/yavsbwJXBgfeDxYrCqDuUxp9nZbgGaZLZ9oA=) 2: 3wW5MOLSStojI9xiPbeDzYTIyjU.roa (hash: 2XAYsLytjrXYCpBJtfGxqKAam2Z4NRRhSRFoEEd4Llk=) 3: bpfV9qpUqRU7ZbL5m4qH_-0K2rg.roa (hash: 4P0zOtuiLjjQhgT/25d48jeUAEanfYakXWIUUX0ljiU=) 4: hdycVeFZfohWTa9WflpGZZeMe4U.crl (hash: 02SjZXKA1Th7pxbs+z8TOYx/IyK5TP9obBT6aDH6uBo=) 5: mPqcgtGb2yf9In758ERINrkMypo.roa (hash: NIdkZJadBz8qYXRNbhuo0LCb4YMZcnXeOqxZtSChOrc=) 6: yXjHrq-s43_JYr0rLELUWWQUfRw.roa (hash: 4zzMUSCqPCS+1DFvUjbQidVA6cErC1SxAP7lBmahGck=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.crl rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.mft rsync://rpki.ripe.net/repository/DEFAULT/hdycVeFZfohWTa9WflpGZZeMe4U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:87:e7:c2:5d:6c:27:52:47:f6:91:be:30:42:9c:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85dc9c55e1597e88564daf567e5a4665978c7b85 Validity Not Before: Dec 5 22:00:29 2025 GMT Not After : Dec 6 22:00:29 2025 GMT Subject: CN=cfa1965ba38cc917705c252f7dcb62542061baeb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:b0:8b:a9:8c:ce:25:e1:82:1d:d5:ee:e4:fe: 3e:ec:60:7b:e1:94:77:22:e4:55:2c:14:bf:06:24: af:7a:2d:5e:1f:4a:bf:11:05:56:35:3b:5c:4e:49: 23:56:5a:9d:a0:45:4a:95:25:25:9c:19:28:c1:a3: 54:8d:13:fa:c5:b2:b9:4c:e5:3d:59:04:b7:81:b7: 04:a7:29:bf:bf:73:b0:b6:9e:e5:38:f7:6b:3b:af: f9:7a:1b:68:a1:b7:7f:2d:51:63:50:b7:7a:d2:05: be:03:e6:c0:e2:02:be:ad:a6:76:22:28:a0:e6:da: 5d:76:e1:11:68:cc:01:8f:b2:f6:6e:d1:6e:c2:de: de:0f:d8:34:32:3e:77:ab:89:6f:02:57:26:cf:b9: 46:49:2b:a0:47:5b:bb:1c:1e:bb:7b:10:27:1b:78: 55:f7:39:55:77:23:01:f1:44:3c:f0:a3:20:70:4e: 85:28:81:b1:e7:b8:20:ff:14:d6:17:0d:03:e3:6b: 86:00:96:7e:02:26:64:b2:10:ec:d2:7b:be:fa:22: fa:6e:cd:39:0c:33:28:36:0a:46:eb:3f:0c:bb:d1: 72:f4:b7:d4:65:66:74:c4:5f:53:3a:bc:d1:50:3d: 2d:e6:89:95:85:5d:b6:57:08:c0:47:b3:d5:87:c1: 23:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:A1:96:5B:A3:8C:C9:17:70:5C:25:2F:7D:CB:62:54:20:61:BA:EB X509v3 Authority Key Identifier: keyid:85:DC:9C:55:E1:59:7E:88:56:4D:AF:56:7E:5A:46:65:97:8C:7B:85 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdycVeFZfohWTa9WflpGZZeMe4U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 34:ef:3a:dd:d0:60:5c:90:a1:a6:90:5a:d4:f1:63:68:ed:c3: a7:43:07:c3:70:7a:2c:0b:dc:2e:43:aa:7b:af:bd:2e:d4:97: 88:9b:b5:be:d8:73:1d:4b:88:ae:89:66:91:e8:dc:d9:7f:33: 9c:7a:15:11:15:b4:ce:2b:30:bf:7b:3d:78:0e:52:fc:da:d9: 76:4f:5b:e5:ff:aa:ee:74:8d:ed:dc:b5:d8:81:cc:00:92:13: c4:da:44:c7:ca:08:b3:74:13:92:0c:1d:5c:f5:b8:3c:75:ad: 92:89:38:db:52:37:51:fe:88:45:ad:41:db:d8:7b:de:b4:e2: 38:72:61:f3:c2:87:52:9f:9a:b3:cf:a1:c1:b0:39:21:e8:80: 8d:a4:20:ae:21:20:b9:00:cd:18:10:21:84:46:06:43:09:84: af:2b:8b:f0:77:7b:19:27:a6:fb:1a:17:0c:fa:67:a5:bd:34: 4e:94:04:05:07:cb:9d:cd:02:ba:ab:2a:80:91:27:7b:00:ac: 21:ae:c3:96:90:72:4d:38:61:c8:e0:21:66:be:d3:e9:d6:c6: fc:46:9d:f3:0a:fa:7c:65:00:c3:82:72:fd:04:8a:44:52:f5: 6c:e3:2c:ec:43:61:a5:2d:a2:ad:99:af:ac:6f:34:69:49:fe: ad:34:80:ea -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwh+fCXWwnUkf2kb4wQpx0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1ZGM5YzU1ZTE1OTdlODg1NjRkYWY1NjdlNWE0NjY1OTc4 YzdiODUwHhcNMjUxMjA1MjIwMDI5WhcNMjUxMjA2MjIwMDI5WjAzMTEwLwYDVQQD EyhjZmExOTY1YmEzOGNjOTE3NzA1YzI1MmY3ZGNiNjI1NDIwNjFiYWViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo7CLqYzOJeGCHdXu5P4+7GB74ZR3 IuRVLBS/BiSvei1eH0q/EQVWNTtcTkkjVlqdoEVKlSUlnBkowaNUjRP6xbK5TOU9 WQS3gbcEpym/v3Owtp7lOPdrO6/5ehtoobd/LVFjULd60gW+A+bA4gK+raZ2Iiig 5tpdduERaMwBj7L2btFuwt7eD9g0Mj53q4lvAlcmz7lGSSugR1u7HB67exAnG3hV 9zlVdyMB8UQ88KMgcE6FKIGx57gg/xTWFw0D42uGAJZ+AiZkshDs0nu++iL6bs05 DDMoNgpG6z8Mu9Fy9LfUZWZ0xF9TOrzRUD0t5omVhV22VwjAR7PVh8EjfwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM+hllujjMkXcFwlL33LYlQgYbrrMB8GA1UdIwQY MBaAFIXcnFXhWX6IVk2vVn5aRmWXjHuFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGR5Y1ZlRlpmb2hXVGE5V2ZscEdaWmVNZTRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi9mMDdmYmMtNGMzMi00ZDg3LWE0Mjkt ODZlYTE5ZDI5MTYzLzEvaGR5Y1ZlRlpmb2hXVGE5V2ZscEdaWmVNZTRVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi9mMDdmYmMtNGMzMi00ZDg3LWE0MjktODZlYTE5ZDI5MTYz LzEvaGR5Y1ZlRlpmb2hXVGE5V2ZscEdaWmVNZTRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANO863dBg XJChppBa1PFjaO3Dp0MHw3B6LAvcLkOqe6+9LtSXiJu1vthzHUuIrolmkejc2X8z nHoVERW0ziswv3s9eA5S/NrZdk9b5f+q7nSN7dy12IHMAJITxNpEx8oIs3QTkgwd XPW4PHWtkok421I3Uf6IRa1B29h73rTiOHJh88KHUp+as8+hwbA5IeiAjaQgriEg uQDNGBAhhEYGQwmEryuL8Hd7GSem+xoXDPpnpb00TpQEBQfLnc0CuqsqgJEnewCs Ia7DlpByTThhyOAhZr7T6dbG/Ead8wr6fGUAw4Jy/QSKRFL1bOMs7ENhpS2irZmv rG80aUn+rTSA6g== -----END CERTIFICATE-----Generated at Sat Dec 6 08:10:32 2025 by rpki-client