This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft File: hVBZemBkyIKuKvP6V1nxP4vR3fw.mft (raw, json) Hash identifier: HAkyEjgJPsRKcTpGfernKFHKZ3CvX8y60XMjleeXEbQ= Subject key identifier: C5:6C:55:2D:AD:DA:42:DC:0E:9C:45:25:5B:B8:11:91:4F:9A:4E:4D Authority key identifier: 85:50:59:7A:60:64:C8:82:AE:2A:F3:FA:57:59:F1:3F:8B:D1:DD:FC Certificate issuer: /CN=8550597a6064c882ae2af3fa5759f13f8bd1ddfc Certificate serial: 019AF276C18453E6C52444E65873D8966C8D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hVBZemBkyIKuKvP6V1nxP4vR3fw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft Manifest number: 1196 Signing time: Sat 06 Dec 2025 07:00:59 +0000 Manifest this update: Sat 06 Dec 2025 07:00:59 +0000 Manifest next update: Sun 07 Dec 2025 07:00:59 +0000 Files and hashes: 1: Nnh8TxyMB33fgGngdO7IhueAOsU.roa (hash: R28y5tSNBK4A6wEp0RdvkAdrsGgoMExqmSzBUnD9C9E=) 2: hVBZemBkyIKuKvP6V1nxP4vR3fw.crl (hash: Rmvrzd7Ka/I7OiG8C7TW/GVWXypxMeUzWKL61TALbKU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.crl rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft rsync://rpki.ripe.net/repository/DEFAULT/hVBZemBkyIKuKvP6V1nxP4vR3fw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:c1:84:53:e6:c5:24:44:e6:58:73:d8:96:6c:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8550597a6064c882ae2af3fa5759f13f8bd1ddfc Validity Not Before: Dec 6 07:00:59 2025 GMT Not After : Dec 7 07:00:59 2025 GMT Subject: CN=c56c552dadda42dc0e9c45255bb811914f9a4e4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:ef:1c:09:bc:b0:34:21:c5:c5:44:fb:3f:17: 20:d5:cb:b7:de:5d:5a:bb:14:e2:bc:7b:ae:a5:63: e0:f4:9f:cb:10:08:e9:81:64:b8:9f:be:f9:ec:29: 02:5c:76:21:ee:7e:7d:70:d4:de:e1:ab:85:ea:87: ea:1c:dc:0c:5c:01:ae:fa:71:be:25:48:34:7e:d6: 1c:21:60:4d:fd:19:8c:5d:0e:6a:0f:ca:73:73:f0: 05:ca:ac:bf:4e:a6:d1:18:75:60:3a:29:b5:ff:1d: bd:30:9d:d2:e6:05:16:ea:69:f9:17:51:30:19:a1: 54:3a:b7:fc:f2:ba:38:a4:79:55:23:75:bc:07:fb: d5:0f:66:84:e4:b7:bf:d9:86:0f:79:f8:d3:cd:53: 67:43:bd:4a:60:1b:83:84:d3:30:40:60:b3:a5:8e: e1:80:fc:b7:b7:d0:bb:2e:94:bf:d6:3e:f7:1e:54: ed:96:f4:5f:bb:52:56:ea:eb:5b:1f:57:4b:b7:bf: 1d:25:ba:45:91:0b:6a:21:02:6e:80:2b:9a:d8:27: 71:46:5a:57:ec:2e:45:5f:21:12:e2:d9:7d:0d:73: 80:c6:0d:c7:82:af:6d:5e:e0:43:d8:69:a7:9e:8e: ea:ad:b9:e8:6d:6b:2a:93:78:41:e1:b4:d7:77:83: e2:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:6C:55:2D:AD:DA:42:DC:0E:9C:45:25:5B:B8:11:91:4F:9A:4E:4D X509v3 Authority Key Identifier: keyid:85:50:59:7A:60:64:C8:82:AE:2A:F3:FA:57:59:F1:3F:8B:D1:DD:FC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hVBZemBkyIKuKvP6V1nxP4vR3fw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0c:cd:31:8d:94:bb:e0:ee:aa:08:1b:03:ad:b3:8b:75:c1:1c: 9b:18:82:a0:d5:b3:b8:34:03:d1:35:3e:50:3b:f4:5f:65:fb: fe:cb:8c:32:ff:7c:52:71:3a:6b:bc:01:53:f8:b4:e0:b7:e5: 24:af:2a:8e:90:0f:6c:94:6b:fa:a0:f6:65:6a:9a:3d:1a:71: 86:1b:03:14:db:5c:28:08:98:04:10:83:f6:fe:b4:f7:17:9d: a8:d5:ef:9d:6f:02:46:c8:04:e8:8f:c6:a3:ef:72:e4:44:d0: 23:b9:12:e0:a0:db:c0:ee:8e:d2:33:71:b5:62:b7:ac:ad:88: 7e:80:91:a3:69:58:41:d7:69:52:e4:10:ff:6b:ab:55:b8:2c: b0:d5:83:ef:57:12:1d:81:d0:2b:3b:58:ee:de:72:e1:98:59: 84:ec:b3:38:54:ca:55:82:b1:09:06:f5:8d:01:99:2f:cc:ad: dc:62:8a:51:02:58:6a:25:5a:08:b9:0d:3c:dd:66:33:92:11: cf:c0:46:0f:23:b1:6f:c6:e1:40:5e:1d:09:8b:14:d9:ae:63: da:cf:f3:6d:38:8a:15:e8:f0:77:9e:ca:cf:cb:e4:23:b8:48: 6e:33:40:b6:2e:be:b7:81:2e:63:71:54:7d:90:1a:db:ff:9f: 60:74:0c:68 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydsGEU+bFJETmWHPYlmyNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1NTA1OTdhNjA2NGM4ODJhZTJhZjNmYTU3NTlmMTNmOGJk MWRkZmMwHhcNMjUxMjA2MDcwMDU5WhcNMjUxMjA3MDcwMDU5WjAzMTEwLwYDVQQD EyhjNTZjNTUyZGFkZGE0MmRjMGU5YzQ1MjU1YmI4MTE5MTRmOWE0ZTRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnu8cCbywNCHFxUT7Pxcg1cu33l1a uxTivHuupWPg9J/LEAjpgWS4n7757CkCXHYh7n59cNTe4auF6ofqHNwMXAGu+nG+ JUg0ftYcIWBN/RmMXQ5qD8pzc/AFyqy/TqbRGHVgOim1/x29MJ3S5gUW6mn5F1Ew GaFUOrf88ro4pHlVI3W8B/vVD2aE5Le/2YYPefjTzVNnQ71KYBuDhNMwQGCzpY7h gPy3t9C7LpS/1j73HlTtlvRfu1JW6utbH1dLt78dJbpFkQtqIQJugCua2CdxRlpX 7C5FXyES4tl9DXOAxg3Hgq9tXuBD2Gmnno7qrbnobWsqk3hB4bTXd4PikwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMVsVS2t2kLcDpxFJVu4EZFPmk5NMB8GA1UdIwQY MBaAFIVQWXpgZMiCrirz+ldZ8T+L0d38MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaFZCWmVtQmt5SUt1S3ZQNlYxbnhQNHZSM2Z3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC8xYzcyYzUtMjk5YS00ZjcwLTgxMmMt MjVjNWYwNWFlYjVmLzEvaFZCWmVtQmt5SUt1S3ZQNlYxbnhQNHZSM2Z3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOC8xYzcyYzUtMjk5YS00ZjcwLTgxMmMtMjVjNWYwNWFlYjVm LzEvaFZCWmVtQmt5SUt1S3ZQNlYxbnhQNHZSM2Z3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADM0xjZS7 4O6qCBsDrbOLdcEcmxiCoNWzuDQD0TU+UDv0X2X7/suMMv98UnE6a7wBU/i04Lfl JK8qjpAPbJRr+qD2ZWqaPRpxhhsDFNtcKAiYBBCD9v609xedqNXvnW8CRsgE6I/G o+9y5ETQI7kS4KDbwO6O0jNxtWK3rK2IfoCRo2lYQddpUuQQ/2urVbgssNWD71cS HYHQKztY7t5y4ZhZhOyzOFTKVYKxCQb1jQGZL8yt3GKKUQJYaiVaCLkNPN1mM5IR z8BGDyOxb8bhQF4dCYsU2a5j2s/zbTiKFejwd57Kz8vkI7hIbjNAti6+t4EuY3FU fZAa2/+fYHQMaA== -----END CERTIFICATE-----Generated at Sat Dec 6 09:58:19 2025 by rpki-client