This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.mft File: haz7mtOlDOFTMc_066iLzAe3ooI.mft (raw, json) Hash identifier: MUeinwVcRoyRRZiluvkt3l9xVZp3SfPaULZK4NYJ37w= Subject key identifier: F7:50:DB:8E:DA:12:69:86:06:54:AA:92:68:D8:53:30:47:13:92:10 Authority key identifier: 85:AC:FB:9A:D3:A5:0C:E1:53:31:CF:F4:EB:A8:8B:CC:07:B7:A2:82 Certificate issuer: /CN=85acfb9ad3a50ce15331cff4eba88bcc07b7a282 Certificate serial: 019AF1D1DAA32B9A537CCDBF9AEDC40AD915 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/haz7mtOlDOFTMc_066iLzAe3ooI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.mft Manifest number: 06E4 Signing time: Sat 06 Dec 2025 04:00:53 +0000 Manifest this update: Sat 06 Dec 2025 04:00:53 +0000 Manifest next update: Sun 07 Dec 2025 04:00:53 +0000 Files and hashes: 1: GNR7fo6zYUZ0aZ61h9x_BF8llVA.roa (hash: CFopZ6dmtVSvrmIdzz/ovM49rlPrGJS+jY6gLGQSqVo=) 2: haz7mtOlDOFTMc_066iLzAe3ooI.crl (hash: 84Q9qkK6s4eB2990vqynCU19Ltuqie2UQYISUT3mdns=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.crl rsync://rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.mft rsync://rpki.ripe.net/repository/DEFAULT/haz7mtOlDOFTMc_066iLzAe3ooI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d1:da:a3:2b:9a:53:7c:cd:bf:9a:ed:c4:0a:d9:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85acfb9ad3a50ce15331cff4eba88bcc07b7a282 Validity Not Before: Dec 6 04:00:53 2025 GMT Not After : Dec 7 04:00:53 2025 GMT Subject: CN=f750db8eda1269860654aa9268d8533047139210 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:d3:00:f0:54:12:82:15:5f:f0:bd:49:e5:85: 30:73:34:45:f3:9b:6d:40:ec:2c:28:ac:3f:69:df: cf:22:5c:64:8e:ca:db:84:5a:4a:73:f7:56:ab:46: 03:02:7c:c5:c7:cc:45:52:d9:3b:45:f8:72:1a:a7: 69:1c:c6:24:40:77:eb:23:5a:97:a6:e9:34:7a:f8: 8c:24:d8:5e:9a:c7:61:5f:a0:e7:9f:aa:99:8a:7b: 29:0c:44:9b:ca:b6:7a:aa:36:ec:92:9b:88:8e:3c: b1:c3:1e:65:02:bd:32:ed:74:37:63:08:bd:a1:df: 9e:9d:90:15:59:ff:fa:cf:da:eb:78:60:a0:92:0b: 0d:f2:b1:a7:2c:77:81:01:e0:b8:a6:50:9e:e9:05: 8a:77:25:a0:5c:af:06:b3:90:b0:2e:92:e0:68:8f: be:37:a6:a9:1b:ee:cc:d8:ff:0d:bb:52:9c:2f:c8: 36:b5:ec:6b:0a:cd:6d:0c:75:0d:7e:35:ba:99:78: cc:cd:0e:32:23:6a:c3:e8:92:19:45:4d:b8:32:bc: 31:96:62:d5:43:f7:d6:71:6d:41:7c:d3:b3:7b:0f: 5f:25:3f:e8:3e:bd:be:ab:4c:9b:fe:3e:8c:dc:4d: 63:69:d2:ba:83:ed:5d:f0:26:2a:94:30:2a:d5:cb: d6:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:50:DB:8E:DA:12:69:86:06:54:AA:92:68:D8:53:30:47:13:92:10 X509v3 Authority Key Identifier: keyid:85:AC:FB:9A:D3:A5:0C:E1:53:31:CF:F4:EB:A8:8B:CC:07:B7:A2:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/haz7mtOlDOFTMc_066iLzAe3ooI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 36:b5:90:83:d0:92:16:75:0a:7b:2b:fc:c0:63:8b:47:a5:91: 43:65:8c:53:ca:01:86:e1:81:9f:b3:99:85:dc:c2:00:f8:48: 46:02:cc:dc:2e:a4:01:f5:c9:3f:5e:92:01:38:2d:81:52:e0: 67:25:40:31:48:9b:fc:fc:f2:cd:cc:1a:e2:fa:92:22:f5:6c: 7f:fe:e0:16:33:10:0d:88:b6:e2:43:a4:f3:ab:73:38:6f:5b: 1d:a5:ed:41:bf:8f:c6:14:5d:4d:0c:d8:c5:52:9d:88:59:5f: 41:93:c5:97:23:ff:e4:59:33:54:f0:72:90:f3:1a:79:49:8d: 2b:e0:74:75:8e:a6:31:7c:60:44:c1:d1:2e:ec:db:b9:b3:c7: a1:59:0b:1d:8c:4e:c7:f7:f1:62:59:27:18:e8:76:f0:ce:ce: b3:65:37:c6:5d:cd:3b:7e:2b:49:68:86:dd:45:0c:b5:cd:59: 5e:f2:64:5d:65:b2:65:54:70:27:66:b6:33:bd:22:5f:78:6b: c2:7b:6a:89:c4:ed:fb:95:ad:15:d9:2c:9c:49:e9:19:c5:aa: 85:eb:7a:df:61:fd:e2:95:49:05:06:c2:43:39:2e:3c:8f:06: 81:2d:61:51:82:cc:1a:08:74:bc:5b:5f:c2:16:05:9e:39:74: 09:97:fe:fd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0dqjK5pTfM2/mu3ECtkVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1YWNmYjlhZDNhNTBjZTE1MzMxY2ZmNGViYTg4YmNjMDdi N2EyODIwHhcNMjUxMjA2MDQwMDUzWhcNMjUxMjA3MDQwMDUzWjAzMTEwLwYDVQQD EyhmNzUwZGI4ZWRhMTI2OTg2MDY1NGFhOTI2OGQ4NTMzMDQ3MTM5MjEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7NMA8FQSghVf8L1J5YUwczRF85tt QOwsKKw/ad/PIlxkjsrbhFpKc/dWq0YDAnzFx8xFUtk7RfhyGqdpHMYkQHfrI1qX puk0eviMJNhemsdhX6Dnn6qZinspDESbyrZ6qjbskpuIjjyxwx5lAr0y7XQ3Ywi9 od+enZAVWf/6z9rreGCgkgsN8rGnLHeBAeC4plCe6QWKdyWgXK8Gs5CwLpLgaI++ N6apG+7M2P8Nu1KcL8g2texrCs1tDHUNfjW6mXjMzQ4yI2rD6JIZRU24MrwxlmLV Q/fWcW1BfNOzew9fJT/oPr2+q0yb/j6M3E1jadK6g+1d8CYqlDAq1cvW5QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPdQ247aEmmGBlSqkmjYUzBHE5IQMB8GA1UdIwQY MBaAFIWs+5rTpQzhUzHP9Ouoi8wHt6KCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGF6N210T2xET0ZUTWNfMDY2aUx6QWUzb29JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi8wYmVkNTItYjdjYy00MTRhLTljODgt NmQ3N2YwNjVhMmMzLzEvaGF6N210T2xET0ZUTWNfMDY2aUx6QWUzb29JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZi8wYmVkNTItYjdjYy00MTRhLTljODgtNmQ3N2YwNjVhMmMz LzEvaGF6N210T2xET0ZUTWNfMDY2aUx6QWUzb29JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANrWQg9CS FnUKeyv8wGOLR6WRQ2WMU8oBhuGBn7OZhdzCAPhIRgLM3C6kAfXJP16SATgtgVLg ZyVAMUib/Pzyzcwa4vqSIvVsf/7gFjMQDYi24kOk86tzOG9bHaXtQb+PxhRdTQzY xVKdiFlfQZPFlyP/5FkzVPBykPMaeUmNK+B0dY6mMXxgRMHRLuzbubPHoVkLHYxO x/fxYlknGOh28M7Os2U3xl3NO34rSWiG3UUMtc1ZXvJkXWWyZVRwJ2a2M70iX3hr wntqicTt+5WtFdksnEnpGcWqhet632H94pVJBQbCQzkuPI8GgS1hUYLMGgh0vFtf whYFnjl0CZf+/Q== -----END CERTIFICATE-----Generated at Sat Dec 6 08:19:26 2025 by rpki-client