This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.mft File: hIsSlNJ2n6N7NIrMXav8uP5vmZg.mft (raw, json) Hash identifier: C8rFV50ejcsQsCJqy/yoHyvbPxCVd+wVn9fXYLwTS8c= Subject key identifier: 0D:C5:B2:BE:05:31:AE:57:24:75:19:12:05:AC:09:D9:79:FF:95:AA Authority key identifier: 84:8B:12:94:D2:76:9F:A3:7B:34:8A:CC:5D:AB:FC:B8:FE:6F:99:98 Certificate issuer: /CN=848b1294d2769fa37b348acc5dabfcb8fe6f9998 Certificate serial: 019B3D59C13E735F42C7896B21B12F3521EF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hIsSlNJ2n6N7NIrMXav8uP5vmZg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.mft Manifest number: 0288 Signing time: Sat 20 Dec 2025 20:00:50 +0000 Manifest this update: Sat 20 Dec 2025 20:00:50 +0000 Manifest next update: Sun 21 Dec 2025 20:00:50 +0000 Files and hashes: 1: duguTeW8ErmRr7f5ZEryR3oV58E.roa (hash: q3OOsJ7Kv17p8ez5C5AQYcTLGWf82piJmxtRxe/QdaM=) 2: hIsSlNJ2n6N7NIrMXav8uP5vmZg.crl (hash: Akrv0U4H4gOsauGTOjzZxrqzXqRMQSR/3GwUVHk468s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.crl rsync://rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.mft rsync://rpki.ripe.net/repository/DEFAULT/hIsSlNJ2n6N7NIrMXav8uP5vmZg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 15:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3d:59:c1:3e:73:5f:42:c7:89:6b:21:b1:2f:35:21:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=848b1294d2769fa37b348acc5dabfcb8fe6f9998 Validity Not Before: Dec 20 20:00:50 2025 GMT Not After : Dec 21 20:00:50 2025 GMT Subject: CN=0dc5b2be0531ae572475191205ac09d979ff95aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:4d:19:42:21:c1:fb:b6:38:a2:e8:88:fa:7e: fc:d3:96:d4:50:3e:a8:00:39:1a:ff:9e:b8:3a:76: 65:e7:db:d1:04:b8:cb:8f:92:6b:ab:6a:da:a6:ba: 75:c1:3e:36:fc:99:3d:21:49:da:cb:8d:5e:92:f5: 59:4e:82:16:a2:52:1c:a9:ec:ef:16:c2:df:14:5d: 2d:f3:fd:94:89:a8:e7:b4:4d:4e:a4:de:57:79:c1: b0:45:c9:cf:d7:78:42:c8:53:8f:40:04:33:74:64: 2b:58:05:49:08:f7:1b:57:90:e0:11:1b:e6:d0:5a: c7:cf:9f:87:29:92:fd:6f:b7:79:34:34:ce:ed:6f: 73:d5:57:0e:45:73:ab:c6:b1:e6:ab:97:86:8c:e4: 39:38:15:5d:c9:23:04:a4:8c:f1:99:36:ad:4f:46: 9b:23:e3:01:5b:3f:d1:56:59:bb:91:21:83:23:70: 64:4c:d9:bf:93:1e:0d:35:58:87:42:86:84:36:50: 42:ee:7b:ab:96:a0:51:0f:f5:65:25:e6:79:d5:28: 4d:3f:2b:30:35:58:8d:dc:fb:b6:71:7f:d0:1a:c6: 32:1c:eb:c7:3e:55:82:32:0f:2c:5c:05:07:a0:76: a7:6d:7f:14:80:89:dc:55:ac:4b:ce:2f:8d:7f:fd: 55:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:C5:B2:BE:05:31:AE:57:24:75:19:12:05:AC:09:D9:79:FF:95:AA X509v3 Authority Key Identifier: keyid:84:8B:12:94:D2:76:9F:A3:7B:34:8A:CC:5D:AB:FC:B8:FE:6F:99:98 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hIsSlNJ2n6N7NIrMXav8uP5vmZg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/9a234c-6512-4447-823c-0db7259f20b8/1/hIsSlNJ2n6N7NIrMXav8uP5vmZg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a7:54:ab:24:df:86:d8:c8:2b:57:2c:69:3d:95:e0:eb:13:48: 47:11:19:d8:b0:bb:f8:5d:2f:66:22:35:b8:6e:45:fb:0e:dd: 03:d4:b3:e9:df:f5:3b:2b:19:04:43:72:1e:25:4a:ad:61:27: 1a:0b:32:f0:eb:d2:fa:58:b2:5d:07:43:10:f5:a5:4b:02:e1: 29:b7:1a:a7:15:1a:54:f2:7b:7b:2d:25:2e:d8:4c:12:fb:ba: d0:40:bd:79:14:f1:bf:97:50:6b:65:63:d0:3e:12:26:76:f5: bc:cb:25:cf:71:0b:31:0c:d9:68:61:10:e0:e1:47:40:80:0f: 44:5d:56:24:b6:18:db:10:49:2a:0e:bb:da:11:8b:cf:88:e3: b3:a6:71:86:9e:5b:26:9d:14:b6:39:42:3c:f8:6b:19:f3:4a: 1b:ba:61:bc:a2:d5:8d:d0:c3:a2:0e:e4:e0:10:e9:5a:92:cd: cf:dc:81:28:6a:33:f1:6f:16:84:52:43:b3:93:bf:56:8f:11: 76:cd:66:77:2f:ce:73:9e:62:9e:cb:85:a5:a0:e6:38:c4:80: cc:c4:70:6b:c2:21:9b:b4:36:23:3f:97:d3:55:4b:78:dc:80: 5b:a8:32:6f:ee:62:ef:d6:e9:58:e6:01:f3:d0:61:77:fb:67: 80:78:ca:e4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs9WcE+c19Cx4lrIbEvNSHvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0OGIxMjk0ZDI3NjlmYTM3YjM0OGFjYzVkYWJmY2I4ZmU2 Zjk5OTgwHhcNMjUxMjIwMjAwMDUwWhcNMjUxMjIxMjAwMDUwWjAzMTEwLwYDVQQD EygwZGM1YjJiZTA1MzFhZTU3MjQ3NTE5MTIwNWFjMDlkOTc5ZmY5NWFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm00ZQiHB+7Y4ouiI+n7805bUUD6o ADka/564OnZl59vRBLjLj5Jrq2raprp1wT42/Jk9IUnay41ekvVZToIWolIcqezv FsLfFF0t8/2UiajntE1OpN5XecGwRcnP13hCyFOPQAQzdGQrWAVJCPcbV5DgERvm 0FrHz5+HKZL9b7d5NDTO7W9z1VcORXOrxrHmq5eGjOQ5OBVdySMEpIzxmTatT0ab I+MBWz/RVlm7kSGDI3BkTNm/kx4NNViHQoaENlBC7nurlqBRD/VlJeZ51ShNPysw NViN3Pu2cX/QGsYyHOvHPlWCMg8sXAUHoHanbX8UgIncVaxLzi+Nf/1VyQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA3Fsr4FMa5XJHUZEgWsCdl5/5WqMB8GA1UdIwQY MBaAFISLEpTSdp+jezSKzF2r/Lj+b5mYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaElzU2xOSjJuNk43TklyTVhhdjh1UDV2bVpnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy85YTIzNGMtNjUxMi00NDQ3LTgyM2Mt MGRiNzI1OWYyMGI4LzEvaElzU2xOSjJuNk43TklyTVhhdjh1UDV2bVpnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYy85YTIzNGMtNjUxMi00NDQ3LTgyM2MtMGRiNzI1OWYyMGI4 LzEvaElzU2xOSjJuNk43TklyTVhhdjh1UDV2bVpnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAp1SrJN+G 2MgrVyxpPZXg6xNIRxEZ2LC7+F0vZiI1uG5F+w7dA9Sz6d/1OysZBENyHiVKrWEn Ggsy8OvS+liyXQdDEPWlSwLhKbcapxUaVPJ7ey0lLthMEvu60EC9eRTxv5dQa2Vj 0D4SJnb1vMslz3ELMQzZaGEQ4OFHQIAPRF1WJLYY2xBJKg672hGLz4jjs6Zxhp5b Jp0UtjlCPPhrGfNKG7phvKLVjdDDog7k4BDpWpLNz9yBKGoz8W8WhFJDs5O/Vo8R ds1mdy/Oc55insuFpaDmOMSAzMRwa8Ihm7Q2Iz+X01VLeNyAW6gyb+5i79bpWOYB 89Bhd/tngHjK5A== -----END CERTIFICATE-----Generated at Sun Dec 21 00:15:49 2025 by rpki-client