This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/726b60-8aa7-461f-9cd9-7ccbb45dca51/1/hGal3eJ_kR2ovnPCYf9VtYgRmKk.mft File: hGal3eJ_kR2ovnPCYf9VtYgRmKk.mft (raw, json) Hash identifier: 0NsZ6lRaR/xNkXmkapTQgIcp9cSjOrjvs5/4eEaa7BM= Subject key identifier: 46:4B:74:FE:DD:E8:E4:68:13:B2:E0:9E:DF:D6:EB:FE:CE:3D:51:51 Authority key identifier: 84:66:A5:DD:E2:7F:91:1D:A8:BE:73:C2:61:FF:55:B5:88:11:98:A9 Certificate issuer: /CN=8466a5dde27f911da8be73c261ff55b5881198a9 Certificate serial: 019AF12D3D32A1A527FB00AF32975B52333E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hGal3eJ_kR2ovnPCYf9VtYgRmKk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/726b60-8aa7-461f-9cd9-7ccbb45dca51/1/hGal3eJ_kR2ovnPCYf9VtYgRmKk.mft Manifest number: 1761 Signing time: Sat 06 Dec 2025 01:01:05 +0000 Manifest this update: Sat 06 Dec 2025 01:01:05 +0000 Manifest next update: Sun 07 Dec 2025 01:01:05 +0000 Files and hashes: 1: P7kra4ub5VF3YEJjz3ym8CwbAXA.roa (hash: AJEYR0xnzVy6utllNh8R4LIoanjGY6stnMXm+hMmUEo=) 2: hGal3eJ_kR2ovnPCYf9VtYgRmKk.crl (hash: GHsJfIC56739kYxmwxFrVDfozP8beTk/SW+wcsmxHkM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/726b60-8aa7-461f-9cd9-7ccbb45dca51/1/hGal3eJ_kR2ovnPCYf9VtYgRmKk.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/726b60-8aa7-461f-9cd9-7ccbb45dca51/1/hGal3eJ_kR2ovnPCYf9VtYgRmKk.mft rsync://rpki.ripe.net/repository/DEFAULT/hGal3eJ_kR2ovnPCYf9VtYgRmKk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:3d:32:a1:a5:27:fb:00:af:32:97:5b:52:33:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8466a5dde27f911da8be73c261ff55b5881198a9 Validity Not Before: Dec 6 01:01:05 2025 GMT Not After : Dec 7 01:01:05 2025 GMT Subject: CN=464b74fedde8e46813b2e09edfd6ebfece3d5151 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:92:dd:0e:81:96:10:e5:30:00:eb:e6:e2:70: e4:d0:11:13:77:ae:12:1a:53:9f:03:38:a7:a3:f2: 96:f6:0d:7f:84:8b:cf:3a:ea:94:a8:9f:a9:21:e7: 82:44:4c:42:5f:a5:c7:33:be:86:97:f1:2e:46:e6: 05:2e:ca:23:41:28:4d:f6:06:cc:44:28:4a:df:cd: e9:16:1b:1e:c1:c1:5d:e5:aa:48:67:38:54:6e:67: e0:d4:56:35:64:55:56:8e:54:60:8c:57:cb:a8:1a: 6d:29:77:34:32:c1:af:d0:28:73:29:aa:34:ac:c2: b2:18:40:59:91:ca:a3:7e:6d:dc:46:c1:a2:76:a0: 85:65:0d:d2:3f:61:bd:df:1e:41:1e:46:1f:e7:29: 4d:39:e9:7f:b7:d1:0d:9a:b6:45:64:3a:59:41:d4: a6:1d:6c:8b:ad:0b:57:3e:69:fc:ab:27:22:0d:f3: a2:fa:61:6e:9e:02:cd:ce:67:58:96:51:a5:b1:d0: 31:1d:c3:d4:16:1d:77:9d:bc:90:df:a4:9e:ba:58: 86:d7:0e:e1:98:48:03:33:06:b6:51:06:90:29:24: 85:68:e9:ed:0f:9b:32:2d:5b:9a:8a:e4:15:70:07: 71:f7:9c:01:22:5e:dd:6d:e6:88:54:c6:ed:af:91: 24:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:4B:74:FE:DD:E8:E4:68:13:B2:E0:9E:DF:D6:EB:FE:CE:3D:51:51 X509v3 Authority Key Identifier: keyid:84:66:A5:DD:E2:7F:91:1D:A8:BE:73:C2:61:FF:55:B5:88:11:98:A9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hGal3eJ_kR2ovnPCYf9VtYgRmKk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726b60-8aa7-461f-9cd9-7ccbb45dca51/1/hGal3eJ_kR2ovnPCYf9VtYgRmKk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726b60-8aa7-461f-9cd9-7ccbb45dca51/1/hGal3eJ_kR2ovnPCYf9VtYgRmKk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b9:83:1f:b3:df:4f:a3:74:95:59:49:65:be:7f:56:b2:e7:3d: 42:db:9c:91:5c:a8:02:da:b1:24:ca:28:ed:6f:22:71:ee:49: 68:73:a2:61:41:ca:b3:a3:4f:cb:26:ca:cc:ee:f1:73:47:09: 9b:58:b6:a3:37:43:13:21:1e:34:1e:b6:a2:c6:4d:f9:20:af: 65:ca:e2:2a:87:58:bf:70:94:37:5c:30:5f:7f:ed:c8:41:38: be:63:c7:7d:00:47:f6:24:94:9f:05:fc:74:07:c7:f1:fd:af: f3:ea:46:fc:d9:61:8b:75:21:d1:06:f1:d7:8f:1a:1e:48:c0: f5:78:e4:9b:12:6d:b1:86:4b:d3:dd:47:ff:fb:49:3e:d9:e7: ce:a8:a8:47:d4:fd:e9:ec:94:65:bf:9f:30:68:a2:2f:1f:f3: db:92:db:3e:be:26:30:2c:04:69:2c:33:8b:ab:c4:76:1a:8d: 4a:ce:3a:79:6d:c7:20:81:01:76:d6:bd:52:6c:b9:6e:2d:db: 7a:cc:0a:00:d6:60:6b:f0:71:8d:5c:66:19:4b:59:0b:b3:84: 5d:aa:36:63:b4:a6:2a:70:bb:d4:ea:d0:75:cb:b6:13:81:0c: 94:5b:66:83:75:be:9e:38:4d:be:21:08:64:8f:95:ae:18:2f: 52:5b:f6:b0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLT0yoaUn+wCvMpdbUjM+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0NjZhNWRkZTI3ZjkxMWRhOGJlNzNjMjYxZmY1NWI1ODgx MTk4YTkwHhcNMjUxMjA2MDEwMTA1WhcNMjUxMjA3MDEwMTA1WjAzMTEwLwYDVQQD Eyg0NjRiNzRmZWRkZThlNDY4MTNiMmUwOWVkZmQ2ZWJmZWNlM2Q1MTUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3ZLdDoGWEOUwAOvm4nDk0BETd64S GlOfAzino/KW9g1/hIvPOuqUqJ+pIeeCRExCX6XHM76Gl/EuRuYFLsojQShN9gbM RChK383pFhsewcFd5apIZzhUbmfg1FY1ZFVWjlRgjFfLqBptKXc0MsGv0ChzKao0 rMKyGEBZkcqjfm3cRsGidqCFZQ3SP2G93x5BHkYf5ylNOel/t9ENmrZFZDpZQdSm HWyLrQtXPmn8qyciDfOi+mFungLNzmdYllGlsdAxHcPUFh13nbyQ36SeuliG1w7h mEgDMwa2UQaQKSSFaOntD5syLVuaiuQVcAdx95wBIl7dbeaIVMbtr5EkmwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEZLdP7d6ORoE7Lgnt/W6/7OPVFRMB8GA1UdIwQY MBaAFIRmpd3if5EdqL5zwmH/VbWIEZipMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaEdhbDNlSl9rUjJvdm5QQ1lmOVZ0WWdSbUtrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC83MjZiNjAtOGFhNy00NjFmLTljZDkt N2NjYmI0NWRjYTUxLzEvaEdhbDNlSl9rUjJvdm5QQ1lmOVZ0WWdSbUtrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC83MjZiNjAtOGFhNy00NjFmLTljZDktN2NjYmI0NWRjYTUx LzEvaEdhbDNlSl9rUjJvdm5QQ1lmOVZ0WWdSbUtrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuYMfs99P o3SVWUllvn9Wsuc9QtuckVyoAtqxJMoo7W8ice5JaHOiYUHKs6NPyybKzO7xc0cJ m1i2ozdDEyEeNB62osZN+SCvZcriKodYv3CUN1wwX3/tyEE4vmPHfQBH9iSUnwX8 dAfH8f2v8+pG/Nlhi3Uh0Qbx148aHkjA9XjkmxJtsYZL091H//tJPtnnzqioR9T9 6eyUZb+fMGiiLx/z25LbPr4mMCwEaSwzi6vEdhqNSs46eW3HIIEBdta9Umy5bi3b eswKANZga/BxjVxmGUtZC7OEXao2Y7SmKnC71OrQdcu2E4EMlFtmg3W+njhNviEI ZI+VrhgvUlv2sA== -----END CERTIFICATE-----Generated at Sat Dec 6 08:19:11 2025 by rpki-client