This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/72c095-d640-41ec-a0bd-8d320062ae89/1/hT8dWhiK5rK18qoTjbj5mqWq16E.mft File: hT8dWhiK5rK18qoTjbj5mqWq16E.mft (raw, json) Hash identifier: be332x8CyiRdPMTOh460NPUIn5JmMV+xKiHlBpyniCA= Subject key identifier: 24:47:DE:94:F6:74:41:35:8A:BE:73:AC:5D:19:33:08:4F:1F:F1:76 Authority key identifier: 85:3F:1D:5A:18:8A:E6:B2:B5:F2:AA:13:8D:B8:F9:9A:A5:AA:D7:A1 Certificate issuer: /CN=853f1d5a188ae6b2b5f2aa138db8f99aa5aad7a1 Certificate serial: 019AF276DFE21BC17962C1421856FD5963AC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hT8dWhiK5rK18qoTjbj5mqWq16E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/72c095-d640-41ec-a0bd-8d320062ae89/1/hT8dWhiK5rK18qoTjbj5mqWq16E.mft Manifest number: 9C Signing time: Sat 06 Dec 2025 07:01:07 +0000 Manifest this update: Sat 06 Dec 2025 07:01:07 +0000 Manifest next update: Sun 07 Dec 2025 07:01:07 +0000 Files and hashes: 1: VApcgRE4jCfqWsVvaGSgipYw68w.roa (hash: A0jt937wu1wIoLHac2gn8nLqE9B73D2kq/AGcMo7Moc=) 2: hT8dWhiK5rK18qoTjbj5mqWq16E.crl (hash: pht9pfMz2gW+MndyZyrEPwvKhS4yKb5VJ5LA0vpNr7s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/72c095-d640-41ec-a0bd-8d320062ae89/1/hT8dWhiK5rK18qoTjbj5mqWq16E.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/72c095-d640-41ec-a0bd-8d320062ae89/1/hT8dWhiK5rK18qoTjbj5mqWq16E.mft rsync://rpki.ripe.net/repository/DEFAULT/hT8dWhiK5rK18qoTjbj5mqWq16E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:df:e2:1b:c1:79:62:c1:42:18:56:fd:59:63:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=853f1d5a188ae6b2b5f2aa138db8f99aa5aad7a1 Validity Not Before: Dec 6 07:01:07 2025 GMT Not After : Dec 7 07:01:07 2025 GMT Subject: CN=2447de94f67441358abe73ac5d1933084f1ff176 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:b4:13:38:a5:6b:58:d0:d4:13:6b:24:fb:a1: 61:4b:8d:07:c5:9e:fd:a6:4c:e3:8d:e3:7f:49:ab: 5f:c0:33:98:5c:ca:ea:a6:30:65:15:3c:95:82:41: 7d:6f:17:bb:0c:55:a5:7c:a6:a3:07:f3:70:95:7b: 06:f9:d1:29:d9:bd:5e:f8:e2:86:79:f3:7e:f4:34: e0:fa:c0:d4:74:00:2b:11:d1:2b:ec:80:d8:e5:54: 82:c8:c3:cd:42:8e:91:d5:3b:4d:d5:41:9e:32:13: 13:dc:ad:04:60:27:49:3b:9e:77:b6:b6:25:02:85: a8:8c:5b:90:2f:bc:cc:d9:e6:26:b5:7f:1d:e6:e4: 1a:17:49:1a:e1:fe:70:03:e0:2b:b4:4f:7f:28:0d: d9:b8:46:a3:ee:ef:19:51:a6:c9:2c:57:c6:ed:b6: 38:e1:12:85:86:f7:81:8a:62:f6:55:01:c0:63:bd: 8d:22:44:f2:75:35:06:ef:cc:e1:ee:94:f6:4b:0b: 01:85:f8:06:87:04:ed:b3:f2:03:7e:fd:54:58:1b: e2:d6:2e:1b:23:8e:00:20:cc:df:ff:01:3d:ee:dd: e5:b8:cd:51:43:74:14:85:ed:98:b3:62:cf:9a:f4: c9:4b:b7:f8:9d:25:5b:d9:3b:b9:6b:d1:34:61:07: 36:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:47:DE:94:F6:74:41:35:8A:BE:73:AC:5D:19:33:08:4F:1F:F1:76 X509v3 Authority Key Identifier: keyid:85:3F:1D:5A:18:8A:E6:B2:B5:F2:AA:13:8D:B8:F9:9A:A5:AA:D7:A1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hT8dWhiK5rK18qoTjbj5mqWq16E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/72c095-d640-41ec-a0bd-8d320062ae89/1/hT8dWhiK5rK18qoTjbj5mqWq16E.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/72c095-d640-41ec-a0bd-8d320062ae89/1/hT8dWhiK5rK18qoTjbj5mqWq16E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 01:da:3c:19:d1:89:ed:51:32:5a:a6:46:7c:69:06:a5:46:a9: 06:88:d4:67:7a:71:33:64:35:4e:fe:f1:15:d6:5b:42:bf:a3: bb:34:f8:71:67:48:15:2d:02:cd:df:87:28:bb:3d:90:9a:d6: 4d:c1:c3:14:17:6a:a1:ca:0d:d6:40:47:1b:71:a2:ca:7e:e5: a3:43:a2:4d:53:13:5f:a1:21:72:90:4d:29:13:98:43:f8:dc: 50:ec:53:e7:9e:13:5c:5a:1c:19:7a:6c:b1:c3:72:d0:59:43: eb:f5:36:63:92:f6:70:cf:42:c9:00:7e:d7:0a:e5:33:d2:8b: 8e:30:8e:88:1b:d4:38:48:59:1c:1f:7c:4f:28:4a:67:c0:c4: 3a:74:f5:4d:59:55:4e:ef:2e:ec:4e:30:fc:e2:7c:67:00:1a: d6:8e:88:e2:d5:50:05:b8:41:54:a5:33:e3:0f:26:31:23:50: 16:66:35:76:0c:ff:aa:c1:64:92:ba:bb:ef:ee:31:07:d8:49: 82:30:34:0f:34:1f:c7:0e:d9:50:55:5d:4a:f5:77:1b:64:f7: a8:44:2b:9c:d9:4a:c5:d7:7f:e1:5e:53:c9:25:86:13:69:0c: 00:65:a4:a1:28:93:8c:dd:22:9a:48:8c:38:ed:c3:87:ed:61: b2:27:d4:82 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydt/iG8F5YsFCGFb9WWOsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1M2YxZDVhMTg4YWU2YjJiNWYyYWExMzhkYjhmOTlhYTVh YWQ3YTEwHhcNMjUxMjA2MDcwMTA3WhcNMjUxMjA3MDcwMTA3WjAzMTEwLwYDVQQD EygyNDQ3ZGU5NGY2NzQ0MTM1OGFiZTczYWM1ZDE5MzMwODRmMWZmMTc2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp7QTOKVrWNDUE2sk+6FhS40HxZ79 pkzjjeN/SatfwDOYXMrqpjBlFTyVgkF9bxe7DFWlfKajB/NwlXsG+dEp2b1e+OKG efN+9DTg+sDUdAArEdEr7IDY5VSCyMPNQo6R1TtN1UGeMhMT3K0EYCdJO553trYl AoWojFuQL7zM2eYmtX8d5uQaF0ka4f5wA+ArtE9/KA3ZuEaj7u8ZUabJLFfG7bY4 4RKFhveBimL2VQHAY72NIkTydTUG78zh7pT2SwsBhfgGhwTts/IDfv1UWBvi1i4b I44AIMzf/wE97t3luM1RQ3QUhe2Ys2LPmvTJS7f4nSVb2Tu5a9E0YQc2UwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCRH3pT2dEE1ir5zrF0ZMwhPH/F2MB8GA1UdIwQY MBaAFIU/HVoYiuaytfKqE424+ZqlqtehMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaFQ4ZFdoaUs1cksxOHFvVGpiajVtcVdxMTZFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC83MmMwOTUtZDY0MC00MWVjLWEwYmQt OGQzMjAwNjJhZTg5LzEvaFQ4ZFdoaUs1cksxOHFvVGpiajVtcVdxMTZFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC83MmMwOTUtZDY0MC00MWVjLWEwYmQtOGQzMjAwNjJhZTg5 LzEvaFQ4ZFdoaUs1cksxOHFvVGpiajVtcVdxMTZFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAdo8GdGJ 7VEyWqZGfGkGpUapBojUZ3pxM2Q1Tv7xFdZbQr+juzT4cWdIFS0Czd+HKLs9kJrW TcHDFBdqocoN1kBHG3Giyn7lo0OiTVMTX6EhcpBNKROYQ/jcUOxT554TXFocGXps scNy0FlD6/U2Y5L2cM9CyQB+1wrlM9KLjjCOiBvUOEhZHB98TyhKZ8DEOnT1TVlV Tu8u7E4w/OJ8ZwAa1o6I4tVQBbhBVKUz4w8mMSNQFmY1dgz/qsFkkrq77+4xB9hJ gjA0DzQfxw7ZUFVdSvV3G2T3qEQrnNlKxdd/4V5TySWGE2kMAGWkoSiTjN0imkiM OO3Dh+1hsifUgg== -----END CERTIFICATE-----Generated at Sat Dec 6 13:50:06 2025 by rpki-client