This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft File: hYYCc-snGSK59-yPSlkQFjVtcys.mft (raw, json) Hash identifier: ZZt2/KW60nOuwudncUkbdDeFWqetP16E/Ct82LlxJsU= Subject key identifier: BF:DB:88:B3:40:01:D6:B5:8A:1A:E0:FE:9D:63:13:95:FD:2C:E2:BD Authority key identifier: 85:86:02:73:EB:27:19:22:B9:F7:EC:8F:4A:59:10:16:35:6D:73:2B Certificate issuer: /CN=85860273eb271922b9f7ec8f4a591016356d732b Certificate serial: 019B2776C898F49443CCB48196BE83DD52D9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft Manifest number: 0C9C Signing time: Tue 16 Dec 2025 14:00:54 +0000 Manifest this update: Tue 16 Dec 2025 14:00:54 +0000 Manifest next update: Wed 17 Dec 2025 14:00:54 +0000 Files and hashes: 1: hYYCc-snGSK59-yPSlkQFjVtcys.crl (hash: Dy+8Yw2wQPjPpi/EL97qoWJbOL7nRY4i7ORJ+FLnpdE=) 2: mddF3t4TzWyM7kqwlkCBOdlwjiA.roa (hash: gzOYKSEvkTGbu+QJJsi1Jgy+e4XYPYdTDnUqdEsobA8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.crl rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 14:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:27:76:c8:98:f4:94:43:cc:b4:81:96:be:83:dd:52:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85860273eb271922b9f7ec8f4a591016356d732b Validity Not Before: Dec 16 14:00:54 2025 GMT Not After : Dec 17 14:00:54 2025 GMT Subject: CN=bfdb88b34001d6b58a1ae0fe9d631395fd2ce2bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f3:8e:d8:fb:82:0b:52:c7:2b:0e:84:24:ac: f2:7d:c8:8b:de:5d:0b:0e:58:5f:d4:87:e4:02:4c: 82:e2:0b:a6:f3:b5:fe:8a:c5:98:7a:2e:5f:d2:35: 8d:13:00:9c:cc:4f:3e:af:df:8d:40:b0:d6:db:3f: b1:63:53:d4:9d:eb:e1:b4:86:9e:8c:db:4f:d8:da: 78:46:60:44:f3:ef:8b:f2:da:c8:ce:34:8c:6e:bb: 2a:75:dd:5f:86:64:01:4e:eb:dd:27:0e:e4:9e:b5: 30:56:26:66:b3:c6:3f:df:fc:92:2b:ee:b5:18:2c: 83:f4:f2:df:e4:3c:98:60:0f:d2:50:ae:b3:44:de: a3:fc:de:bc:54:43:40:9f:cb:99:bd:06:7b:17:1a: de:6f:cc:00:e3:fa:3b:55:3e:22:e9:8c:5d:1c:85: fd:71:24:e2:d0:95:32:ca:70:4d:35:75:e8:19:ba: ab:77:40:cb:82:80:07:18:59:a7:19:05:cc:8f:ee: 06:a5:5f:d4:f0:01:53:e9:22:6b:19:98:5a:19:ef: 34:fa:cf:8d:3d:27:a8:4d:4a:97:3d:d6:d0:ef:f5: 09:d8:8b:12:3b:16:0f:fd:25:b9:ba:21:c5:5e:2c: 86:cd:3a:12:b9:be:c6:a5:60:1e:31:85:43:17:f7: 06:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:DB:88:B3:40:01:D6:B5:8A:1A:E0:FE:9D:63:13:95:FD:2C:E2:BD X509v3 Authority Key Identifier: keyid:85:86:02:73:EB:27:19:22:B9:F7:EC:8F:4A:59:10:16:35:6D:73:2B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hYYCc-snGSK59-yPSlkQFjVtcys.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0157c9-3488-4fb8-9b4f-9909ee2f33b2/1/hYYCc-snGSK59-yPSlkQFjVtcys.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4c:bd:e7:84:94:37:ea:b8:58:90:5e:97:62:13:c1:e9:da:1d: 7f:f3:1b:f2:0f:df:27:61:fa:e3:52:83:e5:a2:80:d3:46:87: 1d:03:1d:2f:a5:dd:6a:89:70:83:67:68:63:88:92:c1:61:a4: 85:04:77:12:f8:e7:b4:b8:2c:17:99:0e:c1:2f:0b:f1:60:8d: 96:10:ca:f3:0a:d2:a2:d4:18:8b:48:d5:51:19:ca:0b:a2:de: a6:cf:c2:7a:89:5e:a2:f1:b5:2a:a1:9f:3d:2b:d1:46:41:d5: 28:c4:7f:07:d9:c0:42:94:d5:e5:8a:97:50:89:84:1f:81:7d: c4:4a:0b:b3:1c:f2:5b:86:ee:10:51:81:6f:14:60:ad:96:0e: 7b:57:f3:ec:49:b4:12:37:e4:aa:4c:7e:58:1b:c4:37:1e:fb: 16:ff:ce:4a:40:b9:ae:c3:02:29:18:da:4b:e2:7d:a5:c7:ed: e7:3c:de:ce:c2:8f:eb:e3:73:c3:e4:70:c1:5c:e2:50:a5:3d: 86:b7:b8:ae:7e:7c:eb:07:ca:e2:7c:0a:3e:fe:5d:42:be:9a: a9:4d:99:e0:8d:48:42:26:bc:c9:02:98:0e:9a:40:27:1e:07: d3:ae:08:37:61:b6:85:79:19:48:65:04:f7:e1:92:8f:96:9b: 96:12:1a:95 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsndsiY9JRDzLSBlr6D3VLZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1ODYwMjczZWIyNzE5MjJiOWY3ZWM4ZjRhNTkxMDE2MzU2 ZDczMmIwHhcNMjUxMjE2MTQwMDU0WhcNMjUxMjE3MTQwMDU0WjAzMTEwLwYDVQQD EyhiZmRiODhiMzQwMDFkNmI1OGExYWUwZmU5ZDYzMTM5NWZkMmNlMmJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtvOO2PuCC1LHKw6EJKzyfciL3l0L Dlhf1IfkAkyC4gum87X+isWYei5f0jWNEwCczE8+r9+NQLDW2z+xY1PUnevhtIae jNtP2Np4RmBE8++L8trIzjSMbrsqdd1fhmQBTuvdJw7knrUwViZms8Y/3/ySK+61 GCyD9PLf5DyYYA/SUK6zRN6j/N68VENAn8uZvQZ7Fxreb8wA4/o7VT4i6YxdHIX9 cSTi0JUyynBNNXXoGbqrd0DLgoAHGFmnGQXMj+4GpV/U8AFT6SJrGZhaGe80+s+N PSeoTUqXPdbQ7/UJ2IsSOxYP/SW5uiHFXiyGzToSub7GpWAeMYVDF/cG1QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL/biLNAAda1ihrg/p1jE5X9LOK9MB8GA1UdIwQY MBaAFIWGAnPrJxkiuffsj0pZEBY1bXMrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaFlZQ2Mtc25HU0s1OS15UFNsa1FGalZ0Y3lzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8wMTU3YzktMzQ4OC00ZmI4LTliNGYt OTkwOWVlMmYzM2IyLzEvaFlZQ2Mtc25HU0s1OS15UFNsa1FGalZ0Y3lzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi8wMTU3YzktMzQ4OC00ZmI4LTliNGYtOTkwOWVlMmYzM2Iy LzEvaFlZQ2Mtc25HU0s1OS15UFNsa1FGalZ0Y3lzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATL3nhJQ3 6rhYkF6XYhPB6dodf/Mb8g/fJ2H641KD5aKA00aHHQMdL6Xdaolwg2doY4iSwWGk hQR3EvjntLgsF5kOwS8L8WCNlhDK8wrSotQYi0jVURnKC6Leps/CeoleovG1KqGf PSvRRkHVKMR/B9nAQpTV5YqXUImEH4F9xEoLsxzyW4buEFGBbxRgrZYOe1fz7Em0 Ejfkqkx+WBvENx77Fv/OSkC5rsMCKRjaS+J9pcft5zzezsKP6+Nzw+RwwVziUKU9 hre4rn586wfK4nwKPv5dQr6aqU2Z4I1IQia8yQKYDppAJx4H064IN2G2hXkZSGUE 9+GSj5ablhIalQ== -----END CERTIFICATE-----Generated at Tue Dec 16 23:18:00 2025 by rpki-client