This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft File: HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft (raw, json) Hash identifier: Stg4/ZVsyZCtCRD944c2/RBERQIErqRLN2MLmRzWfd8= Subject key identifier: 8C:D8:DB:0D:A4:44:B6:C5:FA:3D:50:AE:CD:CB:EE:5D:1A:E6:10:71 Authority key identifier: 1F:21:C5:43:84:4C:41:7F:61:AD:79:39:24:4D:3B:75:9C:2A:43:ED Certificate issuer: /CN=1f21c543844c417f61ad7939244d3b759c2a43ed Certificate serial: 019B54F48367936ABA374036151915ABEF88 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft Manifest number: 17A3 Signing time: Thu 25 Dec 2025 10:01:09 +0000 Manifest this update: Thu 25 Dec 2025 10:01:09 +0000 Manifest next update: Fri 26 Dec 2025 10:01:09 +0000 Files and hashes: 1: DeQFcAAznRKaWbjYYwtHWvAu_JE.roa (hash: GnVFGXqZ+Ydt6iYpHsJ9f6xgYMJ7ccNl+9bHKUUsU+w=) 2: HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl (hash: fgyHHRV86+u92LhPIwcyKHfQccWkErSC57QOI0WL9xc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 26 Dec 2025 10:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:54:f4:83:67:93:6a:ba:37:40:36:15:19:15:ab:ef:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1f21c543844c417f61ad7939244d3b759c2a43ed Validity Not Before: Dec 25 10:01:09 2025 GMT Not After : Dec 26 10:01:09 2025 GMT Subject: CN=8cd8db0da444b6c5fa3d50aecdcbee5d1ae61071 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:59:82:ee:fa:45:e8:b0:44:55:c4:83:ca:07: 22:95:e5:88:38:eb:06:f1:35:13:4e:56:77:67:af: 82:b1:82:e2:fc:74:25:06:d3:3e:96:9a:15:8f:f2: bd:ee:94:a5:4b:0d:74:6b:3e:9c:07:92:34:10:2c: df:dc:15:da:f8:17:49:73:8e:47:6b:fd:5b:c7:6f: 57:ef:ba:4e:c6:41:2f:4e:69:00:bb:ed:39:46:70: b6:35:61:e3:12:74:80:23:1a:e3:ac:77:f1:53:bd: 8f:10:cd:24:94:68:89:d3:02:9a:36:57:36:a0:77: 26:7d:f6:96:f5:4e:0b:f8:a0:3d:ed:90:28:9d:ba: e9:29:6c:e3:3e:1e:6f:50:78:82:5e:0d:ef:4e:c0: c3:13:2c:35:8f:d8:3e:bc:0e:ee:3a:ac:7a:d1:22: 8e:b1:80:50:27:59:1a:7a:8f:76:ee:57:97:3d:bd: c5:46:60:9e:79:0b:ca:e3:3b:48:60:c3:a5:26:4c: d0:b6:33:cc:18:9e:10:ae:5b:8d:2c:bd:16:a0:ab: 7d:e2:86:e2:a4:a0:d5:dd:33:d9:6f:88:39:9c:31: de:8f:a8:30:c1:7a:b2:56:a0:d2:ba:7f:c7:4e:65: 54:a0:6f:a1:40:d1:50:89:a8:d5:da:f9:6f:a7:04: e8:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:D8:DB:0D:A4:44:B6:C5:FA:3D:50:AE:CD:CB:EE:5D:1A:E6:10:71 X509v3 Authority Key Identifier: keyid:1F:21:C5:43:84:4C:41:7F:61:AD:79:39:24:4D:3B:75:9C:2A:43:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/156ecd-fe68-4bc3-ae7d-b8c4853e42bc/1/HyHFQ4RMQX9hrXk5JE07dZwqQ-0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b6:ee:7c:b0:ee:9a:d9:47:f1:51:79:e0:28:25:d0:87:dd:29: 2b:5d:fd:ee:6d:d5:26:83:16:41:67:b5:c9:50:21:53:d9:46: 15:4b:e5:37:bc:02:58:cc:32:2c:c5:91:13:a9:98:b2:79:3b: 17:6e:66:eb:54:e0:02:11:9b:07:64:80:9b:18:a9:9f:2c:b6: 9b:0f:a3:73:97:97:ea:a1:f9:e7:02:1f:44:87:a7:fc:a2:bb: fc:c4:ec:9d:7c:18:7b:37:df:5c:f8:90:5c:bb:82:fe:73:9e: ca:f7:53:52:f7:2d:72:62:3a:c9:8c:ce:11:3a:f7:b0:ee:76: 43:cf:f6:48:7c:51:3e:66:30:85:bd:7f:8c:41:13:1d:ab:11: a0:f7:95:5a:b6:ee:f7:bb:42:52:bb:64:89:42:f8:5e:c3:3d: 20:8c:cc:ae:94:03:fb:68:5c:2f:5c:87:ba:9f:17:ef:9e:71: 30:20:21:0f:b0:d1:ba:11:2b:32:69:3b:18:c6:7c:9f:8b:5d: e5:4a:02:62:bb:d0:8d:5b:9e:0d:aa:56:e7:06:fe:d4:4e:f5: 8c:55:94:4e:b6:4f:1f:a3:db:32:21:45:fa:fd:ae:50:e7:f2: a3:57:e6:d4:68:36:f2:a6:63:cc:b2:c8:78:5c:91:33:66:58: 3d:83:12:92 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtU9INnk2q6N0A2FRkVq++IMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFmMjFjNTQzODQ0YzQxN2Y2MWFkNzkzOTI0NGQzYjc1OWMy YTQzZWQwHhcNMjUxMjI1MTAwMTA5WhcNMjUxMjI2MTAwMTA5WjAzMTEwLwYDVQQD Eyg4Y2Q4ZGIwZGE0NDRiNmM1ZmEzZDUwYWVjZGNiZWU1ZDFhZTYxMDcxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw1mC7vpF6LBEVcSDygcileWIOOsG 8TUTTlZ3Z6+CsYLi/HQlBtM+lpoVj/K97pSlSw10az6cB5I0ECzf3BXa+BdJc45H a/1bx29X77pOxkEvTmkAu+05RnC2NWHjEnSAIxrjrHfxU72PEM0klGiJ0wKaNlc2 oHcmffaW9U4L+KA97ZAonbrpKWzjPh5vUHiCXg3vTsDDEyw1j9g+vA7uOqx60SKO sYBQJ1kaeo927leXPb3FRmCeeQvK4ztIYMOlJkzQtjPMGJ4QrluNLL0WoKt94obi pKDV3TPZb4g5nDHej6gwwXqyVqDSun/HTmVUoG+hQNFQiajV2vlvpwTo6QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIzY2w2kRLbF+j1Qrs3L7l0a5hBxMB8GA1UdIwQY MBaAFB8hxUOETEF/Ya15OSRNO3WcKkPtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSHlIRlE0Uk1RWDloclhrNUpFMDdkWndxUS0wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8xNTZlY2QtZmU2OC00YmMzLWFlN2Qt YjhjNDg1M2U0MmJjLzEvSHlIRlE0Uk1RWDloclhrNUpFMDdkWndxUS0wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi8xNTZlY2QtZmU2OC00YmMzLWFlN2QtYjhjNDg1M2U0MmJj LzEvSHlIRlE0Uk1RWDloclhrNUpFMDdkWndxUS0wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtu58sO6a 2UfxUXngKCXQh90pK1397m3VJoMWQWe1yVAhU9lGFUvlN7wCWMwyLMWRE6mYsnk7 F25m61TgAhGbB2SAmxipnyy2mw+jc5eX6qH55wIfRIen/KK7/MTsnXwYezffXPiQ XLuC/nOeyvdTUvctcmI6yYzOETr3sO52Q8/2SHxRPmYwhb1/jEETHasRoPeVWrbu 97tCUrtkiUL4XsM9IIzMrpQD+2hcL1yHup8X755xMCAhD7DRuhErMmk7GMZ8n4td 5UoCYrvQjVueDapW5wb+1E71jFWUTrZPH6PbMiFF+v2uUOfyo1fm1Gg28qZjzLLI eFyRM2ZYPYMSkg== -----END CERTIFICATE-----Generated at Thu Dec 25 14:53:03 2025 by rpki-client