This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft File: hWhAcEemLmSDAMUYKik1P_WOsF8.mft (raw, json) Hash identifier: 4mhjOL21qEAyNxJ8db+/H3OMIUrhRwRbRo9r3ZKfJ3o= Subject key identifier: FB:C0:82:C3:C0:05:42:26:60:E9:1E:6C:1B:86:5E:57:77:98:99:1A Authority key identifier: 85:68:40:70:47:A6:2E:64:83:00:C5:18:2A:29:35:3F:F5:8E:B0:5F Certificate issuer: /CN=8568407047a62e648300c5182a29353ff58eb05f Certificate serial: 019B6BB29423A76898A9608491CF325D7BE7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft Manifest number: 04F1 Signing time: Mon 29 Dec 2025 20:00:23 +0000 Manifest this update: Mon 29 Dec 2025 20:00:23 +0000 Manifest next update: Tue 30 Dec 2025 20:00:23 +0000 Files and hashes: 1: 0nvhqw7aFiUkSIOiOEerDMnQ_ZQ.roa (hash: HMe62SGaPYEENwRxXbOtER7G/ZP8W5TpI/QjfFDw0sg=) 2: hWhAcEemLmSDAMUYKik1P_WOsF8.crl (hash: uSoyYWHei7lEq4gsGlr658gR8zMN8g6OS6fmxMRLhPI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 30 Dec 2025 20:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:6b:b2:94:23:a7:68:98:a9:60:84:91:cf:32:5d:7b:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8568407047a62e648300c5182a29353ff58eb05f Validity Not Before: Dec 29 20:00:23 2025 GMT Not After : Dec 30 20:00:23 2025 GMT Subject: CN=fbc082c3c005422660e91e6c1b865e577798991a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:31:18:25:f0:0b:a5:ed:b5:d1:fe:27:6f:a7: 55:69:b5:ba:91:92:3f:56:48:b1:bd:9e:07:05:da: d3:9f:73:18:36:f0:fb:8c:c7:91:81:87:0e:cf:4d: bf:a8:58:3f:d3:95:b0:d0:ed:c8:1a:60:dc:68:b3: 34:a8:a3:b9:10:d9:5b:9f:3c:e6:c9:fb:c8:8f:7d: 67:43:ae:df:ad:38:fc:28:15:5c:0e:b7:42:e9:6d: c3:9e:10:25:fc:a3:ae:9f:63:3d:e1:26:1b:27:57: 72:07:7d:55:7a:16:d2:09:32:77:7f:fc:32:fb:c5: 57:4b:93:a5:2a:97:2b:2f:dc:e3:89:47:ae:df:60: 98:de:f1:6f:24:6b:4c:60:53:26:79:b6:35:33:95: 0c:48:9e:2a:f9:87:81:ef:86:2f:35:9c:e2:1c:15: b9:47:36:c9:f2:70:ee:df:73:06:eb:61:7d:ff:d2: b4:76:32:b1:d3:b9:86:09:52:47:7a:6e:ff:d6:70: 40:35:9f:3e:59:e9:cf:b5:bd:27:62:86:1f:99:70: 83:7c:c7:68:a9:71:aa:cb:e9:fd:24:70:6c:53:03: b9:4a:a0:30:fc:93:69:7f:19:51:45:17:df:32:df: ce:f2:4e:89:e9:78:ba:41:b4:1b:69:16:78:e1:b1: bb:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:C0:82:C3:C0:05:42:26:60:E9:1E:6C:1B:86:5E:57:77:98:99:1A X509v3 Authority Key Identifier: keyid:85:68:40:70:47:A6:2E:64:83:00:C5:18:2A:29:35:3F:F5:8E:B0:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7e:4c:47:e6:fa:ce:dc:93:b6:dd:52:e8:ed:a7:2b:83:54:1d: 16:5c:14:37:d0:76:68:08:19:7d:f6:33:b9:20:79:7b:99:34: 4e:87:93:72:a6:8d:c5:2b:05:8d:cd:f5:1d:95:0b:71:55:ba: c3:9d:e0:91:20:cd:ba:11:e6:ae:7b:8b:13:28:07:6a:01:fe: 8a:65:41:00:e2:05:58:46:96:70:cb:6a:24:f0:76:96:30:72: 1a:a0:69:3d:5d:4c:c6:26:eb:38:97:53:f3:0f:29:9d:4b:98: 20:5c:89:f6:0d:c6:51:e0:e1:c7:80:9f:02:17:69:08:66:7f: 32:70:87:fd:25:6e:bf:38:74:f8:55:39:4a:10:aa:d4:4f:bb: 2e:09:25:fc:a5:94:20:a2:45:1f:99:9e:60:3a:07:f9:77:83: 27:26:fa:43:5d:f6:2c:d1:4c:05:5c:b6:c6:3d:64:21:8a:c6: 12:04:72:46:53:b0:a8:48:05:08:a0:99:06:67:9a:37:f2:d9: a3:ba:ac:8c:ea:bf:7b:2e:6b:0c:2e:cd:b2:b6:5e:4b:f0:b4: 1a:53:d4:e5:ca:3b:e9:79:c8:38:c7:28:89:68:c5:56:9d:c5: 05:c6:63:b4:1b:6e:18:4b:1a:72:e2:6a:45:8d:ec:ad:e4:e9: 23:13:05:2a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtrspQjp2iYqWCEkc8yXXvnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1Njg0MDcwNDdhNjJlNjQ4MzAwYzUxODJhMjkzNTNmZjU4 ZWIwNWYwHhcNMjUxMjI5MjAwMDIzWhcNMjUxMjMwMjAwMDIzWjAzMTEwLwYDVQQD EyhmYmMwODJjM2MwMDU0MjI2NjBlOTFlNmMxYjg2NWU1Nzc3OTg5OTFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4TEYJfALpe210f4nb6dVabW6kZI/ VkixvZ4HBdrTn3MYNvD7jMeRgYcOz02/qFg/05Ww0O3IGmDcaLM0qKO5ENlbnzzm yfvIj31nQ67frTj8KBVcDrdC6W3DnhAl/KOun2M94SYbJ1dyB31VehbSCTJ3f/wy +8VXS5OlKpcrL9zjiUeu32CY3vFvJGtMYFMmebY1M5UMSJ4q+YeB74YvNZziHBW5 RzbJ8nDu33MG62F9/9K0djKx07mGCVJHem7/1nBANZ8+WenPtb0nYoYfmXCDfMdo qXGqy+n9JHBsUwO5SqAw/JNpfxlRRRffMt/O8k6J6Xi6QbQbaRZ44bG7OQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPvAgsPABUImYOkebBuGXld3mJkaMB8GA1UdIwQY MBaAFIVoQHBHpi5kgwDFGCopNT/1jrBfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaFdoQWNFZW1MbVNEQU1VWUtpazFQX1dPc0Y4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS8zMjAzOTUtNzBjMC00MDAyLWEzNjIt ZWQzZTk4YzY1NmUxLzEvaFdoQWNFZW1MbVNEQU1VWUtpazFQX1dPc0Y4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS8zMjAzOTUtNzBjMC00MDAyLWEzNjItZWQzZTk4YzY1NmUx LzEvaFdoQWNFZW1MbVNEQU1VWUtpazFQX1dPc0Y4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfkxH5vrO 3JO23VLo7acrg1QdFlwUN9B2aAgZffYzuSB5e5k0ToeTcqaNxSsFjc31HZULcVW6 w53gkSDNuhHmrnuLEygHagH+imVBAOIFWEaWcMtqJPB2ljByGqBpPV1MxibrOJdT 8w8pnUuYIFyJ9g3GUeDhx4CfAhdpCGZ/MnCH/SVuvzh0+FU5ShCq1E+7Lgkl/KWU IKJFH5meYDoH+XeDJyb6Q132LNFMBVy2xj1kIYrGEgRyRlOwqEgFCKCZBmeaN/LZ o7qsjOq/ey5rDC7NsrZeS/C0GlPU5co76XnIOMcoiWjFVp3FBcZjtBtuGEsacuJq RY3sreTpIxMFKg== -----END CERTIFICATE-----Generated at Tue Dec 30 03:16:52 2025 by rpki-client