This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ca4ff5-48a8-4ecc-ba73-8d0710f3d276/1/hSvBRcWyI5TW_q6Za8C7JSVIAcY.mft File: hSvBRcWyI5TW_q6Za8C7JSVIAcY.mft (raw, json) Hash identifier: 88vwrIrK0eExWvqoxCmYvjfkZu0nggwV1DAG54n3pgA= Subject key identifier: 96:38:37:AD:13:B7:DE:8A:BB:F7:3D:14:C3:3C:EC:2C:CC:71:49:D9 Authority key identifier: 85:2B:C1:45:C5:B2:23:94:D6:FE:AE:99:6B:C0:BB:25:25:48:01:C6 Certificate issuer: /CN=852bc145c5b22394d6feae996bc0bb25254801c6 Certificate serial: 019B3E6C98F586893C17D8A65EA1AFC33557 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hSvBRcWyI5TW_q6Za8C7JSVIAcY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ca4ff5-48a8-4ecc-ba73-8d0710f3d276/1/hSvBRcWyI5TW_q6Za8C7JSVIAcY.mft Manifest number: 0498 Signing time: Sun 21 Dec 2025 01:01:02 +0000 Manifest this update: Sun 21 Dec 2025 01:01:02 +0000 Manifest next update: Mon 22 Dec 2025 01:01:02 +0000 Files and hashes: 1: UUl9tjMfoZ7A5klfeBDKB274xTs.roa (hash: SBvHQQieYmwuldne0ESh4KLqZuA1XSHveZCrpCqrHvQ=) 2: hSvBRcWyI5TW_q6Za8C7JSVIAcY.crl (hash: BcntYdbCLJ8X2ojUjcSAMKXOO3nHUjIV7GMbCJF4b1c=) 3: k3kU5aAomwikuRNdsT68Tqjcik4.roa (hash: wCPtZXM9gkCUtgXFEirTaWeSRaiZvXJy0sUEtKPb0ls=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/ca4ff5-48a8-4ecc-ba73-8d0710f3d276/1/hSvBRcWyI5TW_q6Za8C7JSVIAcY.crl rsync://rpki.ripe.net/repository/DEFAULT/47/ca4ff5-48a8-4ecc-ba73-8d0710f3d276/1/hSvBRcWyI5TW_q6Za8C7JSVIAcY.mft rsync://rpki.ripe.net/repository/DEFAULT/hSvBRcWyI5TW_q6Za8C7JSVIAcY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3e:6c:98:f5:86:89:3c:17:d8:a6:5e:a1:af:c3:35:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=852bc145c5b22394d6feae996bc0bb25254801c6 Validity Not Before: Dec 21 01:01:02 2025 GMT Not After : Dec 22 01:01:02 2025 GMT Subject: CN=963837ad13b7de8abbf73d14c33cec2ccc7149d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:3b:4c:4f:b8:bd:23:06:f8:f8:4c:9f:88:1c: c1:aa:62:75:ed:d0:06:de:3f:1e:d8:39:2b:53:10: d7:d6:51:41:a4:8f:93:10:35:dd:9b:8b:e6:3f:fa: e1:44:3d:55:0a:ab:5d:2c:c6:79:03:fc:b7:e7:31: 1c:a5:1a:3f:bd:aa:78:5f:a8:d4:4a:70:83:af:81: 41:f1:e8:b0:f1:2a:24:da:56:11:cb:b8:f8:b3:76: 95:d0:38:5f:f9:20:ae:fc:d1:06:48:ed:50:ba:52: 2c:91:be:26:b8:36:0b:ce:0e:f0:38:6f:94:9b:df: a3:44:65:82:db:e0:22:eb:bf:3b:59:35:b1:e9:76: 5b:8f:08:4a:6c:20:bf:ec:a4:e9:d9:ef:c2:7e:75: de:0b:68:c3:96:28:82:d1:2a:c1:32:b1:f0:93:ec: 71:ea:ac:cd:c9:f0:2c:bc:12:21:2a:2a:dc:df:7d: 3e:7d:e8:24:14:e0:39:ec:23:da:08:9e:43:5e:30: 6e:d0:fb:61:04:50:fa:10:72:a0:e3:ed:4a:bf:96: 4f:84:8d:43:37:3b:1e:53:95:04:61:ad:6d:1e:d6: c6:69:a4:a8:7d:3f:4f:ab:7a:40:04:85:31:a8:ae: 6e:50:43:d4:9a:73:de:31:de:36:1a:33:30:ba:ca: 9d:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:38:37:AD:13:B7:DE:8A:BB:F7:3D:14:C3:3C:EC:2C:CC:71:49:D9 X509v3 Authority Key Identifier: keyid:85:2B:C1:45:C5:B2:23:94:D6:FE:AE:99:6B:C0:BB:25:25:48:01:C6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hSvBRcWyI5TW_q6Za8C7JSVIAcY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ca4ff5-48a8-4ecc-ba73-8d0710f3d276/1/hSvBRcWyI5TW_q6Za8C7JSVIAcY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ca4ff5-48a8-4ecc-ba73-8d0710f3d276/1/hSvBRcWyI5TW_q6Za8C7JSVIAcY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 74:77:8d:66:ce:0a:cd:c3:b4:db:a2:01:9d:f3:a0:fe:58:94: 34:10:cc:29:fe:94:3f:55:b4:e1:07:18:b0:e0:34:68:84:a6: 27:2a:e2:ee:24:08:4f:2d:a1:13:ff:23:0f:bd:22:55:bf:97: 23:6f:14:70:9e:f1:18:37:0a:43:4d:f6:34:f0:12:cd:56:85: 34:6f:1d:3d:ac:83:96:e8:cf:2e:9d:5a:9e:63:b0:50:61:95: e6:dc:40:07:10:72:25:72:47:94:6f:06:fc:f6:fe:15:dc:ed: 89:f5:19:6e:a1:b8:46:75:6d:a7:6a:e4:05:3d:8b:0d:ea:ca: 49:1f:58:c2:c4:e0:a6:82:e6:cc:7f:0b:2b:07:92:57:89:7b: 89:bd:5f:d2:28:92:93:e4:3b:97:95:02:15:80:6b:44:c6:bf: 8d:92:06:0f:74:2b:80:03:a2:44:c8:1e:82:46:04:51:16:05: 9a:85:fe:3d:d1:56:46:74:f9:5a:cb:09:de:5e:dc:1e:dc:ea: 95:26:dc:6b:da:ea:90:e4:8c:78:a3:35:b3:ca:d2:df:04:84: bf:c4:e8:3d:e8:f7:6a:d5:fd:c1:00:61:ce:b2:c4:7b:ea:a3: f7:ea:3a:dd:10:a5:bc:9f:72:69:f7:ca:fd:53:4f:af:e1:42: b6:e1:a2:29 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs+bJj1hok8F9imXqGvwzVXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1MmJjMTQ1YzViMjIzOTRkNmZlYWU5OTZiYzBiYjI1MjU0 ODAxYzYwHhcNMjUxMjIxMDEwMTAyWhcNMjUxMjIyMDEwMTAyWjAzMTEwLwYDVQQD Eyg5NjM4MzdhZDEzYjdkZThhYmJmNzNkMTRjMzNjZWMyY2NjNzE0OWQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoztMT7i9Iwb4+EyfiBzBqmJ17dAG 3j8e2DkrUxDX1lFBpI+TEDXdm4vmP/rhRD1VCqtdLMZ5A/y35zEcpRo/vap4X6jU SnCDr4FB8eiw8Sok2lYRy7j4s3aV0Dhf+SCu/NEGSO1QulIskb4muDYLzg7wOG+U m9+jRGWC2+Ai6787WTWx6XZbjwhKbCC/7KTp2e/CfnXeC2jDliiC0SrBMrHwk+xx 6qzNyfAsvBIhKirc330+fegkFOA57CPaCJ5DXjBu0PthBFD6EHKg4+1Kv5ZPhI1D NzseU5UEYa1tHtbGaaSofT9Pq3pABIUxqK5uUEPUmnPeMd42GjMwusqdHQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJY4N60Tt96Ku/c9FMM87CzMcUnZMB8GA1UdIwQY MBaAFIUrwUXFsiOU1v6umWvAuyUlSAHGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaFN2QlJjV3lJNVRXX3E2WmE4QzdKU1ZJQWNZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny9jYTRmZjUtNDhhOC00ZWNjLWJhNzMt OGQwNzEwZjNkMjc2LzEvaFN2QlJjV3lJNVRXX3E2WmE4QzdKU1ZJQWNZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ny9jYTRmZjUtNDhhOC00ZWNjLWJhNzMtOGQwNzEwZjNkMjc2 LzEvaFN2QlJjV3lJNVRXX3E2WmE4QzdKU1ZJQWNZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdHeNZs4K zcO026IBnfOg/liUNBDMKf6UP1W04QcYsOA0aISmJyri7iQITy2hE/8jD70iVb+X I28UcJ7xGDcKQ032NPASzVaFNG8dPayDlujPLp1anmOwUGGV5txABxByJXJHlG8G /Pb+FdztifUZbqG4RnVtp2rkBT2LDerKSR9YwsTgpoLmzH8LKweSV4l7ib1f0iiS k+Q7l5UCFYBrRMa/jZIGD3QrgAOiRMgegkYEURYFmoX+PdFWRnT5WssJ3l7cHtzq lSbca9rqkOSMeKM1s8rS3wSEv8ToPej3atX9wQBhzrLEe+qj9+o63RClvJ9yaffK /VNPr+FCtuGiKQ== -----END CERTIFICATE-----Generated at Sun Dec 21 10:17:22 2025 by rpki-client