This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/29a0dc-20af-437e-9870-3669d1b569d6/1/hyELNM4ALjCgpU-r-ivKxG36cig.mft File: hyELNM4ALjCgpU-r-ivKxG36cig.mft (raw, json) Hash identifier: rqiQGQkRnOrFzxtA6AdIEbkJkamvVG1CD99LIAV4xgw= Subject key identifier: 17:15:58:54:BC:A7:28:A0:CA:8A:95:2C:C8:D6:7A:8E:EF:78:BE:2B Authority key identifier: 87:21:0B:34:CE:00:2E:30:A0:A5:4F:AB:FA:2B:CA:C4:6D:FA:72:28 Certificate issuer: /CN=87210b34ce002e30a0a54fabfa2bcac46dfa7228 Certificate serial: 019B3A21916A828DF894475EAE5172DE7BC5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hyELNM4ALjCgpU-r-ivKxG36cig.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/29a0dc-20af-437e-9870-3669d1b569d6/1/hyELNM4ALjCgpU-r-ivKxG36cig.mft Manifest number: 05A5 Signing time: Sat 20 Dec 2025 05:00:36 +0000 Manifest this update: Sat 20 Dec 2025 05:00:36 +0000 Manifest next update: Sun 21 Dec 2025 05:00:36 +0000 Files and hashes: 1: Oi0Mexif2IU5YWgRrWRDGcE4Aw4.roa (hash: hcI8ATUfRYduE8yCuLSr8RsjKUn++KtzCI3lWbIhr1A=) 2: RNEIzNGbtOLDhiuIlbx5LtZxiHA.roa (hash: YH3jUp9Z5jmgiTgvLayfiplIuhfqDKTG69/LcYMXnX0=) 3: hyELNM4ALjCgpU-r-ivKxG36cig.crl (hash: fJLpJnfGEJZvfuF1JOxPO4btcwiW6P3qXZxTuYTzk0Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/29a0dc-20af-437e-9870-3669d1b569d6/1/hyELNM4ALjCgpU-r-ivKxG36cig.crl rsync://rpki.ripe.net/repository/DEFAULT/4a/29a0dc-20af-437e-9870-3669d1b569d6/1/hyELNM4ALjCgpU-r-ivKxG36cig.mft rsync://rpki.ripe.net/repository/DEFAULT/hyELNM4ALjCgpU-r-ivKxG36cig.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 05:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3a:21:91:6a:82:8d:f8:94:47:5e:ae:51:72:de:7b:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87210b34ce002e30a0a54fabfa2bcac46dfa7228 Validity Not Before: Dec 20 05:00:36 2025 GMT Not After : Dec 21 05:00:36 2025 GMT Subject: CN=17155854bca728a0ca8a952cc8d67a8eef78be2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e7:e9:8a:6f:bd:bb:4b:6a:af:37:8b:0e:1b: ba:9e:ba:3d:ce:7f:57:ec:d4:2c:98:c2:80:21:b1: 39:df:a3:26:f1:0a:8d:3e:92:1f:7c:64:0b:3d:3a: ba:d0:b0:6f:57:eb:f2:d9:7c:1a:8e:4b:11:33:00: cd:bc:e9:89:bb:68:96:30:ce:d8:e7:65:12:5c:24: d2:05:4d:1f:16:f8:53:0c:2f:a2:b5:4e:66:7d:a9: ff:33:16:6c:cc:96:43:d5:11:1d:6f:90:1e:01:ac: 81:11:7f:2f:91:fa:75:b6:cd:fc:1c:d6:52:d7:ee: d8:b2:77:ea:88:1c:5c:d3:f7:21:64:ab:12:fc:b5: 00:d3:5e:7f:1d:af:f0:56:e9:c0:af:39:4c:1e:0c: 49:ef:89:25:c1:07:1a:17:7e:1d:f2:84:3a:e5:7c: d1:e1:94:e3:bd:a1:69:51:75:42:e2:79:cc:70:3e: 20:df:ba:4d:1f:e3:1f:92:d4:6b:f2:21:50:d0:50: b6:d6:7f:b7:9d:e0:c5:2b:39:8e:6b:8b:b4:0c:07: bf:66:46:96:7f:51:92:22:d4:96:65:0d:9e:d9:db: e7:a9:1f:18:66:cc:fb:d3:9a:c8:94:56:a2:17:20: d6:1c:47:25:77:cc:4f:20:63:71:70:37:40:63:64: ba:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:15:58:54:BC:A7:28:A0:CA:8A:95:2C:C8:D6:7A:8E:EF:78:BE:2B X509v3 Authority Key Identifier: keyid:87:21:0B:34:CE:00:2E:30:A0:A5:4F:AB:FA:2B:CA:C4:6D:FA:72:28 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hyELNM4ALjCgpU-r-ivKxG36cig.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/29a0dc-20af-437e-9870-3669d1b569d6/1/hyELNM4ALjCgpU-r-ivKxG36cig.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/29a0dc-20af-437e-9870-3669d1b569d6/1/hyELNM4ALjCgpU-r-ivKxG36cig.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c1:55:f0:6e:63:16:39:63:68:70:68:5b:6e:2a:e1:f2:1b:a2: e8:eb:d3:01:f9:05:72:bd:e9:d2:59:76:7c:c6:3c:46:b6:03: 2c:96:b2:1d:ae:04:7c:e4:a2:f1:9e:ea:a8:5c:fa:97:d9:61: f2:8d:b7:47:76:af:a7:1e:1f:2e:36:27:ee:f2:23:87:57:67: 76:90:47:d6:f7:ab:21:88:98:f9:38:2d:db:c4:8e:dd:bc:84: 96:bf:db:da:0d:e1:a3:58:dc:31:cd:5d:a6:18:dd:48:ed:8d: 48:3d:3f:9d:ca:94:bb:47:ab:77:26:ef:bf:e7:8b:92:12:5a: 94:0a:44:d8:99:78:26:a5:a1:bc:1b:79:58:92:11:74:9b:a4: 04:f7:eb:02:79:fe:1d:86:15:64:3e:0b:ec:f1:5e:88:c5:18: f9:e6:f1:82:d5:c3:6d:2e:f1:16:a6:a9:d7:a9:d1:d3:27:50: 6a:3a:5e:8b:27:6d:a0:e7:03:4b:d3:86:52:d0:6f:50:7e:09: b6:56:7f:17:17:93:5f:e1:16:35:98:2c:53:dd:ae:d2:61:00: 6d:7b:7e:d3:e0:11:56:84:9f:ac:bb:8c:59:0d:05:09:66:8e: 9e:31:ef:1e:eb:87:bb:77:14:6f:c6:7f:40:7b:b3:7d:e6:6e: e6:4c:9e:cb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs6IZFqgo34lEderlFy3nvFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3MjEwYjM0Y2UwMDJlMzBhMGE1NGZhYmZhMmJjYWM0NmRm YTcyMjgwHhcNMjUxMjIwMDUwMDM2WhcNMjUxMjIxMDUwMDM2WjAzMTEwLwYDVQQD EygxNzE1NTg1NGJjYTcyOGEwY2E4YTk1MmNjOGQ2N2E4ZWVmNzhiZTJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwufpim+9u0tqrzeLDhu6nro9zn9X 7NQsmMKAIbE536Mm8QqNPpIffGQLPTq60LBvV+vy2XwajksRMwDNvOmJu2iWMM7Y 52USXCTSBU0fFvhTDC+itU5mfan/MxZszJZD1REdb5AeAayBEX8vkfp1ts38HNZS 1+7YsnfqiBxc0/chZKsS/LUA015/Ha/wVunArzlMHgxJ74klwQcaF34d8oQ65XzR 4ZTjvaFpUXVC4nnMcD4g37pNH+MfktRr8iFQ0FC21n+3neDFKzmOa4u0DAe/ZkaW f1GSItSWZQ2e2dvnqR8YZsz705rIlFaiFyDWHEcld8xPIGNxcDdAY2S6UwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBcVWFS8pyigyoqVLMjWeo7veL4rMB8GA1UdIwQY MBaAFIchCzTOAC4woKVPq/orysRt+nIoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHlFTE5NNEFMakNncFUtci1pdkt4RzM2Y2lnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS8yOWEwZGMtMjBhZi00MzdlLTk4NzAt MzY2OWQxYjU2OWQ2LzEvaHlFTE5NNEFMakNncFUtci1pdkt4RzM2Y2lnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80YS8yOWEwZGMtMjBhZi00MzdlLTk4NzAtMzY2OWQxYjU2OWQ2 LzEvaHlFTE5NNEFMakNncFUtci1pdkt4RzM2Y2lnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwVXwbmMW OWNocGhbbirh8hui6OvTAfkFcr3p0ll2fMY8RrYDLJayHa4EfOSi8Z7qqFz6l9lh 8o23R3avpx4fLjYn7vIjh1dndpBH1verIYiY+Tgt28SO3byElr/b2g3ho1jcMc1d phjdSO2NSD0/ncqUu0erdybvv+eLkhJalApE2Jl4JqWhvBt5WJIRdJukBPfrAnn+ HYYVZD4L7PFeiMUY+ebxgtXDbS7xFqap16nR0ydQajpeiydtoOcDS9OGUtBvUH4J tlZ/FxeTX+EWNZgsU92u0mEAbXt+0+ARVoSfrLuMWQ0FCWaOnjHvHuuHu3cUb8Z/ QHuzfeZu5kyeyw== -----END CERTIFICATE-----Generated at Sat Dec 20 13:53:38 2025 by rpki-client