This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft File: h4q7KZd6ZbFAystucqskzt3U6MU.mft (raw, json) Hash identifier: Ebdax3Ffi4g+QiZ782+l2pcNaEWM1bJrEAfweUxCYgo= Subject key identifier: 2B:10:12:26:2F:56:4F:0A:E5:DC:46:E3:94:9D:82:C6:91:98:DD:4C Authority key identifier: 87:8A:BB:29:97:7A:65:B1:40:CA:CB:6E:72:AB:24:CE:DD:D4:E8:C5 Certificate issuer: /CN=878abb29977a65b140cacb6e72ab24ceddd4e8c5 Certificate serial: 019B3BD9263567A30EA5BD1E7B9515A28381 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h4q7KZd6ZbFAystucqskzt3U6MU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft Manifest number: 042A Signing time: Sat 20 Dec 2025 13:00:45 +0000 Manifest this update: Sat 20 Dec 2025 13:00:45 +0000 Manifest next update: Sun 21 Dec 2025 13:00:45 +0000 Files and hashes: 1: Nh0GqKuGF98gKb-Cwk1kMbr-cyA.roa (hash: aK8xZBnqjnIOBr0tWt4e6+4KcSJi3YeptqQiZQTdYjA=) 2: h4q7KZd6ZbFAystucqskzt3U6MU.crl (hash: c5GafP1007M5BLKZMsIC+bmwJh9dqvX2w6lmEbm00KU=) 3: ppcuybJ2dVTx8Oi4Rb_BK3tcepQ.roa (hash: kVGDPxLEKz3xBW5mOWtq1nIn17YH7foWW8L0WvSguOY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.crl rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft rsync://rpki.ripe.net/repository/DEFAULT/h4q7KZd6ZbFAystucqskzt3U6MU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 13:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3b:d9:26:35:67:a3:0e:a5:bd:1e:7b:95:15:a2:83:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=878abb29977a65b140cacb6e72ab24ceddd4e8c5 Validity Not Before: Dec 20 13:00:45 2025 GMT Not After : Dec 21 13:00:45 2025 GMT Subject: CN=2b1012262f564f0ae5dc46e3949d82c69198dd4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:55:10:78:a7:3c:b0:fd:6a:1c:ac:af:98:fb: fa:43:44:a0:23:d9:ff:f3:63:57:45:b4:c7:59:cf: 8a:4c:23:b4:6f:c9:d9:ea:76:57:50:90:9f:f6:dc: 2f:f2:c2:42:ae:63:56:8e:50:cb:8a:07:8f:d5:3f: 4d:13:ff:84:47:b9:6b:99:b3:96:04:80:f8:f4:f0: 67:f5:11:41:af:ba:c3:6a:8d:5e:62:e5:bd:e6:64: 97:84:11:63:39:b5:87:21:5b:3b:2d:7c:e8:d7:f3: 88:6c:b7:1a:0c:0a:80:b6:b0:23:80:0a:64:6e:97: 1e:94:1c:37:96:31:68:7c:80:23:bc:bd:bd:08:54: cc:ed:32:4f:77:e7:0f:77:b6:3f:95:fb:28:cf:e8: eb:96:16:52:9c:fe:bc:83:17:17:4f:5b:75:41:17: 39:ec:4d:cf:6b:99:1f:74:1f:15:ea:0a:38:3d:84: e0:19:37:31:a4:f0:b0:79:20:35:ab:7e:ae:c9:38: fc:7b:c2:e7:04:84:29:ed:ec:b5:05:00:0b:f5:9a: d9:8a:8d:84:2a:07:16:a8:eb:24:f4:37:35:fc:3c: 23:2e:c4:7b:2f:bc:5f:6c:65:e9:70:ee:a3:87:15: 00:9a:ca:a8:9f:f4:ff:08:ef:74:12:d6:37:c5:93: 0d:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:10:12:26:2F:56:4F:0A:E5:DC:46:E3:94:9D:82:C6:91:98:DD:4C X509v3 Authority Key Identifier: keyid:87:8A:BB:29:97:7A:65:B1:40:CA:CB:6E:72:AB:24:CE:DD:D4:E8:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h4q7KZd6ZbFAystucqskzt3U6MU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/50/06b8f5-1a76-45f8-b97a-ac8647d0558a/1/h4q7KZd6ZbFAystucqskzt3U6MU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6f:98:77:3a:33:c8:7c:c2:a3:13:e2:6e:fc:96:65:58:a1:65: b9:80:41:1d:75:b7:b5:b7:94:af:36:ce:2c:31:09:92:93:55: c6:14:bc:82:60:a6:93:4d:2f:9d:fd:f8:dc:3c:c6:76:c0:c1: ed:9c:ea:3f:f1:26:3d:a2:17:3e:cf:9f:73:66:2b:62:12:6f: ce:fb:cf:98:31:e5:4f:d1:7f:98:07:28:a7:e1:7a:8b:50:0c: 2c:da:af:ee:ed:a4:20:a8:7d:8e:7e:4a:67:dd:6a:7b:f3:20: 89:6a:28:95:47:80:c1:2f:b1:e9:f2:16:87:93:a3:fe:72:cd: 91:b2:7b:fe:b6:e4:06:16:7d:56:7c:9d:89:26:59:ed:15:2a: c4:cc:b9:a8:e9:c0:46:7b:5b:8b:03:16:a6:83:6c:2d:12:b6: 3b:e5:48:09:25:0c:5f:09:20:fa:10:93:87:85:25:26:22:24: 80:5a:41:08:3f:c9:fc:76:47:6b:70:4e:03:ff:7c:0e:05:f4: 57:cf:d3:46:9d:0f:b9:16:28:e5:42:f3:9f:4a:e1:d0:b0:d0: 42:fa:2c:ba:42:79:1c:70:21:8b:ab:60:af:a4:9d:1b:35:9c: 25:42:7c:10:32:c9:3f:fa:ef:43:34:4b:a3:d1:d3:84:12:db: 0d:f9:b4:54 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs72SY1Z6MOpb0ee5UVooOBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3OGFiYjI5OTc3YTY1YjE0MGNhY2I2ZTcyYWIyNGNlZGRk NGU4YzUwHhcNMjUxMjIwMTMwMDQ1WhcNMjUxMjIxMTMwMDQ1WjAzMTEwLwYDVQQD EygyYjEwMTIyNjJmNTY0ZjBhZTVkYzQ2ZTM5NDlkODJjNjkxOThkZDRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmFUQeKc8sP1qHKyvmPv6Q0SgI9n/ 82NXRbTHWc+KTCO0b8nZ6nZXUJCf9twv8sJCrmNWjlDLigeP1T9NE/+ER7lrmbOW BID49PBn9RFBr7rDao1eYuW95mSXhBFjObWHIVs7LXzo1/OIbLcaDAqAtrAjgApk bpcelBw3ljFofIAjvL29CFTM7TJPd+cPd7Y/lfsoz+jrlhZSnP68gxcXT1t1QRc5 7E3Pa5kfdB8V6go4PYTgGTcxpPCweSA1q36uyTj8e8LnBIQp7ey1BQAL9ZrZio2E KgcWqOsk9Dc1/DwjLsR7L7xfbGXpcO6jhxUAmsqon/T/CO90EtY3xZMNbwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCsQEiYvVk8K5dxG45SdgsaRmN1MMB8GA1UdIwQY MBaAFIeKuymXemWxQMrLbnKrJM7d1OjFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaDRxN0taZDZaYkZBeXN0dWNxc2t6dDNVNk1VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC8wNmI4ZjUtMWE3Ni00NWY4LWI5N2Et YWM4NjQ3ZDA1NThhLzEvaDRxN0taZDZaYkZBeXN0dWNxc2t6dDNVNk1VLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MC8wNmI4ZjUtMWE3Ni00NWY4LWI5N2EtYWM4NjQ3ZDA1NThh LzEvaDRxN0taZDZaYkZBeXN0dWNxc2t6dDNVNk1VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAb5h3OjPI fMKjE+Ju/JZlWKFluYBBHXW3tbeUrzbOLDEJkpNVxhS8gmCmk00vnf343DzGdsDB 7ZzqP/EmPaIXPs+fc2YrYhJvzvvPmDHlT9F/mAcop+F6i1AMLNqv7u2kIKh9jn5K Z91qe/MgiWoolUeAwS+x6fIWh5Oj/nLNkbJ7/rbkBhZ9VnydiSZZ7RUqxMy5qOnA RntbiwMWpoNsLRK2O+VICSUMXwkg+hCTh4UlJiIkgFpBCD/J/HZHa3BOA/98DgX0 V8/TRp0PuRYo5ULzn0rh0LDQQvosukJ5HHAhi6tgr6SdGzWcJUJ8EDLJP/rvQzRL o9HThBLbDfm0VA== -----END CERTIFICATE-----Generated at Sat Dec 20 22:43:15 2025 by rpki-client