This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft File: hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft (raw, json) Hash identifier: oNm2x8SZ2kA78evNz1HbrP37kRYbGNlwZh9slAU9a1Q= Subject key identifier: 6D:E4:67:68:7C:49:02:2F:9F:FE:91:EA:3F:15:5E:6D:91:3B:BA:9B Authority key identifier: 86:02:2E:16:2F:6E:6B:97:55:CE:4C:E8:45:12:0E:62:93:95:06:F7 Certificate issuer: /CN=86022e162f6e6b9755ce4ce845120e62939506f7 Certificate serial: 019B2FD57666E923E99BEE672B1435FC7EEF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hgIuFi9ua5dVzkzoRRIOYpOVBvc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft Manifest number: 16DA Signing time: Thu 18 Dec 2025 05:01:17 +0000 Manifest this update: Thu 18 Dec 2025 05:01:17 +0000 Manifest next update: Fri 19 Dec 2025 05:01:17 +0000 Files and hashes: 1: MbStNmXQF3r8BjIEIY6alBv8fXM.roa (hash: qBMHoSNp30r52ggSq1NF5Ja+ou1kpfZ0GNdRTXuZlMk=) 2: hgIuFi9ua5dVzkzoRRIOYpOVBvc.crl (hash: EPEI3Qo2aY9wdYA8+2clHy61M2UxM0sL3736bjA0aIM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.crl rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft rsync://rpki.ripe.net/repository/DEFAULT/hgIuFi9ua5dVzkzoRRIOYpOVBvc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 04:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2f:d5:76:66:e9:23:e9:9b:ee:67:2b:14:35:fc:7e:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86022e162f6e6b9755ce4ce845120e62939506f7 Validity Not Before: Dec 18 05:01:17 2025 GMT Not After : Dec 19 05:01:17 2025 GMT Subject: CN=6de467687c49022f9ffe91ea3f155e6d913bba9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:b5:b1:ff:e1:1c:dd:26:fd:6c:01:2d:5d:17: 82:dd:5c:e6:0e:e3:27:99:33:2e:80:ea:29:9a:52: a8:3e:53:9e:76:a7:a8:3d:be:bc:57:2d:a2:3b:45: 78:97:50:79:0c:77:ed:a6:03:33:3a:24:a1:0f:8e: 5d:45:b1:7a:37:8a:0a:ca:e2:64:ed:40:04:79:bc: a1:8e:c3:d2:56:57:a7:46:34:22:37:e7:c4:58:be: 5f:fa:4e:2d:04:ce:dd:cf:82:39:b4:0f:10:67:4a: 01:7f:71:13:7d:32:4a:20:28:e0:33:01:1e:94:3b: 81:16:e1:ae:b5:a5:6f:e0:c6:df:0f:ec:e4:c4:8b: 83:05:85:63:39:24:17:da:18:f9:da:77:57:f3:8e: f4:61:6b:e3:34:b4:3a:12:e8:51:1a:a4:56:a4:e0: 99:c6:b7:7a:58:03:5e:37:30:fb:a2:7c:98:cf:2c: 89:7f:3d:52:5e:d7:c2:f1:90:ff:70:fc:41:3c:70: 60:bf:09:5e:b4:eb:c8:12:a6:59:9a:dc:2e:a9:a8: fe:81:26:99:da:a1:ff:36:4c:4a:d2:16:b2:2a:e4: c7:89:c7:95:b6:a6:b7:bf:ea:4b:18:fd:8f:ea:ba: 2c:1e:82:3e:12:63:5a:ea:d3:75:55:8c:92:15:a3: f5:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:E4:67:68:7C:49:02:2F:9F:FE:91:EA:3F:15:5E:6D:91:3B:BA:9B X509v3 Authority Key Identifier: keyid:86:02:2E:16:2F:6E:6B:97:55:CE:4C:E8:45:12:0E:62:93:95:06:F7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hgIuFi9ua5dVzkzoRRIOYpOVBvc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 80:7b:fc:0b:74:37:aa:03:75:6a:ba:23:fc:16:16:9c:c4:cb: fa:87:9f:6f:1d:59:32:1d:20:2a:39:4e:3d:c2:80:ed:65:53: 75:12:f8:8e:47:f5:91:a6:8f:54:5e:80:a3:2d:35:64:63:7c: 1d:88:2b:02:1f:76:fa:0d:8a:92:3c:af:a9:2d:6b:28:7f:7e: c6:75:dc:25:ac:b9:8a:51:4b:a5:bf:95:e4:90:ab:b5:50:bf: 79:11:d1:22:22:0e:f0:07:fc:c2:4d:39:e1:94:8c:9a:41:4c: 6b:9f:f6:65:7a:de:80:f7:54:ae:94:dc:2a:8b:55:30:c9:e7: c3:0c:1f:6a:c9:69:41:06:44:70:2c:e1:92:95:22:05:fd:78: bd:ac:c2:f0:69:72:5b:ac:b7:5f:33:2d:47:d4:57:24:80:90: 42:57:10:59:1b:9f:38:25:07:1d:38:d0:4d:74:52:db:86:c9: 36:ec:a2:11:4c:08:b0:e6:aa:af:1c:4a:4b:e0:b6:d4:ea:9e: 3a:14:4f:f6:9f:6b:55:c8:a3:23:23:b4:9d:f4:25:0e:1e:84: 67:0c:ff:9e:ee:f4:04:d5:a4:6b:a5:38:72:0d:5e:0a:fe:a1: fa:c1:c9:6b:f1:0c:33:d5:a0:d0:79:fb:19:70:9a:33:32:1b: 58:65:2e:a2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsv1XZm6SPpm+5nKxQ1/H7vMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2MDIyZTE2MmY2ZTZiOTc1NWNlNGNlODQ1MTIwZTYyOTM5 NTA2ZjcwHhcNMjUxMjE4MDUwMTE3WhcNMjUxMjE5MDUwMTE3WjAzMTEwLwYDVQQD Eyg2ZGU0Njc2ODdjNDkwMjJmOWZmZTkxZWEzZjE1NWU2ZDkxM2JiYTliMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmrWx/+Ec3Sb9bAEtXReC3VzmDuMn mTMugOopmlKoPlOedqeoPb68Vy2iO0V4l1B5DHftpgMzOiShD45dRbF6N4oKyuJk 7UAEebyhjsPSVlenRjQiN+fEWL5f+k4tBM7dz4I5tA8QZ0oBf3ETfTJKICjgMwEe lDuBFuGutaVv4MbfD+zkxIuDBYVjOSQX2hj52ndX8470YWvjNLQ6EuhRGqRWpOCZ xrd6WANeNzD7onyYzyyJfz1SXtfC8ZD/cPxBPHBgvwletOvIEqZZmtwuqaj+gSaZ 2qH/NkxK0hayKuTHiceVtqa3v+pLGP2P6rosHoI+EmNa6tN1VYySFaP1QQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG3kZ2h8SQIvn/6R6j8VXm2RO7qbMB8GA1UdIwQY MBaAFIYCLhYvbmuXVc5M6EUSDmKTlQb3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGdJdUZpOXVhNWRWemt6b1JSSU9ZcE9WQnZjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC83ODJjMDctNGJiYS00ODEwLWI5OGIt MDU5ZGJjYzhkY2VmLzEvaGdJdUZpOXVhNWRWemt6b1JSSU9ZcE9WQnZjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MC83ODJjMDctNGJiYS00ODEwLWI5OGItMDU5ZGJjYzhkY2Vm LzEvaGdJdUZpOXVhNWRWemt6b1JSSU9ZcE9WQnZjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgHv8C3Q3 qgN1aroj/BYWnMTL+oefbx1ZMh0gKjlOPcKA7WVTdRL4jkf1kaaPVF6Aoy01ZGN8 HYgrAh92+g2KkjyvqS1rKH9+xnXcJay5ilFLpb+V5JCrtVC/eRHRIiIO8Af8wk05 4ZSMmkFMa5/2ZXregPdUrpTcKotVMMnnwwwfaslpQQZEcCzhkpUiBf14vazC8Gly W6y3XzMtR9RXJICQQlcQWRufOCUHHTjQTXRS24bJNuyiEUwIsOaqrxxKS+C21Oqe OhRP9p9rVcijIyO0nfQlDh6EZwz/nu70BNWka6U4cg1eCv6h+sHJa/EMM9Wg0Hn7 GXCaMzIbWGUuog== -----END CERTIFICATE-----Generated at Thu Dec 18 10:24:01 2025 by rpki-client