This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.mft File: hoRh4GD99IzUHTOtknHIB9Qk60I.mft (raw, json) Hash identifier: Ww+l5iM44alvwUD1Q3Wbz0vm/1A07HifYHhYHuRz5aE= Subject key identifier: DB:C2:A0:4E:8B:7E:2B:38:75:25:82:C4:C4:54:A2:AD:61:0C:79:E0 Authority key identifier: 86:84:61:E0:60:FD:F4:8C:D4:1D:33:AD:92:71:C8:07:D4:24:EB:42 Certificate issuer: /CN=868461e060fdf48cd41d33ad9271c807d424eb42 Certificate serial: 019B81CCA287AE22ED77CB118226AC28858F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hoRh4GD99IzUHTOtknHIB9Qk60I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.mft Manifest number: 02D1 Signing time: Sat 03 Jan 2026 03:00:30 +0000 Manifest this update: Sat 03 Jan 2026 03:00:30 +0000 Manifest next update: Sun 04 Jan 2026 03:00:30 +0000 Files and hashes: 1: IyUD0cTbm163_nE6Z_KQkHMo9a0.roa (hash: ckmuLvsLe1WHUbDkzeJOW8KVL9BpPwjboxRuotk+r7Y=) 2: hoRh4GD99IzUHTOtknHIB9Qk60I.crl (hash: bs+zHT6B1MAtvy3jecZ/2AS7bVsrDbNOnUOlBpxJM/Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.crl rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.mft rsync://rpki.ripe.net/repository/DEFAULT/hoRh4GD99IzUHTOtknHIB9Qk60I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 04 Jan 2026 03:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:81:cc:a2:87:ae:22:ed:77:cb:11:82:26:ac:28:85:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=868461e060fdf48cd41d33ad9271c807d424eb42 Validity Not Before: Jan 3 03:00:30 2026 GMT Not After : Jan 4 03:00:30 2026 GMT Subject: CN=dbc2a04e8b7e2b38752582c4c454a2ad610c79e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:87:19:95:1a:54:a7:9b:a8:6f:16:1c:95:8b: b8:75:52:a7:71:c0:0c:61:6c:b5:77:22:70:08:dd: f1:22:6b:43:51:0a:8d:94:c7:e5:7d:0c:10:0b:ea: 4e:af:c9:92:f0:5e:32:1b:05:b8:ff:e2:65:21:b0: 1f:38:91:2e:5d:1c:ce:b7:17:9f:c9:17:fe:5d:de: 06:44:0a:81:fa:e7:89:ce:b3:65:fe:9a:83:fa:22: d6:54:5f:17:28:1d:f1:ff:8d:7c:ce:d8:37:37:66: 9a:50:d5:b3:e0:74:49:7a:28:81:e5:46:c4:e5:a5: 38:97:ac:42:8a:41:2c:98:c2:8e:70:0e:72:46:eb: 0d:9d:1c:bd:1d:1d:2e:79:e0:61:f3:9f:ca:27:7c: ff:a9:9c:ae:98:30:df:06:6e:86:0d:66:eb:90:68: 58:84:54:17:83:63:c2:b4:c8:da:69:8b:b0:2b:e8: ec:8a:f2:42:fc:dc:18:db:43:6b:43:a7:cc:7b:1a: d1:e6:eb:b1:fd:44:1d:0d:24:e9:08:3f:c7:f3:24: 9f:d3:83:32:7e:ca:51:c3:df:76:76:b4:24:6f:ab: f2:3d:92:76:8e:45:5c:0c:d6:d9:0d:77:8a:ea:2d: cd:a6:dd:f2:84:dc:d3:44:19:08:8c:19:d6:f1:0e: 3a:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:C2:A0:4E:8B:7E:2B:38:75:25:82:C4:C4:54:A2:AD:61:0C:79:E0 X509v3 Authority Key Identifier: keyid:86:84:61:E0:60:FD:F4:8C:D4:1D:33:AD:92:71:C8:07:D4:24:EB:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hoRh4GD99IzUHTOtknHIB9Qk60I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/53/4af4be-70f1-4194-911f-59ab96bc35c6/1/hoRh4GD99IzUHTOtknHIB9Qk60I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:3b:7f:2f:7a:4e:33:a5:8f:78:99:bc:c4:ac:b6:81:cb:1c: 9f:88:27:41:86:cf:e5:c3:2a:20:08:a3:96:59:31:d9:e3:71: 63:a9:71:2a:6d:e8:3f:1a:a9:9b:59:be:f5:f6:39:57:e8:4e: 6b:cc:2a:1a:34:7d:68:ff:e5:4e:0b:f5:37:fb:07:a6:43:92: ed:40:e7:50:f2:d2:95:13:c1:ec:a8:7c:f3:44:09:86:ab:36: f6:8b:72:d9:40:b9:8c:2f:20:2f:ce:f6:23:60:6c:b6:1a:83: bb:9c:0e:b2:89:eb:6d:0a:36:a4:8d:2c:61:a4:b1:13:80:bd: 3a:8d:d9:ce:c6:95:7c:10:7e:cb:dd:25:0a:fa:bb:18:3f:68: a3:4d:c0:68:d9:07:97:e2:80:80:fa:da:24:fc:a0:bd:c6:98: 80:15:7f:d6:76:dd:58:83:83:da:10:4f:bc:fd:10:95:68:29: 36:01:f7:fd:c6:95:e7:01:8e:9d:e3:e0:91:57:a6:5b:31:92: a0:7e:ff:9b:ab:3e:65:9b:86:16:3a:06:b2:e7:01:7b:a8:5f: 90:29:02:52:90:50:a5:98:c4:05:3c:cf:ef:9a:81:ca:37:a0: f0:1c:9b:33:c7:5b:f2:d1:2e:7b:c0:8f:9d:8d:a0:48:47:f9: e5:b4:66:95 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZuBzKKHriLtd8sRgiasKIWPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2ODQ2MWUwNjBmZGY0OGNkNDFkMzNhZDkyNzFjODA3ZDQy NGViNDIwHhcNMjYwMTAzMDMwMDMwWhcNMjYwMTA0MDMwMDMwWjAzMTEwLwYDVQQD EyhkYmMyYTA0ZThiN2UyYjM4NzUyNTgyYzRjNDU0YTJhZDYxMGM3OWUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyIcZlRpUp5uobxYclYu4dVKnccAM YWy1dyJwCN3xImtDUQqNlMflfQwQC+pOr8mS8F4yGwW4/+JlIbAfOJEuXRzOtxef yRf+Xd4GRAqB+ueJzrNl/pqD+iLWVF8XKB3x/418ztg3N2aaUNWz4HRJeiiB5UbE 5aU4l6xCikEsmMKOcA5yRusNnRy9HR0ueeBh85/KJ3z/qZyumDDfBm6GDWbrkGhY hFQXg2PCtMjaaYuwK+jsivJC/NwY20NrQ6fMexrR5uux/UQdDSTpCD/H8ySf04My fspRw992drQkb6vyPZJ2jkVcDNbZDXeK6i3Npt3yhNzTRBkIjBnW8Q46aQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNvCoE6Lfis4dSWCxMRUoq1hDHngMB8GA1UdIwQY MBaAFIaEYeBg/fSM1B0zrZJxyAfUJOtCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaG9SaDRHRDk5SXpVSFRPdGtuSElCOVFrNjBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My80YWY0YmUtNzBmMS00MTk0LTkxMWYt NTlhYjk2YmMzNWM2LzEvaG9SaDRHRDk5SXpVSFRPdGtuSElCOVFrNjBJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81My80YWY0YmUtNzBmMS00MTk0LTkxMWYtNTlhYjk2YmMzNWM2 LzEvaG9SaDRHRDk5SXpVSFRPdGtuSElCOVFrNjBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVjt/L3pO M6WPeJm8xKy2gcscn4gnQYbP5cMqIAijllkx2eNxY6lxKm3oPxqpm1m+9fY5V+hO a8wqGjR9aP/lTgv1N/sHpkOS7UDnUPLSlRPB7Kh880QJhqs29oty2UC5jC8gL872 I2BsthqDu5wOsonrbQo2pI0sYaSxE4C9Oo3ZzsaVfBB+y90lCvq7GD9oo03AaNkH l+KAgPraJPygvcaYgBV/1nbdWIOD2hBPvP0QlWgpNgH3/caV5wGOnePgkVemWzGS oH7/m6s+ZZuGFjoGsucBe6hfkCkCUpBQpZjEBTzP75qByjeg8BybM8db8tEue8CP nY2gSEf55bRmlQ== -----END CERTIFICATE-----Generated at Sat Jan 3 12:44:13 2026 by rpki-client