This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft File: hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft (raw, json) Hash identifier: QcxrcWCCO+i8yKB4n1cWxKGWz6D26oHh6d4u465PV2s= Subject key identifier: EE:37:67:D5:A2:BE:04:1A:B2:A2:D3:63:E5:7A:61:6F:E4:5B:A7:C1 Authority key identifier: 85:FB:85:AD:D0:9F:48:76:EA:6A:AA:88:D4:D8:8C:81:CC:B6:B1:0A Certificate issuer: /CN=85fb85add09f4876ea6aaa88d4d88c81ccb6b10a Certificate serial: 019B3F112B12495C35A9CC1625E7197599A2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hfuFrdCfSHbqaqqI1NiMgcy2sQo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft Manifest number: 0A19 Signing time: Sun 21 Dec 2025 04:00:48 +0000 Manifest this update: Sun 21 Dec 2025 04:00:48 +0000 Manifest next update: Mon 22 Dec 2025 04:00:48 +0000 Files and hashes: 1: 5iC1C_l2xnIVtV_ynL6awoKgYMQ.roa (hash: c0Zm1e9RjgR5PBfasK6Q1TzGKpfYhKyszQz9aW+gUGA=) 2: K2099PO4iAtvBzGlnwl1axWP2hE.roa (hash: 6aTZlr/sfRYyJqs+vE8kRpR5W2QDPbSiPNBoLmmWJlA=) 3: hfuFrdCfSHbqaqqI1NiMgcy2sQo.crl (hash: uRsbYhynKUGXHF7APJo4SCH+h4IoZ+ojV/9riqvnZ1k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.crl rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft rsync://rpki.ripe.net/repository/DEFAULT/hfuFrdCfSHbqaqqI1NiMgcy2sQo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 04:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3f:11:2b:12:49:5c:35:a9:cc:16:25:e7:19:75:99:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85fb85add09f4876ea6aaa88d4d88c81ccb6b10a Validity Not Before: Dec 21 04:00:48 2025 GMT Not After : Dec 22 04:00:48 2025 GMT Subject: CN=ee3767d5a2be041ab2a2d363e57a616fe45ba7c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:68:1f:23:f4:e4:5a:e5:36:86:e1:cb:3e:14: 07:d1:92:10:3e:6d:c1:fa:a2:31:be:dc:34:4c:41: 91:31:a1:03:a5:fd:81:bb:df:01:f4:46:46:ea:28: a8:ad:7d:99:af:62:2d:88:a5:3d:96:64:ae:d8:5c: 07:4d:cf:80:0b:7d:31:96:18:cb:db:2a:9b:de:a8: 21:7f:70:5d:45:3f:ea:49:4a:cd:5b:2e:d3:15:eb: 14:b5:4c:55:f6:52:19:d1:f7:83:de:1b:88:32:37: f5:7d:8e:18:41:91:e2:a9:58:c7:fd:48:ce:f7:ad: c7:89:07:5e:bc:08:ad:8e:38:af:54:fb:45:71:8f: f6:25:65:64:eb:06:48:0a:ba:ef:37:97:68:c3:5c: 3a:9b:66:05:45:f1:2d:92:99:9c:82:df:e2:83:7d: 3a:b2:7c:57:f9:a1:c1:5e:e8:98:45:38:c4:25:1d: fe:d4:a7:f5:13:62:a2:45:5a:01:16:db:07:ec:3b: 75:a4:a2:a8:ea:f0:28:72:2d:91:21:bb:fd:f5:4b: 10:0f:b8:d0:68:c4:82:da:df:7f:97:29:42:ce:32: 3b:d5:f7:5e:58:4e:8f:d4:c4:1b:e0:f0:94:54:4f: 3a:c0:37:ec:34:3e:c4:cc:1b:d1:b5:f8:d1:af:20: 6f:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:37:67:D5:A2:BE:04:1A:B2:A2:D3:63:E5:7A:61:6F:E4:5B:A7:C1 X509v3 Authority Key Identifier: keyid:85:FB:85:AD:D0:9F:48:76:EA:6A:AA:88:D4:D8:8C:81:CC:B6:B1:0A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hfuFrdCfSHbqaqqI1NiMgcy2sQo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9d:de:7c:ad:02:c3:2a:43:bd:f9:2a:ce:6f:bd:91:e2:63:cb: 40:a1:77:d0:a7:df:85:46:22:bf:19:31:74:5c:1c:25:b4:aa: d4:3d:15:89:a2:ea:ff:75:92:c8:1d:3b:dd:19:34:cd:57:fc: aa:50:5b:84:ae:67:50:27:78:ab:e2:ec:15:cc:38:b1:7f:5d: 3f:f0:47:81:d9:fe:89:33:4b:24:b7:6a:f6:88:77:d1:05:11: ef:9b:c0:51:e3:ab:83:06:15:36:77:f0:f0:db:fe:77:08:f7: a9:8f:9b:02:30:52:88:71:ec:f0:ef:b7:4c:6a:04:2a:d3:1b: 68:01:5c:61:cb:56:09:52:d1:ff:02:86:9e:34:c3:28:86:4a: 9a:76:e4:1e:7c:9c:de:2c:49:47:de:dc:76:6e:9d:fa:2c:da: e5:b4:d4:df:88:f0:d7:36:7e:57:46:c6:d9:d2:69:63:a6:b0: 7f:4f:c0:21:a6:ce:51:f0:18:14:d1:63:ff:36:70:6a:92:0e: d7:7e:bc:68:24:83:51:f9:27:92:46:1b:3f:95:35:dc:aa:84: 1a:4b:87:85:10:68:5d:18:8e:a3:a4:65:22:72:57:21:fc:73: 4b:59:53:ff:3f:f4:7f:db:93:76:05:7a:86:07:c3:ae:6e:2b: 32:09:1d:f9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs/ESsSSVw1qcwWJecZdZmiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1ZmI4NWFkZDA5ZjQ4NzZlYTZhYWE4OGQ0ZDg4YzgxY2Ni NmIxMGEwHhcNMjUxMjIxMDQwMDQ4WhcNMjUxMjIyMDQwMDQ4WjAzMTEwLwYDVQQD EyhlZTM3NjdkNWEyYmUwNDFhYjJhMmQzNjNlNTdhNjE2ZmU0NWJhN2MxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApmgfI/TkWuU2huHLPhQH0ZIQPm3B +qIxvtw0TEGRMaEDpf2Bu98B9EZG6iiorX2Zr2ItiKU9lmSu2FwHTc+AC30xlhjL 2yqb3qghf3BdRT/qSUrNWy7TFesUtUxV9lIZ0feD3huIMjf1fY4YQZHiqVjH/UjO 963HiQdevAitjjivVPtFcY/2JWVk6wZICrrvN5dow1w6m2YFRfEtkpmcgt/ig306 snxX+aHBXuiYRTjEJR3+1Kf1E2KiRVoBFtsH7Dt1pKKo6vAoci2RIbv99UsQD7jQ aMSC2t9/lylCzjI71fdeWE6P1MQb4PCUVE86wDfsND7EzBvRtfjRryBv8QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO43Z9WivgQasqLTY+V6YW/kW6fBMB8GA1UdIwQY MBaAFIX7ha3Qn0h26mqqiNTYjIHMtrEKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGZ1RnJkQ2ZTSGJxYXFxSTFOaU1nY3kyc1FvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC9jZWVhOTEtMGEyYS00YTRlLTkxN2It YzYxNjFjZTM5NWFmLzEvaGZ1RnJkQ2ZTSGJxYXFxSTFOaU1nY3kyc1FvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC9jZWVhOTEtMGEyYS00YTRlLTkxN2ItYzYxNjFjZTM5NWFm LzEvaGZ1RnJkQ2ZTSGJxYXFxSTFOaU1nY3kyc1FvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnd58rQLD KkO9+SrOb72R4mPLQKF30KffhUYivxkxdFwcJbSq1D0ViaLq/3WSyB073Rk0zVf8 qlBbhK5nUCd4q+LsFcw4sX9dP/BHgdn+iTNLJLdq9oh30QUR75vAUeOrgwYVNnfw 8Nv+dwj3qY+bAjBSiHHs8O+3TGoEKtMbaAFcYctWCVLR/wKGnjTDKIZKmnbkHnyc 3ixJR97cdm6d+iza5bTU34jw1zZ+V0bG2dJpY6awf0/AIabOUfAYFNFj/zZwapIO 1368aCSDUfknkkYbP5U13KqEGkuHhRBoXRiOo6RlInJXIfxzS1lT/z/0f9uTdgV6 hgfDrm4rMgkd+Q== -----END CERTIFICATE-----Generated at Sun Dec 21 10:51:54 2025 by rpki-client