This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.mft File: hpNlUyawRyyGbFyZMC4rLXjL3fc.mft (raw, json) Hash identifier: A/2TtW7OA98lDpz9bZZlZf+qUrvR8fdMypvPmzFJBxs= Subject key identifier: C4:97:B6:90:0A:5E:6C:E5:89:33:89:80:03:E1:7C:55:D1:B5:53:1A Authority key identifier: 86:93:65:53:26:B0:47:2C:86:6C:5C:99:30:2E:2B:2D:78:CB:DD:F7 Certificate issuer: /CN=8693655326b0472c866c5c99302e2b2d78cbddf7 Certificate serial: 019B3DFED7AC4BA1D9CFD4B0C01B675DCBEA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hpNlUyawRyyGbFyZMC4rLXjL3fc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.mft Manifest number: 1060 Signing time: Sat 20 Dec 2025 23:01:10 +0000 Manifest this update: Sat 20 Dec 2025 23:01:10 +0000 Manifest next update: Sun 21 Dec 2025 23:01:10 +0000 Files and hashes: 1: hpNlUyawRyyGbFyZMC4rLXjL3fc.crl (hash: ArUH8ZBeWSa9AzjZezvGny3aTkyse4vjZo83DPv7YpI=) 2: z8Qgne-FkfA3KYq3e01ob5TLZp0.roa (hash: 7fco4lzAt1GZtpXkjpIq4UVmOihkqjl0I1nfOSI77gY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.crl rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.mft rsync://rpki.ripe.net/repository/DEFAULT/hpNlUyawRyyGbFyZMC4rLXjL3fc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 23:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3d:fe:d7:ac:4b:a1:d9:cf:d4:b0:c0:1b:67:5d:cb:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8693655326b0472c866c5c99302e2b2d78cbddf7 Validity Not Before: Dec 20 23:01:10 2025 GMT Not After : Dec 21 23:01:10 2025 GMT Subject: CN=c497b6900a5e6ce58933898003e17c55d1b5531a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:f0:69:56:07:aa:f6:5b:8b:e9:e3:2c:d6:02: 29:37:d3:e5:1f:d4:f5:33:fc:c7:dc:48:00:1e:29: 29:59:ac:ed:03:8f:2a:8b:02:f8:48:67:ba:93:b0: ab:98:0b:57:11:1e:50:fe:e8:a4:84:29:40:17:76: 97:46:6a:cc:8d:55:50:29:cc:f4:5f:c3:4d:d6:26: 0f:1e:46:91:11:a6:15:d5:a9:60:2b:d1:33:8f:f4: 12:0b:29:1f:69:47:f9:4b:2e:bb:45:8a:b0:36:ec: 50:5f:9b:78:12:f8:ab:5c:46:83:a7:38:60:ea:5f: 95:9a:58:83:c9:ad:81:ce:25:22:39:59:cb:ad:16: c5:6a:b2:5f:33:ed:27:a0:5d:71:5e:10:a8:b7:37: b3:c7:62:39:cd:9a:ef:9f:1b:0a:b5:8c:79:dc:6b: c5:cf:6d:60:71:d7:ca:6f:a2:20:96:5f:80:bf:81: 38:d5:e0:7e:e7:86:37:ba:01:20:a5:44:d5:20:99: b4:75:f1:e1:66:62:32:bf:58:0c:2a:ee:9d:8c:42: 67:91:a3:73:34:2d:7d:03:83:0a:69:66:a6:9b:b1: 3e:91:48:aa:4e:04:ea:f4:04:ad:e6:2f:77:82:0d: 87:bb:b9:6d:b2:02:c8:34:7e:26:77:43:c1:b2:d9: 77:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:97:B6:90:0A:5E:6C:E5:89:33:89:80:03:E1:7C:55:D1:B5:53:1A X509v3 Authority Key Identifier: keyid:86:93:65:53:26:B0:47:2C:86:6C:5C:99:30:2E:2B:2D:78:CB:DD:F7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hpNlUyawRyyGbFyZMC4rLXjL3fc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6f:24:db:da:5f:45:51:f7:13:79:9d:f7:27:13:0b:2c:09:b4: 94:7f:3e:20:43:ce:a3:2a:ec:98:99:01:ac:98:ce:43:75:c2: 84:eb:06:28:68:63:04:45:ae:82:53:55:e6:65:c2:ca:d2:af: 26:89:0b:f5:1e:22:a8:75:a5:57:9d:8a:63:41:4f:93:f6:0f: fe:cd:a3:44:73:06:4e:e5:8b:42:ef:13:48:8a:0d:3f:af:8c: e0:3f:b3:36:94:25:60:e6:47:e7:48:7d:00:34:c9:6e:31:7f: 02:25:4c:1c:1c:a3:73:39:93:e5:18:94:2b:84:13:14:de:45: f0:d6:b5:85:56:05:57:3a:61:73:03:ef:45:5b:bf:ca:96:fc: c4:ff:23:32:15:f2:6b:f3:87:30:15:42:1e:8c:be:86:73:49: 04:ab:5c:f0:95:77:1a:a7:e0:fa:3e:c8:c5:73:29:85:df:a1: 1b:67:e5:20:29:6c:ea:71:0a:8b:62:0b:4f:92:8e:4a:44:e0: 5a:d0:69:f9:64:b3:ae:fc:ab:ce:fd:b2:94:b5:2f:70:47:db: 50:9a:ba:bf:51:ee:43:fc:df:db:4a:03:ee:f0:df:d6:1c:a7: c3:96:5c:7e:26:18:29:ee:07:02:8f:19:35:0e:25:69:8d:ed: 2e:64:ed:cd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs9/tesS6HZz9SwwBtnXcvqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2OTM2NTUzMjZiMDQ3MmM4NjZjNWM5OTMwMmUyYjJkNzhj YmRkZjcwHhcNMjUxMjIwMjMwMTEwWhcNMjUxMjIxMjMwMTEwWjAzMTEwLwYDVQQD EyhjNDk3YjY5MDBhNWU2Y2U1ODkzMzg5ODAwM2UxN2M1NWQxYjU1MzFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyPBpVgeq9luL6eMs1gIpN9PlH9T1 M/zH3EgAHikpWaztA48qiwL4SGe6k7CrmAtXER5Q/uikhClAF3aXRmrMjVVQKcz0 X8NN1iYPHkaREaYV1algK9Ezj/QSCykfaUf5Sy67RYqwNuxQX5t4EvirXEaDpzhg 6l+VmliDya2BziUiOVnLrRbFarJfM+0noF1xXhCotzezx2I5zZrvnxsKtYx53GvF z21gcdfKb6Igll+Av4E41eB+54Y3ugEgpUTVIJm0dfHhZmIyv1gMKu6djEJnkaNz NC19A4MKaWamm7E+kUiqTgTq9ASt5i93gg2Hu7ltsgLINH4md0PBstl3rwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMSXtpAKXmzliTOJgAPhfFXRtVMaMB8GA1UdIwQY MBaAFIaTZVMmsEcshmxcmTAuKy14y933MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHBObFV5YXdSeXlHYkZ5Wk1DNHJMWGpMM2ZjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS9kYWMzMzctODA3OS00M2JmLTlmZTEt OWU2NzcyZWQzOWE2LzEvaHBObFV5YXdSeXlHYkZ5Wk1DNHJMWGpMM2ZjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MS9kYWMzMzctODA3OS00M2JmLTlmZTEtOWU2NzcyZWQzOWE2 LzEvaHBObFV5YXdSeXlHYkZ5Wk1DNHJMWGpMM2ZjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbyTb2l9F UfcTeZ33JxMLLAm0lH8+IEPOoyrsmJkBrJjOQ3XChOsGKGhjBEWuglNV5mXCytKv JokL9R4iqHWlV52KY0FPk/YP/s2jRHMGTuWLQu8TSIoNP6+M4D+zNpQlYOZH50h9 ADTJbjF/AiVMHByjczmT5RiUK4QTFN5F8Na1hVYFVzphcwPvRVu/ypb8xP8jMhXy a/OHMBVCHoy+hnNJBKtc8JV3Gqfg+j7IxXMphd+hG2flICls6nEKi2ILT5KOSkTg WtBp+WSzrvyrzv2ylLUvcEfbUJq6v1HuQ/zf20oD7vDf1hynw5ZcfiYYKe4HAo8Z NQ4laY3tLmTtzQ== -----END CERTIFICATE-----Generated at Sun Dec 21 08:17:06 2025 by rpki-client