This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.mft File: hpNlUyawRyyGbFyZMC4rLXjL3fc.mft (raw, json) Hash identifier: mGfNSxvlZBZJw2/KWraEyKQOLHlQUXSm3YqrdG4K9lw= Subject key identifier: A1:99:B1:F7:5C:9E:6A:2F:83:DB:9D:2A:60:FC:97:7E:3D:03:79:D9 Authority key identifier: 86:93:65:53:26:B0:47:2C:86:6C:5C:99:30:2E:2B:2D:78:CB:DD:F7 Certificate issuer: /CN=8693655326b0472c866c5c99302e2b2d78cbddf7 Certificate serial: 019B6A6998EE45FACE2A116C9F6A9B0DA930 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hpNlUyawRyyGbFyZMC4rLXjL3fc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.mft Manifest number: 1077 Signing time: Mon 29 Dec 2025 14:01:03 +0000 Manifest this update: Mon 29 Dec 2025 14:01:03 +0000 Manifest next update: Tue 30 Dec 2025 14:01:03 +0000 Files and hashes: 1: hpNlUyawRyyGbFyZMC4rLXjL3fc.crl (hash: g5e/ktq+yWJcjAnjEgiNUtPMnFa00YnATmO8K0QSoI0=) 2: z8Qgne-FkfA3KYq3e01ob5TLZp0.roa (hash: 7fco4lzAt1GZtpXkjpIq4UVmOihkqjl0I1nfOSI77gY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.crl rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.mft rsync://rpki.ripe.net/repository/DEFAULT/hpNlUyawRyyGbFyZMC4rLXjL3fc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 30 Dec 2025 14:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:6a:69:98:ee:45:fa:ce:2a:11:6c:9f:6a:9b:0d:a9:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8693655326b0472c866c5c99302e2b2d78cbddf7 Validity Not Before: Dec 29 14:01:03 2025 GMT Not After : Dec 30 14:01:03 2025 GMT Subject: CN=a199b1f75c9e6a2f83db9d2a60fc977e3d0379d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:c9:65:15:af:af:bc:76:43:fc:89:b9:af:9b: 61:e2:27:f2:3d:c8:06:ea:47:76:2f:1e:55:68:a9: 41:76:94:ce:b9:4f:be:6c:f5:86:00:26:90:ca:fa: d4:18:ca:82:cf:63:75:06:ff:d7:f8:5c:ea:ac:af: 8b:c1:d9:eb:39:55:6c:37:78:f1:53:a6:55:6d:50: ff:52:18:fb:5d:52:29:8e:a0:ce:c0:30:8b:e6:f1: 36:b1:6c:64:a4:e8:89:df:dc:f3:07:38:ff:fa:b9: 2c:39:18:97:40:6f:0a:ce:d8:bb:79:3c:1e:42:e5: 6f:93:8a:22:5b:89:5b:5c:79:22:27:f4:3b:b7:f3: 59:fc:a3:5c:b6:a3:7d:2e:44:ff:31:09:b5:aa:f6: e3:da:64:7f:d7:18:63:30:90:34:8d:b2:a6:5d:4b: f7:ea:77:9c:e0:79:0a:1e:46:23:b1:0e:41:77:9d: b0:44:39:6d:12:65:1c:c4:2b:b8:36:9c:00:0c:ed: 54:fb:a6:f6:fa:6b:73:fe:ee:b1:bd:a4:7d:90:90: cf:7f:82:2f:e0:ac:27:6b:92:86:69:5f:f6:0d:5f: dc:2b:9b:10:72:ed:04:0f:cd:e9:7a:6f:78:76:2b: 75:88:77:9e:92:b9:86:e7:22:65:9b:67:80:39:e6: 2b:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:99:B1:F7:5C:9E:6A:2F:83:DB:9D:2A:60:FC:97:7E:3D:03:79:D9 X509v3 Authority Key Identifier: keyid:86:93:65:53:26:B0:47:2C:86:6C:5C:99:30:2E:2B:2D:78:CB:DD:F7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hpNlUyawRyyGbFyZMC4rLXjL3fc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/61/dac337-8079-43bf-9fe1-9e6772ed39a6/1/hpNlUyawRyyGbFyZMC4rLXjL3fc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 11:69:5f:d3:dc:58:e2:98:29:71:26:52:ec:cc:94:64:68:55: 26:8c:85:a6:80:56:01:4b:f7:8d:8a:48:17:35:c4:f4:01:40: f6:1c:0d:e7:97:3a:c0:7c:1f:bb:de:b7:57:4e:e6:a5:e1:7d: 5f:f2:68:dd:f4:af:4a:c0:88:2d:6b:50:0a:e9:f1:a3:16:66: 75:fc:d8:eb:a8:49:81:3a:44:bf:96:b3:b9:4d:2b:1e:9b:49: e8:4e:e9:92:c1:2f:bb:38:06:09:a7:82:39:0e:8b:bd:18:90: ed:49:5d:df:dd:a0:de:c6:de:26:40:4a:63:ce:13:6a:6f:94: 25:5f:2a:2b:01:6e:b3:8f:f4:75:54:d9:a8:43:a6:08:5d:fa: 50:ef:b2:6e:dc:97:92:13:04:f9:4a:eb:96:9b:95:01:1a:8e: f5:0b:f3:0d:4a:c4:1a:fc:83:f1:53:55:ed:f0:b4:c4:60:e0: 52:68:c5:bb:d5:a1:76:ba:60:2f:7d:90:28:13:67:bc:23:93: f7:0a:5c:af:85:a5:87:01:24:84:69:be:cb:fb:85:2d:a4:9a: ed:56:2e:99:89:c9:89:21:81:7d:e0:73:77:8f:9e:46:c8:5a: 97:c1:41:a7:94:7e:20:6d:4b:39:74:96:be:1a:d5:7b:a8:88: 1e:67:1f:c2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtqaZjuRfrOKhFsn2qbDakwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2OTM2NTUzMjZiMDQ3MmM4NjZjNWM5OTMwMmUyYjJkNzhj YmRkZjcwHhcNMjUxMjI5MTQwMTAzWhcNMjUxMjMwMTQwMTAzWjAzMTEwLwYDVQQD EyhhMTk5YjFmNzVjOWU2YTJmODNkYjlkMmE2MGZjOTc3ZTNkMDM3OWQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxcllFa+vvHZD/Im5r5th4ifyPcgG 6kd2Lx5VaKlBdpTOuU++bPWGACaQyvrUGMqCz2N1Bv/X+FzqrK+LwdnrOVVsN3jx U6ZVbVD/Uhj7XVIpjqDOwDCL5vE2sWxkpOiJ39zzBzj/+rksORiXQG8Kzti7eTwe QuVvk4oiW4lbXHkiJ/Q7t/NZ/KNctqN9LkT/MQm1qvbj2mR/1xhjMJA0jbKmXUv3 6nec4HkKHkYjsQ5Bd52wRDltEmUcxCu4NpwADO1U+6b2+mtz/u6xvaR9kJDPf4Iv 4Kwna5KGaV/2DV/cK5sQcu0ED83pem94dit1iHeekrmG5yJlm2eAOeYrYQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKGZsfdcnmovg9udKmD8l349A3nZMB8GA1UdIwQY MBaAFIaTZVMmsEcshmxcmTAuKy14y933MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHBObFV5YXdSeXlHYkZ5Wk1DNHJMWGpMM2ZjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS9kYWMzMzctODA3OS00M2JmLTlmZTEt OWU2NzcyZWQzOWE2LzEvaHBObFV5YXdSeXlHYkZ5Wk1DNHJMWGpMM2ZjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MS9kYWMzMzctODA3OS00M2JmLTlmZTEtOWU2NzcyZWQzOWE2 LzEvaHBObFV5YXdSeXlHYkZ5Wk1DNHJMWGpMM2ZjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEWlf09xY 4pgpcSZS7MyUZGhVJoyFpoBWAUv3jYpIFzXE9AFA9hwN55c6wHwfu963V07mpeF9 X/Jo3fSvSsCILWtQCunxoxZmdfzY66hJgTpEv5azuU0rHptJ6E7pksEvuzgGCaeC OQ6LvRiQ7Uld392g3sbeJkBKY84Tam+UJV8qKwFus4/0dVTZqEOmCF36UO+ybtyX khME+UrrlpuVARqO9QvzDUrEGvyD8VNV7fC0xGDgUmjFu9WhdrpgL32QKBNnvCOT 9wpcr4WlhwEkhGm+y/uFLaSa7VYumYnJiSGBfeBzd4+eRshal8FBp5R+IG1LOXSW vhrVe6iIHmcfwg== -----END CERTIFICATE-----Generated at Mon Dec 29 23:47:38 2025 by rpki-client