This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft File: h9mQExRnt30RFit5--OwbKirLTk.mft (raw, json) Hash identifier: k1N9lEMJ3CMqyJFUAF+1fRYdigzlm6qB3ZN4mIqBn6A= Subject key identifier: 32:38:1C:12:C6:A1:03:81:AE:8D:5A:2E:C8:F4:E5:3A:EA:87:FD:47 Authority key identifier: 87:D9:90:13:14:67:B7:7D:11:16:2B:79:FB:E3:B0:6C:A8:AB:2D:39 Certificate issuer: /CN=87d990131467b77d11162b79fbe3b06ca8ab2d39 Certificate serial: 019B3C46C84D699B1F69AE33B982845E2103 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h9mQExRnt30RFit5--OwbKirLTk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft Manifest number: 179B Signing time: Sat 20 Dec 2025 15:00:30 +0000 Manifest this update: Sat 20 Dec 2025 15:00:30 +0000 Manifest next update: Sun 21 Dec 2025 15:00:30 +0000 Files and hashes: 1: BpGdK4vNgugH_zIwdKpTLTonzFI.roa (hash: XCtnPAQsPAejFAsLvLkAMfASQaAA0TQU3hCkuPs7vLM=) 2: MTIEPm-UTrRJO5GkIDAlc0UbzLQ.roa (hash: nVeKeAW6vJuUEVgfnDWMk7tY9g53T2JINJDassyHDH8=) 3: Wye5gSaWAnRJTla5BqJmEtnG-9Y.roa (hash: HTH9ljB4Mkcyd/kw3T48aCpD4TpnuCOzGCXLkvMzc3E=) 4: h9mQExRnt30RFit5--OwbKirLTk.crl (hash: gl5VYpq+LzAHTPnvAjPxsijRrWImZXDqqLaufLDhHRg=) 5: jdzg16c7MaiOnZ9-kVnWfu-f5N0.roa (hash: S7drwu7SeNZ2ONjCLahi8wl52GPXe3l+rn2lLGtlHNA=) 6: yXMAz21dFW6Sf1HAb5KDTn2Yy0g.roa (hash: dMxwivy3WoBvzsdqovQyIDGqZ1EWhn2L/4sgtoX9AUQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.crl rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft rsync://rpki.ripe.net/repository/DEFAULT/h9mQExRnt30RFit5--OwbKirLTk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 15:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3c:46:c8:4d:69:9b:1f:69:ae:33:b9:82:84:5e:21:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87d990131467b77d11162b79fbe3b06ca8ab2d39 Validity Not Before: Dec 20 15:00:30 2025 GMT Not After : Dec 21 15:00:30 2025 GMT Subject: CN=32381c12c6a10381ae8d5a2ec8f4e53aea87fd47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:59:3f:77:0a:c2:1e:9e:4e:31:d6:a2:57:88: cf:8c:11:62:10:05:e9:59:59:96:3b:40:ad:e1:c1: 32:e4:47:f1:82:92:35:3b:c9:e5:cf:2e:32:31:bb: 51:fe:4e:d1:14:fc:21:0c:17:28:41:11:ad:29:de: d6:7d:22:5b:45:ad:25:b4:78:8b:6f:23:57:bd:34: 3d:d0:fe:85:04:e9:f3:37:c9:45:2e:8d:a3:fe:32: 10:9f:0f:db:2d:7f:64:f9:84:72:cd:fd:ba:ff:bb: ed:e6:de:d6:63:cf:5f:c6:c0:62:49:ac:51:1d:e1: 6f:79:cb:83:ab:fe:42:6d:68:a0:9a:60:3c:c5:e1: c8:f4:77:58:f7:f2:5f:a7:dc:aa:90:3b:e1:b9:ba: df:81:b2:20:72:10:1b:07:d8:66:f2:a9:1a:0d:6b: ed:f5:ef:95:61:f7:63:2b:4f:22:e0:60:23:31:4b: 88:1c:6a:d5:06:fb:d4:21:db:cb:46:30:81:07:01: 96:f7:11:3d:ec:a8:67:c8:02:9f:6c:17:70:a1:ac: f1:13:86:ce:9d:99:4a:5e:b9:82:18:ef:63:c9:83: 0a:fb:5c:8b:22:7e:66:9e:6f:4a:a6:a6:c6:00:e8: 3a:98:48:f3:4e:14:9d:ea:8a:5b:ce:45:b9:78:10: 8a:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:38:1C:12:C6:A1:03:81:AE:8D:5A:2E:C8:F4:E5:3A:EA:87:FD:47 X509v3 Authority Key Identifier: keyid:87:D9:90:13:14:67:B7:7D:11:16:2B:79:FB:E3:B0:6C:A8:AB:2D:39 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h9mQExRnt30RFit5--OwbKirLTk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ab:df:81:40:c2:30:f1:de:c0:dd:54:2f:70:79:44:fc:32:36: fb:45:3e:1e:32:f4:26:82:e3:9f:ae:aa:5c:02:37:ec:38:ba: 51:54:ac:72:d8:d2:b8:cc:ac:0a:44:94:3e:42:7c:4c:3d:13: 93:8f:79:22:27:4f:e1:58:f6:5f:89:ee:48:d9:b8:74:ad:06: fb:44:1d:6e:4b:f0:f2:67:3b:af:90:b9:3f:31:cf:02:01:76: 94:68:a8:ca:2a:bd:e2:44:fc:89:5a:39:16:d5:7c:e7:07:85: ff:16:06:94:79:d2:93:95:47:b6:ce:53:d8:60:3b:33:86:9c: 82:99:99:76:d2:9f:a0:d9:74:8c:4d:4c:4c:fd:ff:27:4d:c5: 0d:ff:70:d2:a8:69:30:66:36:a3:46:1d:fb:1d:fb:be:ab:62: 3a:cf:88:51:a7:95:fd:61:cf:ba:b0:2b:ad:aa:7b:0d:5e:cb: 41:bb:65:4d:c9:21:91:72:7f:56:da:66:70:8b:33:d9:e7:a1: 61:0b:e6:37:16:c6:09:77:8e:4c:91:f1:7c:3e:7e:75:db:dc: 15:7a:77:fc:8d:e5:c5:2c:fb:02:78:59:27:90:9a:fe:5b:12: 48:ba:4f:e0:dc:56:2c:49:e5:ac:34:8c:de:0b:85:d0:d0:51: e9:b6:21:30 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs8RshNaZsfaa4zuYKEXiEDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3ZDk5MDEzMTQ2N2I3N2QxMTE2MmI3OWZiZTNiMDZjYThh YjJkMzkwHhcNMjUxMjIwMTUwMDMwWhcNMjUxMjIxMTUwMDMwWjAzMTEwLwYDVQQD EygzMjM4MWMxMmM2YTEwMzgxYWU4ZDVhMmVjOGY0ZTUzYWVhODdmZDQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmlk/dwrCHp5OMdaiV4jPjBFiEAXp WVmWO0Ct4cEy5EfxgpI1O8nlzy4yMbtR/k7RFPwhDBcoQRGtKd7WfSJbRa0ltHiL byNXvTQ90P6FBOnzN8lFLo2j/jIQnw/bLX9k+YRyzf26/7vt5t7WY89fxsBiSaxR HeFvecuDq/5CbWigmmA8xeHI9HdY9/Jfp9yqkDvhubrfgbIgchAbB9hm8qkaDWvt 9e+VYfdjK08i4GAjMUuIHGrVBvvUIdvLRjCBBwGW9xE97KhnyAKfbBdwoazxE4bO nZlKXrmCGO9jyYMK+1yLIn5mnm9KpqbGAOg6mEjzThSd6opbzkW5eBCKxwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDI4HBLGoQOBro1aLsj05Trqh/1HMB8GA1UdIwQY MBaAFIfZkBMUZ7d9ERYrefvjsGyoqy05MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaDltUUV4Um50MzBSRml0NS0tT3diS2lyTFRrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni81ZGVhOTctN2VmNy00ZGIwLTk0YmMt YjhlOGIzNGRiMjkwLzEvaDltUUV4Um50MzBSRml0NS0tT3diS2lyTFRrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni81ZGVhOTctN2VmNy00ZGIwLTk0YmMtYjhlOGIzNGRiMjkw LzEvaDltUUV4Um50MzBSRml0NS0tT3diS2lyTFRrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAq9+BQMIw 8d7A3VQvcHlE/DI2+0U+HjL0JoLjn66qXAI37Di6UVSsctjSuMysCkSUPkJ8TD0T k495IidP4Vj2X4nuSNm4dK0G+0Qdbkvw8mc7r5C5PzHPAgF2lGioyiq94kT8iVo5 FtV85weF/xYGlHnSk5VHts5T2GA7M4acgpmZdtKfoNl0jE1MTP3/J03FDf9w0qhp MGY2o0Yd+x37vqtiOs+IUaeV/WHPurArrap7DV7LQbtlTckhkXJ/VtpmcIsz2eeh YQvmNxbGCXeOTJHxfD5+ddvcFXp3/I3lxSz7AnhZJ5Ca/lsSSLpP4NxWLEnlrDSM 3guF0NBR6bYhMA== -----END CERTIFICATE-----Generated at Sat Dec 20 21:40:14 2025 by rpki-client