This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/4df39a-783c-4d7d-b1be-bfd95a9a6e64/1/hfTuFPbTinzwcSed_3s5FwLjcTU.mft File: hfTuFPbTinzwcSed_3s5FwLjcTU.mft (raw, json) Hash identifier: eicsuEtRh6Trip7alT/Wm8fSokgcmRUmejuuPDjbXgw= Subject key identifier: 58:CC:A8:76:B3:DF:B6:E5:E8:71:38:07:02:BA:56:8F:96:69:FF:CD Authority key identifier: 85:F4:EE:14:F6:D3:8A:7C:F0:71:27:9D:FF:7B:39:17:02:E3:71:35 Certificate issuer: /CN=85f4ee14f6d38a7cf071279dff7b391702e37135 Certificate serial: 019B2C6661C7D461B6B1BD5B939002B20060 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hfTuFPbTinzwcSed_3s5FwLjcTU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/4df39a-783c-4d7d-b1be-bfd95a9a6e64/1/hfTuFPbTinzwcSed_3s5FwLjcTU.mft Manifest number: 161D Signing time: Wed 17 Dec 2025 13:01:05 +0000 Manifest this update: Wed 17 Dec 2025 13:01:05 +0000 Manifest next update: Thu 18 Dec 2025 13:01:05 +0000 Files and hashes: 1: 2mTo8VIXIrlcxcC_U7fWi211rFM.roa (hash: dDQv+ftOv7QcdnymuU8CSIpInH2sN5DMq5+DCb2C/AM=) 2: TOInyVBFZ29DxCH5Hz91KFjRkv0.roa (hash: 1HxYLosFyiepF2xCdMAL0QnFNZ36uK46iHqxZ8byih8=) 3: aMobsnKksVIngBq9PAQh6f0uc_s.roa (hash: MgPm9vdG5quTaP1hsCUOaYxEpwoMN/PPpfC7QE2zzrE=) 4: hfTuFPbTinzwcSed_3s5FwLjcTU.crl (hash: 0pQXzhUqL6VqKFTuvh7yUjkjMrHASi5+RUboH1wwSh4=) 5: kHRA5W2PIyWNg3uKfxQ9zz9ybRk.roa (hash: GyaDxHXnOVqYowVqNzWMXYXPUi79rWH8RSfCQGy6dbQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/4df39a-783c-4d7d-b1be-bfd95a9a6e64/1/hfTuFPbTinzwcSed_3s5FwLjcTU.crl rsync://rpki.ripe.net/repository/DEFAULT/a2/4df39a-783c-4d7d-b1be-bfd95a9a6e64/1/hfTuFPbTinzwcSed_3s5FwLjcTU.mft rsync://rpki.ripe.net/repository/DEFAULT/hfTuFPbTinzwcSed_3s5FwLjcTU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 10:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2c:66:61:c7:d4:61:b6:b1:bd:5b:93:90:02:b2:00:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85f4ee14f6d38a7cf071279dff7b391702e37135 Validity Not Before: Dec 17 13:01:05 2025 GMT Not After : Dec 18 13:01:05 2025 GMT Subject: CN=58cca876b3dfb6e5e871380702ba568f9669ffcd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:59:dc:dc:bb:bb:94:df:5f:32:11:71:9c:e8: 4b:cd:ab:97:0f:3a:7b:f4:24:b6:78:e0:ca:2b:80: 54:14:3a:a0:cb:83:35:da:92:c4:f1:5c:c7:db:3d: ba:30:f1:43:a3:7a:f3:9d:54:d5:54:2d:45:68:b4: 83:73:78:3f:95:fc:02:fe:18:c0:aa:08:56:04:18: b5:56:38:f1:04:42:a4:58:ed:a5:f6:22:87:a8:50: bc:ae:1b:3b:75:09:60:53:88:f4:0b:de:7c:6c:78: ba:1e:3c:c8:b1:df:4a:91:e1:8e:3b:dd:97:85:be: 35:bd:35:ae:09:68:0a:27:81:d8:d2:39:48:3f:76: 0e:ab:ad:9c:ea:6f:44:00:5e:86:ed:bb:69:5e:98: 58:e3:b8:d8:86:a9:be:79:5d:7e:98:00:40:f2:49: 3a:61:16:1c:ec:08:c0:ad:86:91:fd:23:5e:0c:e8: 7b:8e:0e:5a:ad:c3:5d:b1:e7:2b:2c:fe:a7:ca:23: 37:01:da:1d:4d:4a:bd:d3:68:1f:45:21:04:26:3b: eb:44:c1:79:7e:60:12:a2:d2:f8:cc:d5:e6:8b:f2: ba:2d:4c:ed:49:22:9e:2a:09:4c:60:b2:41:bf:73: 93:a2:30:88:f5:a4:2b:29:71:27:30:50:09:f1:34: 9a:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:CC:A8:76:B3:DF:B6:E5:E8:71:38:07:02:BA:56:8F:96:69:FF:CD X509v3 Authority Key Identifier: keyid:85:F4:EE:14:F6:D3:8A:7C:F0:71:27:9D:FF:7B:39:17:02:E3:71:35 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hfTuFPbTinzwcSed_3s5FwLjcTU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/4df39a-783c-4d7d-b1be-bfd95a9a6e64/1/hfTuFPbTinzwcSed_3s5FwLjcTU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/4df39a-783c-4d7d-b1be-bfd95a9a6e64/1/hfTuFPbTinzwcSed_3s5FwLjcTU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:04:dd:b4:53:f8:5d:0d:ca:8c:5c:e4:6d:b0:c2:d1:51:34: 6c:dd:ab:61:b0:40:a1:b1:d9:a1:a0:49:d3:03:83:3a:a0:da: 60:82:eb:0d:62:8f:3c:d8:67:da:b2:dc:1c:74:95:eb:21:12: 46:25:6e:29:e1:c5:09:36:d3:2d:50:06:f1:73:36:cf:10:2a: 8f:34:7b:7b:e5:45:04:b0:db:f6:21:db:b7:9e:7a:5c:06:89: 80:a5:ac:43:71:82:7f:15:ab:cf:71:43:b7:d9:08:64:e3:0e: 4e:f7:87:b4:25:b8:52:a4:50:2f:5d:aa:87:dc:09:08:13:30: 25:1f:2a:f5:8c:56:8b:58:00:d7:58:9e:12:7a:31:10:68:03: b4:16:25:14:26:11:b5:15:a9:b3:41:bf:7a:31:04:20:05:3e: 44:cf:70:0d:17:3e:18:b7:48:8f:10:b0:e7:52:34:f4:7a:c5: ea:fd:0a:ef:f5:f5:6c:a7:08:2c:1a:3a:39:cf:64:2c:68:83: 2e:bb:c8:40:d6:d2:83:7d:7b:15:a8:4f:a4:78:49:bb:13:c0: f5:32:67:74:1b:c4:87:4e:1f:5c:98:46:cf:13:2a:54:ed:6c: 16:85:ec:42:81:5e:b9:66:5f:8a:a0:ef:30:6a:c1:b0:47:66: d0:f7:aa:21 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZssZmHH1GG2sb1bk5ACsgBgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1ZjRlZTE0ZjZkMzhhN2NmMDcxMjc5ZGZmN2IzOTE3MDJl MzcxMzUwHhcNMjUxMjE3MTMwMTA1WhcNMjUxMjE4MTMwMTA1WjAzMTEwLwYDVQQD Eyg1OGNjYTg3NmIzZGZiNmU1ZTg3MTM4MDcwMmJhNTY4Zjk2NjlmZmNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu1nc3Lu7lN9fMhFxnOhLzauXDzp7 9CS2eODKK4BUFDqgy4M12pLE8VzH2z26MPFDo3rznVTVVC1FaLSDc3g/lfwC/hjA qghWBBi1VjjxBEKkWO2l9iKHqFC8rhs7dQlgU4j0C958bHi6HjzIsd9KkeGOO92X hb41vTWuCWgKJ4HY0jlIP3YOq62c6m9EAF6G7btpXphY47jYhqm+eV1+mABA8kk6 YRYc7AjArYaR/SNeDOh7jg5arcNdsecrLP6nyiM3AdodTUq902gfRSEEJjvrRMF5 fmASotL4zNXmi/K6LUztSSKeKglMYLJBv3OTojCI9aQrKXEnMFAJ8TSa1QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFjMqHaz37bl6HE4BwK6Vo+Waf/NMB8GA1UdIwQY MBaAFIX07hT204p88HEnnf97ORcC43E1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGZUdUZQYlRpbnp3Y1NlZF8zczVGd0xqY1RVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi80ZGYzOWEtNzgzYy00ZDdkLWIxYmUt YmZkOTVhOWE2ZTY0LzEvaGZUdUZQYlRpbnp3Y1NlZF8zczVGd0xqY1RVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMi80ZGYzOWEtNzgzYy00ZDdkLWIxYmUtYmZkOTVhOWE2ZTY0 LzEvaGZUdUZQYlRpbnp3Y1NlZF8zczVGd0xqY1RVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQQTdtFP4 XQ3KjFzkbbDC0VE0bN2rYbBAobHZoaBJ0wODOqDaYILrDWKPPNhn2rLcHHSV6yES RiVuKeHFCTbTLVAG8XM2zxAqjzR7e+VFBLDb9iHbt556XAaJgKWsQ3GCfxWrz3FD t9kIZOMOTveHtCW4UqRQL12qh9wJCBMwJR8q9YxWi1gA11ieEnoxEGgDtBYlFCYR tRWps0G/ejEEIAU+RM9wDRc+GLdIjxCw51I09HrF6v0K7/X1bKcILBo6Oc9kLGiD LrvIQNbSg317FahPpHhJuxPA9TJndBvEh04fXJhGzxMqVO1sFoXsQoFeuWZfiqDv MGrBsEdm0PeqIQ== -----END CERTIFICATE-----Generated at Wed Dec 17 15:10:12 2025 by rpki-client