This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/72dbdf-c71d-4e59-8076-c41dcca8b775/1/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.mft File: hOFCmlPmRjs8dPWj8XxdSlHr0Lg.mft (raw, json) Hash identifier: tM6qZCyhOnX6g5iNK16rObSxvupRBkWErquCO8Hk5RE= Subject key identifier: F8:63:77:23:E6:CD:ED:D8:9C:D0:60:A4:3A:93:B4:F6:2F:A9:D8:B6 Authority key identifier: 84:E1:42:9A:53:E6:46:3B:3C:74:F5:A3:F1:7C:5D:4A:51:EB:D0:B8 Certificate issuer: /CN=84e1429a53e6463b3c74f5a3f17c5d4a51ebd0b8 Certificate serial: 019B3F480938819F00CACA42528DE16DF606 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/72dbdf-c71d-4e59-8076-c41dcca8b775/1/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.mft Manifest number: 1790 Signing time: Sun 21 Dec 2025 05:00:43 +0000 Manifest this update: Sun 21 Dec 2025 05:00:43 +0000 Manifest next update: Mon 22 Dec 2025 05:00:43 +0000 Files and hashes: 1: UzSEdJBP2Gqr1z-0qx79WTsLauw.roa (hash: vl1ow4mOIeKlrrAdbJAJQJmVxWS6mp39VC/9XaCz00U=) 2: XebRYOITfzcAbcv2WQiIUJzp9IY.roa (hash: /LlV1c2jBHdUzm3m7BbrQfvi7DnfI/2A+wzHJz5/0Eg=) 3: hOFCmlPmRjs8dPWj8XxdSlHr0Lg.crl (hash: pQRvxpyepLW4KghNNJZa9TOObgKBkziH/XGpc1O9cow=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/72dbdf-c71d-4e59-8076-c41dcca8b775/1/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.crl rsync://rpki.ripe.net/repository/DEFAULT/b1/72dbdf-c71d-4e59-8076-c41dcca8b775/1/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.mft rsync://rpki.ripe.net/repository/DEFAULT/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3f:48:09:38:81:9f:00:ca:ca:42:52:8d:e1:6d:f6:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84e1429a53e6463b3c74f5a3f17c5d4a51ebd0b8 Validity Not Before: Dec 21 05:00:43 2025 GMT Not After : Dec 22 05:00:43 2025 GMT Subject: CN=f8637723e6cdedd89cd060a43a93b4f62fa9d8b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:c2:eb:a8:ff:fd:64:2a:2c:2a:0b:b5:ba:71: ff:0c:e4:9c:9e:f0:f5:78:32:90:38:81:53:ee:67: df:a1:80:0d:d3:f3:25:2e:37:43:9e:87:a2:f4:cc: 6a:53:04:be:e8:3a:b0:aa:5e:3f:a9:3c:9f:9a:80: 82:6c:7c:f1:41:5b:cf:19:12:8f:ec:0f:6f:38:df: 5f:52:56:f6:8d:e9:fc:d7:8b:15:fa:9d:d8:65:83: 9a:f7:a4:ca:7e:7b:41:a6:6f:10:a2:bc:0e:d7:c9: e5:14:5b:14:ef:07:a1:ea:3c:f1:dc:96:2b:98:ce: 42:86:75:bc:88:90:f8:01:db:cb:51:ae:4e:26:7a: ab:53:be:18:2d:be:4a:20:94:95:6b:1f:4d:11:fe: 26:7b:b1:ac:d7:67:fe:46:27:a2:5f:53:b7:b9:dd: e9:2f:74:13:ce:36:0f:f4:63:88:0a:16:66:d9:52: f3:33:96:5f:ec:98:84:68:a6:f6:37:09:33:03:3a: 45:8f:26:6d:57:cd:de:12:37:a9:44:31:a7:71:96: 5a:2e:70:9e:08:36:ad:82:37:06:04:67:bc:37:d9: 42:1d:c8:1f:65:63:fb:78:ef:ea:da:19:46:56:d0: a6:fe:40:75:cc:b6:a7:c5:0d:aa:e8:a2:7b:12:c4: e4:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:63:77:23:E6:CD:ED:D8:9C:D0:60:A4:3A:93:B4:F6:2F:A9:D8:B6 X509v3 Authority Key Identifier: keyid:84:E1:42:9A:53:E6:46:3B:3C:74:F5:A3:F1:7C:5D:4A:51:EB:D0:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/72dbdf-c71d-4e59-8076-c41dcca8b775/1/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/72dbdf-c71d-4e59-8076-c41dcca8b775/1/hOFCmlPmRjs8dPWj8XxdSlHr0Lg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:e9:cd:16:fb:a0:9a:27:b0:b2:76:17:87:ba:fa:2f:a6:53: 76:f6:23:9c:1b:db:7d:59:94:71:50:1b:44:6b:29:b3:58:bb: a0:00:ed:22:4d:1f:d9:61:0e:ca:2d:df:3e:54:67:64:6b:c2: 11:e3:e1:f2:c8:0e:ac:83:f4:45:46:ac:18:ea:e5:fe:ab:3e: fc:41:64:3d:40:ab:fa:23:2f:6d:3a:ab:cd:b5:1c:04:41:7d: e0:68:72:e5:9c:7d:e0:d3:52:1b:04:34:60:ab:7e:8b:9f:7d: 1e:e1:bf:9c:0b:59:23:7f:f7:2c:fb:f2:01:17:87:dd:02:09: 6c:23:f1:1c:38:c0:cc:1c:01:cd:5d:51:13:ad:48:3d:40:c6: 08:30:e2:85:39:bd:56:4f:c4:67:3e:68:8b:ec:97:b6:a0:5b: 2a:e2:07:6a:0c:5a:3e:d0:e0:fb:fe:90:0c:09:3e:1b:5c:09: cf:c3:f9:3e:ed:da:1f:71:10:ac:fd:c1:7b:b6:ec:92:21:c6: 7f:e2:80:30:ab:82:54:5a:77:ff:ab:29:da:2b:99:da:99:0a: eb:61:f1:82:5c:73:9c:8e:33:ba:11:59:e5:0f:0a:ee:39:20: 83:26:36:26:cc:63:47:2d:a8:6a:1c:b0:93:11:6a:fd:bf:53: 53:3a:c6:6a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs/SAk4gZ8AyspCUo3hbfYGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0ZTE0MjlhNTNlNjQ2M2IzYzc0ZjVhM2YxN2M1ZDRhNTFl YmQwYjgwHhcNMjUxMjIxMDUwMDQzWhcNMjUxMjIyMDUwMDQzWjAzMTEwLwYDVQQD EyhmODYzNzcyM2U2Y2RlZGQ4OWNkMDYwYTQzYTkzYjRmNjJmYTlkOGI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn8LrqP/9ZCosKgu1unH/DOScnvD1 eDKQOIFT7mffoYAN0/MlLjdDnoei9MxqUwS+6Dqwql4/qTyfmoCCbHzxQVvPGRKP 7A9vON9fUlb2jen814sV+p3YZYOa96TKfntBpm8QorwO18nlFFsU7weh6jzx3JYr mM5ChnW8iJD4AdvLUa5OJnqrU74YLb5KIJSVax9NEf4me7Gs12f+RieiX1O3ud3p L3QTzjYP9GOIChZm2VLzM5Zf7JiEaKb2NwkzAzpFjyZtV83eEjepRDGncZZaLnCe CDatgjcGBGe8N9lCHcgfZWP7eO/q2hlGVtCm/kB1zLanxQ2q6KJ7EsTk0wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPhjdyPmze3YnNBgpDqTtPYvqdi2MB8GA1UdIwQY MBaAFIThQppT5kY7PHT1o/F8XUpR69C4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaE9GQ21sUG1SanM4ZFBXajhYeGRTbEhyMExnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS83MmRiZGYtYzcxZC00ZTU5LTgwNzYt YzQxZGNjYThiNzc1LzEvaE9GQ21sUG1SanM4ZFBXajhYeGRTbEhyMExnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMS83MmRiZGYtYzcxZC00ZTU5LTgwNzYtYzQxZGNjYThiNzc1 LzEvaE9GQ21sUG1SanM4ZFBXajhYeGRTbEhyMExnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK+nNFvug miewsnYXh7r6L6ZTdvYjnBvbfVmUcVAbRGsps1i7oADtIk0f2WEOyi3fPlRnZGvC EePh8sgOrIP0RUasGOrl/qs+/EFkPUCr+iMvbTqrzbUcBEF94Ghy5Zx94NNSGwQ0 YKt+i599HuG/nAtZI3/3LPvyAReH3QIJbCPxHDjAzBwBzV1RE61IPUDGCDDihTm9 Vk/EZz5oi+yXtqBbKuIHagxaPtDg+/6QDAk+G1wJz8P5Pu3aH3EQrP3Be7bskiHG f+KAMKuCVFp3/6sp2iuZ2pkK62HxglxznI4zuhFZ5Q8K7jkggyY2JsxjRy2oahyw kxFq/b9TUzrGag== -----END CERTIFICATE-----Generated at Sun Dec 21 08:35:39 2025 by rpki-client