This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft File: HCF8gIa-KdUPg8j9j8kXsAnePIE.mft (raw, json) Hash identifier: 2NVMwpaLhEQgzCKwhlipZVUPKs4ZcT06WeplY5PB/4o= Subject key identifier: 83:3F:F9:2A:F0:0C:D5:8E:BA:7B:B7:2E:14:27:05:65:72:17:45:20 Authority key identifier: 1C:21:7C:80:86:BE:29:D5:0F:83:C8:FD:8F:C9:17:B0:09:DE:3C:81 Certificate issuer: /CN=1c217c8086be29d50f83c8fd8fc917b009de3c81 Certificate serial: 019B4693A056E3EC59CEB608CCB8A192CD73 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HCF8gIa-KdUPg8j9j8kXsAnePIE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft Manifest number: 02B3 Signing time: Mon 22 Dec 2025 15:00:38 +0000 Manifest this update: Mon 22 Dec 2025 15:00:38 +0000 Manifest next update: Tue 23 Dec 2025 15:00:38 +0000 Files and hashes: 1: 0Ai9U12mBfKyiWOFnwxyJgomY7A.roa (hash: w93SlMAnXeNUWu2aTB2M64qmn0qVbSFDgVMubrcribE=) 2: HCF8gIa-KdUPg8j9j8kXsAnePIE.crl (hash: 5lvrM+Uzrrl6RfybcWlSD/SlpdlIhvMjPpI3veXzUm8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.crl rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft rsync://rpki.ripe.net/repository/DEFAULT/HCF8gIa-KdUPg8j9j8kXsAnePIE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 10:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:46:93:a0:56:e3:ec:59:ce:b6:08:cc:b8:a1:92:cd:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c217c8086be29d50f83c8fd8fc917b009de3c81 Validity Not Before: Dec 22 15:00:38 2025 GMT Not After : Dec 23 15:00:38 2025 GMT Subject: CN=833ff92af00cd58eba7bb72e1427056572174520 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:26:4b:e9:0a:65:a2:b2:39:3e:ec:82:da:a2: 88:3d:a3:da:ba:e6:d0:e6:ab:e9:0f:0b:9a:6a:57: 02:b1:86:dd:3d:04:83:f9:37:c2:a1:0e:62:9d:96: 98:cb:58:4c:32:bf:30:f4:e1:f3:78:50:48:de:b5: c5:18:0d:81:66:4e:4f:d3:b8:d5:06:1f:ef:ea:cf: 82:0d:80:aa:49:05:32:29:83:99:83:86:b7:3f:bd: f6:c5:06:98:b2:84:ef:74:5e:e9:f5:3f:9d:96:8e: 6a:90:d8:15:b3:ee:ca:33:58:d7:7f:56:03:2b:5f: d5:80:7d:07:e6:ea:95:37:75:bb:fd:34:a8:7c:0e: 9c:32:a7:6e:ca:ab:2b:62:06:78:8a:fc:37:aa:e9: ed:81:ac:90:8f:21:9f:6c:be:03:bd:df:28:79:ac: 05:8c:6f:12:29:77:2a:cd:5e:60:71:09:ca:46:d9: 14:e7:fc:ce:7f:08:43:7b:00:30:91:bc:aa:ca:20: a3:99:4d:14:44:4e:08:d6:9b:f3:a6:7e:0e:e0:51: a5:a4:c4:a1:94:b0:b8:c1:2c:d9:c8:58:30:b2:b7: 61:dc:bf:bd:31:61:e7:4d:63:cd:28:10:d5:6f:e9: e2:4d:8b:b5:1e:81:5e:9b:6b:35:c5:f3:78:44:f3: b3:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:3F:F9:2A:F0:0C:D5:8E:BA:7B:B7:2E:14:27:05:65:72:17:45:20 X509v3 Authority Key Identifier: keyid:1C:21:7C:80:86:BE:29:D5:0F:83:C8:FD:8F:C9:17:B0:09:DE:3C:81 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HCF8gIa-KdUPg8j9j8kXsAnePIE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/86bb04-09df-422a-b5f9-f34b31d3b43c/1/HCF8gIa-KdUPg8j9j8kXsAnePIE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:51:57:ed:4b:e7:b2:32:2f:73:7f:12:6c:6e:0c:d2:d0:83: 4f:1a:19:7f:a5:aa:85:05:15:f0:82:50:03:fa:6e:5a:d1:06: 4a:b6:33:ef:c2:dd:6f:5c:12:65:47:56:79:00:e6:96:7a:83: 9d:92:61:69:c2:66:9e:a6:b6:d2:4e:e9:4c:90:cd:05:cf:f4: a0:7e:0a:85:db:11:88:09:b3:d7:36:55:4d:2c:5f:31:42:35: 69:59:0e:79:38:4f:3b:15:c7:44:3c:69:9c:29:35:d0:c9:33: 50:81:b4:11:99:47:44:86:52:8b:14:7c:91:0f:9b:f8:0e:43: e7:c2:0e:8b:3c:e8:ce:8f:3a:3c:1d:8c:17:32:d8:3b:a3:62: c7:aa:73:9e:c9:16:72:0a:45:a4:2c:1e:c5:fc:0d:a6:58:7a: 65:b1:3e:dd:94:0b:75:8f:a3:51:ac:91:b9:dc:db:0e:3f:c6: 7d:b1:da:2b:41:0b:a3:a3:56:69:39:23:fa:d0:27:43:7d:64: 8d:fa:80:99:d9:3a:84:59:79:02:ed:22:d1:fd:c3:1d:c4:48: 9a:5a:ab:53:2d:a6:f1:6e:61:9c:b3:a9:fe:c2:6a:74:17:77: 3d:c1:3e:be:cd:9e:7e:a4:6d:94:db:65:b3:b7:6a:40:c1:df: 7c:d2:a0:76 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtGk6BW4+xZzrYIzLihks1zMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjMjE3YzgwODZiZTI5ZDUwZjgzYzhmZDhmYzkxN2IwMDlk ZTNjODEwHhcNMjUxMjIyMTUwMDM4WhcNMjUxMjIzMTUwMDM4WjAzMTEwLwYDVQQD Eyg4MzNmZjkyYWYwMGNkNThlYmE3YmI3MmUxNDI3MDU2NTcyMTc0NTIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmiZL6QplorI5PuyC2qKIPaPauubQ 5qvpDwuaalcCsYbdPQSD+TfCoQ5inZaYy1hMMr8w9OHzeFBI3rXFGA2BZk5P07jV Bh/v6s+CDYCqSQUyKYOZg4a3P732xQaYsoTvdF7p9T+dlo5qkNgVs+7KM1jXf1YD K1/VgH0H5uqVN3W7/TSofA6cMqduyqsrYgZ4ivw3quntgayQjyGfbL4Dvd8oeawF jG8SKXcqzV5gcQnKRtkU5/zOfwhDewAwkbyqyiCjmU0URE4I1pvzpn4O4FGlpMSh lLC4wSzZyFgwsrdh3L+9MWHnTWPNKBDVb+niTYu1HoFem2s1xfN4RPOz6wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIM/+SrwDNWOunu3LhQnBWVyF0UgMB8GA1UdIwQY MBaAFBwhfICGvinVD4PI/Y/JF7AJ3jyBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSENGOGdJYS1LZFVQZzhqOWo4a1hzQW5lUElFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC84NmJiMDQtMDlkZi00MjJhLWI1Zjkt ZjM0YjMxZDNiNDNjLzEvSENGOGdJYS1LZFVQZzhqOWo4a1hzQW5lUElFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMC84NmJiMDQtMDlkZi00MjJhLWI1ZjktZjM0YjMxZDNiNDNj LzEvSENGOGdJYS1LZFVQZzhqOWo4a1hzQW5lUElFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHVFX7Uvn sjIvc38SbG4M0tCDTxoZf6WqhQUV8IJQA/puWtEGSrYz78Ldb1wSZUdWeQDmlnqD nZJhacJmnqa20k7pTJDNBc/0oH4KhdsRiAmz1zZVTSxfMUI1aVkOeThPOxXHRDxp nCk10MkzUIG0EZlHRIZSixR8kQ+b+A5D58IOizzozo86PB2MFzLYO6Nix6pznskW cgpFpCwexfwNplh6ZbE+3ZQLdY+jUayRudzbDj/GfbHaK0ELo6NWaTkj+tAnQ31k jfqAmdk6hFl5Au0i0f3DHcRImlqrUy2m8W5hnLOp/sJqdBd3PcE+vs2efqRtlNtl s7dqQMHffNKgdg== -----END CERTIFICATE-----Generated at Mon Dec 22 17:08:41 2025 by rpki-client