This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.mft File: hiTz9mHyS-X-9kHcci5c9ayHOJ4.mft (raw, json) Hash identifier: OudL/Ft1GRZdmaNEBatM2F4SNnkQZ8g2qlz2tbnmEyM= Subject key identifier: 62:55:03:15:EA:6D:FE:1C:C2:9C:EB:E0:D7:AF:A1:AB:1E:EB:86:3E Authority key identifier: 86:24:F3:F6:61:F2:4B:E5:FE:F6:41:DC:72:2E:5C:F5:AC:87:38:9E Certificate issuer: /CN=8624f3f661f24be5fef641dc722e5cf5ac87389e Certificate serial: 019B54500063509051BF51EC0B8DF82D47A6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hiTz9mHyS-X-9kHcci5c9ayHOJ4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.mft Manifest number: 0DD7 Signing time: Thu 25 Dec 2025 07:01:27 +0000 Manifest this update: Thu 25 Dec 2025 07:01:27 +0000 Manifest next update: Fri 26 Dec 2025 07:01:27 +0000 Files and hashes: 1: MWwCkyjKodNxojuXE4ToQXLtm5w.roa (hash: Ak0owLXzMtwfRek9KqA/lWNxi61mLQqKV5qpbUxSWP4=) 2: NLcJ1zHiWemoNGCQqxBLJZM1epY.roa (hash: sN7g+z3kFVXgkKd1egNCxj+JRztRoGDD2QPyWEFToRI=) 3: hiTz9mHyS-X-9kHcci5c9ayHOJ4.crl (hash: frrt1D3sb/y4H2YyYWwm+Ko7XQYHnU+6AVI26g/jqUE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.crl rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.mft rsync://rpki.ripe.net/repository/DEFAULT/hiTz9mHyS-X-9kHcci5c9ayHOJ4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 26 Dec 2025 03:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:54:50:00:63:50:90:51:bf:51:ec:0b:8d:f8:2d:47:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8624f3f661f24be5fef641dc722e5cf5ac87389e Validity Not Before: Dec 25 07:01:27 2025 GMT Not After : Dec 26 07:01:27 2025 GMT Subject: CN=62550315ea6dfe1cc29cebe0d7afa1ab1eeb863e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:fa:5c:fd:52:71:e3:c3:e9:f8:d3:5e:24:11: 6d:94:33:63:be:84:0f:85:83:61:6d:a1:06:b9:c8: a3:29:a8:c1:25:07:77:7e:71:fa:07:21:f0:e4:89: f0:fb:81:44:d2:fc:77:48:e7:6a:06:9f:25:4c:63: 84:68:2d:9f:1f:31:1a:b6:56:47:2f:1c:0a:40:79: fb:aa:8e:5e:9d:41:40:4c:82:89:87:79:b8:59:5b: 97:c2:02:d0:2c:50:0c:11:a5:97:4d:7b:7e:3b:ae: 78:31:54:56:78:59:70:c8:85:dd:fc:da:48:31:0e: 32:08:67:10:19:4d:38:c1:17:a8:f6:ab:3f:fc:ff: 17:8d:13:ec:ea:bd:94:5f:3a:d8:5e:ab:ee:db:9e: 83:0d:e2:cf:70:9c:f4:04:92:3f:d4:63:7d:c2:31: c0:c7:76:bc:f1:c2:c9:5c:dd:e4:8b:13:aa:ab:a0: fc:49:d3:2e:18:12:ba:a0:fa:94:a2:02:d6:0c:ef: b6:28:ee:2d:d1:67:68:fa:64:ee:7e:60:ad:08:04: 9a:b9:40:96:0d:18:42:c6:1e:85:47:6d:f3:4d:52: f6:e4:0b:d7:39:13:41:3d:d1:53:36:d1:71:08:05: 5e:d9:d7:c6:86:37:64:ed:a8:23:32:50:0b:01:e0: 09:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:55:03:15:EA:6D:FE:1C:C2:9C:EB:E0:D7:AF:A1:AB:1E:EB:86:3E X509v3 Authority Key Identifier: keyid:86:24:F3:F6:61:F2:4B:E5:FE:F6:41:DC:72:2E:5C:F5:AC:87:38:9E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hiTz9mHyS-X-9kHcci5c9ayHOJ4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6c:8a:45:2d:0f:40:12:cd:78:12:7f:ab:2b:8c:81:dd:41:eb: 33:6f:9e:be:0a:52:80:5e:1b:d7:84:d5:1c:45:1a:31:f0:b5: f7:bb:34:02:0a:42:86:5b:99:f2:06:fd:70:6a:71:dd:c1:5a: b4:72:d9:60:3d:dc:2d:8c:64:18:be:74:79:70:9b:11:d5:5e: 4e:80:e8:f0:5b:5c:dc:df:f6:d9:8b:d6:14:79:8c:47:90:aa: 06:e3:8d:b9:d1:f8:7c:75:23:a4:ea:85:86:1b:7f:67:b6:99: 05:8a:dc:2e:1d:7d:02:9a:3f:d4:da:0e:ec:a0:cd:5b:6a:1c: a5:60:ad:54:8c:cd:85:63:16:d1:e1:75:a1:74:84:3c:79:03: 15:fd:ab:74:a8:eb:b7:00:eb:07:22:f8:c9:4a:83:eb:46:3a: 5e:13:54:a6:63:e8:90:37:a1:7b:36:3a:00:03:61:1b:0f:85: e9:72:35:8d:b4:47:e7:0f:bf:bf:c7:50:a8:b5:5d:24:9f:b6: 1f:1b:ff:97:80:eb:63:5d:70:7d:c3:62:06:4d:95:9a:1d:c1: a0:bd:dc:b4:b9:f7:54:5c:9e:a1:be:18:9d:f1:60:0e:3b:4f: 7d:b1:25:fc:2a:4f:ff:83:d0:64:6f:12:50:90:a0:b2:fa:5a: 26:e6:01:05 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtUUABjUJBRv1HsC434LUemMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2MjRmM2Y2NjFmMjRiZTVmZWY2NDFkYzcyMmU1Y2Y1YWM4 NzM4OWUwHhcNMjUxMjI1MDcwMTI3WhcNMjUxMjI2MDcwMTI3WjAzMTEwLwYDVQQD Eyg2MjU1MDMxNWVhNmRmZTFjYzI5Y2ViZTBkN2FmYTFhYjFlZWI4NjNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv/pc/VJx48Pp+NNeJBFtlDNjvoQP hYNhbaEGucijKajBJQd3fnH6ByHw5Inw+4FE0vx3SOdqBp8lTGOEaC2fHzEatlZH LxwKQHn7qo5enUFATIKJh3m4WVuXwgLQLFAMEaWXTXt+O654MVRWeFlwyIXd/NpI MQ4yCGcQGU04wReo9qs//P8XjRPs6r2UXzrYXqvu256DDeLPcJz0BJI/1GN9wjHA x3a88cLJXN3kixOqq6D8SdMuGBK6oPqUogLWDO+2KO4t0Wdo+mTufmCtCASauUCW DRhCxh6FR23zTVL25AvXORNBPdFTNtFxCAVe2dfGhjdk7agjMlALAeAJHQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGJVAxXqbf4cwpzr4Nevoase64Y+MB8GA1UdIwQY MBaAFIYk8/Zh8kvl/vZB3HIuXPWshzieMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGlUejltSHlTLVgtOWtIY2NpNWM5YXlIT0o0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi8yZDk1OGMtODg3OC00MzIzLWJlZGMt MjVlNTM1YzhhNWI5LzEvaGlUejltSHlTLVgtOWtIY2NpNWM5YXlIT0o0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMi8yZDk1OGMtODg3OC00MzIzLWJlZGMtMjVlNTM1YzhhNWI5 LzEvaGlUejltSHlTLVgtOWtIY2NpNWM5YXlIT0o0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbIpFLQ9A Es14En+rK4yB3UHrM2+evgpSgF4b14TVHEUaMfC197s0AgpChluZ8gb9cGpx3cFa tHLZYD3cLYxkGL50eXCbEdVeToDo8Ftc3N/22YvWFHmMR5CqBuONudH4fHUjpOqF hht/Z7aZBYrcLh19Apo/1NoO7KDNW2ocpWCtVIzNhWMW0eF1oXSEPHkDFf2rdKjr twDrByL4yUqD60Y6XhNUpmPokDehezY6AANhGw+F6XI1jbRH5w+/v8dQqLVdJJ+2 Hxv/l4DrY11wfcNiBk2Vmh3BoL3ctLn3VFyeob4YnfFgDjtPfbEl/CpP/4PQZG8S UJCgsvpaJuYBBQ== -----END CERTIFICATE-----Generated at Thu Dec 25 12:48:17 2025 by rpki-client