This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.mft File: hiTz9mHyS-X-9kHcci5c9ayHOJ4.mft (raw, json) Hash identifier: +2o3TPzJwjrAcWo1Gz/QcXcpeGsGIF8nB/3Gu0v9RWo= Subject key identifier: BF:48:44:A3:FA:79:CB:5F:93:4A:C8:C9:60:F5:56:53:63:C2:13:B0 Authority key identifier: 86:24:F3:F6:61:F2:4B:E5:FE:F6:41:DC:72:2E:5C:F5:AC:87:38:9E Certificate issuer: /CN=8624f3f661f24be5fef641dc722e5cf5ac87389e Certificate serial: 019B3B353B49EC41888F168005F72E6F3B8E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hiTz9mHyS-X-9kHcci5c9ayHOJ4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.mft Manifest number: 0DCA Signing time: Sat 20 Dec 2025 10:01:42 +0000 Manifest this update: Sat 20 Dec 2025 10:01:42 +0000 Manifest next update: Sun 21 Dec 2025 10:01:42 +0000 Files and hashes: 1: MWwCkyjKodNxojuXE4ToQXLtm5w.roa (hash: Ak0owLXzMtwfRek9KqA/lWNxi61mLQqKV5qpbUxSWP4=) 2: NLcJ1zHiWemoNGCQqxBLJZM1epY.roa (hash: sN7g+z3kFVXgkKd1egNCxj+JRztRoGDD2QPyWEFToRI=) 3: hiTz9mHyS-X-9kHcci5c9ayHOJ4.crl (hash: Es6tfosWhzwOanj054soWwUqn68DmDB9I52ZWjfQc3M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.crl rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.mft rsync://rpki.ripe.net/repository/DEFAULT/hiTz9mHyS-X-9kHcci5c9ayHOJ4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 10:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3b:35:3b:49:ec:41:88:8f:16:80:05:f7:2e:6f:3b:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8624f3f661f24be5fef641dc722e5cf5ac87389e Validity Not Before: Dec 20 10:01:42 2025 GMT Not After : Dec 21 10:01:42 2025 GMT Subject: CN=bf4844a3fa79cb5f934ac8c960f5565363c213b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:a9:d8:2f:85:1b:9a:81:a5:c5:a7:7d:ee:a2: b7:a8:c1:13:0b:8d:82:a2:cc:35:da:9e:da:49:d5: 16:07:42:84:13:08:40:21:fc:44:b0:c6:5d:58:63: 86:dc:2b:1c:ae:44:ce:fc:6e:77:86:c5:e4:f6:af: 8a:b8:e4:2b:d7:1b:e4:80:d9:68:b8:9c:89:0e:2c: 26:cd:60:e8:1a:c3:2e:1f:aa:84:c1:68:7e:e7:16: 0c:60:73:b8:28:19:d8:03:ca:a4:02:22:1f:46:f2: 24:77:1e:0b:ba:6a:cd:71:e4:03:f2:6e:f8:da:b4: 4e:3d:fe:e8:58:a9:d6:ff:83:87:e5:a8:37:59:84: 4f:90:66:9d:2b:f3:b0:22:a7:3c:4f:5e:dc:f3:5a: 7a:40:26:a5:c1:ef:f5:5f:31:1c:27:0b:4d:d0:e3: d0:bb:77:63:8f:3e:21:68:06:b1:c0:af:66:08:c5: 84:9d:5d:e6:15:2a:47:58:68:7a:b2:a7:ee:43:be: 6f:8b:bf:39:c3:22:bb:95:ca:89:e1:86:f1:bc:8f: e3:2d:1d:77:03:49:09:6b:61:20:7a:16:e5:36:b6: 2e:70:dd:3c:95:ab:1b:45:36:a5:a2:7a:62:f9:61: 6d:81:d1:56:36:80:4e:de:9a:89:e8:7a:e9:8c:f8: a9:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:48:44:A3:FA:79:CB:5F:93:4A:C8:C9:60:F5:56:53:63:C2:13:B0 X509v3 Authority Key Identifier: keyid:86:24:F3:F6:61:F2:4B:E5:FE:F6:41:DC:72:2E:5C:F5:AC:87:38:9E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hiTz9mHyS-X-9kHcci5c9ayHOJ4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/2d958c-8878-4323-bedc-25e535c8a5b9/1/hiTz9mHyS-X-9kHcci5c9ayHOJ4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d2:c8:c2:ab:33:9d:1b:11:80:99:4b:1c:f8:ca:80:38:9e:de: c3:57:34:96:98:f8:a1:1c:2c:f2:4a:12:eb:41:ea:d8:95:0d: 87:b3:5a:18:46:7f:42:c9:cd:7f:bc:de:2f:67:2b:cf:08:5c: f4:cf:38:14:19:b3:7f:c9:df:ae:bd:81:4f:76:3d:e5:ed:a2: 97:62:1a:4a:6f:45:83:b6:a0:a4:14:21:f4:fe:e1:dd:dd:3f: 7f:af:44:c9:d9:27:e1:8e:6e:dc:5f:08:fd:16:e6:e2:b5:07: 83:bb:0d:cf:bd:70:b3:c5:aa:ec:01:17:b3:e3:0b:f1:3b:d0: ac:53:6c:df:6a:71:ea:26:ee:b6:03:52:cf:ef:f4:3a:4c:e5: 16:ec:2d:50:23:07:f6:14:67:5f:ae:c4:42:72:17:df:77:48: 11:b0:f6:1c:95:48:5c:ab:61:3e:8b:43:c5:f0:1b:89:38:f5: 5d:2c:ea:07:87:f3:ff:08:27:4e:1e:8b:79:b4:29:04:31:b1: cf:9c:87:81:38:68:07:0b:17:f5:4e:00:e4:c3:fe:00:7c:6b: bf:bb:28:a4:78:22:38:ee:95:76:de:9b:72:a0:94:54:da:e4: a8:f0:5f:43:bf:19:58:2d:9f:b4:8b:08:11:14:a1:dd:c2:6a: 81:f4:67:99 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs7NTtJ7EGIjxaABfcubzuOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2MjRmM2Y2NjFmMjRiZTVmZWY2NDFkYzcyMmU1Y2Y1YWM4 NzM4OWUwHhcNMjUxMjIwMTAwMTQyWhcNMjUxMjIxMTAwMTQyWjAzMTEwLwYDVQQD EyhiZjQ4NDRhM2ZhNzljYjVmOTM0YWM4Yzk2MGY1NTY1MzYzYzIxM2IwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArKnYL4UbmoGlxad97qK3qMETC42C osw12p7aSdUWB0KEEwhAIfxEsMZdWGOG3CscrkTO/G53hsXk9q+KuOQr1xvkgNlo uJyJDiwmzWDoGsMuH6qEwWh+5xYMYHO4KBnYA8qkAiIfRvIkdx4LumrNceQD8m74 2rROPf7oWKnW/4OH5ag3WYRPkGadK/OwIqc8T17c81p6QCalwe/1XzEcJwtN0OPQ u3djjz4haAaxwK9mCMWEnV3mFSpHWGh6sqfuQ75vi785wyK7lcqJ4YbxvI/jLR13 A0kJa2EgehblNrYucN08lasbRTalonpi+WFtgdFWNoBO3pqJ6HrpjPip+wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL9IRKP6ectfk0rIyWD1VlNjwhOwMB8GA1UdIwQY MBaAFIYk8/Zh8kvl/vZB3HIuXPWshzieMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGlUejltSHlTLVgtOWtIY2NpNWM5YXlIT0o0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi8yZDk1OGMtODg3OC00MzIzLWJlZGMt MjVlNTM1YzhhNWI5LzEvaGlUejltSHlTLVgtOWtIY2NpNWM5YXlIT0o0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMi8yZDk1OGMtODg3OC00MzIzLWJlZGMtMjVlNTM1YzhhNWI5 LzEvaGlUejltSHlTLVgtOWtIY2NpNWM5YXlIT0o0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA0sjCqzOd GxGAmUsc+MqAOJ7ew1c0lpj4oRws8koS60Hq2JUNh7NaGEZ/QsnNf7zeL2crzwhc 9M84FBmzf8nfrr2BT3Y95e2il2IaSm9Fg7agpBQh9P7h3d0/f69Eydkn4Y5u3F8I /Rbm4rUHg7sNz71ws8Wq7AEXs+ML8TvQrFNs32px6ibutgNSz+/0OkzlFuwtUCMH 9hRnX67EQnIX33dIEbD2HJVIXKthPotDxfAbiTj1XSzqB4fz/wgnTh6LebQpBDGx z5yHgThoBwsX9U4A5MP+AHxrv7sopHgiOO6Vdt6bcqCUVNrkqPBfQ78ZWC2ftIsI ERSh3cJqgfRnmQ== -----END CERTIFICATE-----Generated at Sat Dec 20 18:25:51 2025 by rpki-client