This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft File: hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft (raw, json) Hash identifier: 2uV80BF/5+keTXIBkJVQ5+xmpYuQpc+0KtVTKzvwRbk= Subject key identifier: CA:90:DA:DC:AD:4F:C8:C9:3C:2F:10:02:0C:BD:B6:43:14:7B:06:83 Authority key identifier: 86:38:41:50:6D:02:61:31:96:50:57:40:9A:16:04:A5:67:1F:05:41 Certificate issuer: /CN=863841506d026131965057409a1604a5671f0541 Certificate serial: 019B5D52AF8DAE484C1087C1620378C436F1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft Manifest number: 0561 Signing time: Sat 27 Dec 2025 01:00:58 +0000 Manifest this update: Sat 27 Dec 2025 01:00:58 +0000 Manifest next update: Sun 28 Dec 2025 01:00:58 +0000 Files and hashes: 1: hXap7hNXLEAQarnfnwYswdCAdkQ.roa (hash: bNhK/WdUp/9xvJiGhX97CJWQhZiON1WPJ6uWrAYKvFI=) 2: hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl (hash: E2eVLHz/b80fKbDCab9OKjwG8YZldnJ9BL4yuaG6cr4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 20:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5d:52:af:8d:ae:48:4c:10:87:c1:62:03:78:c4:36:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=863841506d026131965057409a1604a5671f0541 Validity Not Before: Dec 27 01:00:58 2025 GMT Not After : Dec 28 01:00:58 2025 GMT Subject: CN=ca90dadcad4fc8c93c2f10020cbdb643147b0683 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:4f:15:12:42:27:9f:dc:1b:a9:b5:d1:ab:25: 59:26:48:72:d3:12:d5:26:e6:85:0e:68:65:6e:d3: 98:39:f6:44:e3:92:8e:96:0d:28:a9:d4:ec:08:69: 62:45:d5:1b:4c:2e:1b:88:2b:ac:63:60:8c:ea:89: 24:7f:ad:28:37:c3:f5:9e:69:7c:90:bb:a5:6f:31: be:7a:ca:17:6f:27:4a:23:74:d1:c5:cc:41:20:17: 21:6a:a0:52:8f:66:fc:4b:61:65:04:a8:61:88:f6: 4c:c2:b4:58:43:61:a5:75:68:94:17:ed:57:92:5f: c6:e4:18:76:b1:e5:06:a8:e9:5d:17:24:41:6f:ef: b5:22:71:ff:32:f9:15:30:47:af:2a:e2:d8:99:57: 41:d0:22:a4:33:c3:07:53:c3:01:bb:69:e0:8a:0a: 2d:87:64:b8:dd:08:cc:85:ec:fb:6a:31:14:3f:da: d0:86:c6:59:6b:da:e4:e9:1c:16:76:1b:d0:41:f5: ed:a4:8a:53:b6:bb:b0:07:b3:63:ce:96:ea:be:c6: 85:da:e2:24:c6:5f:9d:96:c3:a9:50:01:77:db:12: f8:b2:12:98:50:d6:e3:00:2a:8a:a4:31:9a:6e:6f: 9a:f1:45:3d:81:b6:79:51:9b:47:3a:d8:e6:26:5c: 78:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:90:DA:DC:AD:4F:C8:C9:3C:2F:10:02:0C:BD:B6:43:14:7B:06:83 X509v3 Authority Key Identifier: keyid:86:38:41:50:6D:02:61:31:96:50:57:40:9A:16:04:A5:67:1F:05:41 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 31:78:c4:3e:52:e4:1e:38:7c:a8:26:34:26:cd:67:b8:6a:9b: a9:1e:54:98:8d:21:73:7f:b8:f1:7a:3f:a6:8e:c7:d6:e1:60: c4:56:f6:80:a1:c1:6e:70:49:37:ae:08:d9:01:36:12:09:52: 3e:bc:49:7d:79:0b:a4:f2:bb:b1:53:9a:07:3b:1a:14:4c:7b: f8:fb:82:22:7f:39:0f:79:cc:d0:14:ca:9d:d8:f7:e0:a5:97: 63:8d:e8:fd:7b:07:97:39:3d:40:db:31:68:5a:65:df:13:76: 4b:49:fa:43:db:6a:8b:33:4f:d8:de:c7:30:68:8c:e8:0c:71: 1b:92:73:3f:42:c2:df:f4:76:01:13:1f:c6:1b:76:da:90:de: 2f:67:72:86:6d:f5:b5:16:93:e5:42:7b:e4:6c:50:27:15:9e: d9:ac:12:54:9a:39:5d:b2:b8:a9:f7:4e:de:b5:09:6b:c5:15: e7:94:16:5f:ba:8f:a1:c3:4e:08:1b:00:07:a4:b7:11:e3:f3: 31:bb:08:83:99:cb:0e:2a:b0:a4:43:18:de:77:ca:5e:8a:c3: e4:0f:83:af:04:e3:97:17:85:af:6f:af:fe:f4:89:e9:b4:73: af:30:e9:e8:22:f5:3c:78:dd:e7:5f:68:84:e4:c7:60:e1:7b: 61:46:06:e4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtdUq+NrkhMEIfBYgN4xDbxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2Mzg0MTUwNmQwMjYxMzE5NjUwNTc0MDlhMTYwNGE1Njcx ZjA1NDEwHhcNMjUxMjI3MDEwMDU4WhcNMjUxMjI4MDEwMDU4WjAzMTEwLwYDVQQD EyhjYTkwZGFkY2FkNGZjOGM5M2MyZjEwMDIwY2JkYjY0MzE0N2IwNjgzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4k8VEkInn9wbqbXRqyVZJkhy0xLV JuaFDmhlbtOYOfZE45KOlg0oqdTsCGliRdUbTC4biCusY2CM6okkf60oN8P1nml8 kLulbzG+esoXbydKI3TRxcxBIBchaqBSj2b8S2FlBKhhiPZMwrRYQ2GldWiUF+1X kl/G5Bh2seUGqOldFyRBb++1InH/MvkVMEevKuLYmVdB0CKkM8MHU8MBu2ngigot h2S43QjMhez7ajEUP9rQhsZZa9rk6RwWdhvQQfXtpIpTtruwB7NjzpbqvsaF2uIk xl+dlsOpUAF32xL4shKYUNbjACqKpDGabm+a8UU9gbZ5UZtHOtjmJlx4DQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMqQ2tytT8jJPC8QAgy9tkMUewaDMB8GA1UdIwQY MBaAFIY4QVBtAmExllBXQJoWBKVnHwVBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGpoQlVHMENZVEdXVUZkQW1oWUVwV2NmQlVFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi8xZjE1NjMtYjMzMS00M2E5LWI5Y2Mt M2JmYTA1MDkyMDFmLzEvaGpoQlVHMENZVEdXVUZkQW1oWUVwV2NmQlVFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi8xZjE1NjMtYjMzMS00M2E5LWI5Y2MtM2JmYTA1MDkyMDFm LzEvaGpoQlVHMENZVEdXVUZkQW1oWUVwV2NmQlVFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMXjEPlLk Hjh8qCY0Js1nuGqbqR5UmI0hc3+48Xo/po7H1uFgxFb2gKHBbnBJN64I2QE2EglS PrxJfXkLpPK7sVOaBzsaFEx7+PuCIn85D3nM0BTKndj34KWXY43o/XsHlzk9QNsx aFpl3xN2S0n6Q9tqizNP2N7HMGiM6AxxG5JzP0LC3/R2ARMfxht22pDeL2dyhm31 tRaT5UJ75GxQJxWe2awSVJo5XbK4qfdO3rUJa8UV55QWX7qPocNOCBsAB6S3EePz MbsIg5nLDiqwpEMY3nfKXorD5A+DrwTjlxeFr2+v/vSJ6bRzrzDp6CL1PHjd519o hOTHYOF7YUYG5A== -----END CERTIFICATE-----Generated at Sat Dec 27 05:39:29 2025 by rpki-client