This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/011f6e-e928-4f2b-aa24-200fc274cb01/1/hFKwPhsBcJY4lA2Vkpg83nfsq3c.mft File: hFKwPhsBcJY4lA2Vkpg83nfsq3c.mft (raw, json) Hash identifier: oH4NuY3MiAOTedPnlLytjZgaRrSObaw4b/HrnosBLYM= Subject key identifier: 1B:B7:82:E3:DE:F2:40:CB:A2:73:CB:95:53:B9:B4:6E:42:52:23:71 Authority key identifier: 84:52:B0:3E:1B:01:70:96:38:94:0D:95:92:98:3C:DE:77:EC:AB:77 Certificate issuer: /CN=8452b03e1b01709638940d9592983cde77ecab77 Certificate serial: 019B38A228CE26655DD2D860A477CF7C77FD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hFKwPhsBcJY4lA2Vkpg83nfsq3c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/011f6e-e928-4f2b-aa24-200fc274cb01/1/hFKwPhsBcJY4lA2Vkpg83nfsq3c.mft Manifest number: 1794 Signing time: Fri 19 Dec 2025 22:01:49 +0000 Manifest this update: Fri 19 Dec 2025 22:01:49 +0000 Manifest next update: Sat 20 Dec 2025 22:01:49 +0000 Files and hashes: 1: IZeoqEY95eSVV0eYYLX8T3tHlCs.roa (hash: LO4oh4VYMguVhAQpzzJsbYN82/uMVEn2vgRLSpasT1s=) 2: LJnxaD0i6KMHQc1A1Myl7JzH7gk.roa (hash: BOqHp3/8Lrk2VNXTgZj56poMzxkbv3v/wNmy6/SirSw=) 3: NewZ8pp4liRlRqK_bUM9ux7lUdY.roa (hash: e2V20fh5Bna/npvAqL/4q48RnUBDa1PMa1ud3KkuSzU=) 4: OMAWMgjFkntxY9hjh7x9HjopsUQ.roa (hash: fC4Wynjh9RIf9v3k1CSQsuZtxFupNj1veyw3ZlhI/Jw=) 5: QHrhoLDtZR3zPElOqqmMq3qzkao.roa (hash: NXLg9El+SZKbOxc9Fad+2P9R3XvjaMUu4aKcgfvxLco=) 6: VTgIeAjnu6QDITPutn3ZYiX28hw.roa (hash: 1qNSFP6+K7IEMjkOk6A/QLlgZfO6RHOCGRUYacl+A9I=) 7: VnzJRH-dJQ-dO_CFYq_t71s4Oyk.roa (hash: gIJOoL/O0S2gcfZbAglWFTP6arjfw9ZP6PtDcF7VgUU=) 8: hFKwPhsBcJY4lA2Vkpg83nfsq3c.crl (hash: /aXHCGbAEVpIKH08NTdt62gAwUzW6OZx8wo+kxrCIFo=) 9: kYOzNphxQuuMN-KEH5LcxfVfKho.roa (hash: ZqTwzdBEFFNTdg6mPtQfwSsq0u9CJRd378DWfNVX+no=) 10: wYF_ylL7pnBo9OaIzACNhn9RjFU.roa (hash: RTPtjL/eZ7d6GsDAAsmLFavUlJqeMCconuqgqwEBbU8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/011f6e-e928-4f2b-aa24-200fc274cb01/1/hFKwPhsBcJY4lA2Vkpg83nfsq3c.crl rsync://rpki.ripe.net/repository/DEFAULT/e4/011f6e-e928-4f2b-aa24-200fc274cb01/1/hFKwPhsBcJY4lA2Vkpg83nfsq3c.mft rsync://rpki.ripe.net/repository/DEFAULT/hFKwPhsBcJY4lA2Vkpg83nfsq3c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 17:13:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:38:a2:28:ce:26:65:5d:d2:d8:60:a4:77:cf:7c:77:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8452b03e1b01709638940d9592983cde77ecab77 Validity Not Before: Dec 19 22:01:49 2025 GMT Not After : Dec 20 22:01:49 2025 GMT Subject: CN=1bb782e3def240cba273cb9553b9b46e42522371 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:5a:c5:19:cd:90:63:ef:77:38:07:6d:82:d9: 2f:78:94:38:57:a9:5d:82:10:20:9f:63:f7:35:11: 61:b0:95:76:5f:b4:e5:8a:f6:d1:85:74:28:ea:ca: 37:61:86:80:f7:b5:fd:2a:b2:aa:54:8e:4e:bd:8e: b9:0e:92:60:7b:4e:65:39:53:ab:66:ca:05:d1:89: 04:d1:35:10:7a:07:6e:ac:9f:9a:be:ab:51:e6:28: 8f:19:13:07:83:11:82:80:30:f4:33:2b:9e:bd:f1: 0f:3b:f8:7d:72:32:00:8d:b5:05:31:e7:9a:25:e6: 1f:d6:7e:64:1f:1e:5d:b7:a8:d6:81:64:f8:01:94: 24:ce:3b:cd:3c:f3:6b:10:83:bf:35:57:7f:19:ec: 88:22:80:4b:f6:61:11:af:3a:9a:a7:08:94:c3:d3: fa:3a:a8:4b:31:84:b6:8c:b7:68:11:5a:55:c3:80: 57:0c:08:dd:27:ff:c8:90:fc:52:a8:2c:6a:8c:84: 0b:58:45:3b:8a:80:5d:33:08:67:d2:38:4f:53:00: f4:2e:b6:8e:a7:d6:e8:73:ad:67:d9:90:13:9e:76: 9b:f5:65:e4:12:b0:9f:a8:5f:e2:f3:49:dd:34:f4: 0d:a4:b6:c0:28:2f:8b:b2:36:41:9a:3e:09:e1:ee: 9b:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:B7:82:E3:DE:F2:40:CB:A2:73:CB:95:53:B9:B4:6E:42:52:23:71 X509v3 Authority Key Identifier: keyid:84:52:B0:3E:1B:01:70:96:38:94:0D:95:92:98:3C:DE:77:EC:AB:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hFKwPhsBcJY4lA2Vkpg83nfsq3c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/011f6e-e928-4f2b-aa24-200fc274cb01/1/hFKwPhsBcJY4lA2Vkpg83nfsq3c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/011f6e-e928-4f2b-aa24-200fc274cb01/1/hFKwPhsBcJY4lA2Vkpg83nfsq3c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:73:d3:43:15:91:4d:65:86:26:ae:49:3b:8f:be:69:11:ee: d7:bf:7e:2d:60:e3:6f:3f:15:50:9e:20:c9:92:ee:65:aa:b3: 55:f5:b3:90:b4:f5:3c:6e:67:5e:35:13:31:59:e8:72:2e:93: d1:79:de:ca:a4:8b:44:12:95:19:aa:79:a9:63:32:26:0f:5c: 9a:c1:c8:95:25:a1:8e:81:83:f3:39:dd:1e:ff:19:f4:31:d9: c0:21:0e:01:2c:6a:f8:a0:00:16:fd:58:ad:11:6e:b0:d0:d6: 21:a7:92:e5:1c:f7:b0:2d:87:5d:29:b4:df:3e:07:9e:d7:5e: d3:6c:b4:d8:0d:5f:6a:c2:46:ae:bc:26:eb:8a:09:d9:54:e2: f4:10:bc:7e:cb:52:81:d2:3b:f8:d7:e9:f4:16:41:c9:21:db: 3e:49:44:71:1c:95:9b:e8:07:54:34:c4:34:32:48:a3:e6:b9: c8:7a:ad:07:73:e4:29:50:e7:69:5b:6e:14:52:99:01:dc:d7: bc:7d:07:b4:8a:f8:84:63:63:af:c6:a2:39:c9:47:f1:bd:2a: f8:4f:47:0b:26:93:a6:b2:62:de:b0:a7:63:c2:5d:55:e2:37: b2:00:6f:1d:c7:02:24:64:3d:d0:62:86:e3:2c:a4:8d:25:b3: c0:95:3a:ff -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs4oijOJmVd0thgpHfPfHf9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0NTJiMDNlMWIwMTcwOTYzODk0MGQ5NTkyOTgzY2RlNzdl Y2FiNzcwHhcNMjUxMjE5MjIwMTQ5WhcNMjUxMjIwMjIwMTQ5WjAzMTEwLwYDVQQD EygxYmI3ODJlM2RlZjI0MGNiYTI3M2NiOTU1M2I5YjQ2ZTQyNTIyMzcxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7lrFGc2QY+93OAdtgtkveJQ4V6ld ghAgn2P3NRFhsJV2X7TlivbRhXQo6so3YYaA97X9KrKqVI5OvY65DpJge05lOVOr ZsoF0YkE0TUQegdurJ+avqtR5iiPGRMHgxGCgDD0MyuevfEPO/h9cjIAjbUFMeea JeYf1n5kHx5dt6jWgWT4AZQkzjvNPPNrEIO/NVd/GeyIIoBL9mERrzqapwiUw9P6 OqhLMYS2jLdoEVpVw4BXDAjdJ//IkPxSqCxqjIQLWEU7ioBdMwhn0jhPUwD0LraO p9boc61n2ZATnnab9WXkErCfqF/i80ndNPQNpLbAKC+LsjZBmj4J4e6bNwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBu3guPe8kDLonPLlVO5tG5CUiNxMB8GA1UdIwQY MBaAFIRSsD4bAXCWOJQNlZKYPN537Kt3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaEZLd1Boc0JjSlk0bEEyVmtwZzgzbmZzcTNjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC8wMTFmNmUtZTkyOC00ZjJiLWFhMjQt MjAwZmMyNzRjYjAxLzEvaEZLd1Boc0JjSlk0bEEyVmtwZzgzbmZzcTNjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNC8wMTFmNmUtZTkyOC00ZjJiLWFhMjQtMjAwZmMyNzRjYjAx LzEvaEZLd1Boc0JjSlk0bEEyVmtwZzgzbmZzcTNjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQXPTQxWR TWWGJq5JO4++aRHu179+LWDjbz8VUJ4gyZLuZaqzVfWzkLT1PG5nXjUTMVnoci6T 0XneyqSLRBKVGap5qWMyJg9cmsHIlSWhjoGD8zndHv8Z9DHZwCEOASxq+KAAFv1Y rRFusNDWIaeS5Rz3sC2HXSm03z4Hntde02y02A1fasJGrrwm64oJ2VTi9BC8fstS gdI7+Nfp9BZBySHbPklEcRyVm+gHVDTENDJIo+a5yHqtB3PkKVDnaVtuFFKZAdzX vH0HtIr4hGNjr8aiOclH8b0q+E9HCyaTprJi3rCnY8JdVeI3sgBvHccCJGQ90GKG 4yykjSWzwJU6/w== -----END CERTIFICATE-----Generated at Sat Dec 20 02:55:47 2025 by rpki-client