This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft File: hVBZemBkyIKuKvP6V1nxP4vR3fw.mft (raw, json) Hash identifier: /EiHYERugnlKDnwkTrMkezrpMok7zVBrUFw3kBO5xo4= Subject key identifier: 32:AE:95:D2:C1:E4:BB:D7:54:E7:35:7F:05:CD:47:ED:07:BF:3E:AF Authority key identifier: 85:50:59:7A:60:64:C8:82:AE:2A:F3:FA:57:59:F1:3F:8B:D1:DD:FC Certificate issuer: /CN=8550597a6064c882ae2af3fa5759f13f8bd1ddfc Certificate serial: 019B360E6C978D961E120A8556CABEF90A35 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hVBZemBkyIKuKvP6V1nxP4vR3fw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft Manifest number: 11B9 Signing time: Fri 19 Dec 2025 10:01:13 +0000 Manifest this update: Fri 19 Dec 2025 10:01:13 +0000 Manifest next update: Sat 20 Dec 2025 10:01:13 +0000 Files and hashes: 1: Nnh8TxyMB33fgGngdO7IhueAOsU.roa (hash: R28y5tSNBK4A6wEp0RdvkAdrsGgoMExqmSzBUnD9C9E=) 2: hVBZemBkyIKuKvP6V1nxP4vR3fw.crl (hash: Okckue1iKAOA7782CrGL7pqJr6Qk/oQk5ZxwZLoyFtI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.crl rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft rsync://rpki.ripe.net/repository/DEFAULT/hVBZemBkyIKuKvP6V1nxP4vR3fw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 07:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:36:0e:6c:97:8d:96:1e:12:0a:85:56:ca:be:f9:0a:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8550597a6064c882ae2af3fa5759f13f8bd1ddfc Validity Not Before: Dec 19 10:01:13 2025 GMT Not After : Dec 20 10:01:13 2025 GMT Subject: CN=32ae95d2c1e4bbd754e7357f05cd47ed07bf3eaf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:7a:a8:f9:65:83:d8:10:88:f5:92:af:f8:f7: a7:4f:14:a6:84:d1:3d:68:33:f1:b9:de:9b:0b:56: 54:2c:d2:dc:14:e1:dd:36:97:c1:c6:ff:93:c9:57: b0:41:46:9f:9d:f0:e7:c2:a4:cf:46:06:0a:85:53: 17:05:05:05:d8:ad:75:56:e4:61:35:a0:5b:3f:2a: f2:fa:58:6d:25:24:ad:35:17:6d:38:fa:26:c5:40: 0f:7d:58:8e:80:dd:5e:71:17:e7:a2:0c:18:8e:1a: 07:f2:99:b9:db:0a:78:b9:a5:09:e4:f6:41:99:8e: b9:52:5b:09:e2:2a:e4:6c:9f:7e:5d:50:4e:99:e5: b5:ef:31:2d:b5:a2:48:3d:d9:a9:62:ae:9d:fe:28: 86:41:77:35:0a:3f:87:fa:81:31:bf:6f:d2:fa:0a: 7f:ca:99:f8:ae:56:c6:88:bb:92:30:35:83:96:6e: 5a:32:01:60:de:30:c0:a6:e3:8d:9d:53:cb:57:f0: 0b:a6:d9:96:57:11:7d:04:a0:cd:85:81:9c:5b:63: 3f:60:8e:76:f9:1d:4f:96:3f:3d:ac:bc:25:6f:a2: c3:ae:a0:dc:16:e9:9d:9e:b7:b5:04:0c:43:8b:00: e1:fb:c1:1e:1d:08:2c:7a:29:45:1b:ac:f9:d0:11: a8:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:AE:95:D2:C1:E4:BB:D7:54:E7:35:7F:05:CD:47:ED:07:BF:3E:AF X509v3 Authority Key Identifier: keyid:85:50:59:7A:60:64:C8:82:AE:2A:F3:FA:57:59:F1:3F:8B:D1:DD:FC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hVBZemBkyIKuKvP6V1nxP4vR3fw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:d1:6d:70:77:10:de:5f:c7:e4:ea:1a:f5:12:22:b2:76:6e: 1d:f4:51:0b:6b:e0:54:f3:5a:9c:ae:f0:1f:e7:10:0d:d9:c1: 63:57:41:8b:c4:1a:51:b8:e2:66:c0:18:cd:9c:6d:33:55:51: ca:60:8f:6f:ed:23:f8:f0:59:16:5d:49:5e:ba:4e:f1:c9:37: 48:3f:e3:53:83:bf:ff:38:be:9a:8d:69:71:cb:24:04:d2:60: 7b:ae:55:7d:09:82:45:74:2f:d8:ca:b3:c4:a5:8b:56:d0:a7: 04:e1:a2:f3:f1:81:6a:cf:a1:28:e7:10:46:e6:db:0b:01:e3: 0f:a7:2b:3a:09:6d:c3:cf:59:57:54:5b:99:8a:ac:9b:3e:ec: 04:6e:71:92:6d:b6:a5:80:f4:93:14:9e:b2:a9:9a:c1:14:6a: 0b:3d:dc:14:75:a8:2b:81:53:1e:3e:47:2c:9f:15:d0:fe:89: 31:73:b3:b5:26:6c:5d:58:23:44:33:bd:59:b6:fd:e6:e6:e6: 8d:f2:f7:78:5b:dd:a7:48:d0:87:a4:27:48:6e:09:ae:dd:a4: ba:b5:a4:ca:dd:bf:c4:4b:e0:08:e9:97:4f:69:c4:f2:ed:d7: 3a:63:de:95:78:27:7c:3b:44:84:9d:07:f7:75:02:e5:b0:62: fc:9f:f7:75 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs2DmyXjZYeEgqFVsq++Qo1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1NTA1OTdhNjA2NGM4ODJhZTJhZjNmYTU3NTlmMTNmOGJk MWRkZmMwHhcNMjUxMjE5MTAwMTEzWhcNMjUxMjIwMTAwMTEzWjAzMTEwLwYDVQQD EygzMmFlOTVkMmMxZTRiYmQ3NTRlNzM1N2YwNWNkNDdlZDA3YmYzZWFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtXqo+WWD2BCI9ZKv+PenTxSmhNE9 aDPxud6bC1ZULNLcFOHdNpfBxv+TyVewQUafnfDnwqTPRgYKhVMXBQUF2K11VuRh NaBbPyry+lhtJSStNRdtOPomxUAPfViOgN1ecRfnogwYjhoH8pm52wp4uaUJ5PZB mY65UlsJ4irkbJ9+XVBOmeW17zEttaJIPdmpYq6d/iiGQXc1Cj+H+oExv2/S+gp/ ypn4rlbGiLuSMDWDlm5aMgFg3jDApuONnVPLV/ALptmWVxF9BKDNhYGcW2M/YI52 +R1Plj89rLwlb6LDrqDcFumdnre1BAxDiwDh+8EeHQgseilFG6z50BGoBQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDKuldLB5LvXVOc1fwXNR+0Hvz6vMB8GA1UdIwQY MBaAFIVQWXpgZMiCrirz+ldZ8T+L0d38MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaFZCWmVtQmt5SUt1S3ZQNlYxbnhQNHZSM2Z3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC8xYzcyYzUtMjk5YS00ZjcwLTgxMmMt MjVjNWYwNWFlYjVmLzEvaFZCWmVtQmt5SUt1S3ZQNlYxbnhQNHZSM2Z3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOC8xYzcyYzUtMjk5YS00ZjcwLTgxMmMtMjVjNWYwNWFlYjVm LzEvaFZCWmVtQmt5SUt1S3ZQNlYxbnhQNHZSM2Z3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJtFtcHcQ 3l/H5Ooa9RIisnZuHfRRC2vgVPNanK7wH+cQDdnBY1dBi8QaUbjiZsAYzZxtM1VR ymCPb+0j+PBZFl1JXrpO8ck3SD/jU4O//zi+mo1pccskBNJge65VfQmCRXQv2Mqz xKWLVtCnBOGi8/GBas+hKOcQRubbCwHjD6crOgltw89ZV1RbmYqsmz7sBG5xkm22 pYD0kxSesqmawRRqCz3cFHWoK4FTHj5HLJ8V0P6JMXOztSZsXVgjRDO9Wbb95ubm jfL3eFvdp0jQh6QnSG4Jrt2kurWkyt2/xEvgCOmXT2nE8u3XOmPelXgnfDtEhJ0H 93UC5bBi/J/3dQ== -----END CERTIFICATE-----Generated at Fri Dec 19 15:58:43 2025 by rpki-client