This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.mft File: haz7mtOlDOFTMc_066iLzAe3ooI.mft (raw, json) Hash identifier: Kuj1uJrtmj4flul/F45huQ3j7uO9qChJNW0tS09cfnQ= Subject key identifier: A3:8E:04:AD:1C:9E:9A:26:48:3E:DB:09:E0:55:8B:DB:F8:47:00:66 Authority key identifier: 85:AC:FB:9A:D3:A5:0C:E1:53:31:CF:F4:EB:A8:8B:CC:07:B7:A2:82 Certificate issuer: /CN=85acfb9ad3a50ce15331cff4eba88bcc07b7a282 Certificate serial: 019B3F11BBA2692FD7C2A6B628FE52F8F98A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/haz7mtOlDOFTMc_066iLzAe3ooI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.mft Manifest number: 070C Signing time: Sun 21 Dec 2025 04:01:25 +0000 Manifest this update: Sun 21 Dec 2025 04:01:25 +0000 Manifest next update: Mon 22 Dec 2025 04:01:25 +0000 Files and hashes: 1: GNR7fo6zYUZ0aZ61h9x_BF8llVA.roa (hash: CFopZ6dmtVSvrmIdzz/ovM49rlPrGJS+jY6gLGQSqVo=) 2: haz7mtOlDOFTMc_066iLzAe3ooI.crl (hash: 5YyekFpHS+f3HZmyYOZjDME5TqT6zoJmuXl3zLDfLzE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.crl rsync://rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.mft rsync://rpki.ripe.net/repository/DEFAULT/haz7mtOlDOFTMc_066iLzAe3ooI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3f:11:bb:a2:69:2f:d7:c2:a6:b6:28:fe:52:f8:f9:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85acfb9ad3a50ce15331cff4eba88bcc07b7a282 Validity Not Before: Dec 21 04:01:25 2025 GMT Not After : Dec 22 04:01:25 2025 GMT Subject: CN=a38e04ad1c9e9a26483edb09e0558bdbf8470066 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:29:31:71:34:d9:96:30:5c:a2:cf:73:ef:d8: 89:e1:74:be:29:da:8a:dc:ea:40:81:e7:01:d4:ab: ad:4b:dc:23:a0:bd:0a:37:d9:ba:ad:9f:5e:5c:cd: 70:04:07:64:3e:07:15:ab:6d:6c:60:1b:4d:71:ff: 68:de:4d:3f:8a:b3:93:f3:e3:c1:80:50:92:83:f6: 81:ff:a4:0b:be:7e:28:38:f6:3d:43:bd:9d:3c:07: 91:fa:4e:43:00:4f:49:7f:85:45:b3:39:b9:f2:21: 14:f3:7c:2e:54:b4:b8:d9:3b:44:8f:25:57:51:f7: fb:b0:9e:ec:1e:e4:22:7c:dc:6d:fa:72:a3:86:09: dc:8f:9d:04:90:a9:21:72:9f:0c:44:7c:f2:e0:8d: 6a:f4:d9:0b:6e:e1:83:ba:d8:50:24:14:1e:72:fc: 76:a2:b2:ce:79:f6:73:b7:72:20:b0:63:bc:42:31: a0:5d:36:c4:11:d0:52:64:ca:60:50:c3:96:d6:b1: 9a:4c:35:33:a9:fe:50:8a:0a:45:5d:82:5c:61:1e: 4f:e8:f4:64:62:d5:d1:e1:a8:17:e6:f9:4a:b3:26: fe:d6:3d:31:78:3b:ab:52:bb:67:22:cf:d9:c2:8c: 72:b4:ca:14:e3:e2:fd:1d:ce:c6:53:81:84:d2:dc: 6d:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:8E:04:AD:1C:9E:9A:26:48:3E:DB:09:E0:55:8B:DB:F8:47:00:66 X509v3 Authority Key Identifier: keyid:85:AC:FB:9A:D3:A5:0C:E1:53:31:CF:F4:EB:A8:8B:CC:07:B7:A2:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/haz7mtOlDOFTMc_066iLzAe3ooI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 33:a6:d2:72:b6:90:96:c5:de:e4:68:b4:a3:1f:00:cc:df:c1: 14:5c:4e:c1:07:75:fc:92:5c:a4:7f:da:47:3a:92:0e:95:a0: a0:e7:cc:24:e0:1a:bc:52:91:42:e9:36:a5:3a:ac:9b:7a:87: 9a:49:8a:90:83:06:0a:7b:11:cc:e2:2f:25:59:79:59:f4:b3: 69:aa:b5:e4:e8:b6:e0:9a:9f:13:94:74:79:c7:c9:02:f2:1d: 47:1f:05:8e:eb:51:99:a5:e1:81:58:ed:b7:0a:b2:50:90:91: 2b:86:76:ef:9e:80:45:10:a6:66:db:e3:f3:89:45:3a:04:8d: 2e:cf:cc:46:c0:a4:c2:15:bd:02:6c:94:09:60:47:76:3a:f0: c4:11:d2:03:02:18:f6:25:4e:00:33:6b:9a:ab:b5:84:fd:e0: d0:41:4b:04:7c:01:39:b2:a1:4f:97:61:ee:15:54:41:84:67: 67:5d:e2:46:55:ab:e1:aa:58:dc:b0:13:1a:25:9c:00:75:97: 80:33:26:da:e1:72:d1:77:8c:fe:af:5c:aa:af:2d:e3:a4:f1: 59:33:bf:33:94:69:d0:c4:23:97:be:b1:f0:b7:6f:f9:39:80: d6:d8:5a:0c:8b:4e:9b:e6:9a:98:d1:2b:60:ce:4f:a3:45:45: 7c:12:4d:d6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs/EbuiaS/Xwqa2KP5S+PmKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1YWNmYjlhZDNhNTBjZTE1MzMxY2ZmNGViYTg4YmNjMDdi N2EyODIwHhcNMjUxMjIxMDQwMTI1WhcNMjUxMjIyMDQwMTI1WjAzMTEwLwYDVQQD EyhhMzhlMDRhZDFjOWU5YTI2NDgzZWRiMDllMDU1OGJkYmY4NDcwMDY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnCkxcTTZljBcos9z79iJ4XS+KdqK 3OpAgecB1KutS9wjoL0KN9m6rZ9eXM1wBAdkPgcVq21sYBtNcf9o3k0/irOT8+PB gFCSg/aB/6QLvn4oOPY9Q72dPAeR+k5DAE9Jf4VFszm58iEU83wuVLS42TtEjyVX Uff7sJ7sHuQifNxt+nKjhgncj50EkKkhcp8MRHzy4I1q9NkLbuGDuthQJBQecvx2 orLOefZzt3IgsGO8QjGgXTbEEdBSZMpgUMOW1rGaTDUzqf5QigpFXYJcYR5P6PRk YtXR4agX5vlKsyb+1j0xeDurUrtnIs/ZwoxytMoU4+L9Hc7GU4GE0txt9wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKOOBK0cnpomSD7bCeBVi9v4RwBmMB8GA1UdIwQY MBaAFIWs+5rTpQzhUzHP9Ouoi8wHt6KCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGF6N210T2xET0ZUTWNfMDY2aUx6QWUzb29JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi8wYmVkNTItYjdjYy00MTRhLTljODgt NmQ3N2YwNjVhMmMzLzEvaGF6N210T2xET0ZUTWNfMDY2aUx6QWUzb29JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZi8wYmVkNTItYjdjYy00MTRhLTljODgtNmQ3N2YwNjVhMmMz LzEvaGF6N210T2xET0ZUTWNfMDY2aUx6QWUzb29JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAM6bScraQ lsXe5Gi0ox8AzN/BFFxOwQd1/JJcpH/aRzqSDpWgoOfMJOAavFKRQuk2pTqsm3qH mkmKkIMGCnsRzOIvJVl5WfSzaaq15Oi24JqfE5R0ecfJAvIdRx8FjutRmaXhgVjt twqyUJCRK4Z2756ARRCmZtvj84lFOgSNLs/MRsCkwhW9AmyUCWBHdjrwxBHSAwIY 9iVOADNrmqu1hP3g0EFLBHwBObKhT5dh7hVUQYRnZ13iRlWr4apY3LATGiWcAHWX gDMm2uFy0XeM/q9cqq8t46TxWTO/M5Rp0MQjl76x8Ldv+TmA1thaDItOm+aamNEr YM5Po0VFfBJN1g== -----END CERTIFICATE-----Generated at Sun Dec 21 06:43:16 2025 by rpki-client