This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/4a96be-fbeb-4580-8baa-355b5cd5d971/1/HmOkfsv8-qn2z-ziYUxw6LWtuD4.mft File: HmOkfsv8-qn2z-ziYUxw6LWtuD4.mft (raw, json) Hash identifier: zeYjwBUmb7hPHw8Pua19qoN7vdSF1cqI9IrDv6qKujk= Subject key identifier: 7C:62:A3:1B:15:C6:1C:D3:EB:81:B2:43:36:6D:5F:99:6B:C6:6F:57 Authority key identifier: 1E:63:A4:7E:CB:FC:FA:A9:F6:CF:EC:E2:61:4C:70:E8:B5:AD:B8:3E Certificate issuer: /CN=1e63a47ecbfcfaa9f6cfece2614c70e8b5adb83e Certificate serial: 019B3E6D20A4EC94D01AA717EC84DAB98208 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HmOkfsv8-qn2z-ziYUxw6LWtuD4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/4a96be-fbeb-4580-8baa-355b5cd5d971/1/HmOkfsv8-qn2z-ziYUxw6LWtuD4.mft Manifest number: 0803 Signing time: Sun 21 Dec 2025 01:01:37 +0000 Manifest this update: Sun 21 Dec 2025 01:01:37 +0000 Manifest next update: Mon 22 Dec 2025 01:01:37 +0000 Files and hashes: 1: HmOkfsv8-qn2z-ziYUxw6LWtuD4.crl (hash: oqKmjPDSBoOmEyE+eGHghm8ZJ0k4bvJkUCSGuge45XY=) 2: bIBmhUC2WLWBXyi5VaCHLFuHkDs.roa (hash: F54YraMKL44U0jhJwgmaruTpnrxsP2uQrqeXw7OujLA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/4a96be-fbeb-4580-8baa-355b5cd5d971/1/HmOkfsv8-qn2z-ziYUxw6LWtuD4.crl rsync://rpki.ripe.net/repository/DEFAULT/f3/4a96be-fbeb-4580-8baa-355b5cd5d971/1/HmOkfsv8-qn2z-ziYUxw6LWtuD4.mft rsync://rpki.ripe.net/repository/DEFAULT/HmOkfsv8-qn2z-ziYUxw6LWtuD4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3e:6d:20:a4:ec:94:d0:1a:a7:17:ec:84:da:b9:82:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1e63a47ecbfcfaa9f6cfece2614c70e8b5adb83e Validity Not Before: Dec 21 01:01:37 2025 GMT Not After : Dec 22 01:01:37 2025 GMT Subject: CN=7c62a31b15c61cd3eb81b243366d5f996bc66f57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:2e:e6:aa:d8:19:5b:20:31:c1:db:2e:9b:9a: 97:c2:db:8a:27:81:b6:44:e5:30:9e:ba:6c:20:7a: f2:06:45:cb:13:d3:a9:ad:4b:3f:30:3b:4a:b6:63: a4:85:d4:e4:bc:89:e5:54:c1:89:b7:21:70:77:b7: b8:ae:1a:13:5e:6a:f9:4b:d2:3b:f2:a4:dd:cd:a3: f5:b4:89:29:38:1b:f9:1b:7e:29:31:be:30:c0:07: a9:c5:a3:2c:91:36:91:4b:1a:1d:6c:84:3a:a9:69: f2:a5:95:84:92:72:23:25:85:d1:9f:6d:e5:d3:96: 31:fa:b7:3b:63:9c:a2:6c:3e:e7:96:b2:14:0b:e4: e7:50:f7:83:f3:fa:46:06:c8:15:4f:e8:0c:21:f4: 67:1a:3b:d3:e2:de:b8:88:3b:c8:ee:cb:78:cd:5e: d7:8e:fd:05:2c:61:f0:9e:17:87:6c:dd:91:a0:c2: 73:88:3f:64:02:05:51:a1:69:12:9f:a1:92:00:4f: a1:a4:8c:07:85:12:f8:03:b9:28:75:bf:44:b8:08: cf:80:fd:86:95:af:0e:c0:ad:44:e6:d1:55:dc:ec: 3d:51:1f:c1:71:75:b8:5a:f1:21:ce:21:0f:ef:27: 36:ca:55:ca:71:46:85:73:16:0c:1f:9b:63:f5:a3: 2f:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:62:A3:1B:15:C6:1C:D3:EB:81:B2:43:36:6D:5F:99:6B:C6:6F:57 X509v3 Authority Key Identifier: keyid:1E:63:A4:7E:CB:FC:FA:A9:F6:CF:EC:E2:61:4C:70:E8:B5:AD:B8:3E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HmOkfsv8-qn2z-ziYUxw6LWtuD4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/4a96be-fbeb-4580-8baa-355b5cd5d971/1/HmOkfsv8-qn2z-ziYUxw6LWtuD4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/4a96be-fbeb-4580-8baa-355b5cd5d971/1/HmOkfsv8-qn2z-ziYUxw6LWtuD4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:3e:43:82:cd:7a:08:52:3c:fe:b9:99:2a:7b:ab:6d:de:9e: b6:22:65:3b:a9:e9:75:28:1c:f1:29:5a:c5:43:07:8e:94:9a: 8e:66:99:d0:ad:13:d2:fe:bb:b1:8a:81:2e:78:d7:cb:e6:f3: 79:eb:06:69:d1:3b:c0:f7:1a:16:e2:78:1a:e2:ea:25:37:ec: 58:d4:3f:25:bd:41:ed:c2:3e:ff:4e:92:6f:d7:d5:86:f3:08: 97:01:a8:06:cf:b7:90:0d:b8:97:c1:ec:5b:44:22:03:93:13: bf:cd:3e:5e:cb:69:79:13:8f:37:79:6f:93:bc:7b:e8:57:7d: a9:83:3f:7d:f0:3d:2e:36:79:1b:d6:fc:c5:35:bd:fd:5f:3a: 94:83:82:b8:63:9b:36:1f:2a:9f:80:59:94:13:6f:d7:69:17: 8f:eb:13:f3:6a:08:c8:64:2f:ab:ea:92:0b:04:35:c4:d9:fc: 4e:7c:a2:c6:ec:a7:e1:ab:77:1a:fa:51:a2:8a:12:3f:e3:5d: 6e:9f:72:f8:27:9b:b9:e5:8a:90:9e:69:9a:55:49:09:53:59: 92:38:be:27:a0:d8:5b:0e:a8:04:b5:ac:d9:e2:9d:01:a8:a9: c9:8b:a7:d9:0a:75:96:ec:44:52:69:3b:0c:62:b8:27:3c:9c: f6:a5:75:05 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs+bSCk7JTQGqcX7ITauYIIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlNjNhNDdlY2JmY2ZhYTlmNmNmZWNlMjYxNGM3MGU4YjVh ZGI4M2UwHhcNMjUxMjIxMDEwMTM3WhcNMjUxMjIyMDEwMTM3WjAzMTEwLwYDVQQD Eyg3YzYyYTMxYjE1YzYxY2QzZWI4MWIyNDMzNjZkNWY5OTZiYzY2ZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsC7mqtgZWyAxwdsum5qXwtuKJ4G2 ROUwnrpsIHryBkXLE9OprUs/MDtKtmOkhdTkvInlVMGJtyFwd7e4rhoTXmr5S9I7 8qTdzaP1tIkpOBv5G34pMb4wwAepxaMskTaRSxodbIQ6qWnypZWEknIjJYXRn23l 05Yx+rc7Y5yibD7nlrIUC+TnUPeD8/pGBsgVT+gMIfRnGjvT4t64iDvI7st4zV7X jv0FLGHwnheHbN2RoMJziD9kAgVRoWkSn6GSAE+hpIwHhRL4A7kodb9EuAjPgP2G la8OwK1E5tFV3Ow9UR/BcXW4WvEhziEP7yc2ylXKcUaFcxYMH5tj9aMvhQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHxioxsVxhzT64GyQzZtX5lrxm9XMB8GA1UdIwQY MBaAFB5jpH7L/Pqp9s/s4mFMcOi1rbg+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSG1Pa2ZzdjgtcW4yei16aVlVeHc2TFd0dUQ0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy80YTk2YmUtZmJlYi00NTgwLThiYWEt MzU1YjVjZDVkOTcxLzEvSG1Pa2ZzdjgtcW4yei16aVlVeHc2TFd0dUQ0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMy80YTk2YmUtZmJlYi00NTgwLThiYWEtMzU1YjVjZDVkOTcx LzEvSG1Pa2ZzdjgtcW4yei16aVlVeHc2TFd0dUQ0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfT5Dgs16 CFI8/rmZKnurbd6etiJlO6npdSgc8SlaxUMHjpSajmaZ0K0T0v67sYqBLnjXy+bz eesGadE7wPcaFuJ4GuLqJTfsWNQ/Jb1B7cI+/06Sb9fVhvMIlwGoBs+3kA24l8Hs W0QiA5MTv80+XstpeROPN3lvk7x76Fd9qYM/ffA9LjZ5G9b8xTW9/V86lIOCuGOb Nh8qn4BZlBNv12kXj+sT82oIyGQvq+qSCwQ1xNn8Tnyixuyn4at3GvpRoooSP+Nd bp9y+CebueWKkJ5pmlVJCVNZkji+J6DYWw6oBLWs2eKdAaipyYun2Qp1luxEUmk7 DGK4Jzyc9qV1BQ== -----END CERTIFICATE-----Generated at Sun Dec 21 05:37:27 2025 by rpki-client