This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/hst0KgO8nIVQcheiUgTf_4L8zfk.mft File: hst0KgO8nIVQcheiUgTf_4L8zfk.mft (raw, json) Hash identifier: D0lrU0HnwGtmsS5x15mbnQySEyi5MERcY1HbNVi/tZo= Subject key identifier: 56:68:58:0A:EA:52:71:25:67:4C:0F:3F:65:2C:F6:00:5B:CE:80:CC Authority key identifier: 86:CB:74:2A:03:BC:9C:85:50:72:17:A2:52:04:DF:FF:82:FC:CD:F9 Certificate issuer: /CN=86cb742a03bc9c85507217a25204dfff82fccdf9 Certificate serial: 019B378ECD48C13E0CF51BD9B4EAC21D750B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hst0KgO8nIVQcheiUgTf_4L8zfk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/hst0KgO8nIVQcheiUgTf_4L8zfk.mft Manifest number: 1092 Signing time: Fri 19 Dec 2025 17:01:04 +0000 Manifest this update: Fri 19 Dec 2025 17:01:04 +0000 Manifest next update: Sat 20 Dec 2025 17:01:04 +0000 Files and hashes: 1: 1-TKHNCKbZE8g4XJcuPLU9wUNwXw.roa (hash: 4YE3N5IWvrJIb1gbK5UKUvbBqNqAEHWjC5reIu6mjb8=) 2: KPSPKR5CERt24RgHkaAIVOQ-_3Y.roa (hash: /B2g+d8SvUFH1wq4gYFhblNg4apBCw0hfFmzBcRbekw=) 3: bFD1sjNrlT8-Exv5RMapq_1KPJ0.roa (hash: dms0tmgxNyDbB9rboVPonFSAfotpbIdMya/cvQRCIY0=) 4: hst0KgO8nIVQcheiUgTf_4L8zfk.crl (hash: JMB0PCm3VNak1d3HjnuiUMx7jO9HW+vbsQjCMBoPVjo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/hst0KgO8nIVQcheiUgTf_4L8zfk.crl rsync://rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/hst0KgO8nIVQcheiUgTf_4L8zfk.mft rsync://rpki.ripe.net/repository/DEFAULT/hst0KgO8nIVQcheiUgTf_4L8zfk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:37:8e:cd:48:c1:3e:0c:f5:1b:d9:b4:ea:c2:1d:75:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86cb742a03bc9c85507217a25204dfff82fccdf9 Validity Not Before: Dec 19 17:01:04 2025 GMT Not After : Dec 20 17:01:04 2025 GMT Subject: CN=5668580aea527125674c0f3f652cf6005bce80cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:fc:f9:f8:9b:04:94:87:71:c5:b9:5d:f6:51: c8:b3:f3:e4:25:fc:63:05:fa:5f:df:65:5a:a6:31: b5:9b:50:3b:0e:13:33:34:60:b4:31:ce:29:da:de: bd:e8:14:34:08:14:db:48:a2:e9:6b:aa:3b:97:c4: 5f:9e:2d:a5:9c:d1:9c:15:59:c3:86:54:31:56:cf: b3:7b:2b:8b:cd:ec:d9:90:bf:37:fb:9d:fe:1c:7f: b6:aa:d2:a2:a1:79:a8:2b:35:d9:ec:da:8b:80:b4: 30:f8:07:18:9a:41:92:79:62:fb:95:ce:e4:ff:93: 99:d4:c9:ab:8f:c4:ef:2e:74:95:c7:14:54:d1:03: af:ba:02:55:5c:63:66:d6:08:4b:84:71:4c:cf:35: 14:43:b7:e1:e4:12:45:5e:71:f9:27:9e:ff:59:4a: 2e:65:a2:f6:b2:41:cc:1c:68:a3:82:e3:00:76:e5: a7:12:c4:a4:72:ad:6c:b0:23:f5:90:f3:38:44:d3: 65:42:f8:f6:9e:e1:6b:df:47:0e:12:b7:f3:9b:aa: 1b:fa:0f:08:70:ad:02:7f:96:c4:ba:94:23:81:df: 62:5f:81:83:a1:ee:f3:17:c4:35:b1:6a:3c:70:7d: 15:d2:0e:81:e3:c9:f9:e2:42:6f:65:82:b8:54:0d: 2c:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:68:58:0A:EA:52:71:25:67:4C:0F:3F:65:2C:F6:00:5B:CE:80:CC X509v3 Authority Key Identifier: keyid:86:CB:74:2A:03:BC:9C:85:50:72:17:A2:52:04:DF:FF:82:FC:CD:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hst0KgO8nIVQcheiUgTf_4L8zfk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/hst0KgO8nIVQcheiUgTf_4L8zfk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/hst0KgO8nIVQcheiUgTf_4L8zfk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8d:80:fc:1f:2d:a2:a2:7e:ec:50:d3:b3:30:88:51:5e:5b:88: 10:e7:c8:0c:e8:2d:db:c7:ad:38:b4:b3:4f:6b:e0:ee:28:68: 34:fb:af:84:1d:a1:75:b1:e7:04:b5:a6:3c:82:86:66:1f:ff: 6c:85:22:9c:8e:2e:5d:74:ec:0b:d8:08:2c:f9:f3:7a:ae:fd: 15:52:42:0f:6c:42:65:11:19:f2:10:9d:6f:08:eb:c2:44:78: 13:6b:dc:73:13:6d:45:91:ae:77:3d:1c:78:1e:aa:1d:e9:21: 36:e1:db:f2:2d:61:8b:bf:40:1a:57:e8:c6:57:24:3e:a9:23: a4:58:21:db:3b:8a:16:2a:90:43:90:97:4c:01:f1:48:9b:c9: 1a:1b:79:9a:3a:6e:83:8d:01:b5:5d:d5:5a:55:f6:7a:92:a8: e3:63:12:77:16:02:bb:ab:21:a6:3b:a0:08:49:87:d4:34:f8: d4:3e:25:3d:e6:f8:4f:78:5f:79:1d:56:cb:dd:57:ee:e3:2e: da:98:43:77:12:1c:ed:33:7e:ea:64:82:96:ce:08:3d:2a:b3: 33:ff:34:44:8c:e6:9a:2e:60:f7:7e:ff:38:66:33:2e:6d:c2: 2f:b4:cc:eb:19:c9:45:48:c3:61:20:f0:60:6e:20:ec:45:ca: 0c:e3:11:d0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs3js1IwT4M9RvZtOrCHXULMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2Y2I3NDJhMDNiYzljODU1MDcyMTdhMjUyMDRkZmZmODJm Y2NkZjkwHhcNMjUxMjE5MTcwMTA0WhcNMjUxMjIwMTcwMTA0WjAzMTEwLwYDVQQD Eyg1NjY4NTgwYWVhNTI3MTI1Njc0YzBmM2Y2NTJjZjYwMDViY2U4MGNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsfz5+JsElIdxxbld9lHIs/PkJfxj Bfpf32VapjG1m1A7DhMzNGC0Mc4p2t696BQ0CBTbSKLpa6o7l8Rfni2lnNGcFVnD hlQxVs+zeyuLzezZkL83+53+HH+2qtKioXmoKzXZ7NqLgLQw+AcYmkGSeWL7lc7k /5OZ1Mmrj8TvLnSVxxRU0QOvugJVXGNm1ghLhHFMzzUUQ7fh5BJFXnH5J57/WUou ZaL2skHMHGijguMAduWnEsSkcq1ssCP1kPM4RNNlQvj2nuFr30cOErfzm6ob+g8I cK0Cf5bEupQjgd9iX4GDoe7zF8Q1sWo8cH0V0g6B48n54kJvZYK4VA0sxQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFZoWArqUnElZ0wPP2Us9gBbzoDMMB8GA1UdIwQY MBaAFIbLdCoDvJyFUHIXolIE3/+C/M35MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHN0MEtnTzhuSVZRY2hlaVVnVGZfNEw4emZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS83NjdhZTUtYjlhMi00OTkzLTgxYTgt MDVmMThmYzIxMmE3LzEvaHN0MEtnTzhuSVZRY2hlaVVnVGZfNEw4emZrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOS83NjdhZTUtYjlhMi00OTkzLTgxYTgtMDVmMThmYzIxMmE3 LzEvaHN0MEtnTzhuSVZRY2hlaVVnVGZfNEw4emZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjYD8Hy2i on7sUNOzMIhRXluIEOfIDOgt28etOLSzT2vg7ihoNPuvhB2hdbHnBLWmPIKGZh// bIUinI4uXXTsC9gILPnzeq79FVJCD2xCZREZ8hCdbwjrwkR4E2vccxNtRZGudz0c eB6qHekhNuHb8i1hi79AGlfoxlckPqkjpFgh2zuKFiqQQ5CXTAHxSJvJGht5mjpu g40BtV3VWlX2epKo42MSdxYCu6shpjugCEmH1DT41D4lPeb4T3hfeR1Wy91X7uMu 2phDdxIc7TN+6mSCls4IPSqzM/80RIzmmi5g937/OGYzLm3CL7TM6xnJRUjDYSDw YG4g7EXKDOMR0A== -----END CERTIFICATE-----Generated at Fri Dec 19 20:25:28 2025 by rpki-client