This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.mft File: hDvoY59AOZk8H254efRynkfcN64.mft (raw, json) Hash identifier: k8azP6goD9sRrvqGCZuM6nmp/wvxjlzv5iFcbj5L4No= Subject key identifier: FD:26:8B:F2:C0:1D:88:D5:E6:58:EA:DD:94:F1:5A:D8:D0:F7:5F:B8 Authority key identifier: 84:3B:E8:63:9F:40:39:99:3C:1F:6E:78:79:F4:72:9E:47:DC:37:AE Certificate issuer: /CN=843be8639f4039993c1f6e7879f4729e47dc37ae Certificate serial: 019B4E846FC44E6F9B84CA1F38FA36F6DC59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hDvoY59AOZk8H254efRynkfcN64.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.mft Manifest number: 09A6 Signing time: Wed 24 Dec 2025 04:01:00 +0000 Manifest this update: Wed 24 Dec 2025 04:01:00 +0000 Manifest next update: Thu 25 Dec 2025 04:01:00 +0000 Files and hashes: 1: J7Gy2XDgfHPCSDMpGX8qtAkzxgw.roa (hash: 6l+CaQcFJnHqVrHhZ9HMXXYDvAoiNAEfMopwPsMkNsc=) 2: hDvoY59AOZk8H254efRynkfcN64.crl (hash: TVs3CcYmVEszjrkGSQi63uyTiyaJ5TUaEqBxe5Cvm+c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.crl rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.mft rsync://rpki.ripe.net/repository/DEFAULT/hDvoY59AOZk8H254efRynkfcN64.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4e:84:6f:c4:4e:6f:9b:84:ca:1f:38:fa:36:f6:dc:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=843be8639f4039993c1f6e7879f4729e47dc37ae Validity Not Before: Dec 24 04:01:00 2025 GMT Not After : Dec 25 04:01:00 2025 GMT Subject: CN=fd268bf2c01d88d5e658eadd94f15ad8d0f75fb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:28:ed:2f:9c:1e:af:fa:30:72:22:58:c0:b0: e1:9d:cb:79:79:aa:71:3b:ce:ed:da:a4:da:b5:ea: 24:c9:04:09:71:06:d6:16:50:35:bb:20:d7:8f:60: 87:5d:6e:b3:0c:10:b0:64:be:d7:28:54:8a:7e:80: fc:49:3e:2d:2b:f6:59:53:ef:0b:87:e9:6b:08:3a: c4:e3:1d:7a:83:c6:c8:10:6b:01:74:25:33:bb:9e: dd:d3:f9:b9:21:5c:a2:66:7a:01:f0:e8:21:ed:09: 4a:91:81:54:a4:38:a7:07:34:8a:3f:0f:1a:cb:41: 56:b1:4f:0f:dc:4a:dc:22:1d:75:0c:33:d0:90:71: 27:77:c9:8f:80:2f:aa:7c:c0:e5:ae:a9:2c:91:b9: ef:8d:3c:99:12:9d:70:41:b0:da:5e:db:66:48:4e: e3:e6:e6:dc:4f:d7:36:92:79:9a:69:98:82:ef:bb: a2:83:3e:78:7c:0b:29:d5:33:02:ef:0c:67:cf:77: 88:f1:37:41:40:db:f8:c9:be:32:7f:a7:84:2d:77: 8a:3f:51:cb:82:70:c8:54:c9:73:6e:14:22:ce:21: 9f:0f:3b:e1:e9:f3:26:a3:2c:96:9d:88:c1:c7:5a: d2:df:a1:94:d8:ef:b9:ab:c5:56:66:c4:ca:57:3c: 3e:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:26:8B:F2:C0:1D:88:D5:E6:58:EA:DD:94:F1:5A:D8:D0:F7:5F:B8 X509v3 Authority Key Identifier: keyid:84:3B:E8:63:9F:40:39:99:3C:1F:6E:78:79:F4:72:9E:47:DC:37:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hDvoY59AOZk8H254efRynkfcN64.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/9e1a77-7c17-4481-877c-7788748f67cb/1/hDvoY59AOZk8H254efRynkfcN64.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:6d:c7:70:a8:00:98:04:af:fa:19:66:8e:39:a1:5d:6a:13: cb:59:89:0e:6b:b9:18:6a:6e:69:d2:16:b3:be:7d:76:4f:3d: 42:75:3b:b0:2a:57:c9:c7:92:ad:c1:b3:30:82:ff:26:54:54: 9a:d7:f1:bb:8d:84:4e:cf:65:69:74:9c:20:8f:fb:57:30:7b: b2:d9:0b:93:8c:eb:b0:71:cf:57:9b:79:c0:a0:72:35:22:0f: 20:16:ea:2e:ea:18:6e:d6:a7:3c:f9:6f:a0:2a:b7:4f:18:c5: 6e:ad:8b:33:4a:d2:3d:62:4d:a9:9e:8f:a6:3d:9c:fb:b4:a5: 25:ce:03:1c:3d:3d:2d:85:d4:3d:f4:e0:bf:c1:87:33:87:2e: a1:27:5d:a3:47:14:45:0d:6e:ee:e3:17:41:e9:9e:9f:f8:fd: ca:96:ab:30:68:5f:15:38:ef:db:ff:ee:38:3b:04:58:48:6e: 3e:e6:80:22:6f:e4:d6:9c:fd:c6:8e:eb:15:e7:bc:3e:31:2b: cd:67:da:45:5d:a2:a2:dc:6c:d2:27:82:e1:9b:be:24:fa:5f: 9c:37:3f:85:aa:21:b5:c0:f1:cc:27:ad:fe:59:03:f4:c5:13: e5:9e:ac:c8:7a:a9:0c:55:09:57:e3:f8:ee:9d:b8:99:4f:9b: 7f:fe:50:f0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtOhG/ETm+bhMofOPo29txZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0M2JlODYzOWY0MDM5OTkzYzFmNmU3ODc5ZjQ3MjllNDdk YzM3YWUwHhcNMjUxMjI0MDQwMTAwWhcNMjUxMjI1MDQwMTAwWjAzMTEwLwYDVQQD EyhmZDI2OGJmMmMwMWQ4OGQ1ZTY1OGVhZGQ5NGYxNWFkOGQwZjc1ZmI4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvyjtL5wer/owciJYwLDhnct5eapx O87t2qTateokyQQJcQbWFlA1uyDXj2CHXW6zDBCwZL7XKFSKfoD8ST4tK/ZZU+8L h+lrCDrE4x16g8bIEGsBdCUzu57d0/m5IVyiZnoB8Ogh7QlKkYFUpDinBzSKPw8a y0FWsU8P3ErcIh11DDPQkHEnd8mPgC+qfMDlrqkskbnvjTyZEp1wQbDaXttmSE7j 5ubcT9c2knmaaZiC77uigz54fAsp1TMC7wxnz3eI8TdBQNv4yb4yf6eELXeKP1HL gnDIVMlzbhQiziGfDzvh6fMmoyyWnYjBx1rS36GU2O+5q8VWZsTKVzw+rQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP0mi/LAHYjV5ljq3ZTxWtjQ91+4MB8GA1UdIwQY MBaAFIQ76GOfQDmZPB9ueHn0cp5H3DeuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaER2b1k1OUFPWms4SDI1NGVmUnlua2ZjTjY0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi85ZTFhNzctN2MxNy00NDgxLTg3N2Mt Nzc4ODc0OGY2N2NiLzEvaER2b1k1OUFPWms4SDI1NGVmUnlua2ZjTjY0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYi85ZTFhNzctN2MxNy00NDgxLTg3N2MtNzc4ODc0OGY2N2Ni LzEvaER2b1k1OUFPWms4SDI1NGVmUnlua2ZjTjY0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYm3HcKgA mASv+hlmjjmhXWoTy1mJDmu5GGpuadIWs759dk89QnU7sCpXyceSrcGzMIL/JlRU mtfxu42ETs9laXScII/7VzB7stkLk4zrsHHPV5t5wKByNSIPIBbqLuoYbtanPPlv oCq3TxjFbq2LM0rSPWJNqZ6Ppj2c+7SlJc4DHD09LYXUPfTgv8GHM4cuoSddo0cU RQ1u7uMXQemen/j9yparMGhfFTjv2//uODsEWEhuPuaAIm/k1pz9xo7rFee8PjEr zWfaRV2iotxs0ieC4Zu+JPpfnDc/haohtcDxzCet/lkD9MUT5Z6syHqpDFUJV+P4 7p24mU+bf/5Q8A== -----END CERTIFICATE-----Generated at Wed Dec 24 09:03:17 2025 by rpki-client