This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f58da0-dfbe-416a-bfaa-36170cd81330/1/mHyvDLazMBzAhKJdXCFBCpLKfjY.mft File: mHyvDLazMBzAhKJdXCFBCpLKfjY.mft (raw, json) Hash identifier: ovfyz7f7ZWLHGi4lIWwFpUpaYFx/ZUAzVp6qbAQ++TI= Subject key identifier: 1F:A6:38:5D:C8:4D:B0:3A:2C:3F:2D:E8:76:EC:6C:43:B7:16:0E:EC Authority key identifier: 98:7C:AF:0C:B6:B3:30:1C:C0:84:A2:5D:5C:21:41:0A:92:CA:7E:36 Certificate issuer: /CN=987caf0cb6b3301cc084a25d5c21410a92ca7e36 Certificate serial: 019B1CBC00C319C67B88DBE7443864F3233B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mHyvDLazMBzAhKJdXCFBCpLKfjY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f58da0-dfbe-416a-bfaa-36170cd81330/1/mHyvDLazMBzAhKJdXCFBCpLKfjY.mft Manifest number: 08EA Signing time: Sun 14 Dec 2025 12:00:41 +0000 Manifest this update: Sun 14 Dec 2025 12:00:41 +0000 Manifest next update: Mon 15 Dec 2025 12:00:41 +0000 Files and hashes: 1: mANtdvjrwJb7CPzwvDq9bTI0qtY.roa (hash: bxccQm8ZlD2A8QhBkFeAoasQeWmGc7036H8m3hd3seo=) 2: mHyvDLazMBzAhKJdXCFBCpLKfjY.crl (hash: PVgjgtO6hVW5bqEWJHa1SNIt7YdDv9fEjyJCe+cS5Vc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f58da0-dfbe-416a-bfaa-36170cd81330/1/mHyvDLazMBzAhKJdXCFBCpLKfjY.crl rsync://rpki.ripe.net/repository/DEFAULT/02/f58da0-dfbe-416a-bfaa-36170cd81330/1/mHyvDLazMBzAhKJdXCFBCpLKfjY.mft rsync://rpki.ripe.net/repository/DEFAULT/mHyvDLazMBzAhKJdXCFBCpLKfjY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 11:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1c:bc:00:c3:19:c6:7b:88:db:e7:44:38:64:f3:23:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=987caf0cb6b3301cc084a25d5c21410a92ca7e36 Validity Not Before: Dec 14 12:00:41 2025 GMT Not After : Dec 15 12:00:41 2025 GMT Subject: CN=1fa6385dc84db03a2c3f2de876ec6c43b7160eec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:80:cf:2f:a4:5b:59:9e:0b:e4:f7:63:3e:4c: 2a:b6:ea:01:4c:89:68:55:ed:ac:68:1e:21:39:1b: 2a:a1:03:1c:ed:b2:20:da:88:88:60:27:d8:fb:f0: 15:4e:2f:cc:0a:dd:94:46:6b:77:98:e4:d7:56:f5: f7:af:9b:c6:99:72:70:69:e0:32:b7:e4:a8:7a:9e: 39:56:01:ae:89:9f:5d:a6:78:7b:b3:ff:6c:51:a9: 56:4d:fc:33:b0:22:35:58:b9:f7:00:d0:9b:e5:77: b9:8d:42:04:8e:26:92:f9:1c:51:ea:28:d6:57:18: 2a:5f:a3:a7:72:32:35:f8:38:70:b0:c6:f5:10:91: 95:27:10:26:41:c6:6d:de:c3:7d:05:a8:4e:e9:2c: 9e:a6:08:87:be:f1:0b:78:98:7b:ac:96:ad:e6:b1: 32:43:80:73:f4:27:31:0c:1e:9d:a7:f0:91:be:5f: 32:8b:4a:07:d9:0e:9b:3c:b5:7b:97:ca:9b:7a:69: 95:36:af:57:52:7b:c6:57:fc:4b:d3:ed:d3:87:e3: 79:56:29:b2:55:13:08:36:e2:f9:ee:70:cc:e2:95: d9:34:a8:a4:52:ce:f7:2f:e3:1d:8a:86:0e:09:2d: 82:02:94:35:04:5b:36:92:9a:87:9b:10:df:79:df: 31:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:A6:38:5D:C8:4D:B0:3A:2C:3F:2D:E8:76:EC:6C:43:B7:16:0E:EC X509v3 Authority Key Identifier: keyid:98:7C:AF:0C:B6:B3:30:1C:C0:84:A2:5D:5C:21:41:0A:92:CA:7E:36 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mHyvDLazMBzAhKJdXCFBCpLKfjY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f58da0-dfbe-416a-bfaa-36170cd81330/1/mHyvDLazMBzAhKJdXCFBCpLKfjY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f58da0-dfbe-416a-bfaa-36170cd81330/1/mHyvDLazMBzAhKJdXCFBCpLKfjY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 28:af:4d:b5:03:6c:cf:6f:f2:26:57:11:e2:43:17:3a:89:b3: f4:67:f5:33:9a:0c:3f:59:93:6a:c7:19:d0:02:a4:95:74:69: 31:13:de:d4:96:ef:03:0a:8a:bb:c1:cd:6c:00:9e:fe:c8:d7: 0a:22:f4:f7:c7:e5:cd:f6:52:21:9f:3b:e7:8f:f6:48:7f:1e: a2:3f:5c:29:af:06:e6:84:5c:59:cc:d7:d7:d7:ce:84:d1:72: e1:8c:64:5b:e5:f0:0c:98:d4:b5:ad:0c:08:96:3a:af:c0:b7: 0e:4e:ff:cf:a9:18:13:23:cc:84:bc:3e:a5:8e:e6:1a:d9:65: ed:dd:c0:fa:bd:c5:40:a5:64:87:af:ab:6c:15:13:48:0e:e2: 4d:2b:32:63:65:d0:aa:a7:cb:df:30:76:8a:3b:28:78:44:46: 69:61:94:2e:72:45:75:42:34:1f:d5:79:6c:7a:f4:c6:15:64: 98:8b:45:e1:d9:a8:05:60:9c:79:28:a6:cb:af:41:52:85:73: ef:ce:2f:85:d6:9c:dc:46:a9:f8:56:44:f0:d4:8f:13:de:bb: d2:a5:b4:29:fb:ce:35:92:43:85:ed:54:e8:f0:aa:2a:69:5c: 6d:aa:65:18:3d:6d:52:5c:90:6e:a3:76:16:42:60:86:80:c9: 8c:ac:bc:24 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZscvADDGcZ7iNvnRDhk8yM7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk4N2NhZjBjYjZiMzMwMWNjMDg0YTI1ZDVjMjE0MTBhOTJj YTdlMzYwHhcNMjUxMjE0MTIwMDQxWhcNMjUxMjE1MTIwMDQxWjAzMTEwLwYDVQQD EygxZmE2Mzg1ZGM4NGRiMDNhMmMzZjJkZTg3NmVjNmM0M2I3MTYwZWVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwYDPL6RbWZ4L5PdjPkwqtuoBTIlo Ve2saB4hORsqoQMc7bIg2oiIYCfY+/AVTi/MCt2URmt3mOTXVvX3r5vGmXJwaeAy t+Soep45VgGuiZ9dpnh7s/9sUalWTfwzsCI1WLn3ANCb5Xe5jUIEjiaS+RxR6ijW VxgqX6OncjI1+DhwsMb1EJGVJxAmQcZt3sN9BahO6SyepgiHvvELeJh7rJat5rEy Q4Bz9CcxDB6dp/CRvl8yi0oH2Q6bPLV7l8qbemmVNq9XUnvGV/xL0+3Th+N5Vimy VRMINuL57nDM4pXZNKikUs73L+MdioYOCS2CApQ1BFs2kpqHmxDfed8x4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB+mOF3ITbA6LD8t6HbsbEO3Fg7sMB8GA1UdIwQY MBaAFJh8rwy2szAcwISiXVwhQQqSyn42MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbUh5dkRMYXpNQnpBaEtKZFhDRkJDcExLZmpZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9mNThkYTAtZGZiZS00MTZhLWJmYWEt MzYxNzBjZDgxMzMwLzEvbUh5dkRMYXpNQnpBaEtKZFhDRkJDcExLZmpZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi9mNThkYTAtZGZiZS00MTZhLWJmYWEtMzYxNzBjZDgxMzMw LzEvbUh5dkRMYXpNQnpBaEtKZFhDRkJDcExLZmpZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKK9NtQNs z2/yJlcR4kMXOomz9Gf1M5oMP1mTascZ0AKklXRpMRPe1JbvAwqKu8HNbACe/sjX CiL098flzfZSIZ8754/2SH8eoj9cKa8G5oRcWczX19fOhNFy4YxkW+XwDJjUta0M CJY6r8C3Dk7/z6kYEyPMhLw+pY7mGtll7d3A+r3FQKVkh6+rbBUTSA7iTSsyY2XQ qqfL3zB2ijsoeERGaWGULnJFdUI0H9V5bHr0xhVkmItF4dmoBWCceSimy69BUoVz 784vhdac3Eap+FZE8NSPE9670qW0KfvONZJDhe1U6PCqKmlcbaplGD1tUlyQbqN2 FkJghoDJjKy8JA== -----END CERTIFICATE-----Generated at Sun Dec 14 17:26:11 2025 by rpki-client