This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/daf960-d060-49fc-af42-dee292ea87a3/1/ihzh0TW_LPjowT8z7BHIUjcD3HU.mft File: ihzh0TW_LPjowT8z7BHIUjcD3HU.mft (raw, json) Hash identifier: qhbDuvEhzf7PAdTPB/ZO6TB2+IQr2jMOoQsIQAk9oTo= Subject key identifier: 34:04:6D:A7:C3:D2:67:A0:61:C8:4D:F2:77:1B:9C:80:28:22:DD:24 Authority key identifier: 8A:1C:E1:D1:35:BF:2C:F8:E8:C1:3F:33:EC:11:C8:52:37:03:DC:75 Certificate issuer: /CN=8a1ce1d135bf2cf8e8c13f33ec11c8523703dc75 Certificate serial: 019B0F379E3859EE22E923C1DB3A113D9432 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ihzh0TW_LPjowT8z7BHIUjcD3HU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/daf960-d060-49fc-af42-dee292ea87a3/1/ihzh0TW_LPjowT8z7BHIUjcD3HU.mft Manifest number: 1669 Signing time: Thu 11 Dec 2025 21:01:01 +0000 Manifest this update: Thu 11 Dec 2025 21:01:01 +0000 Manifest next update: Fri 12 Dec 2025 21:01:01 +0000 Files and hashes: 1: 2L9tST2xxsB46ZV-Wm7-7d0Z8Yc.roa (hash: 2H+U81Sea1KvCbnxcSszHg71YCfhD1GEm2cdKStIW6w=) 2: AEk4t1mqQHdHzuvnZ8F04P17d44.roa (hash: 7D43zZS2UD0q0VGySwNpiUk+9PmD8nPWUlHBvAE5epk=) 3: WRWq9c3b9kg8gQPomqG34r1Y5v0.asa (hash: ZoJ/LKA1w1XuBHscB30KCICWqihW2yVYKCpjACmrLmk=) 4: ihzh0TW_LPjowT8z7BHIUjcD3HU.crl (hash: yUAnSODpmmpIOUmU8PA9yP+AuAQY8R2ZMcAESjGJ1Xw=) 5: o5m1uFw5rs_EeSEFk1hux3YAIU4.roa (hash: wTW4ivT11e40D7I5riMLJL+NO9rFHoJd/dKX+ZIDA6g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/daf960-d060-49fc-af42-dee292ea87a3/1/ihzh0TW_LPjowT8z7BHIUjcD3HU.crl rsync://rpki.ripe.net/repository/DEFAULT/0c/daf960-d060-49fc-af42-dee292ea87a3/1/ihzh0TW_LPjowT8z7BHIUjcD3HU.mft rsync://rpki.ripe.net/repository/DEFAULT/ihzh0TW_LPjowT8z7BHIUjcD3HU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 14:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0f:37:9e:38:59:ee:22:e9:23:c1:db:3a:11:3d:94:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8a1ce1d135bf2cf8e8c13f33ec11c8523703dc75 Validity Not Before: Dec 11 21:01:01 2025 GMT Not After : Dec 12 21:01:01 2025 GMT Subject: CN=34046da7c3d267a061c84df2771b9c802822dd24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:b7:94:77:6c:c0:11:e4:78:a1:c4:49:e6:23: 8e:9a:92:14:2c:d4:cc:47:fe:c8:f4:ce:3d:6b:a0: 64:8f:f2:84:04:74:f9:5e:3d:44:60:e6:aa:3c:b4: 98:c6:2c:e2:4a:3c:bd:c4:69:4a:be:23:f5:6c:da: 03:63:52:47:af:1d:e2:4e:f1:14:e5:d7:ad:cf:d0: 80:e0:6b:80:9e:d9:95:e3:c5:30:16:f1:d4:f9:e9: d8:73:3c:d0:08:81:d0:3d:3e:00:a7:05:37:af:12: 3a:05:09:2e:c9:69:63:13:5a:5f:6f:cc:2c:8c:1c: 17:a5:df:30:19:54:7f:b5:d6:a2:06:b5:d7:a6:1c: 92:3c:14:5d:c5:40:8d:68:1b:76:37:fc:e3:13:de: ee:b0:b2:18:6f:47:71:0a:bf:5b:77:03:10:22:24: 52:79:54:a6:70:61:6b:00:aa:94:68:7f:cb:ca:f1: d5:a1:29:6a:0b:ee:4a:8b:fa:96:0d:05:41:f9:c7: ea:75:a7:f0:d7:73:48:d9:fe:f9:5c:fd:d6:3f:7a: 14:2b:95:72:d1:fe:94:64:57:f4:75:fc:67:5c:c3: 68:25:2f:f4:b7:74:ad:7f:ec:c8:e5:90:96:d7:1a: 8a:f6:87:87:5c:f7:8c:e0:fa:4f:97:69:ba:5f:25: df:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:04:6D:A7:C3:D2:67:A0:61:C8:4D:F2:77:1B:9C:80:28:22:DD:24 X509v3 Authority Key Identifier: keyid:8A:1C:E1:D1:35:BF:2C:F8:E8:C1:3F:33:EC:11:C8:52:37:03:DC:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ihzh0TW_LPjowT8z7BHIUjcD3HU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/daf960-d060-49fc-af42-dee292ea87a3/1/ihzh0TW_LPjowT8z7BHIUjcD3HU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/daf960-d060-49fc-af42-dee292ea87a3/1/ihzh0TW_LPjowT8z7BHIUjcD3HU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 52:b8:f6:18:eb:74:d9:7e:9a:ea:9f:3c:02:ea:69:1e:aa:b3: 5d:15:a6:b3:b2:ce:07:93:2a:84:be:ce:4f:74:05:68:ed:77: 02:75:56:5c:89:93:e0:51:cb:c9:dc:d2:00:6c:b3:57:36:cd: 50:fc:87:2f:08:35:e0:24:64:bf:fe:1b:08:2e:bd:8a:66:93: bd:73:d4:d7:13:0f:05:03:39:12:39:b2:fc:f7:b9:41:81:f8: 38:fe:a0:79:25:98:ca:53:39:a3:15:2d:51:5b:95:b6:69:57: 69:c3:b7:43:77:cf:f5:99:5c:ad:bf:4a:a9:e3:91:6c:ed:c3: 48:25:37:c8:e5:6a:db:c1:10:67:68:ec:3f:fa:b5:63:70:b8: 67:7a:7a:d4:7a:bd:4c:59:c4:21:ab:10:f1:e3:8d:e4:c1:ea: a2:f2:44:5a:0f:05:81:58:1d:a9:d8:c8:70:af:b6:da:04:3b: 22:a3:de:af:90:2c:f9:0d:a1:a8:aa:c3:06:18:15:fa:19:9c: 3d:f1:a0:57:06:1f:37:5f:e6:4a:0a:24:58:fc:09:ae:f6:2e: a0:ea:0e:35:99:8f:1a:09:3e:ae:da:5c:cb:ab:cf:1e:3f:14: 61:80:45:71:ed:fc:7c:4f:b9:77:78:2b:57:79:fa:3e:bf:ae: ba:90:e0:c5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsPN544We4i6SPB2zoRPZQyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhMWNlMWQxMzViZjJjZjhlOGMxM2YzM2VjMTFjODUyMzcw M2RjNzUwHhcNMjUxMjExMjEwMTAxWhcNMjUxMjEyMjEwMTAxWjAzMTEwLwYDVQQD EygzNDA0NmRhN2MzZDI2N2EwNjFjODRkZjI3NzFiOWM4MDI4MjJkZDI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxreUd2zAEeR4ocRJ5iOOmpIULNTM R/7I9M49a6Bkj/KEBHT5Xj1EYOaqPLSYxiziSjy9xGlKviP1bNoDY1JHrx3iTvEU 5detz9CA4GuAntmV48UwFvHU+enYczzQCIHQPT4ApwU3rxI6BQkuyWljE1pfb8ws jBwXpd8wGVR/tdaiBrXXphySPBRdxUCNaBt2N/zjE97usLIYb0dxCr9bdwMQIiRS eVSmcGFrAKqUaH/LyvHVoSlqC+5Ki/qWDQVB+cfqdafw13NI2f75XP3WP3oUK5Vy 0f6UZFf0dfxnXMNoJS/0t3Stf+zI5ZCW1xqK9oeHXPeM4PpPl2m6XyXfLQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDQEbafD0megYchN8ncbnIAoIt0kMB8GA1UdIwQY MBaAFIoc4dE1vyz46ME/M+wRyFI3A9x1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaWh6aDBUV19MUGpvd1Q4ejdCSElVamNEM0hVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9kYWY5NjAtZDA2MC00OWZjLWFmNDIt ZGVlMjkyZWE4N2EzLzEvaWh6aDBUV19MUGpvd1Q4ejdCSElVamNEM0hVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYy9kYWY5NjAtZDA2MC00OWZjLWFmNDItZGVlMjkyZWE4N2Ez LzEvaWh6aDBUV19MUGpvd1Q4ejdCSElVamNEM0hVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUrj2GOt0 2X6a6p88AuppHqqzXRWms7LOB5MqhL7OT3QFaO13AnVWXImT4FHLydzSAGyzVzbN UPyHLwg14CRkv/4bCC69imaTvXPU1xMPBQM5Ejmy/Pe5QYH4OP6geSWYylM5oxUt UVuVtmlXacO3Q3fP9Zlcrb9KqeORbO3DSCU3yOVq28EQZ2jsP/q1Y3C4Z3p61Hq9 TFnEIasQ8eON5MHqovJEWg8FgVgdqdjIcK+22gQ7IqPer5As+Q2hqKrDBhgV+hmc PfGgVwYfN1/mSgokWPwJrvYuoOoONZmPGgk+rtpcy6vPHj8UYYBFce38fE+5d3gr V3n6Pr+uupDgxQ== -----END CERTIFICATE-----Generated at Thu Dec 11 22:53:37 2025 by rpki-client