This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.mft File: hEcK8NideFuhi6YX3Anj9yxZlvM.mft (raw, json) Hash identifier: 6DnHhcbdbevAJBEnldGmfrvG8hSAJalg6MB0Ia83n8o= Subject key identifier: DA:3B:7C:AA:6A:E3:A1:D2:ED:F3:10:F6:E4:9A:E3:2F:D1:C4:21:0E Authority key identifier: 84:47:0A:F0:D8:9D:78:5B:A1:8B:A6:17:DC:09:E3:F7:2C:59:96:F3 Certificate issuer: /CN=84470af0d89d785ba18ba617dc09e3f72c5996f3 Certificate serial: 019AE9E21364FF4FAC485B7B86D43B5F4CBD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hEcK8NideFuhi6YX3Anj9yxZlvM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.mft Manifest number: 08EA Signing time: Thu 04 Dec 2025 15:01:38 +0000 Manifest this update: Thu 04 Dec 2025 15:01:38 +0000 Manifest next update: Fri 05 Dec 2025 15:01:38 +0000 Files and hashes: 1: 9ZZlEoJ6DOwFDIJbfzBhtXucSCo.roa (hash: e3MsAliQl7R+w6WCs9Je3nF/3YOrMW2JU+QDq2FQ+FM=) 2: R14JRNPcrfV0rrLdubWUIPUSays.roa (hash: L2tnewN6o1+2heeeXuy5U+OiRrBHj2luH4JTHLPaOKE=) 3: Yz1nqnWdktBLCf-4upLjmxtc2c4.roa (hash: J/e8pwliu2ZJzstQArsqHThwEBlwW9xmmljRrojzK28=) 4: cPyQ54eHZNRhOo_g5NkIJCYJuFs.roa (hash: c5YmCvHhLyzqtoi7Yd/RgqKsKk6lvDCNHO1nQEKzWWw=) 5: hEcK8NideFuhi6YX3Anj9yxZlvM.crl (hash: XhSWZcymMUTAMQngN/aGwTZm429pW1j7FYGthQj4QyM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.crl rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.mft rsync://rpki.ripe.net/repository/DEFAULT/hEcK8NideFuhi6YX3Anj9yxZlvM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 15:01:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:e9:e2:13:64:ff:4f:ac:48:5b:7b:86:d4:3b:5f:4c:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84470af0d89d785ba18ba617dc09e3f72c5996f3 Validity Not Before: Dec 4 15:01:38 2025 GMT Not After : Dec 5 15:01:38 2025 GMT Subject: CN=da3b7caa6ae3a1d2edf310f6e49ae32fd1c4210e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:1d:7d:9b:58:13:78:fc:df:a9:ca:4d:90:86: e1:f4:c7:36:ae:1f:3a:6c:13:6a:42:68:11:f8:d7: 31:d4:ee:32:2d:ab:47:df:bf:38:27:51:3d:77:94: 75:f4:75:2c:b9:33:5c:d6:5f:45:71:ec:26:a2:61: f5:2e:c6:28:d0:0e:af:30:a8:c6:61:f6:ac:97:60: 6e:98:64:10:5b:3d:5b:bb:85:35:aa:1b:5d:f5:26: d0:14:dc:cb:19:de:13:b2:08:94:84:67:ef:f8:7f: 6a:f2:dd:74:5e:a6:67:04:9f:69:62:19:0e:df:33: fe:53:4a:48:e8:d3:89:77:d4:d3:dc:f8:bb:99:cd: b0:cd:0f:a1:0d:14:4f:34:9a:7a:03:16:7d:e7:65: 39:8b:6d:d0:1e:a3:c0:57:2b:16:b6:d2:74:2c:6b: d3:90:27:3e:76:fe:f5:ea:7f:05:98:33:de:ab:9b: 78:ab:7b:8d:6a:ad:e1:0a:0d:fd:fa:ad:f0:50:1c: 6d:5a:5f:24:85:fd:22:e3:9a:27:70:fc:09:44:c0: 15:7a:db:c6:aa:00:fa:74:ec:91:6d:1e:a6:6c:bd: 89:ec:c1:a6:c3:9f:d6:7e:2f:e8:05:b8:d6:64:9a: ac:98:d0:2b:0a:40:65:a9:1f:df:5e:af:50:fb:90: 83:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:3B:7C:AA:6A:E3:A1:D2:ED:F3:10:F6:E4:9A:E3:2F:D1:C4:21:0E X509v3 Authority Key Identifier: keyid:84:47:0A:F0:D8:9D:78:5B:A1:8B:A6:17:DC:09:E3:F7:2C:59:96:F3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hEcK8NideFuhi6YX3Anj9yxZlvM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/15/660f1d-5753-4516-8002-e76e3e293e02/1/hEcK8NideFuhi6YX3Anj9yxZlvM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:de:42:c6:02:ed:f0:dd:96:8f:36:22:4d:0b:00:e9:d7:40: ad:3f:a1:84:d6:0e:35:d0:b3:83:82:95:26:c7:0c:0b:8f:4b: 49:f0:31:72:a1:2d:0f:db:cc:f8:9f:e9:a6:8c:ce:94:24:69: 2d:ba:fe:04:4c:0d:d4:1a:6c:b6:1e:6a:e9:0b:8c:e5:f2:66: f4:18:47:94:af:11:cb:da:7e:27:f5:47:c3:dc:92:62:52:38: f1:09:cd:8a:1d:14:28:da:56:a3:79:0b:ef:dc:05:0a:a5:86: 7b:40:26:d8:61:95:7b:fe:9d:34:19:18:2a:06:a6:90:9d:cb: 6a:bf:6b:8f:dc:d3:87:89:95:92:b4:8c:af:46:c0:c5:d9:b3: d5:a4:5b:8b:40:74:22:01:ac:b2:fa:4f:5b:17:8a:c3:4e:02: ed:4e:b2:87:31:80:ee:ba:00:f4:32:22:02:b4:30:45:be:10: 4c:2d:89:48:53:7b:04:46:dc:55:32:e0:bd:e6:7b:ab:f5:5b: c9:c8:3b:15:fb:37:cd:ed:2f:b7:4d:16:61:93:e2:0e:7e:9b: 84:f7:01:a7:ce:73:a0:3d:da:ab:c2:b3:ad:05:9e:a9:84:9d: 9b:e1:12:ce:1f:a6:1e:f5:5a:eb:d9:23:74:de:97:d9:6b:e8: 17:65:b0:13 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrp4hNk/0+sSFt7htQ7X0y9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0NDcwYWYwZDg5ZDc4NWJhMThiYTYxN2RjMDllM2Y3MmM1 OTk2ZjMwHhcNMjUxMjA0MTUwMTM4WhcNMjUxMjA1MTUwMTM4WjAzMTEwLwYDVQQD EyhkYTNiN2NhYTZhZTNhMWQyZWRmMzEwZjZlNDlhZTMyZmQxYzQyMTBlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4h19m1gTePzfqcpNkIbh9Mc2rh86 bBNqQmgR+Ncx1O4yLatH3784J1E9d5R19HUsuTNc1l9FcewmomH1LsYo0A6vMKjG Yfasl2BumGQQWz1bu4U1qhtd9SbQFNzLGd4TsgiUhGfv+H9q8t10XqZnBJ9pYhkO 3zP+U0pI6NOJd9TT3Pi7mc2wzQ+hDRRPNJp6AxZ952U5i23QHqPAVysWttJ0LGvT kCc+dv716n8FmDPeq5t4q3uNaq3hCg39+q3wUBxtWl8khf0i45oncPwJRMAVetvG qgD6dOyRbR6mbL2J7MGmw5/Wfi/oBbjWZJqsmNArCkBlqR/fXq9Q+5CDBwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNo7fKpq46HS7fMQ9uSa4y/RxCEOMB8GA1UdIwQY MBaAFIRHCvDYnXhboYumF9wJ4/csWZbzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaEVjSzhOaWRlRnVoaTZZWDNBbmo5eXhabHZNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS82NjBmMWQtNTc1My00NTE2LTgwMDIt ZTc2ZTNlMjkzZTAyLzEvaEVjSzhOaWRlRnVoaTZZWDNBbmo5eXhabHZNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNS82NjBmMWQtNTc1My00NTE2LTgwMDItZTc2ZTNlMjkzZTAy LzEvaEVjSzhOaWRlRnVoaTZZWDNBbmo5eXhabHZNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJd5CxgLt 8N2WjzYiTQsA6ddArT+hhNYONdCzg4KVJscMC49LSfAxcqEtD9vM+J/ppozOlCRp Lbr+BEwN1Bpsth5q6QuM5fJm9BhHlK8Ry9p+J/VHw9ySYlI48QnNih0UKNpWo3kL 79wFCqWGe0Am2GGVe/6dNBkYKgamkJ3Lar9rj9zTh4mVkrSMr0bAxdmz1aRbi0B0 IgGssvpPWxeKw04C7U6yhzGA7roA9DIiArQwRb4QTC2JSFN7BEbcVTLgveZ7q/Vb ycg7Ffs3ze0vt00WYZPiDn6bhPcBp85zoD3aq8KzrQWeqYSdm+ESzh+mHvVa69kj dN6X2WvoF2WwEw== -----END CERTIFICATE-----Generated at Thu Dec 4 22:09:32 2025 by rpki-client