This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/c10911-4022-46fb-9214-7c6857648666/1/HyLAhI0wWeWuVfaMBwecuaksJ54.mft File: HyLAhI0wWeWuVfaMBwecuaksJ54.mft (raw, json) Hash identifier: oeWbov6WiljFVfWbSRhHXAgbxhUhAoXuefscfx3orPA= Subject key identifier: F5:1A:43:84:32:4B:BA:84:CF:D8:A1:C9:7F:C8:C3:9B:C0:E4:25:D7 Authority key identifier: 1F:22:C0:84:8D:30:59:E5:AE:55:F6:8C:07:07:9C:B9:A9:2C:27:9E Certificate issuer: /CN=1f22c0848d3059e5ae55f68c07079cb9a92c279e Certificate serial: 019B25F6008FC345C41B8B68530F357DE032 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HyLAhI0wWeWuVfaMBwecuaksJ54.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/c10911-4022-46fb-9214-7c6857648666/1/HyLAhI0wWeWuVfaMBwecuaksJ54.mft Manifest number: 1468 Signing time: Tue 16 Dec 2025 07:00:37 +0000 Manifest this update: Tue 16 Dec 2025 07:00:37 +0000 Manifest next update: Wed 17 Dec 2025 07:00:37 +0000 Files and hashes: 1: 42BfRq7Uq2Z4S_hnedC1PWND5eY.roa (hash: SUpoA58huBIRfI1PcJohNyNQhenW9V0GmIZXcKZjs0I=) 2: HyLAhI0wWeWuVfaMBwecuaksJ54.crl (hash: LLONCRHex0Hwi2A+MrGl844sZfQnVAXDxpCjU5IQJBM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/c10911-4022-46fb-9214-7c6857648666/1/HyLAhI0wWeWuVfaMBwecuaksJ54.crl rsync://rpki.ripe.net/repository/DEFAULT/15/c10911-4022-46fb-9214-7c6857648666/1/HyLAhI0wWeWuVfaMBwecuaksJ54.mft rsync://rpki.ripe.net/repository/DEFAULT/HyLAhI0wWeWuVfaMBwecuaksJ54.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:25:f6:00:8f:c3:45:c4:1b:8b:68:53:0f:35:7d:e0:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1f22c0848d3059e5ae55f68c07079cb9a92c279e Validity Not Before: Dec 16 07:00:37 2025 GMT Not After : Dec 17 07:00:37 2025 GMT Subject: CN=f51a4384324bba84cfd8a1c97fc8c39bc0e425d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:df:91:01:6a:30:67:ae:ca:9d:ef:24:a8:54: 64:1d:69:92:33:5a:f0:33:94:60:ac:a7:8a:9b:3c: 49:c4:25:03:e3:a2:fd:ee:48:ed:28:9b:de:85:f8: f0:da:3f:bb:1a:cf:7c:22:71:e1:d7:0f:63:1d:0a: e4:70:0f:76:06:3d:7a:86:36:94:66:2d:8a:f7:10: 26:4a:bf:6a:ec:2e:8e:83:26:a1:89:ac:b4:1b:65: 27:af:57:5b:f1:5b:a9:0c:56:2e:09:70:7d:0b:0c: 1a:2e:07:1d:d8:05:4a:88:9f:14:50:b6:af:f6:07: 5e:be:5f:b5:c4:42:f7:85:87:d8:a6:ab:f9:66:fe: 4d:1b:53:d6:f1:ce:65:26:2d:df:06:cb:99:35:30: 1a:23:7b:62:31:d8:2b:55:01:ee:46:40:8f:6a:e7: f4:ce:30:d3:41:7c:c5:32:52:6c:9c:f9:59:7c:1f: a9:55:72:89:a4:0b:0f:07:7e:8d:b8:ed:f1:ea:d7: 4c:29:25:d4:87:7e:d9:c7:15:53:52:8f:b7:c5:65: c6:29:8f:7d:ab:3f:4d:b1:ce:11:d5:9f:bb:a2:77: 97:26:ad:cf:2d:d2:52:f9:21:13:f4:be:d0:18:a0: 88:b4:f3:19:42:08:bc:d4:59:06:ef:36:e6:21:c6: 08:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:1A:43:84:32:4B:BA:84:CF:D8:A1:C9:7F:C8:C3:9B:C0:E4:25:D7 X509v3 Authority Key Identifier: keyid:1F:22:C0:84:8D:30:59:E5:AE:55:F6:8C:07:07:9C:B9:A9:2C:27:9E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HyLAhI0wWeWuVfaMBwecuaksJ54.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/c10911-4022-46fb-9214-7c6857648666/1/HyLAhI0wWeWuVfaMBwecuaksJ54.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/15/c10911-4022-46fb-9214-7c6857648666/1/HyLAhI0wWeWuVfaMBwecuaksJ54.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 50:41:09:67:01:0f:a2:80:2a:1c:0a:c0:a0:ff:72:85:56:fa: 02:b2:7d:7c:24:db:39:7d:a0:d2:36:9e:e1:d3:4f:ea:85:31: 5e:e8:b6:f3:9e:fa:aa:1c:08:74:ca:94:eb:b7:50:be:0d:9d: 68:88:17:e4:a1:fc:f2:c7:50:24:30:e3:3b:06:60:a8:57:f3: eb:a0:4f:81:23:8b:dd:07:b8:25:17:5e:c7:fb:e7:ca:b9:82: e4:a1:1b:16:f5:b1:34:39:b6:e6:58:ef:01:57:02:44:e8:7a: 47:9a:a0:75:11:f3:67:04:50:ce:f9:46:60:4b:b5:e4:04:31: ff:dd:14:8d:7b:df:d9:c4:35:ba:12:34:b3:da:50:a4:43:3a: 39:2e:89:e6:23:72:00:f8:d1:5c:64:df:31:a2:f1:66:5e:f2: 0b:03:2b:78:1e:31:73:90:76:b6:34:17:8a:b9:02:02:63:3e: 6a:ef:2c:e4:d9:d8:8b:1f:76:ec:f6:10:62:46:a5:3e:0e:6e: b1:b4:48:b0:a4:0d:7f:c4:4d:60:e8:05:f3:d2:e1:36:21:57: 93:bd:31:43:e2:50:13:37:7b:a4:06:c8:66:0c:e4:ff:e2:5d: 8f:d1:d1:1d:80:67:2b:cf:98:04:a8:00:3a:8c:78:23:a4:a1: c4:38:1c:e0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsl9gCPw0XEG4toUw81feAyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFmMjJjMDg0OGQzMDU5ZTVhZTU1ZjY4YzA3MDc5Y2I5YTky YzI3OWUwHhcNMjUxMjE2MDcwMDM3WhcNMjUxMjE3MDcwMDM3WjAzMTEwLwYDVQQD EyhmNTFhNDM4NDMyNGJiYTg0Y2ZkOGExYzk3ZmM4YzM5YmMwZTQyNWQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn9+RAWowZ67Kne8kqFRkHWmSM1rw M5RgrKeKmzxJxCUD46L97kjtKJvehfjw2j+7Gs98InHh1w9jHQrkcA92Bj16hjaU Zi2K9xAmSr9q7C6Ogyahiay0G2Unr1db8VupDFYuCXB9CwwaLgcd2AVKiJ8UULav 9gdevl+1xEL3hYfYpqv5Zv5NG1PW8c5lJi3fBsuZNTAaI3tiMdgrVQHuRkCPauf0 zjDTQXzFMlJsnPlZfB+pVXKJpAsPB36NuO3x6tdMKSXUh37ZxxVTUo+3xWXGKY99 qz9Nsc4R1Z+7oneXJq3PLdJS+SET9L7QGKCItPMZQgi81FkG7zbmIcYIBQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPUaQ4QyS7qEz9ihyX/Iw5vA5CXXMB8GA1UdIwQY MBaAFB8iwISNMFnlrlX2jAcHnLmpLCeeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSHlMQWhJMHdXZVd1VmZhTUJ3ZWN1YWtzSjU0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS9jMTA5MTEtNDAyMi00NmZiLTkyMTQt N2M2ODU3NjQ4NjY2LzEvSHlMQWhJMHdXZVd1VmZhTUJ3ZWN1YWtzSjU0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNS9jMTA5MTEtNDAyMi00NmZiLTkyMTQtN2M2ODU3NjQ4NjY2 LzEvSHlMQWhJMHdXZVd1VmZhTUJ3ZWN1YWtzSjU0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUEEJZwEP ooAqHArAoP9yhVb6ArJ9fCTbOX2g0jae4dNP6oUxXui28576qhwIdMqU67dQvg2d aIgX5KH88sdQJDDjOwZgqFfz66BPgSOL3Qe4JRdex/vnyrmC5KEbFvWxNDm25ljv AVcCROh6R5qgdRHzZwRQzvlGYEu15AQx/90UjXvf2cQ1uhI0s9pQpEM6OS6J5iNy APjRXGTfMaLxZl7yCwMreB4xc5B2tjQXirkCAmM+au8s5NnYix927PYQYkalPg5u sbRIsKQNf8RNYOgF89LhNiFXk70xQ+JQEzd7pAbIZgzk/+Jdj9HRHYBnK8+YBKgA Oox4I6ShxDgc4A== -----END CERTIFICATE-----Generated at Tue Dec 16 09:02:18 2025 by rpki-client