This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/e9487f-fdc7-40a7-8a67-1be69ca393ba/1/hLDKyDjyguBClI-dKyzVdU0ujEc.mft File: hLDKyDjyguBClI-dKyzVdU0ujEc.mft (raw, json) Hash identifier: 53mYuv1TLbLOhVpIlSHg8ICAQG16g4mCUjh6/IFiAJw= Subject key identifier: B3:3F:48:B2:C4:E8:D0:7F:F5:0C:23:DD:F6:D7:D6:FE:B1:E0:7D:2B Authority key identifier: 84:B0:CA:C8:38:F2:82:E0:42:94:8F:9D:2B:2C:D5:75:4D:2E:8C:47 Certificate issuer: /CN=84b0cac838f282e042948f9d2b2cd5754d2e8c47 Certificate serial: 019B1FF46EA84CBE0F4E21CF9FC5869D44D8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLDKyDjyguBClI-dKyzVdU0ujEc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/e9487f-fdc7-40a7-8a67-1be69ca393ba/1/hLDKyDjyguBClI-dKyzVdU0ujEc.mft Manifest number: 1779 Signing time: Mon 15 Dec 2025 03:01:11 +0000 Manifest this update: Mon 15 Dec 2025 03:01:11 +0000 Manifest next update: Tue 16 Dec 2025 03:01:11 +0000 Files and hashes: 1: ejHPALN-gjmcIUS4qvI8FUQoGLs.roa (hash: t6ZQ6lviMlaQN/1zPBkaInJA/2XG79lcf/SyBOeFSW8=) 2: hLDKyDjyguBClI-dKyzVdU0ujEc.crl (hash: 0OWKqAZM9Ea5J/p7wmPWOGf9pobFYCh19HJ4okmT+TY=) 3: mq2WK1BWz4a2Yo_KhLxZIcR7xCc.roa (hash: Qcby8Wr2h6htBY3phdXczNrS5qR9unpp5KemIo49KRI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/e9487f-fdc7-40a7-8a67-1be69ca393ba/1/hLDKyDjyguBClI-dKyzVdU0ujEc.crl rsync://rpki.ripe.net/repository/DEFAULT/23/e9487f-fdc7-40a7-8a67-1be69ca393ba/1/hLDKyDjyguBClI-dKyzVdU0ujEc.mft rsync://rpki.ripe.net/repository/DEFAULT/hLDKyDjyguBClI-dKyzVdU0ujEc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1f:f4:6e:a8:4c:be:0f:4e:21:cf:9f:c5:86:9d:44:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84b0cac838f282e042948f9d2b2cd5754d2e8c47 Validity Not Before: Dec 15 03:01:11 2025 GMT Not After : Dec 16 03:01:11 2025 GMT Subject: CN=b33f48b2c4e8d07ff50c23ddf6d7d6feb1e07d2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:24:0c:26:d1:08:b4:e9:ed:72:bb:a1:82:da: 52:e6:fb:9b:55:99:3b:27:0b:a3:67:76:18:b3:01: fc:fd:d2:d5:ff:05:fe:2f:66:01:e3:d4:46:b1:aa: 95:53:41:ee:e3:cf:bb:78:f4:b1:34:99:0d:3e:63: 46:77:97:c2:b5:7f:70:57:24:7b:fa:81:ee:5e:5f: 0d:2c:9a:55:8e:aa:c7:b0:ea:f0:5a:d5:fd:51:77: d4:fa:1f:55:26:7d:76:a8:80:80:a5:b6:85:6d:4a: 94:25:a1:4b:57:b1:a6:15:d9:2b:9f:8c:2c:79:1e: 98:2f:50:eb:b1:66:1c:23:e1:fc:36:be:b9:44:10: fa:e4:7a:cf:51:1f:4b:14:28:fc:38:43:5d:97:43: ae:aa:77:c7:f6:3c:0a:dd:1a:39:6f:99:8d:f9:91: fa:5e:88:5c:9e:51:a4:fa:dc:db:c0:70:b9:27:2c: 37:f0:b4:73:52:d7:ac:66:a2:aa:5d:f8:01:b3:f2: 3c:50:36:6f:35:72:15:aa:64:53:71:de:ff:25:e4: d7:3a:61:f3:f1:18:f8:2e:a7:93:ac:b9:f8:61:53: a1:dd:73:7f:7d:07:0f:2c:65:a8:06:57:dc:be:5a: ec:45:85:07:65:c1:2c:31:16:d9:62:e5:9b:75:24: 57:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:3F:48:B2:C4:E8:D0:7F:F5:0C:23:DD:F6:D7:D6:FE:B1:E0:7D:2B X509v3 Authority Key Identifier: keyid:84:B0:CA:C8:38:F2:82:E0:42:94:8F:9D:2B:2C:D5:75:4D:2E:8C:47 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLDKyDjyguBClI-dKyzVdU0ujEc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/e9487f-fdc7-40a7-8a67-1be69ca393ba/1/hLDKyDjyguBClI-dKyzVdU0ujEc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/23/e9487f-fdc7-40a7-8a67-1be69ca393ba/1/hLDKyDjyguBClI-dKyzVdU0ujEc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 49:cd:9a:c8:4f:4f:29:ae:92:ca:0c:c6:0a:b2:e3:c8:a1:f3: 24:bf:c0:28:cd:f9:36:8e:37:30:cc:a7:59:66:f8:cb:15:8d: e6:f6:02:a1:ab:3d:16:85:e9:d8:50:02:00:1e:f6:98:f5:1d: c2:10:5c:3a:18:fa:1a:32:19:c7:94:2e:e5:96:52:7f:50:da: c8:db:2a:0d:ee:41:1b:5a:5b:a5:e0:0f:b5:76:6e:32:99:27: 11:e9:ed:62:28:ff:1b:27:45:5f:45:1e:e5:fc:9d:3c:5e:f0: a8:05:d5:e0:e3:1c:a3:8f:70:de:da:03:f9:e9:80:fc:ff:46: 78:5d:85:0d:c1:63:de:72:f5:37:db:dd:00:b6:df:1e:de:d5: a6:fb:ad:8f:53:20:d8:6b:0f:07:ba:79:46:ac:f7:b1:c1:38: 1a:25:1f:b1:8c:fb:71:f0:bb:9f:0d:72:8c:1e:ce:ac:de:7d: 98:95:fc:21:85:b4:a6:3a:29:bc:86:41:0e:9b:40:37:16:33: c4:55:9d:08:b9:2d:ee:68:e5:01:b7:0b:ef:e1:c5:83:33:17: 65:bf:be:16:e4:5b:11:7e:96:f4:ce:b0:62:16:19:7f:a7:65: 66:df:aa:bf:d8:c8:ca:87:06:09:f1:f9:b7:29:92:4e:0d:b5: 14:b5:98:58 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsf9G6oTL4PTiHPn8WGnUTYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0YjBjYWM4MzhmMjgyZTA0Mjk0OGY5ZDJiMmNkNTc1NGQy ZThjNDcwHhcNMjUxMjE1MDMwMTExWhcNMjUxMjE2MDMwMTExWjAzMTEwLwYDVQQD EyhiMzNmNDhiMmM0ZThkMDdmZjUwYzIzZGRmNmQ3ZDZmZWIxZTA3ZDJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApSQMJtEItOntcruhgtpS5vubVZk7 JwujZ3YYswH8/dLV/wX+L2YB49RGsaqVU0Hu48+7ePSxNJkNPmNGd5fCtX9wVyR7 +oHuXl8NLJpVjqrHsOrwWtX9UXfU+h9VJn12qICApbaFbUqUJaFLV7GmFdkrn4ws eR6YL1DrsWYcI+H8Nr65RBD65HrPUR9LFCj8OENdl0OuqnfH9jwK3Ro5b5mN+ZH6 XohcnlGk+tzbwHC5Jyw38LRzUtesZqKqXfgBs/I8UDZvNXIVqmRTcd7/JeTXOmHz 8Rj4LqeTrLn4YVOh3XN/fQcPLGWoBlfcvlrsRYUHZcEsMRbZYuWbdSRX3QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLM/SLLE6NB/9Qwj3fbX1v6x4H0rMB8GA1UdIwQY MBaAFISwysg48oLgQpSPnSss1XVNLoxHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaExES3lEanlndUJDbEktZEt5elZkVTB1akVjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy9lOTQ4N2YtZmRjNy00MGE3LThhNjct MWJlNjljYTM5M2JhLzEvaExES3lEanlndUJDbEktZEt5elZkVTB1akVjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMy9lOTQ4N2YtZmRjNy00MGE3LThhNjctMWJlNjljYTM5M2Jh LzEvaExES3lEanlndUJDbEktZEt5elZkVTB1akVjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASc2ayE9P Ka6SygzGCrLjyKHzJL/AKM35No43MMynWWb4yxWN5vYCoas9FoXp2FACAB72mPUd whBcOhj6GjIZx5Qu5ZZSf1DayNsqDe5BG1pbpeAPtXZuMpknEentYij/GydFX0Ue 5fydPF7wqAXV4OMco49w3toD+emA/P9GeF2FDcFj3nL1N9vdALbfHt7Vpvutj1Mg 2GsPB7p5Rqz3scE4GiUfsYz7cfC7nw1yjB7OrN59mJX8IYW0pjopvIZBDptANxYz xFWdCLkt7mjlAbcL7+HFgzMXZb++FuRbEX6W9M6wYhYZf6dlZt+qv9jIyocGCfH5 tymSTg21FLWYWA== -----END CERTIFICATE-----Generated at Mon Dec 15 06:47:39 2025 by rpki-client