This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/283fee-2c36-4e70-bbe4-07e36efc5e42/1/hGr1TmVYz8hiUpRuRpKrknd8DhA.mft File: hGr1TmVYz8hiUpRuRpKrknd8DhA.mft (raw, json) Hash identifier: 50v7wYlLxWg+tmjvxYUfuorUODxsem8BcN4v34roAs4= Subject key identifier: B8:6F:01:11:90:C9:65:17:04:4B:BC:CC:4F:FB:DE:2F:ED:F0:9E:B3 Authority key identifier: 84:6A:F5:4E:65:58:CF:C8:62:52:94:6E:46:92:AB:92:77:7C:0E:10 Certificate issuer: /CN=846af54e6558cfc86252946e4692ab92777c0e10 Certificate serial: 019B0EC9459CAC382B5010BBA9D3E7D9E20D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hGr1TmVYz8hiUpRuRpKrknd8DhA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/283fee-2c36-4e70-bbe4-07e36efc5e42/1/hGr1TmVYz8hiUpRuRpKrknd8DhA.mft Manifest number: 1394 Signing time: Thu 11 Dec 2025 19:00:30 +0000 Manifest this update: Thu 11 Dec 2025 19:00:30 +0000 Manifest next update: Fri 12 Dec 2025 19:00:30 +0000 Files and hashes: 1: EAjdVmmPDgRsaYdJzqxZsWJ1dtQ.roa (hash: MpPa88zI8gAyzjuIqd3qZ9dmTTo9CAG0jQ+czPWKrY0=) 2: ZpIa8d84ZFXt_ZFQqAeQWbEn8cE.roa (hash: yg+iHdLIlyvv1zJT3FKVPdTj2ezKdgH8bzRxXJFfD+M=) 3: fw-9UYbBKED3FPK1cxwcKkMCFm0.roa (hash: jRUQB1Fr5hDxlkTn2IWZrgIhUE7mB/LkFsYZT2IUhmk=) 4: hGr1TmVYz8hiUpRuRpKrknd8DhA.crl (hash: OGH3gp8YVeucmnE0JWg1HFbiUXXx0A9ks0wV6Eqo8Ic=) 5: pT_R2pT5fkigCUc46LgmyNvu26w.roa (hash: f5EDq84NioAgiZfb2l0opuOPnSnHoDIa4FyPu++58Hk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/283fee-2c36-4e70-bbe4-07e36efc5e42/1/hGr1TmVYz8hiUpRuRpKrknd8DhA.crl rsync://rpki.ripe.net/repository/DEFAULT/24/283fee-2c36-4e70-bbe4-07e36efc5e42/1/hGr1TmVYz8hiUpRuRpKrknd8DhA.mft rsync://rpki.ripe.net/repository/DEFAULT/hGr1TmVYz8hiUpRuRpKrknd8DhA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 19:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0e:c9:45:9c:ac:38:2b:50:10:bb:a9:d3:e7:d9:e2:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=846af54e6558cfc86252946e4692ab92777c0e10 Validity Not Before: Dec 11 19:00:30 2025 GMT Not After : Dec 12 19:00:30 2025 GMT Subject: CN=b86f011190c96517044bbccc4ffbde2fedf09eb3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:8c:04:b8:b9:1b:e1:5a:dd:09:eb:28:3c:ad: 4d:fe:9d:7e:15:51:92:48:09:16:9b:c2:98:64:d2: 4d:10:44:7b:db:bb:a6:2f:84:17:d2:bb:ab:ff:5b: 67:d8:14:d5:5b:5a:2d:2f:c3:38:9b:87:d5:3c:63: ee:8b:a0:0e:34:4c:62:dd:97:61:99:06:9c:03:05: c7:92:de:d6:44:14:f4:59:9b:23:93:9d:d2:5a:c2: 3f:24:d2:77:60:82:d1:2b:3c:83:e9:22:f4:1b:a0: e1:17:f1:ac:c5:bd:57:e0:47:23:6f:05:a1:64:11: ac:30:b1:89:d2:dc:29:c2:19:45:f9:bd:b4:80:78: f9:ee:2f:b6:0e:1a:40:7b:9b:cd:83:e8:a2:88:f6: f9:a2:01:3b:6b:ca:b4:7d:72:d5:02:6a:52:a3:85: 0c:ad:8a:08:3a:52:a8:66:83:11:ab:6a:77:b0:86: ed:bd:97:65:14:0d:f4:58:47:37:34:14:95:4f:a4: b5:48:3d:84:9d:a0:fa:6f:32:0d:b6:8f:95:e7:61: 4b:2b:4a:95:43:3f:90:58:9e:b8:83:cf:c4:0c:5b: 44:4e:f5:e4:f1:a4:cd:f9:26:dd:f2:35:fa:2c:33: 17:d7:8b:1e:6a:1f:90:fa:d7:ec:21:6a:be:5a:fb: 84:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:6F:01:11:90:C9:65:17:04:4B:BC:CC:4F:FB:DE:2F:ED:F0:9E:B3 X509v3 Authority Key Identifier: keyid:84:6A:F5:4E:65:58:CF:C8:62:52:94:6E:46:92:AB:92:77:7C:0E:10 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hGr1TmVYz8hiUpRuRpKrknd8DhA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/283fee-2c36-4e70-bbe4-07e36efc5e42/1/hGr1TmVYz8hiUpRuRpKrknd8DhA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/24/283fee-2c36-4e70-bbe4-07e36efc5e42/1/hGr1TmVYz8hiUpRuRpKrknd8DhA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 71:6a:d7:70:97:2e:fb:d1:3c:c7:be:40:89:71:12:8f:af:57: 80:00:58:f3:1a:e3:a2:f5:5b:f5:e8:9b:3b:fd:83:a5:ce:d5: 9d:93:9a:7c:ce:b3:fc:11:f9:bc:83:7e:9d:55:e3:83:8b:25: 37:d8:1d:13:d0:b4:c0:66:30:68:7d:50:54:fe:fd:ec:93:3c: 92:a3:ed:ec:df:73:3e:7b:1e:f5:25:f2:25:e6:c1:7e:51:91: 59:63:49:b9:be:f9:29:13:f6:cf:f0:69:ae:94:d4:a0:3f:bd: 3a:83:77:96:b9:37:ab:e5:52:db:9d:b4:07:0d:0c:32:7b:40: 42:33:72:d0:f2:c5:ae:5d:b9:5e:88:81:75:1e:6b:94:79:d1: 1f:7a:cb:86:20:ee:9a:4c:a8:04:82:75:ab:0e:d8:50:61:9b: 2b:6e:fc:ed:a2:39:2d:44:aa:6e:d2:5d:f9:65:54:64:31:9c: 84:93:84:1d:60:3d:3c:af:5f:17:5d:a9:1e:9c:50:4d:dc:4e: 82:65:66:3d:b6:0d:4e:3f:5c:b4:6f:61:1b:a7:1a:69:f1:73: 80:9d:18:4b:2d:57:f4:44:18:4b:28:6d:37:96:93:4c:39:ae: 42:63:5f:21:48:a5:b2:c9:84:0f:ac:63:f3:ca:05:7e:9a:0a: c6:b1:f2:22 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsOyUWcrDgrUBC7qdPn2eINMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0NmFmNTRlNjU1OGNmYzg2MjUyOTQ2ZTQ2OTJhYjkyNzc3 YzBlMTAwHhcNMjUxMjExMTkwMDMwWhcNMjUxMjEyMTkwMDMwWjAzMTEwLwYDVQQD EyhiODZmMDExMTkwYzk2NTE3MDQ0YmJjY2M0ZmZiZGUyZmVkZjA5ZWIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtowEuLkb4VrdCesoPK1N/p1+FVGS SAkWm8KYZNJNEER727umL4QX0rur/1tn2BTVW1otL8M4m4fVPGPui6AONExi3Zdh mQacAwXHkt7WRBT0WZsjk53SWsI/JNJ3YILRKzyD6SL0G6DhF/Gsxb1X4EcjbwWh ZBGsMLGJ0twpwhlF+b20gHj57i+2DhpAe5vNg+iiiPb5ogE7a8q0fXLVAmpSo4UM rYoIOlKoZoMRq2p3sIbtvZdlFA30WEc3NBSVT6S1SD2EnaD6bzINto+V52FLK0qV Qz+QWJ64g8/EDFtETvXk8aTN+Sbd8jX6LDMX14seah+Q+tfsIWq+WvuEbQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLhvARGQyWUXBEu8zE/73i/t8J6zMB8GA1UdIwQY MBaAFIRq9U5lWM/IYlKUbkaSq5J3fA4QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaEdyMVRtVll6OGhpVXBSdVJwS3JrbmQ4RGhBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC8yODNmZWUtMmMzNi00ZTcwLWJiZTQt MDdlMzZlZmM1ZTQyLzEvaEdyMVRtVll6OGhpVXBSdVJwS3JrbmQ4RGhBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNC8yODNmZWUtMmMzNi00ZTcwLWJiZTQtMDdlMzZlZmM1ZTQy LzEvaEdyMVRtVll6OGhpVXBSdVJwS3JrbmQ4RGhBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcWrXcJcu +9E8x75AiXESj69XgABY8xrjovVb9eibO/2Dpc7VnZOafM6z/BH5vIN+nVXjg4sl N9gdE9C0wGYwaH1QVP797JM8kqPt7N9zPnse9SXyJebBflGRWWNJub75KRP2z/Bp rpTUoD+9OoN3lrk3q+VS2520Bw0MMntAQjNy0PLFrl25XoiBdR5rlHnRH3rLhiDu mkyoBIJ1qw7YUGGbK2787aI5LUSqbtJd+WVUZDGchJOEHWA9PK9fF12pHpxQTdxO gmVmPbYNTj9ctG9hG6caafFzgJ0YSy1X9EQYSyhtN5aTTDmuQmNfIUilssmED6xj 88oFfpoKxrHyIg== -----END CERTIFICATE-----Generated at Fri Dec 12 02:49:40 2025 by rpki-client