This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/f1370a-57ca-46a0-8af4-78ba6dc50086/1/hEoXkcsH8dhhI8Y9w63P11TbEBs.mft File: hEoXkcsH8dhhI8Y9w63P11TbEBs.mft (raw, json) Hash identifier: vfvfDEXq4HC9nhVgiK2TpsKxbctOqsrWYszRYA1XVSQ= Subject key identifier: 3B:BB:B2:A1:40:E9:D8:E5:85:33:4D:A9:B7:A3:06:FC:E8:53:0B:50 Authority key identifier: 84:4A:17:91:CB:07:F1:D8:61:23:C6:3D:C3:AD:CF:D7:54:DB:10:1B Certificate issuer: /CN=844a1791cb07f1d86123c63dc3adcfd754db101b Certificate serial: 019B4693BF7AB8148F0F8149D615BF53B76B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hEoXkcsH8dhhI8Y9w63P11TbEBs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/f1370a-57ca-46a0-8af4-78ba6dc50086/1/hEoXkcsH8dhhI8Y9w63P11TbEBs.mft Manifest number: 0B9E Signing time: Mon 22 Dec 2025 15:00:46 +0000 Manifest this update: Mon 22 Dec 2025 15:00:46 +0000 Manifest next update: Tue 23 Dec 2025 15:00:46 +0000 Files and hashes: 1: Ihp0VP8oRNeTGrBSGwpts6D1JhE.roa (hash: Qldf3LszJ2g2XwaE6LEoxPc+aR59tijRa50IN/mT6PY=) 2: gi2zaUr2ngLXfM8NV7jNPdt_PFI.roa (hash: pPPLz9b8ntu+6vKYV+GHcDLfS03p/6Pt+aGjIk5ADdw=) 3: hEoXkcsH8dhhI8Y9w63P11TbEBs.crl (hash: W7QqTAMCc/dGn+wheXW7hNIlExtJ0OSmbHydkb57xxk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/f1370a-57ca-46a0-8af4-78ba6dc50086/1/hEoXkcsH8dhhI8Y9w63P11TbEBs.crl rsync://rpki.ripe.net/repository/DEFAULT/30/f1370a-57ca-46a0-8af4-78ba6dc50086/1/hEoXkcsH8dhhI8Y9w63P11TbEBs.mft rsync://rpki.ripe.net/repository/DEFAULT/hEoXkcsH8dhhI8Y9w63P11TbEBs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 15:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:46:93:bf:7a:b8:14:8f:0f:81:49:d6:15:bf:53:b7:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=844a1791cb07f1d86123c63dc3adcfd754db101b Validity Not Before: Dec 22 15:00:46 2025 GMT Not After : Dec 23 15:00:46 2025 GMT Subject: CN=3bbbb2a140e9d8e585334da9b7a306fce8530b50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:8a:b8:e3:48:86:3f:ac:7d:f4:b8:3c:41:41: f6:7d:ad:f9:6c:c2:8c:56:81:31:3d:dc:d1:9b:37: c3:e1:f3:4a:6a:b0:96:6b:54:eb:04:02:cf:0e:90: 7b:77:e3:93:d2:71:82:04:4d:b7:51:50:53:05:ec: 48:e9:99:ac:24:71:b2:ed:3b:d4:49:3b:47:a4:9f: ed:00:98:8d:8b:5a:72:19:38:3e:37:30:db:f4:03: bc:29:da:3c:44:a4:48:9e:06:23:72:5e:79:1d:9d: 0d:6b:47:ba:7d:3b:66:f1:41:38:bf:08:f8:8c:46: ae:66:fa:b8:4f:3f:dd:fb:55:a8:b7:7e:08:80:ed: 63:4e:d8:37:be:78:5a:b2:27:31:82:e0:53:99:51: 87:3d:dc:72:95:cd:02:39:d9:e3:de:1e:32:1e:a5: ca:88:df:2f:a0:68:87:a5:96:a3:13:a3:4b:11:c3: 68:19:cc:00:ac:18:41:ed:b1:32:43:d0:db:bb:1e: 79:b6:56:e2:c5:46:c7:b9:38:00:90:97:16:fd:01: c6:51:93:f2:ba:16:79:f9:d6:56:1e:46:5e:77:c1: 4d:15:00:4d:e8:ff:3f:bc:9d:0a:91:8d:1e:55:d2: d3:ba:c0:21:e2:f0:78:95:9b:04:46:7b:99:57:f2: fc:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:BB:B2:A1:40:E9:D8:E5:85:33:4D:A9:B7:A3:06:FC:E8:53:0B:50 X509v3 Authority Key Identifier: keyid:84:4A:17:91:CB:07:F1:D8:61:23:C6:3D:C3:AD:CF:D7:54:DB:10:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hEoXkcsH8dhhI8Y9w63P11TbEBs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/f1370a-57ca-46a0-8af4-78ba6dc50086/1/hEoXkcsH8dhhI8Y9w63P11TbEBs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/f1370a-57ca-46a0-8af4-78ba6dc50086/1/hEoXkcsH8dhhI8Y9w63P11TbEBs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 01:df:a6:0a:65:80:7e:db:92:05:49:63:fb:68:01:0c:fe:89: 4e:5c:a9:ac:5d:db:9e:2b:3d:33:96:8a:a3:93:8c:06:64:2a: 22:b6:4e:98:00:9c:72:04:cc:68:80:2f:b1:7b:12:0f:e6:34: 97:da:40:90:8e:3c:eb:c4:51:a3:8a:18:b8:94:48:41:b3:69: c9:2d:08:2d:06:2d:f2:e2:dc:5a:dc:9a:18:d9:c5:81:ba:bd: 74:42:8c:19:07:18:fc:41:70:d4:ad:cb:22:0e:88:12:4b:7f: 0d:9a:4d:b5:2d:01:58:3a:15:1d:a6:fb:7d:47:d2:c4:62:ae: 86:2b:55:07:f2:cd:0f:79:38:af:d0:56:74:1d:9e:79:95:bf: af:2d:ed:96:1a:05:66:af:97:a6:a1:30:7f:7f:57:43:04:7f: fd:1b:46:cb:8b:3d:fa:de:5d:da:54:dd:23:df:ee:06:9a:23: 17:1c:b9:7b:f5:c1:06:f7:22:1b:72:85:c4:62:5d:ba:69:6a: 82:73:9b:fa:6f:78:9c:88:d0:76:4d:00:c4:91:8d:35:b9:bd: 19:8a:a4:04:5a:e4:b3:70:8d:13:82:88:83:77:69:6b:64:97: f4:43:f9:c4:0e:3d:df:39:a1:02:fc:a0:d7:a7:1c:a7:48:b5: 4c:d0:0c:7f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtGk796uBSPD4FJ1hW/U7drMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0NGExNzkxY2IwN2YxZDg2MTIzYzYzZGMzYWRjZmQ3NTRk YjEwMWIwHhcNMjUxMjIyMTUwMDQ2WhcNMjUxMjIzMTUwMDQ2WjAzMTEwLwYDVQQD EygzYmJiYjJhMTQwZTlkOGU1ODUzMzRkYTliN2EzMDZmY2U4NTMwYjUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz4q440iGP6x99Lg8QUH2fa35bMKM VoExPdzRmzfD4fNKarCWa1TrBALPDpB7d+OT0nGCBE23UVBTBexI6ZmsJHGy7TvU STtHpJ/tAJiNi1pyGTg+NzDb9AO8Kdo8RKRIngYjcl55HZ0Na0e6fTtm8UE4vwj4 jEauZvq4Tz/d+1Wot34IgO1jTtg3vnhasicxguBTmVGHPdxylc0COdnj3h4yHqXK iN8voGiHpZajE6NLEcNoGcwArBhB7bEyQ9Dbux55tlbixUbHuTgAkJcW/QHGUZPy uhZ5+dZWHkZed8FNFQBN6P8/vJ0KkY0eVdLTusAh4vB4lZsERnuZV/L8RwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDu7sqFA6djlhTNNqbejBvzoUwtQMB8GA1UdIwQY MBaAFIRKF5HLB/HYYSPGPcOtz9dU2xAbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaEVvWGtjc0g4ZGhoSThZOXc2M1AxMVRiRUJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC9mMTM3MGEtNTdjYS00NmEwLThhZjQt NzhiYTZkYzUwMDg2LzEvaEVvWGtjc0g4ZGhoSThZOXc2M1AxMVRiRUJzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC9mMTM3MGEtNTdjYS00NmEwLThhZjQtNzhiYTZkYzUwMDg2 LzEvaEVvWGtjc0g4ZGhoSThZOXc2M1AxMVRiRUJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAd+mCmWA ftuSBUlj+2gBDP6JTlyprF3bnis9M5aKo5OMBmQqIrZOmACccgTMaIAvsXsSD+Y0 l9pAkI4868RRo4oYuJRIQbNpyS0ILQYt8uLcWtyaGNnFgbq9dEKMGQcY/EFw1K3L Ig6IEkt/DZpNtS0BWDoVHab7fUfSxGKuhitVB/LND3k4r9BWdB2eeZW/ry3tlhoF Zq+XpqEwf39XQwR//RtGy4s9+t5d2lTdI9/uBpojFxy5e/XBBvciG3KFxGJdumlq gnOb+m94nIjQdk0AxJGNNbm9GYqkBFrks3CNE4KIg3dpa2SX9EP5xA493zmhAvyg 16ccp0i1TNAMfw== -----END CERTIFICATE-----Generated at Mon Dec 22 20:42:38 2025 by rpki-client