This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/a70a84-d223-4dfd-9feb-18e64441d01e/1/hFvu30OKmqlhw0MmQ3wpxN0MxLw.mft File: hFvu30OKmqlhw0MmQ3wpxN0MxLw.mft (raw, json) Hash identifier: uIqgSC8Z+qEjDEY86vsw7XcA/BuBsmD6pNWEtRrUAqc= Subject key identifier: 33:CC:DC:F5:BC:46:50:84:45:C9:AB:91:31:A0:BD:1A:07:41:56:B8 Authority key identifier: 84:5B:EE:DF:43:8A:9A:A9:61:C3:43:26:43:7C:29:C4:DD:0C:C4:BC Certificate issuer: /CN=845beedf438a9aa961c34326437c29c4dd0cc4bc Certificate serial: 019B33E8D2F651783BA61454B493DF0B3641 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hFvu30OKmqlhw0MmQ3wpxN0MxLw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/a70a84-d223-4dfd-9feb-18e64441d01e/1/hFvu30OKmqlhw0MmQ3wpxN0MxLw.mft Manifest number: 1758 Signing time: Fri 19 Dec 2025 00:00:54 +0000 Manifest this update: Fri 19 Dec 2025 00:00:54 +0000 Manifest next update: Sat 20 Dec 2025 00:00:54 +0000 Files and hashes: 1: 5PJXNIBNkIDizHXqABCfI2weMXY.roa (hash: mf+a4WKnZwf0YHj/JFfXY0yYuBPjjgdMLip3MBUWcAI=) 2: hFvu30OKmqlhw0MmQ3wpxN0MxLw.crl (hash: 83+RP7e9WBBT1kOA1CGu7nmzME60gIgd7qb3QFcKcbk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/a70a84-d223-4dfd-9feb-18e64441d01e/1/hFvu30OKmqlhw0MmQ3wpxN0MxLw.crl rsync://rpki.ripe.net/repository/DEFAULT/38/a70a84-d223-4dfd-9feb-18e64441d01e/1/hFvu30OKmqlhw0MmQ3wpxN0MxLw.mft rsync://rpki.ripe.net/repository/DEFAULT/hFvu30OKmqlhw0MmQ3wpxN0MxLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 20:16:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:33:e8:d2:f6:51:78:3b:a6:14:54:b4:93:df:0b:36:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=845beedf438a9aa961c34326437c29c4dd0cc4bc Validity Not Before: Dec 19 00:00:54 2025 GMT Not After : Dec 20 00:00:54 2025 GMT Subject: CN=33ccdcf5bc46508445c9ab9131a0bd1a074156b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:23:2e:10:a6:a1:51:39:c7:9d:09:d6:f1:90: af:7f:0c:ad:db:44:4b:12:ec:fa:76:6c:05:27:d7: 35:6b:b8:8e:7d:0b:97:0e:78:55:cf:4d:78:52:78: 6e:99:76:64:5f:fc:e9:93:04:be:14:d0:c0:69:62: 0d:3e:b7:7b:68:42:25:ce:e3:5c:7d:38:42:23:46: b8:95:e0:06:32:3a:b1:7e:25:fd:4c:68:ab:49:32: 8c:e3:94:7f:fc:0a:8e:64:11:1f:13:92:fa:e0:08: 89:43:b8:33:7a:e9:f5:a8:53:6a:f8:85:9a:37:c9: ed:79:30:be:75:b2:79:5b:43:0a:1c:ab:aa:a6:e5: da:fe:df:07:28:69:d7:d5:4c:99:6d:1c:c2:4b:5d: 09:44:83:67:e4:c9:23:17:bc:af:90:44:90:32:f2: 89:f9:91:b2:2b:80:ba:46:b5:bc:98:b7:83:b4:06: 66:6a:de:b7:8b:36:40:53:51:0c:2b:87:c0:a5:f1: 05:60:34:13:0b:b7:be:8c:2e:ea:97:1b:80:0d:e8: 7e:42:8f:d3:5e:e5:61:d8:7f:d0:73:c2:ae:85:c3: c1:a2:b1:8a:ad:d7:77:b2:08:47:45:50:ae:46:e7: 80:30:71:64:9d:fc:37:d5:ee:3e:cb:93:c6:dc:9f: 27:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:CC:DC:F5:BC:46:50:84:45:C9:AB:91:31:A0:BD:1A:07:41:56:B8 X509v3 Authority Key Identifier: keyid:84:5B:EE:DF:43:8A:9A:A9:61:C3:43:26:43:7C:29:C4:DD:0C:C4:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hFvu30OKmqlhw0MmQ3wpxN0MxLw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/a70a84-d223-4dfd-9feb-18e64441d01e/1/hFvu30OKmqlhw0MmQ3wpxN0MxLw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/38/a70a84-d223-4dfd-9feb-18e64441d01e/1/hFvu30OKmqlhw0MmQ3wpxN0MxLw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 22:53:ea:6e:63:d2:04:48:68:4c:e9:d9:54:b9:b2:8d:db:8f: da:11:e4:38:0a:9a:fc:a4:5f:85:e5:ce:bc:3f:b4:a0:01:09: 96:4e:f0:e3:26:56:51:56:f7:8b:26:03:a7:8a:63:13:a4:9d: 21:de:e5:e0:1c:cb:27:88:4a:ea:c9:5f:d3:1b:bc:11:22:2b: cc:5a:03:df:79:57:9f:5a:34:14:56:0c:40:d7:0b:54:0f:c8: 43:9d:ef:d0:37:5f:e3:e8:e7:4f:e6:f3:ef:e5:52:56:31:bc: 4f:f0:70:a3:55:11:7b:02:16:1a:1d:c3:6a:06:9d:07:fe:8e: 26:53:eb:a1:60:31:53:5b:e6:fe:a7:19:90:5b:37:e9:5a:63: a1:c1:4f:96:00:d5:a6:29:0c:a1:15:f3:7f:a1:72:49:17:0e: a6:f7:50:74:42:59:14:3c:d5:33:ef:47:fe:16:9e:2f:d6:35: f2:36:0a:51:cd:69:a3:4f:42:fe:62:4e:45:86:9c:77:12:35: f3:da:d2:17:3a:f0:6c:10:8b:5c:f7:ae:e1:e5:c8:7b:10:63: 66:23:ea:b3:ab:5e:3c:d9:ea:4d:76:0f:7b:66:83:97:0d:d5: 34:d7:ac:16:b8:26:91:c1:eb:84:29:aa:8e:de:bb:19:fd:ad: 3f:8f:06:4e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsz6NL2UXg7phRUtJPfCzZBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0NWJlZWRmNDM4YTlhYTk2MWMzNDMyNjQzN2MyOWM0ZGQw Y2M0YmMwHhcNMjUxMjE5MDAwMDU0WhcNMjUxMjIwMDAwMDU0WjAzMTEwLwYDVQQD EygzM2NjZGNmNWJjNDY1MDg0NDVjOWFiOTEzMWEwYmQxYTA3NDE1NmI4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxiMuEKahUTnHnQnW8ZCvfwyt20RL Euz6dmwFJ9c1a7iOfQuXDnhVz014UnhumXZkX/zpkwS+FNDAaWINPrd7aEIlzuNc fThCI0a4leAGMjqxfiX9TGirSTKM45R//AqOZBEfE5L64AiJQ7gzeun1qFNq+IWa N8nteTC+dbJ5W0MKHKuqpuXa/t8HKGnX1UyZbRzCS10JRINn5MkjF7yvkESQMvKJ +ZGyK4C6RrW8mLeDtAZmat63izZAU1EMK4fApfEFYDQTC7e+jC7qlxuADeh+Qo/T XuVh2H/Qc8KuhcPBorGKrdd3sghHRVCuRueAMHFknfw31e4+y5PG3J8nQQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDPM3PW8RlCERcmrkTGgvRoHQVa4MB8GA1UdIwQY MBaAFIRb7t9DipqpYcNDJkN8KcTdDMS8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaEZ2dTMwT0ttcWxodzBNbVEzd3B4TjBNeEx3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC9hNzBhODQtZDIyMy00ZGZkLTlmZWIt MThlNjQ0NDFkMDFlLzEvaEZ2dTMwT0ttcWxodzBNbVEzd3B4TjBNeEx3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOC9hNzBhODQtZDIyMy00ZGZkLTlmZWItMThlNjQ0NDFkMDFl LzEvaEZ2dTMwT0ttcWxodzBNbVEzd3B4TjBNeEx3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIlPqbmPS BEhoTOnZVLmyjduP2hHkOAqa/KRfheXOvD+0oAEJlk7w4yZWUVb3iyYDp4pjE6Sd Id7l4BzLJ4hK6slf0xu8ESIrzFoD33lXn1o0FFYMQNcLVA/IQ53v0Ddf4+jnT+bz 7+VSVjG8T/Bwo1URewIWGh3DagadB/6OJlProWAxU1vm/qcZkFs36VpjocFPlgDV pikMoRXzf6FySRcOpvdQdEJZFDzVM+9H/haeL9Y18jYKUc1po09C/mJORYacdxI1 89rSFzrwbBCLXPeu4eXIexBjZiPqs6tePNnqTXYPe2aDlw3VNNesFrgmkcHrhCmq jt67Gf2tP48GTg== -----END CERTIFICATE-----Generated at Fri Dec 19 01:11:40 2025 by rpki-client