This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/a70a84-d223-4dfd-9feb-18e64441d01e/1/hFvu30OKmqlhw0MmQ3wpxN0MxLw.mft File: hFvu30OKmqlhw0MmQ3wpxN0MxLw.mft (raw, json) Hash identifier: unRNft9+es5SQSRk0nAio2hQgxehhnyLWZhlfRUaAow= Subject key identifier: 23:BD:1E:27:83:F1:CF:6C:FF:DB:A2:5B:79:6A:12:33:7D:EC:40:69 Authority key identifier: 84:5B:EE:DF:43:8A:9A:A9:61:C3:43:26:43:7C:29:C4:DD:0C:C4:BC Certificate issuer: /CN=845beedf438a9aa961c34326437c29c4dd0cc4bc Certificate serial: 019B058F93E92CC54F72ABB26BC0E3FE6F1E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hFvu30OKmqlhw0MmQ3wpxN0MxLw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/a70a84-d223-4dfd-9feb-18e64441d01e/1/hFvu30OKmqlhw0MmQ3wpxN0MxLw.mft Manifest number: 1740 Signing time: Wed 10 Dec 2025 00:00:54 +0000 Manifest this update: Wed 10 Dec 2025 00:00:54 +0000 Manifest next update: Thu 11 Dec 2025 00:00:54 +0000 Files and hashes: 1: 5PJXNIBNkIDizHXqABCfI2weMXY.roa (hash: mf+a4WKnZwf0YHj/JFfXY0yYuBPjjgdMLip3MBUWcAI=) 2: hFvu30OKmqlhw0MmQ3wpxN0MxLw.crl (hash: wSLxaQHr9dL6Mu95TF47MQfFYnqfeP8lBdZzC4V3hSA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/a70a84-d223-4dfd-9feb-18e64441d01e/1/hFvu30OKmqlhw0MmQ3wpxN0MxLw.crl rsync://rpki.ripe.net/repository/DEFAULT/38/a70a84-d223-4dfd-9feb-18e64441d01e/1/hFvu30OKmqlhw0MmQ3wpxN0MxLw.mft rsync://rpki.ripe.net/repository/DEFAULT/hFvu30OKmqlhw0MmQ3wpxN0MxLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 11 Dec 2025 00:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:05:8f:93:e9:2c:c5:4f:72:ab:b2:6b:c0:e3:fe:6f:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=845beedf438a9aa961c34326437c29c4dd0cc4bc Validity Not Before: Dec 10 00:00:54 2025 GMT Not After : Dec 11 00:00:54 2025 GMT Subject: CN=23bd1e2783f1cf6cffdba25b796a12337dec4069 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:0d:1d:d7:17:a2:96:b9:67:1b:ef:47:c1:dd: 43:bf:f7:6f:8b:d0:d1:b8:c1:cc:2d:f6:89:37:bb: c9:a5:1f:99:4c:81:54:10:a3:f7:9e:66:d8:a1:49: 07:65:7a:ad:e0:c3:b1:ff:b2:6d:6f:0a:5c:ab:5e: 75:a8:d7:4c:23:2f:b9:d3:d0:05:1e:06:ab:16:0a: ca:29:c2:19:fa:d8:bc:b0:23:c3:e9:c0:f3:56:0e: 10:8a:9a:3d:2f:b5:27:08:88:5a:6e:bb:9f:55:9e: d6:f1:d8:f0:f7:a4:71:40:c6:73:ef:9e:60:26:94: d3:ec:47:ee:e6:c0:2f:fd:d8:35:87:bc:e0:2e:80: 38:ca:13:58:7e:92:35:ac:31:8f:f0:56:66:0e:22: d7:4b:96:3f:eb:eb:23:76:d8:70:fc:82:e0:f5:29: 4c:85:7b:32:ab:83:27:eb:38:bb:b4:d8:58:84:ea: f9:49:6d:6d:c1:8a:7a:cc:6e:a5:2d:b5:a3:3e:75: 14:5e:04:d2:69:8b:98:d1:19:b1:36:56:db:cd:e1: 91:48:10:29:1e:b3:9c:25:2d:bd:9c:e9:1c:9c:71: 53:7a:75:1d:6e:55:a5:49:d5:b2:f8:a2:18:f0:54: d3:af:e6:d6:c3:9d:2d:69:e0:54:a6:81:17:a3:12: 43:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:BD:1E:27:83:F1:CF:6C:FF:DB:A2:5B:79:6A:12:33:7D:EC:40:69 X509v3 Authority Key Identifier: keyid:84:5B:EE:DF:43:8A:9A:A9:61:C3:43:26:43:7C:29:C4:DD:0C:C4:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hFvu30OKmqlhw0MmQ3wpxN0MxLw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/a70a84-d223-4dfd-9feb-18e64441d01e/1/hFvu30OKmqlhw0MmQ3wpxN0MxLw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/38/a70a84-d223-4dfd-9feb-18e64441d01e/1/hFvu30OKmqlhw0MmQ3wpxN0MxLw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 19:6f:13:3d:48:9d:34:87:ac:d1:7e:33:8c:3b:8e:29:2e:0a: 2b:8b:26:95:a9:30:e7:97:e2:ba:43:8f:70:a1:4a:32:61:84: ee:29:9d:0d:83:ab:c8:54:0b:66:6a:1a:86:19:1d:d2:d1:c1: a3:6c:c6:c2:d8:be:c6:3d:ed:38:79:3d:9c:67:9c:d6:c6:bb: 85:df:9a:38:19:45:b3:8a:d4:df:37:14:e7:f4:88:80:51:9f: 0f:cc:22:42:b4:b4:f6:b6:51:22:c2:f4:0c:66:be:0a:73:f1: 36:d5:d6:66:c7:44:83:0f:b0:bc:ae:4d:5d:29:62:fe:f7:e0: 8c:fe:76:f1:ed:5b:00:df:77:f1:d4:4e:9b:80:e6:ac:63:1c: aa:24:78:bc:c3:fb:49:b9:b6:4f:ab:df:3c:b3:6f:98:7a:9e: 92:1a:5f:3c:65:38:e1:39:28:91:1c:42:b9:1a:49:2c:7b:c3: 75:27:02:1d:14:8f:bb:37:84:e0:7e:0b:1f:2f:b5:06:08:3d: 08:8b:06:27:a7:49:41:c9:36:a3:2d:f1:e9:cf:ff:a8:1f:ca: 3b:8f:87:67:a6:d5:44:11:46:b7:5b:a9:49:08:8a:32:ff:83: 2b:11:a6:4b:05:8c:3b:4e:29:3c:bf:ab:2b:32:69:c2:05:73: 6e:71:5f:67 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsFj5PpLMVPcquya8Dj/m8eMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0NWJlZWRmNDM4YTlhYTk2MWMzNDMyNjQzN2MyOWM0ZGQw Y2M0YmMwHhcNMjUxMjEwMDAwMDU0WhcNMjUxMjExMDAwMDU0WjAzMTEwLwYDVQQD EygyM2JkMWUyNzgzZjFjZjZjZmZkYmEyNWI3OTZhMTIzMzdkZWM0MDY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAug0d1xeilrlnG+9Hwd1Dv/dvi9DR uMHMLfaJN7vJpR+ZTIFUEKP3nmbYoUkHZXqt4MOx/7Jtbwpcq151qNdMIy+509AF HgarFgrKKcIZ+ti8sCPD6cDzVg4Qipo9L7UnCIhabrufVZ7W8djw96RxQMZz755g JpTT7Efu5sAv/dg1h7zgLoA4yhNYfpI1rDGP8FZmDiLXS5Y/6+sjdthw/ILg9SlM hXsyq4Mn6zi7tNhYhOr5SW1twYp6zG6lLbWjPnUUXgTSaYuY0RmxNlbbzeGRSBAp HrOcJS29nOkcnHFTenUdblWlSdWy+KIY8FTTr+bWw50taeBUpoEXoxJDxQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCO9HieD8c9s/9uiW3lqEjN97EBpMB8GA1UdIwQY MBaAFIRb7t9DipqpYcNDJkN8KcTdDMS8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaEZ2dTMwT0ttcWxodzBNbVEzd3B4TjBNeEx3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC9hNzBhODQtZDIyMy00ZGZkLTlmZWIt MThlNjQ0NDFkMDFlLzEvaEZ2dTMwT0ttcWxodzBNbVEzd3B4TjBNeEx3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOC9hNzBhODQtZDIyMy00ZGZkLTlmZWItMThlNjQ0NDFkMDFl LzEvaEZ2dTMwT0ttcWxodzBNbVEzd3B4TjBNeEx3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGW8TPUid NIes0X4zjDuOKS4KK4smlakw55fiukOPcKFKMmGE7imdDYOryFQLZmoahhkd0tHB o2zGwti+xj3tOHk9nGec1sa7hd+aOBlFs4rU3zcU5/SIgFGfD8wiQrS09rZRIsL0 DGa+CnPxNtXWZsdEgw+wvK5NXSli/vfgjP528e1bAN938dROm4DmrGMcqiR4vMP7 Sbm2T6vfPLNvmHqekhpfPGU44TkokRxCuRpJLHvDdScCHRSPuzeE4H4LHy+1Bgg9 CIsGJ6dJQck2oy3x6c//qB/KO4+HZ6bVRBFGt1upSQiKMv+DKxGmSwWMO04pPL+r KzJpwgVzbnFfZw== -----END CERTIFICATE-----Generated at Wed Dec 10 08:55:41 2025 by rpki-client