This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/173306-2dbd-4ad8-bd51-b1f3bcc67aae/1/hD0a_PE70hF9R99oPkCmMocATP4.mft File: hD0a_PE70hF9R99oPkCmMocATP4.mft (raw, json) Hash identifier: j4F28oPsO/TfeHHNjz8Z/SJA8v7p5ndWCiTSt6O1YVc= Subject key identifier: DE:63:AA:27:0C:3D:A1:EE:BA:EA:EF:94:F6:93:77:6C:85:E4:DA:ED Authority key identifier: 84:3D:1A:FC:F1:3B:D2:11:7D:47:DF:68:3E:40:A6:32:87:00:4C:FE Certificate issuer: /CN=843d1afcf13bd2117d47df683e40a63287004cfe Certificate serial: 019B2399E3FAC115DC59B8EB25ACB9D0934E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hD0a_PE70hF9R99oPkCmMocATP4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/173306-2dbd-4ad8-bd51-b1f3bcc67aae/1/hD0a_PE70hF9R99oPkCmMocATP4.mft Manifest number: 1424 Signing time: Mon 15 Dec 2025 20:00:46 +0000 Manifest this update: Mon 15 Dec 2025 20:00:46 +0000 Manifest next update: Tue 16 Dec 2025 20:00:46 +0000 Files and hashes: 1: D3bRMlTDClBFr3S51rSxiY9VG9A.roa (hash: aR3n5btl/hz9D4qsdHX0kbRtCNTOPvoaLGVTTlP76Qo=) 2: ZxguzW17xFrUP53FIAJUfjkeqvQ.roa (hash: Sn/df7xibUqHylpF6Ngt+9h48Sxd84uF3fpZ9SuTgf8=) 3: hD0a_PE70hF9R99oPkCmMocATP4.crl (hash: rYKPewEiiMkMaxHra0ZM8YV+duBPwkKpC06DnhREXMA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/173306-2dbd-4ad8-bd51-b1f3bcc67aae/1/hD0a_PE70hF9R99oPkCmMocATP4.crl rsync://rpki.ripe.net/repository/DEFAULT/45/173306-2dbd-4ad8-bd51-b1f3bcc67aae/1/hD0a_PE70hF9R99oPkCmMocATP4.mft rsync://rpki.ripe.net/repository/DEFAULT/hD0a_PE70hF9R99oPkCmMocATP4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 20:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:23:99:e3:fa:c1:15:dc:59:b8:eb:25:ac:b9:d0:93:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=843d1afcf13bd2117d47df683e40a63287004cfe Validity Not Before: Dec 15 20:00:46 2025 GMT Not After : Dec 16 20:00:46 2025 GMT Subject: CN=de63aa270c3da1eebaeaef94f693776c85e4daed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:29:7c:fc:b5:8b:9c:8d:67:a8:ae:f9:16:c3: 5c:51:9a:4e:2f:24:71:eb:84:a1:24:ec:67:d6:e0: b5:a3:61:b2:02:06:c0:3c:44:c7:57:f1:be:57:cd: ec:91:8f:63:21:55:27:07:5d:82:96:d5:e7:c9:e9: 3c:dc:6c:59:b7:aa:65:05:59:37:64:89:a2:6f:d3: d7:3a:8c:8d:a9:b0:32:07:78:c4:56:aa:9d:07:3a: 63:e0:28:f7:19:ef:56:05:e0:f7:9a:3e:4e:05:44: 32:18:e3:d2:ce:28:af:4f:58:c2:3f:89:97:b6:f6: 1f:ff:01:5e:48:89:81:13:26:76:b6:ad:aa:c5:44: be:82:d0:c3:76:57:2b:60:8f:70:ed:cf:54:08:d1: 06:43:c1:3c:fb:f4:92:ee:98:1e:5a:1c:17:36:c9: 7a:cb:3a:f7:45:4e:79:9d:d1:e6:28:8a:f8:85:9a: 23:ef:cd:41:ff:09:65:bb:3a:b9:2c:06:e0:34:af: 6c:53:18:2b:d7:db:00:a8:28:1d:69:97:c7:3b:aa: a9:98:a4:3f:20:9b:cc:ab:70:09:75:2e:a5:2a:49: ca:a5:92:63:97:78:cc:2c:12:2e:0f:64:67:f9:78: 41:49:1d:5c:ab:c0:04:46:5d:d5:89:70:cc:5f:9e: 4a:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:63:AA:27:0C:3D:A1:EE:BA:EA:EF:94:F6:93:77:6C:85:E4:DA:ED X509v3 Authority Key Identifier: keyid:84:3D:1A:FC:F1:3B:D2:11:7D:47:DF:68:3E:40:A6:32:87:00:4C:FE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hD0a_PE70hF9R99oPkCmMocATP4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/173306-2dbd-4ad8-bd51-b1f3bcc67aae/1/hD0a_PE70hF9R99oPkCmMocATP4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/45/173306-2dbd-4ad8-bd51-b1f3bcc67aae/1/hD0a_PE70hF9R99oPkCmMocATP4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2e:71:99:35:24:ca:4a:ef:2b:96:80:5f:71:ef:74:ad:be:d3: 9f:12:e2:a3:0e:ac:3b:e3:49:50:62:92:44:8a:74:ce:b6:b0: 9a:4e:da:5e:fe:35:34:5f:13:98:a2:26:29:25:50:20:d5:20: 16:7a:aa:ce:d7:c1:ca:39:23:9f:c6:06:5d:fe:a6:f4:6a:af: 6c:80:b2:50:24:19:b8:9c:f9:06:5a:b0:77:58:06:02:96:d8: 31:4f:a8:96:17:45:c4:71:8d:21:c2:a9:74:7d:3b:27:76:fc: 4a:ec:86:35:58:44:4b:a8:0e:8a:30:ad:bb:bd:3d:d5:fc:fa: ca:38:42:40:40:df:dc:d6:38:ac:78:2f:dd:17:e9:f8:0a:de: 96:99:f3:9e:e7:00:f3:3f:22:8b:40:11:67:9f:36:90:31:25: 26:82:6e:e4:bf:7b:b0:8a:a6:e6:7d:c9:dd:82:a5:b1:d2:f0: 86:e3:6b:13:bf:55:c0:90:a4:a1:1c:d8:6c:07:81:25:6b:b9: 7b:db:e5:9c:ee:a1:aa:54:f9:47:0d:53:4d:22:29:d7:38:f7: 1d:0e:62:64:e6:14:38:b6:a6:6c:6b:56:7f:f3:1b:38:76:3e: 7c:1f:cf:90:1f:51:de:7f:91:5b:ac:80:fe:8e:28:3b:49:82: 7c:87:1b:5a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsjmeP6wRXcWbjrJay50JNOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0M2QxYWZjZjEzYmQyMTE3ZDQ3ZGY2ODNlNDBhNjMyODcw MDRjZmUwHhcNMjUxMjE1MjAwMDQ2WhcNMjUxMjE2MjAwMDQ2WjAzMTEwLwYDVQQD EyhkZTYzYWEyNzBjM2RhMWVlYmFlYWVmOTRmNjkzNzc2Yzg1ZTRkYWVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuil8/LWLnI1nqK75FsNcUZpOLyRx 64ShJOxn1uC1o2GyAgbAPETHV/G+V83skY9jIVUnB12CltXnyek83GxZt6plBVk3 ZImib9PXOoyNqbAyB3jEVqqdBzpj4Cj3Ge9WBeD3mj5OBUQyGOPSziivT1jCP4mX tvYf/wFeSImBEyZ2tq2qxUS+gtDDdlcrYI9w7c9UCNEGQ8E8+/SS7pgeWhwXNsl6 yzr3RU55ndHmKIr4hZoj781B/wlluzq5LAbgNK9sUxgr19sAqCgdaZfHO6qpmKQ/ IJvMq3AJdS6lKknKpZJjl3jMLBIuD2Rn+XhBSR1cq8AERl3ViXDMX55KJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN5jqicMPaHuuurvlPaTd2yF5NrtMB8GA1UdIwQY MBaAFIQ9GvzxO9IRfUffaD5ApjKHAEz+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaEQwYV9QRTcwaEY5Ujk5b1BrQ21Nb2NBVFA0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS8xNzMzMDYtMmRiZC00YWQ4LWJkNTEt YjFmM2JjYzY3YWFlLzEvaEQwYV9QRTcwaEY5Ujk5b1BrQ21Nb2NBVFA0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NS8xNzMzMDYtMmRiZC00YWQ4LWJkNTEtYjFmM2JjYzY3YWFl LzEvaEQwYV9QRTcwaEY5Ujk5b1BrQ21Nb2NBVFA0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALnGZNSTK Su8rloBfce90rb7TnxLiow6sO+NJUGKSRIp0zrawmk7aXv41NF8TmKImKSVQINUg FnqqztfByjkjn8YGXf6m9GqvbICyUCQZuJz5Blqwd1gGApbYMU+olhdFxHGNIcKp dH07J3b8SuyGNVhES6gOijCtu7091fz6yjhCQEDf3NY4rHgv3Rfp+ArelpnznucA 8z8ii0ARZ582kDElJoJu5L97sIqm5n3J3YKlsdLwhuNrE79VwJCkoRzYbAeBJWu5 e9vlnO6hqlT5Rw1TTSIp1zj3HQ5iZOYUOLambGtWf/MbOHY+fB/PkB9R3n+RW6yA /o4oO0mCfIcbWg== -----END CERTIFICATE-----Generated at Tue Dec 16 06:39:52 2025 by rpki-client