This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft File: hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft (raw, json) Hash identifier: y+7mQZ0d6SrwQH0PZxqg2fBKDnWH4R8iiEj1Fzep/Jc= Subject key identifier: 5F:C1:EE:0B:61:32:52:FF:47:9E:3A:38:C5:95:94:5B:5C:C3:70:CE Authority key identifier: 86:02:2E:16:2F:6E:6B:97:55:CE:4C:E8:45:12:0E:62:93:95:06:F7 Certificate issuer: /CN=86022e162f6e6b9755ce4ce845120e62939506f7 Certificate serial: 019B1E7430A80D2934D8DB7F735E18568BEA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hgIuFi9ua5dVzkzoRRIOYpOVBvc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft Manifest number: 16D1 Signing time: Sun 14 Dec 2025 20:01:29 +0000 Manifest this update: Sun 14 Dec 2025 20:01:29 +0000 Manifest next update: Mon 15 Dec 2025 20:01:29 +0000 Files and hashes: 1: MbStNmXQF3r8BjIEIY6alBv8fXM.roa (hash: qBMHoSNp30r52ggSq1NF5Ja+ou1kpfZ0GNdRTXuZlMk=) 2: hgIuFi9ua5dVzkzoRRIOYpOVBvc.crl (hash: SH4DHS/q5YY+lr/lBPcDqwqgEd+SA4Gj3tdjt5PWDXE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.crl rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft rsync://rpki.ripe.net/repository/DEFAULT/hgIuFi9ua5dVzkzoRRIOYpOVBvc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 20:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1e:74:30:a8:0d:29:34:d8:db:7f:73:5e:18:56:8b:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86022e162f6e6b9755ce4ce845120e62939506f7 Validity Not Before: Dec 14 20:01:29 2025 GMT Not After : Dec 15 20:01:29 2025 GMT Subject: CN=5fc1ee0b613252ff479e3a38c595945b5cc370ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:46:60:1a:8c:c5:05:59:0d:40:49:c8:b4:70: 88:20:6d:33:5b:6f:e4:cf:0c:5e:de:7a:9a:8a:e5: 07:af:cd:b9:ec:e7:bb:8d:b3:9e:af:12:eb:02:24: 75:b9:29:ee:7d:46:92:45:e0:8d:8f:78:6a:7b:29: 73:dc:49:4e:21:1b:74:78:4d:5c:ab:00:18:50:8a: 37:f6:1a:1a:5c:62:44:49:07:69:0f:42:2d:40:e9: 87:4a:59:6d:ab:44:ae:b3:05:0d:fe:0d:ba:8d:94: d1:1c:26:e2:19:c5:7a:16:ac:d5:ac:59:5b:ae:54: 35:74:a3:40:4f:01:37:1a:40:29:db:6f:38:c6:45: f2:ea:1f:6b:b8:e8:37:ad:9f:00:f0:50:f8:fd:36: 42:71:b5:e8:ae:ee:b8:e3:c1:41:85:da:37:9c:80: 9d:bd:e2:16:e1:bf:16:89:64:97:0d:a1:55:0d:40: 76:fc:55:13:77:bf:3b:05:47:8d:69:2f:d7:45:4a: 07:b7:72:3a:3b:ad:64:84:74:76:ae:36:ee:13:8c: 07:44:ac:67:44:81:09:f3:38:4e:ef:e1:dc:52:0c: ab:94:79:3c:9f:07:96:90:41:70:c8:2f:75:19:61: 33:70:12:1f:ca:a5:21:4c:a8:bc:9c:e4:d4:92:52: e9:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:C1:EE:0B:61:32:52:FF:47:9E:3A:38:C5:95:94:5B:5C:C3:70:CE X509v3 Authority Key Identifier: keyid:86:02:2E:16:2F:6E:6B:97:55:CE:4C:E8:45:12:0E:62:93:95:06:F7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hgIuFi9ua5dVzkzoRRIOYpOVBvc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/50/782c07-4bba-4810-b98b-059dbcc8dcef/1/hgIuFi9ua5dVzkzoRRIOYpOVBvc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:18:6b:a1:64:4f:7f:39:80:67:35:18:54:74:42:99:6b:df: cb:b8:f0:f7:67:d8:5d:5d:3e:b2:1f:50:f1:48:e0:cb:9c:70: a3:d2:e2:74:1c:e5:c6:78:a8:21:8a:e0:63:01:8c:dd:56:52: 86:e5:46:5b:ba:eb:00:d0:bd:19:24:16:d4:3d:8d:ec:5d:52: de:b6:cf:a4:aa:7e:74:f6:51:9d:2d:1d:f9:54:6a:c6:51:d9: ec:d9:28:0e:78:a1:04:27:38:71:3e:df:d3:96:b9:da:e5:29: ea:83:9e:05:f9:e9:bd:2c:d8:c7:e7:76:53:d6:37:a5:74:f9: 6f:81:a0:c4:86:6d:60:d5:ec:88:f5:2b:52:42:07:71:7b:c9: 74:26:24:07:1e:e3:1f:00:49:0b:c5:f4:df:ca:a9:61:89:f4: 73:de:66:f1:1d:23:a8:aa:00:8c:e3:85:42:1b:16:e8:e3:71: a0:f0:e4:c1:7b:51:73:76:e6:e7:db:6c:26:d6:4b:9e:20:58: f0:9c:1e:0b:cf:a5:95:ab:8b:e0:df:63:63:94:20:52:5d:50: 1c:d7:17:61:87:3e:21:71:f2:ef:4a:81:d6:b3:49:69:6e:e4: 2c:79:49:8e:8b:a9:15:9d:3d:58:9d:6c:f0:25:34:ab:1c:27: 38:2f:e7:8c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsedDCoDSk02Nt/c14YVovqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2MDIyZTE2MmY2ZTZiOTc1NWNlNGNlODQ1MTIwZTYyOTM5 NTA2ZjcwHhcNMjUxMjE0MjAwMTI5WhcNMjUxMjE1MjAwMTI5WjAzMTEwLwYDVQQD Eyg1ZmMxZWUwYjYxMzI1MmZmNDc5ZTNhMzhjNTk1OTQ1YjVjYzM3MGNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh0ZgGozFBVkNQEnItHCIIG0zW2/k zwxe3nqaiuUHr8257Oe7jbOerxLrAiR1uSnufUaSReCNj3hqeylz3ElOIRt0eE1c qwAYUIo39hoaXGJESQdpD0ItQOmHSlltq0SuswUN/g26jZTRHCbiGcV6FqzVrFlb rlQ1dKNATwE3GkAp2284xkXy6h9ruOg3rZ8A8FD4/TZCcbXoru6448FBhdo3nICd veIW4b8WiWSXDaFVDUB2/FUTd787BUeNaS/XRUoHt3I6O61khHR2rjbuE4wHRKxn RIEJ8zhO7+HcUgyrlHk8nweWkEFwyC91GWEzcBIfyqUhTKi8nOTUklLpEwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF/B7gthMlL/R546OMWVlFtcw3DOMB8GA1UdIwQY MBaAFIYCLhYvbmuXVc5M6EUSDmKTlQb3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGdJdUZpOXVhNWRWemt6b1JSSU9ZcE9WQnZjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC83ODJjMDctNGJiYS00ODEwLWI5OGIt MDU5ZGJjYzhkY2VmLzEvaGdJdUZpOXVhNWRWemt6b1JSSU9ZcE9WQnZjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MC83ODJjMDctNGJiYS00ODEwLWI5OGItMDU5ZGJjYzhkY2Vm LzEvaGdJdUZpOXVhNWRWemt6b1JSSU9ZcE9WQnZjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXxhroWRP fzmAZzUYVHRCmWvfy7jw92fYXV0+sh9Q8Ujgy5xwo9LidBzlxnioIYrgYwGM3VZS huVGW7rrANC9GSQW1D2N7F1S3rbPpKp+dPZRnS0d+VRqxlHZ7NkoDnihBCc4cT7f 05a52uUp6oOeBfnpvSzYx+d2U9Y3pXT5b4GgxIZtYNXsiPUrUkIHcXvJdCYkBx7j HwBJC8X038qpYYn0c95m8R0jqKoAjOOFQhsW6ONxoPDkwXtRc3bm59tsJtZLniBY 8JweC8+llauL4N9jY5QgUl1QHNcXYYc+IXHy70qB1rNJaW7kLHlJjoupFZ09WJ1s 8CU0qxwnOC/njA== -----END CERTIFICATE-----Generated at Mon Dec 15 04:51:34 2025 by rpki-client