This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.mft File: hWyvHy8CkUARBe9osllX3FVVENI.mft (raw, json) Hash identifier: ll/8nfAT0PZysaWc984vIwrduUimSMbkxl4aqNLc/IU= Subject key identifier: F7:93:C2:6F:31:93:73:AE:EA:C3:DD:49:03:A5:25:7E:79:83:42:04 Authority key identifier: 85:6C:AF:1F:2F:02:91:40:11:05:EF:68:B2:59:57:DC:55:55:10:D2 Certificate issuer: /CN=856caf1f2f0291401105ef68b25957dc555510d2 Certificate serial: 019B597667388C2E74DCF243FBD74231C95E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWyvHy8CkUARBe9osllX3FVVENI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.mft Manifest number: 1302 Signing time: Fri 26 Dec 2025 07:01:30 +0000 Manifest this update: Fri 26 Dec 2025 07:01:30 +0000 Manifest next update: Sat 27 Dec 2025 07:01:30 +0000 Files and hashes: 1: GpIZ4jE-9ieq_ECexQxa_m3ORPw.roa (hash: IjDJZYXavRzEltys5gXrAE3D7K9MgVcCUjh6DyqqaSM=) 2: hWyvHy8CkUARBe9osllX3FVVENI.crl (hash: eJnilNvrk8564ZV5pElx3BAYwK3CU22fXM375jR7yOE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.crl rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.mft rsync://rpki.ripe.net/repository/DEFAULT/hWyvHy8CkUARBe9osllX3FVVENI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:76:67:38:8c:2e:74:dc:f2:43:fb:d7:42:31:c9:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=856caf1f2f0291401105ef68b25957dc555510d2 Validity Not Before: Dec 26 07:01:30 2025 GMT Not After : Dec 27 07:01:30 2025 GMT Subject: CN=f793c26f319373aeeac3dd4903a5257e79834204 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:0b:3b:68:61:b0:39:1f:32:bb:33:44:76:2f: 56:e4:eb:60:25:07:3a:7a:c6:5f:f2:95:3c:d4:13: 9c:14:ef:f3:29:ec:2f:18:09:f6:78:27:ea:d2:43: e4:81:57:f2:0b:57:74:80:ae:19:17:37:a3:4a:d0: d9:1d:0b:dd:f9:44:30:6c:e7:13:0a:e9:ec:58:08: 95:77:a4:3c:02:a3:b5:99:4e:81:30:fd:12:b3:c5: 6c:e2:d6:8a:d2:2b:03:91:66:8f:a9:79:6e:4c:0c: 9b:70:e2:22:c8:34:7c:f4:31:75:2e:44:51:72:81: c7:f0:a5:04:11:96:d7:7f:b0:db:fe:ae:63:ea:45: 80:0b:52:2f:6a:9f:ac:e7:7f:fc:60:67:9c:0a:c1: eb:67:57:23:99:c2:53:98:10:70:2a:69:53:d6:8c: a2:ef:10:74:5f:cd:ec:70:62:4b:e0:06:ca:fe:f9: c8:1f:4a:9e:6a:50:ba:f0:b5:48:76:10:eb:e1:88: ca:b8:54:d7:20:17:fb:c6:12:8e:3e:3b:3b:36:ee: 78:8a:bd:3e:84:d4:ce:e8:eb:2d:3a:95:1c:d0:18: d4:bf:d8:62:41:bb:88:a7:a0:16:73:2e:04:bc:a8: cf:a3:f0:83:ba:7e:83:33:75:00:10:37:72:82:d5: 67:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:93:C2:6F:31:93:73:AE:EA:C3:DD:49:03:A5:25:7E:79:83:42:04 X509v3 Authority Key Identifier: keyid:85:6C:AF:1F:2F:02:91:40:11:05:EF:68:B2:59:57:DC:55:55:10:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWyvHy8CkUARBe9osllX3FVVENI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/52/d2c7c7-2bcc-491e-96a7-b0d0bcd90fae/1/hWyvHy8CkUARBe9osllX3FVVENI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 09:e0:7b:e8:0b:cf:14:7f:9d:21:c4:db:2f:d7:02:38:a3:0a: 0c:97:70:79:fb:1e:ab:2e:0b:e9:46:80:97:24:bd:d0:c6:13: 36:eb:c8:14:38:3b:a0:9e:73:cc:16:b8:4c:47:b2:04:e3:d0: 83:0e:22:ea:69:3e:5b:69:36:dd:5d:a6:f7:5a:8e:a0:50:3c: 60:22:f6:ed:e0:f5:0d:07:93:4c:10:e7:08:85:31:75:5d:b9: 39:7b:17:cd:8a:61:4f:5c:7f:be:4c:1d:f0:66:e1:3f:bc:ca: 25:6d:c1:43:b2:4f:81:f0:ee:e9:d7:d8:08:6d:b3:1d:19:83: ff:90:28:fb:76:17:f7:5c:a9:9b:bd:c7:7f:5e:80:f9:36:9b: ca:8d:86:b9:4b:4a:bd:93:d3:6e:3d:3e:89:e3:d5:34:4e:b0: 52:64:24:34:7b:95:26:15:80:9c:d9:bb:9e:e4:d7:9a:70:1c: c6:4c:73:17:38:8a:87:0d:ba:ad:8f:40:8f:50:08:dc:3a:8e: 96:e8:8c:ba:81:ad:5a:f3:43:12:9b:53:88:fc:b4:3b:e3:6b: 1f:39:41:41:1d:01:bb:c5:fd:d8:09:3c:3e:61:18:9d:86:12: 37:59:f6:c2:04:2a:2d:60:3c:e3:fb:b1:a0:56:14:a1:23:58: 71:2e:ef:af -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZdmc4jC503PJD+9dCMcleMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1NmNhZjFmMmYwMjkxNDAxMTA1ZWY2OGIyNTk1N2RjNTU1 NTEwZDIwHhcNMjUxMjI2MDcwMTMwWhcNMjUxMjI3MDcwMTMwWjAzMTEwLwYDVQQD EyhmNzkzYzI2ZjMxOTM3M2FlZWFjM2RkNDkwM2E1MjU3ZTc5ODM0MjA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlws7aGGwOR8yuzNEdi9W5OtgJQc6 esZf8pU81BOcFO/zKewvGAn2eCfq0kPkgVfyC1d0gK4ZFzejStDZHQvd+UQwbOcT CunsWAiVd6Q8AqO1mU6BMP0Ss8Vs4taK0isDkWaPqXluTAybcOIiyDR89DF1LkRR coHH8KUEEZbXf7Db/q5j6kWAC1Ivap+s53/8YGecCsHrZ1cjmcJTmBBwKmlT1oyi 7xB0X83scGJL4AbK/vnIH0qealC68LVIdhDr4YjKuFTXIBf7xhKOPjs7Nu54ir0+ hNTO6OstOpUc0BjUv9hiQbuIp6AWcy4EvKjPo/CDun6DM3UAEDdygtVnFQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPeTwm8xk3Ou6sPdSQOlJX55g0IEMB8GA1UdIwQY MBaAFIVsrx8vApFAEQXvaLJZV9xVVRDSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaFd5dkh5OENrVUFSQmU5b3NsbFgzRlZWRU5JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi9kMmM3YzctMmJjYy00OTFlLTk2YTct YjBkMGJjZDkwZmFlLzEvaFd5dkh5OENrVUFSQmU5b3NsbFgzRlZWRU5JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Mi9kMmM3YzctMmJjYy00OTFlLTk2YTctYjBkMGJjZDkwZmFl LzEvaFd5dkh5OENrVUFSQmU5b3NsbFgzRlZWRU5JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACeB76AvP FH+dIcTbL9cCOKMKDJdwefseqy4L6UaAlyS90MYTNuvIFDg7oJ5zzBa4TEeyBOPQ gw4i6mk+W2k23V2m91qOoFA8YCL27eD1DQeTTBDnCIUxdV25OXsXzYphT1x/vkwd 8GbhP7zKJW3BQ7JPgfDu6dfYCG2zHRmD/5Ao+3YX91ypm73Hf16A+Tabyo2GuUtK vZPTbj0+iePVNE6wUmQkNHuVJhWAnNm7nuTXmnAcxkxzFziKhw26rY9Aj1AI3DqO luiMuoGtWvNDEptTiPy0O+NrHzlBQR0Bu8X92Ak8PmEYnYYSN1n2wgQqLWA84/ux oFYUoSNYcS7vrw== -----END CERTIFICATE-----Generated at Fri Dec 26 14:15:38 2025 by rpki-client