This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.mft File: hyj0ANg9Saqm6TIMosv6k9pb55s.mft (raw, json) Hash identifier: 0P+zO6hVZYjDCekOmhXrGuR0KZS2b6JVfGUfpUOE/QM= Subject key identifier: 19:AC:41:F7:B1:58:51:1E:30:6D:28:E0:04:CB:88:AE:52:DC:C4:8F Authority key identifier: 87:28:F4:00:D8:3D:49:AA:A6:E9:32:0C:A2:CB:FA:93:DA:5B:E7:9B Certificate issuer: /CN=8728f400d83d49aaa6e9320ca2cbfa93da5be79b Certificate serial: 019B1D9995811228F84332B9657EA6CCF2D4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hyj0ANg9Saqm6TIMosv6k9pb55s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.mft Manifest number: 0643 Signing time: Sun 14 Dec 2025 16:02:42 +0000 Manifest this update: Sun 14 Dec 2025 16:02:42 +0000 Manifest next update: Mon 15 Dec 2025 16:02:42 +0000 Files and hashes: 1: hyj0ANg9Saqm6TIMosv6k9pb55s.crl (hash: Hlo7g+R8pv8ca3E27FNTj6gCAQtlcNNCBHSnaGB8JpQ=) 2: iTyIEEO2sljhZiJnAx_Ko0duy2M.roa (hash: T+291sx+aTIxs6928rSAPXeV/0gq52PnDMgh9u7+DTg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.crl rsync://rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.mft rsync://rpki.ripe.net/repository/DEFAULT/hyj0ANg9Saqm6TIMosv6k9pb55s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 14:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1d:99:95:81:12:28:f8:43:32:b9:65:7e:a6:cc:f2:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8728f400d83d49aaa6e9320ca2cbfa93da5be79b Validity Not Before: Dec 14 16:02:42 2025 GMT Not After : Dec 15 16:02:42 2025 GMT Subject: CN=19ac41f7b158511e306d28e004cb88ae52dcc48f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:bb:7f:d3:bd:37:f2:8d:44:6c:a5:a2:8c:f0: c4:ff:4f:fd:f0:bf:ab:d8:68:8d:55:0b:33:fe:86: 33:69:53:93:89:7c:6e:92:0c:31:5e:15:02:fd:4f: 6c:d3:50:6c:d9:8c:c9:6d:8c:77:4c:3f:06:e1:0f: ee:29:cc:21:81:0b:a8:a5:e1:2a:f8:ef:b2:c0:a3: 3e:26:95:dd:84:2d:a2:e8:e4:8f:20:cc:cf:f2:2d: cb:ba:35:a0:65:cd:81:16:7f:fa:1b:b2:14:c7:38: 7a:e8:35:27:06:d1:21:a0:3a:36:13:0d:c2:a7:47: 50:ab:e8:3d:92:94:1e:83:d5:60:9e:f4:53:91:89: a6:67:0c:b4:7f:60:e6:d5:30:04:72:1b:e4:b0:d7: db:47:f9:1b:bc:e2:db:84:a1:fa:e3:9f:54:d5:6c: 54:47:c7:34:a5:0a:31:81:52:8c:2a:01:7e:a3:ae: ea:9e:1f:8b:77:d9:a0:0e:93:46:b3:5d:3e:a8:bd: 42:e5:52:51:17:e7:a4:99:ad:11:50:3c:89:23:8e: dc:e6:f0:c3:94:38:5f:6b:32:1e:96:95:13:b6:70: 35:8f:aa:df:f2:84:cf:25:ba:4c:c8:7a:25:53:1e: 96:c9:45:4f:da:3e:f5:3e:49:fc:3f:91:d9:b1:99: 8d:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:AC:41:F7:B1:58:51:1E:30:6D:28:E0:04:CB:88:AE:52:DC:C4:8F X509v3 Authority Key Identifier: keyid:87:28:F4:00:D8:3D:49:AA:A6:E9:32:0C:A2:CB:FA:93:DA:5B:E7:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hyj0ANg9Saqm6TIMosv6k9pb55s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/33f1ab-6a35-4e63-8bdc-a25e14d539a2/1/hyj0ANg9Saqm6TIMosv6k9pb55s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4b:dc:5d:97:45:d7:92:f2:a7:0e:96:1c:50:90:e0:8c:a7:14: f6:bf:7e:58:4b:98:fd:51:73:c7:65:8a:9f:3f:cb:bf:4b:64: 44:9d:49:48:d2:f5:06:46:59:f3:48:e9:e8:29:21:5e:a1:1f: 96:5a:55:be:ce:cf:87:8f:15:ea:e8:82:fd:0d:55:2f:7d:ea: 0a:0c:ac:e5:cd:9c:12:5b:a2:96:7b:41:ec:d3:8b:a2:6c:10: c1:19:cb:55:40:bc:d9:9c:e0:44:2f:cf:69:02:71:61:12:90: 04:99:16:17:93:ab:c7:40:19:d5:65:09:99:2f:41:c8:1e:c1: 40:e9:5d:d4:6e:7a:0f:de:52:d6:62:cb:2d:38:5c:38:08:55: ca:a2:c9:7e:59:66:a2:0a:ba:fe:a4:81:f9:95:12:7c:58:76: 79:c5:7a:32:f4:c3:5a:19:46:7d:df:74:ac:e9:79:b3:f4:66: d2:eb:e4:ec:9e:53:7f:6e:de:dd:36:be:cd:f8:7d:4b:df:09: d1:4e:7a:87:95:d8:59:c3:4d:99:fe:80:5f:3e:41:59:d0:bb: aa:f1:25:99:6e:74:a7:15:e9:0b:3d:51:4d:40:7f:15:28:c1: eb:e8:5b:a9:10:8e:e7:75:1f:e5:ef:80:61:2d:25:e3:6a:c7: 55:06:74:03 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsdmZWBEij4QzK5ZX6mzPLUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3MjhmNDAwZDgzZDQ5YWFhNmU5MzIwY2EyY2JmYTkzZGE1 YmU3OWIwHhcNMjUxMjE0MTYwMjQyWhcNMjUxMjE1MTYwMjQyWjAzMTEwLwYDVQQD EygxOWFjNDFmN2IxNTg1MTFlMzA2ZDI4ZTAwNGNiODhhZTUyZGNjNDhmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArbt/07038o1EbKWijPDE/0/98L+r 2GiNVQsz/oYzaVOTiXxukgwxXhUC/U9s01Bs2YzJbYx3TD8G4Q/uKcwhgQuopeEq +O+ywKM+JpXdhC2i6OSPIMzP8i3LujWgZc2BFn/6G7IUxzh66DUnBtEhoDo2Ew3C p0dQq+g9kpQeg9VgnvRTkYmmZwy0f2Dm1TAEchvksNfbR/kbvOLbhKH6459U1WxU R8c0pQoxgVKMKgF+o67qnh+Ld9mgDpNGs10+qL1C5VJRF+ekma0RUDyJI47c5vDD lDhfazIelpUTtnA1j6rf8oTPJbpMyHolUx6WyUVP2j71Pkn8P5HZsZmNnwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBmsQfexWFEeMG0o4ATLiK5S3MSPMB8GA1UdIwQY MBaAFIco9ADYPUmqpukyDKLL+pPaW+ebMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHlqMEFOZzlTYXFtNlRJTW9zdjZrOXBiNTVzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC8zM2YxYWItNmEzNS00ZTYzLThiZGMt YTI1ZTE0ZDUzOWEyLzEvaHlqMEFOZzlTYXFtNlRJTW9zdjZrOXBiNTVzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NC8zM2YxYWItNmEzNS00ZTYzLThiZGMtYTI1ZTE0ZDUzOWEy LzEvaHlqMEFOZzlTYXFtNlRJTW9zdjZrOXBiNTVzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAS9xdl0XX kvKnDpYcUJDgjKcU9r9+WEuY/VFzx2WKnz/Lv0tkRJ1JSNL1BkZZ80jp6CkhXqEf llpVvs7Ph48V6uiC/Q1VL33qCgys5c2cEluilntB7NOLomwQwRnLVUC82ZzgRC/P aQJxYRKQBJkWF5Orx0AZ1WUJmS9ByB7BQOld1G56D95S1mLLLThcOAhVyqLJfllm ogq6/qSB+ZUSfFh2ecV6MvTDWhlGfd90rOl5s/Rm0uvk7J5Tf27e3Ta+zfh9S98J 0U56h5XYWcNNmf6AXz5BWdC7qvElmW50pxXpCz1RTUB/FSjB6+hbqRCO53Uf5e+A YS0l42rHVQZ0Aw== -----END CERTIFICATE-----Generated at Sun Dec 14 22:01:51 2025 by rpki-client