This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/f04686-359b-4744-b930-1af279625fd0/1/hSC3fQNbkS_6QG393ynjopY-aQQ.mft File: hSC3fQNbkS_6QG393ynjopY-aQQ.mft (raw, json) Hash identifier: ybcO5EV3ucfsUNFgAvi5U+Ym6Zo1xaUMPbwpBtnviz8= Subject key identifier: 6C:10:31:08:7D:88:83:02:07:0C:FA:A4:E3:DA:F0:23:86:D9:E5:88 Authority key identifier: 85:20:B7:7D:03:5B:91:2F:FA:40:6D:FD:DF:29:E3:A2:96:3E:69:04 Certificate issuer: /CN=8520b77d035b912ffa406dfddf29e3a2963e6904 Certificate serial: 019B5AF61498C5F9127B3A4F186644F24353 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hSC3fQNbkS_6QG393ynjopY-aQQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/f04686-359b-4744-b930-1af279625fd0/1/hSC3fQNbkS_6QG393ynjopY-aQQ.mft Manifest number: 09AB Signing time: Fri 26 Dec 2025 14:00:35 +0000 Manifest this update: Fri 26 Dec 2025 14:00:35 +0000 Manifest next update: Sat 27 Dec 2025 14:00:35 +0000 Files and hashes: 1: GrVfgYYa0s5gLsRQp5P5vAQeHlE.roa (hash: Twu1XyErZ1bzBOtE8/HK3XbggJvMpOYaRXT376BODWE=) 2: XUIGCJfhGsoP5FdVAQmT9lUNYuc.roa (hash: hjmwDLHRKf4c787nov0R6bRVLxtqmM1uwueYf+NK6fU=) 3: hSC3fQNbkS_6QG393ynjopY-aQQ.crl (hash: 0oh7D+xaTjaPFwzzwnemZtOs0d8DcSVKWDnvZ0jHm9s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/f04686-359b-4744-b930-1af279625fd0/1/hSC3fQNbkS_6QG393ynjopY-aQQ.crl rsync://rpki.ripe.net/repository/DEFAULT/56/f04686-359b-4744-b930-1af279625fd0/1/hSC3fQNbkS_6QG393ynjopY-aQQ.mft rsync://rpki.ripe.net/repository/DEFAULT/hSC3fQNbkS_6QG393ynjopY-aQQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:f6:14:98:c5:f9:12:7b:3a:4f:18:66:44:f2:43:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8520b77d035b912ffa406dfddf29e3a2963e6904 Validity Not Before: Dec 26 14:00:35 2025 GMT Not After : Dec 27 14:00:35 2025 GMT Subject: CN=6c1031087d888302070cfaa4e3daf02386d9e588 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:39:1e:fa:75:43:ee:74:70:54:e3:c6:47:96: e4:8d:b2:43:59:bf:92:bb:0a:7b:21:8a:40:45:dd: aa:0a:df:a9:04:c1:86:02:2d:c1:c2:63:7f:30:f2: 3c:0c:00:c2:c5:e9:76:4e:44:4c:d0:9a:c0:ce:d0: 61:e6:b3:1f:92:24:53:80:6a:fa:99:63:fa:29:5a: e4:9d:c2:5f:43:a2:81:27:94:4f:d5:dc:d8:0a:a3: 26:4c:ba:1c:25:a0:af:c3:bf:11:6a:77:4d:5f:5b: 22:8d:a4:1d:fa:5d:53:e4:bd:cd:cd:18:28:d0:cf: ac:57:15:d3:cb:a7:2a:97:48:cc:ea:2f:7e:a3:91: b9:75:dc:92:e8:8c:73:17:f7:91:3b:63:a6:f5:77: 18:5c:09:7b:08:24:dd:16:c2:eb:19:d2:1d:3d:2f: 23:06:7c:80:23:31:31:65:65:89:94:a9:36:5e:9f: 7e:86:5d:ff:c7:19:a5:ff:9e:e2:dc:e6:5d:29:17: f1:64:04:25:e8:56:ab:3e:44:7f:27:e1:4d:e9:5f: 75:60:e8:47:0b:0e:f2:0d:e9:1c:e8:24:70:84:c8: 09:f9:ae:e6:fd:86:b6:3c:36:b6:a7:c1:ae:f0:b7: 08:4a:30:a5:de:c3:e8:02:32:f4:78:7b:ae:a0:fc: 3a:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:10:31:08:7D:88:83:02:07:0C:FA:A4:E3:DA:F0:23:86:D9:E5:88 X509v3 Authority Key Identifier: keyid:85:20:B7:7D:03:5B:91:2F:FA:40:6D:FD:DF:29:E3:A2:96:3E:69:04 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hSC3fQNbkS_6QG393ynjopY-aQQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/f04686-359b-4744-b930-1af279625fd0/1/hSC3fQNbkS_6QG393ynjopY-aQQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/56/f04686-359b-4744-b930-1af279625fd0/1/hSC3fQNbkS_6QG393ynjopY-aQQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c5:f2:00:93:75:c1:8d:e1:5a:f8:4b:c7:3c:3a:e8:d5:00:86: 8c:57:00:1c:e5:a9:aa:94:4a:f0:e3:8a:92:41:b0:86:8f:25: b7:d3:9f:c1:64:c3:e9:bc:d9:2b:0a:35:b9:e2:57:ea:a7:0b: 46:4d:b7:0b:e2:7a:51:26:cd:a9:c6:aa:87:77:7c:78:83:4e: a9:53:d9:74:7b:83:03:f3:9d:1f:3a:ff:2e:6f:7f:1a:67:89: 3e:18:5b:af:cd:da:48:dc:49:35:3a:4a:e5:3f:cd:03:6f:64: c4:1e:71:a8:4c:12:29:9a:78:5b:fc:03:b2:63:17:a4:bf:f9: de:da:4e:a5:d0:51:2a:a1:50:9e:be:6a:bb:b5:a4:c6:3b:25: 77:b8:45:13:44:87:8f:9d:a6:be:22:6c:83:b8:63:39:4e:a5: cd:2d:32:77:95:17:74:db:cf:60:c5:18:84:b4:61:c1:92:d8: fa:e0:a7:f2:5f:ea:53:0f:62:ad:7b:aa:f9:96:38:b8:4c:c3: 24:97:28:85:09:66:2e:eb:e9:a2:a2:42:ca:8e:4c:db:6e:e9: e4:9f:5b:7c:32:cc:03:05:11:4b:48:d6:a2:e0:41:d4:6d:5d: db:d7:06:51:b1:9b:c5:56:9c:6f:b2:7a:e5:bc:91:5e:65:8e: 1d:8c:f4:e7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZta9hSYxfkSezpPGGZE8kNTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1MjBiNzdkMDM1YjkxMmZmYTQwNmRmZGRmMjllM2EyOTYz ZTY5MDQwHhcNMjUxMjI2MTQwMDM1WhcNMjUxMjI3MTQwMDM1WjAzMTEwLwYDVQQD Eyg2YzEwMzEwODdkODg4MzAyMDcwY2ZhYTRlM2RhZjAyMzg2ZDllNTg4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyzke+nVD7nRwVOPGR5bkjbJDWb+S uwp7IYpARd2qCt+pBMGGAi3BwmN/MPI8DADCxel2TkRM0JrAztBh5rMfkiRTgGr6 mWP6KVrkncJfQ6KBJ5RP1dzYCqMmTLocJaCvw78RandNX1sijaQd+l1T5L3NzRgo 0M+sVxXTy6cql0jM6i9+o5G5ddyS6IxzF/eRO2Om9XcYXAl7CCTdFsLrGdIdPS8j BnyAIzExZWWJlKk2Xp9+hl3/xxml/57i3OZdKRfxZAQl6FarPkR/J+FN6V91YOhH Cw7yDekc6CRwhMgJ+a7m/Ya2PDa2p8Gu8LcISjCl3sPoAjL0eHuuoPw6awIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGwQMQh9iIMCBwz6pOPa8COG2eWIMB8GA1UdIwQY MBaAFIUgt30DW5Ev+kBt/d8p46KWPmkEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaFNDM2ZRTmJrU182UUczOTN5bmpvcFktYVFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni9mMDQ2ODYtMzU5Yi00NzQ0LWI5MzAt MWFmMjc5NjI1ZmQwLzEvaFNDM2ZRTmJrU182UUczOTN5bmpvcFktYVFRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ni9mMDQ2ODYtMzU5Yi00NzQ0LWI5MzAtMWFmMjc5NjI1ZmQw LzEvaFNDM2ZRTmJrU182UUczOTN5bmpvcFktYVFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxfIAk3XB jeFa+EvHPDro1QCGjFcAHOWpqpRK8OOKkkGwho8lt9OfwWTD6bzZKwo1ueJX6qcL Rk23C+J6USbNqcaqh3d8eINOqVPZdHuDA/OdHzr/Lm9/GmeJPhhbr83aSNxJNTpK 5T/NA29kxB5xqEwSKZp4W/wDsmMXpL/53tpOpdBRKqFQnr5qu7Wkxjsld7hFE0SH j52mviJsg7hjOU6lzS0yd5UXdNvPYMUYhLRhwZLY+uCn8l/qUw9irXuq+ZY4uEzD JJcohQlmLuvpoqJCyo5M227p5J9bfDLMAwURS0jWouBB1G1d29cGUbGbxVacb7J6 5byRXmWOHYz05w== -----END CERTIFICATE-----Generated at Fri Dec 26 15:58:08 2025 by rpki-client