This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/6a9682-201b-4e01-ba09-07474524ef9a/1/8HH00RnQt0-2bjen74eNRJ1U3cg.mft File: 8HH00RnQt0-2bjen74eNRJ1U3cg.mft (raw, json) Hash identifier: bTK9SS/3sxaXWBbCgwhMUKdxIsr1ofvNpAmmZ+iTTCg= Subject key identifier: F4:47:A7:0B:9D:BF:DC:7A:51:B8:7C:26:2D:8E:7E:01:94:B5:49:B3 Authority key identifier: F0:71:F4:D1:19:D0:B7:4F:B6:6E:37:A7:EF:87:8D:44:9D:54:DD:C8 Certificate issuer: /CN=f071f4d119d0b74fb66e37a7ef878d449d54ddc8 Certificate serial: 019B1013810737F70407E42BB0261A05ABCA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8HH00RnQt0-2bjen74eNRJ1U3cg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/6a9682-201b-4e01-ba09-07474524ef9a/1/8HH00RnQt0-2bjen74eNRJ1U3cg.mft Manifest number: 1773 Signing time: Fri 12 Dec 2025 01:01:12 +0000 Manifest this update: Fri 12 Dec 2025 01:01:12 +0000 Manifest next update: Sat 13 Dec 2025 01:01:12 +0000 Files and hashes: 1: 8HH00RnQt0-2bjen74eNRJ1U3cg.crl (hash: VAx/6GHXHfff3zBlwvcSjaB1SmFtA3SqQqWslalZ4LQ=) 2: uzaT_8pYRSOjnRLn-VDCRDMHjkw.roa (hash: BTL6zzsEp/zMhbPEtqOYQnpjz6sJkx1lWw25F56hHZw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/6a9682-201b-4e01-ba09-07474524ef9a/1/8HH00RnQt0-2bjen74eNRJ1U3cg.crl rsync://rpki.ripe.net/repository/DEFAULT/57/6a9682-201b-4e01-ba09-07474524ef9a/1/8HH00RnQt0-2bjen74eNRJ1U3cg.mft rsync://rpki.ripe.net/repository/DEFAULT/8HH00RnQt0-2bjen74eNRJ1U3cg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 19:27:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:10:13:81:07:37:f7:04:07:e4:2b:b0:26:1a:05:ab:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f071f4d119d0b74fb66e37a7ef878d449d54ddc8 Validity Not Before: Dec 12 01:01:12 2025 GMT Not After : Dec 13 01:01:12 2025 GMT Subject: CN=f447a70b9dbfdc7a51b87c262d8e7e0194b549b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:6d:7f:f5:00:4f:fa:57:67:2b:43:77:87:e7: d8:c1:d0:f3:09:06:02:dc:c6:cd:7f:83:4a:e5:1b: 61:7b:5d:7e:e6:b0:62:90:aa:f5:44:fe:88:65:fd: f2:02:3e:b9:1d:1d:08:6d:a0:c5:8d:d6:9b:1c:ae: 70:9a:cd:46:18:2c:bb:b9:fa:2e:51:12:dd:8e:de: 8d:38:30:bb:a3:53:57:e2:07:cc:ad:1a:91:69:0c: 94:a0:fb:a9:3f:82:8f:2d:02:b8:e5:b7:6a:fc:9e: af:8b:87:b4:1a:9f:7e:5c:d4:c3:35:d4:29:0b:4f: 27:5c:b1:b5:7b:97:4b:7d:cc:9d:5d:1f:20:77:ca: af:80:c0:19:6f:e3:5b:e1:f5:6e:16:d5:d6:8a:b9: 6b:82:6f:9f:d6:5f:7c:c7:b8:13:82:58:1a:3e:a2: 18:e0:49:ce:0c:19:a3:db:10:89:55:bd:d5:7e:28: 76:20:40:23:64:fd:2b:68:2f:c1:d1:19:92:6a:78: 50:1c:01:41:e6:28:e3:7a:31:27:a5:10:df:1f:7d: 62:d3:3b:9e:40:75:e6:20:d0:da:7f:bc:d9:7d:7e: dd:ac:47:93:0f:0f:48:be:c0:fc:3a:5f:e0:aa:78: dd:19:78:54:b1:e8:19:ae:91:ff:bf:be:1a:c1:3f: 69:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:47:A7:0B:9D:BF:DC:7A:51:B8:7C:26:2D:8E:7E:01:94:B5:49:B3 X509v3 Authority Key Identifier: keyid:F0:71:F4:D1:19:D0:B7:4F:B6:6E:37:A7:EF:87:8D:44:9D:54:DD:C8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8HH00RnQt0-2bjen74eNRJ1U3cg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/6a9682-201b-4e01-ba09-07474524ef9a/1/8HH00RnQt0-2bjen74eNRJ1U3cg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/57/6a9682-201b-4e01-ba09-07474524ef9a/1/8HH00RnQt0-2bjen74eNRJ1U3cg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:da:66:c3:6c:df:7f:e1:f6:82:6e:d8:e3:21:21:e1:f9:fe: 37:e9:f4:90:c3:75:11:6f:f7:42:1d:1a:3e:7b:1e:40:bd:9c: e0:d9:7b:be:1a:c7:7e:27:49:45:52:60:b0:ff:20:fd:62:9d: 6f:64:e6:fd:ee:4a:99:fd:71:af:59:8f:ed:b0:e7:a1:d6:43: 3c:cd:30:9b:70:0b:ad:71:90:56:8c:3b:ec:3d:f3:e2:e1:eb: 13:1e:f2:8a:1b:f9:1c:f2:28:59:40:b0:2f:fa:5a:31:f6:a2: 16:e2:db:12:70:e8:66:37:2f:69:63:00:b4:77:52:a2:3b:14: e1:20:bd:e6:c0:72:39:3c:eb:e5:78:c3:ac:db:d1:33:8e:9e: 8f:01:bb:d8:ba:b7:73:69:21:26:40:76:56:d8:3c:12:b2:c4: e2:77:05:22:26:6e:81:d2:1d:f2:58:97:b4:3e:d7:9d:44:95: bc:84:53:0c:fc:70:e2:a3:58:2c:e7:9c:c0:c7:36:e1:1d:af: d7:8a:b1:21:8e:06:87:e9:94:be:31:25:c5:dd:12:19:9f:e7: fe:f2:7d:d1:c0:eb:77:b2:e6:05:ae:b2:f1:da:14:69:43:3c: 13:58:e7:cf:36:83:04:f3:30:24:fc:a5:af:a9:b1:ca:b5:55: a4:d5:2f:d6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsQE4EHN/cEB+QrsCYaBavKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYwNzFmNGQxMTlkMGI3NGZiNjZlMzdhN2VmODc4ZDQ0OWQ1 NGRkYzgwHhcNMjUxMjEyMDEwMTEyWhcNMjUxMjEzMDEwMTEyWjAzMTEwLwYDVQQD EyhmNDQ3YTcwYjlkYmZkYzdhNTFiODdjMjYyZDhlN2UwMTk0YjU0OWIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0W1/9QBP+ldnK0N3h+fYwdDzCQYC 3MbNf4NK5Rthe11+5rBikKr1RP6IZf3yAj65HR0IbaDFjdabHK5wms1GGCy7ufou URLdjt6NODC7o1NX4gfMrRqRaQyUoPupP4KPLQK45bdq/J6vi4e0Gp9+XNTDNdQp C08nXLG1e5dLfcydXR8gd8qvgMAZb+Nb4fVuFtXWirlrgm+f1l98x7gTglgaPqIY 4EnODBmj2xCJVb3Vfih2IEAjZP0raC/B0RmSanhQHAFB5ijjejEnpRDfH31i0zue QHXmINDaf7zZfX7drEeTDw9IvsD8Ol/gqnjdGXhUsegZrpH/v74awT9pMwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPRHpwudv9x6Ubh8Ji2OfgGUtUmzMB8GA1UdIwQY MBaAFPBx9NEZ0LdPtm43p++HjUSdVN3IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOEhIMDBSblF0MC0yYmplbjc0ZU5SSjFVM2NnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny82YTk2ODItMjAxYi00ZTAxLWJhMDkt MDc0NzQ1MjRlZjlhLzEvOEhIMDBSblF0MC0yYmplbjc0ZU5SSjFVM2NnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ny82YTk2ODItMjAxYi00ZTAxLWJhMDktMDc0NzQ1MjRlZjlh LzEvOEhIMDBSblF0MC0yYmplbjc0ZU5SSjFVM2NnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYtpmw2zf f+H2gm7Y4yEh4fn+N+n0kMN1EW/3Qh0aPnseQL2c4Nl7vhrHfidJRVJgsP8g/WKd b2Tm/e5Kmf1xr1mP7bDnodZDPM0wm3ALrXGQVow77D3z4uHrEx7yihv5HPIoWUCw L/paMfaiFuLbEnDoZjcvaWMAtHdSojsU4SC95sByOTzr5XjDrNvRM46ejwG72Lq3 c2khJkB2Vtg8ErLE4ncFIiZugdId8liXtD7XnUSVvIRTDPxw4qNYLOecwMc24R2v 14qxIY4Gh+mUvjElxd0SGZ/n/vJ90cDrd7LmBa6y8doUaUM8E1jnzzaDBPMwJPyl r6mxyrVVpNUv1g== -----END CERTIFICATE-----Generated at Fri Dec 12 03:42:52 2025 by rpki-client