This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft File: h9mQExRnt30RFit5--OwbKirLTk.mft (raw, json) Hash identifier: de61TqwwLVYrXIRkNpwlZhlJd1FTdx8vr35p+iB0tV4= Subject key identifier: 67:FE:A8:7E:F2:D6:C2:C1:31:B3:89:7D:8E:15:79:D8:CD:61:51:47 Authority key identifier: 87:D9:90:13:14:67:B7:7D:11:16:2B:79:FB:E3:B0:6C:A8:AB:2D:39 Certificate issuer: /CN=87d990131467b77d11162b79fbe3b06ca8ab2d39 Certificate serial: 019B593EC1B5C867B6CCD7FA807824E5459A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h9mQExRnt30RFit5--OwbKirLTk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft Manifest number: 17AA Signing time: Fri 26 Dec 2025 06:00:43 +0000 Manifest this update: Fri 26 Dec 2025 06:00:43 +0000 Manifest next update: Sat 27 Dec 2025 06:00:43 +0000 Files and hashes: 1: BpGdK4vNgugH_zIwdKpTLTonzFI.roa (hash: XCtnPAQsPAejFAsLvLkAMfASQaAA0TQU3hCkuPs7vLM=) 2: MTIEPm-UTrRJO5GkIDAlc0UbzLQ.roa (hash: nVeKeAW6vJuUEVgfnDWMk7tY9g53T2JINJDassyHDH8=) 3: Wye5gSaWAnRJTla5BqJmEtnG-9Y.roa (hash: HTH9ljB4Mkcyd/kw3T48aCpD4TpnuCOzGCXLkvMzc3E=) 4: h9mQExRnt30RFit5--OwbKirLTk.crl (hash: rSlQhAW7vheelYvX9fhFKgBj1UPMCw7evQST4KJ+OkM=) 5: jdzg16c7MaiOnZ9-kVnWfu-f5N0.roa (hash: S7drwu7SeNZ2ONjCLahi8wl52GPXe3l+rn2lLGtlHNA=) 6: yXMAz21dFW6Sf1HAb5KDTn2Yy0g.roa (hash: dMxwivy3WoBvzsdqovQyIDGqZ1EWhn2L/4sgtoX9AUQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.crl rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft rsync://rpki.ripe.net/repository/DEFAULT/h9mQExRnt30RFit5--OwbKirLTk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:3e:c1:b5:c8:67:b6:cc:d7:fa:80:78:24:e5:45:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87d990131467b77d11162b79fbe3b06ca8ab2d39 Validity Not Before: Dec 26 06:00:43 2025 GMT Not After : Dec 27 06:00:43 2025 GMT Subject: CN=67fea87ef2d6c2c131b3897d8e1579d8cd615147 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:32:5f:80:0a:58:59:8e:02:3f:e1:02:a2:58: 87:06:4f:7a:c7:4a:44:0d:55:21:16:9a:bf:bf:0b: 01:db:9e:b8:86:50:d9:59:bf:b5:03:10:83:9d:2e: d7:04:cc:6a:d5:a1:e1:bf:6e:70:38:dc:66:d6:be: cb:4a:12:33:6f:44:4c:bd:e1:91:5c:2f:15:c0:2c: 5a:0d:6d:74:2a:0d:da:16:28:4a:dd:90:67:97:ba: 06:9e:a3:75:60:50:7b:b1:34:68:23:17:b9:f3:bf: 9a:62:c8:f5:85:5b:58:ba:62:bf:84:97:9d:22:37: 94:8b:24:55:c9:3e:32:57:81:67:ca:4c:89:14:b2: d5:0e:37:51:44:3d:b7:04:1a:be:fe:8f:8b:77:2b: 86:68:ee:a1:20:67:88:9c:c9:db:28:8b:4d:03:4c: 31:6c:e7:af:33:28:0a:5f:f0:1d:10:a2:4e:26:49: 07:b2:b0:5b:21:22:94:62:74:c6:cb:6a:79:49:cb: 04:d5:df:4d:ce:93:02:4d:ba:c0:e0:cc:98:a4:18: 4e:a4:f0:d0:15:22:61:a8:18:a2:9e:e4:f3:8f:d6: 16:a9:8b:36:19:e5:b0:1b:72:bd:d5:40:b3:fe:e0: f3:e7:51:1f:43:24:3a:c5:98:dc:99:d2:ac:6a:54: ca:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:FE:A8:7E:F2:D6:C2:C1:31:B3:89:7D:8E:15:79:D8:CD:61:51:47 X509v3 Authority Key Identifier: keyid:87:D9:90:13:14:67:B7:7D:11:16:2B:79:FB:E3:B0:6C:A8:AB:2D:39 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h9mQExRnt30RFit5--OwbKirLTk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/5dea97-7ef7-4db0-94bc-b8e8b34db290/1/h9mQExRnt30RFit5--OwbKirLTk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a9:c6:3f:bc:35:70:1e:e6:ba:2b:5d:d5:0c:91:a7:83:69:3e: c1:19:f3:94:5b:4a:a6:ef:39:2e:b1:e7:34:37:3a:22:2a:44: 0d:24:1a:16:82:b3:08:7f:2e:8d:bf:08:70:43:9b:ed:34:40: ca:a7:25:9d:6c:3b:40:53:a7:2c:15:e0:ff:09:5a:a2:e8:53: 2c:4a:52:e9:1a:f1:df:e5:51:1c:eb:d3:57:a5:ea:9e:67:9b: 68:d0:de:1f:78:4b:5e:33:dc:74:83:74:94:ff:aa:bb:1e:6a: 5e:d7:5d:bd:1d:19:b7:ba:46:c8:73:e8:b3:35:26:0e:0c:7f: f2:a4:ad:20:e1:71:84:e8:b4:c2:48:7b:73:91:36:1d:bd:06: 5b:42:c8:2f:0b:d1:4c:59:e5:00:3e:21:44:03:f8:38:a7:62: 64:ee:83:da:f3:37:7f:ba:80:e3:62:95:72:bd:6b:d9:1c:46: 9d:f4:64:bd:31:c4:a3:26:a7:b5:bd:7f:c6:dc:24:65:21:2b: f3:8e:26:92:1d:f5:28:29:19:a0:fe:bd:6b:9a:92:f3:ec:dc: c2:e7:78:72:0a:6b:d8:0d:f8:10:55:75:04:b1:35:d2:d7:e4: ba:01:da:a1:32:72:b8:8e:1e:73:57:ed:ce:b4:19:02:e9:19: d3:ee:41:c0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZPsG1yGe2zNf6gHgk5UWaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3ZDk5MDEzMTQ2N2I3N2QxMTE2MmI3OWZiZTNiMDZjYThh YjJkMzkwHhcNMjUxMjI2MDYwMDQzWhcNMjUxMjI3MDYwMDQzWjAzMTEwLwYDVQQD Eyg2N2ZlYTg3ZWYyZDZjMmMxMzFiMzg5N2Q4ZTE1NzlkOGNkNjE1MTQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAszJfgApYWY4CP+EColiHBk96x0pE DVUhFpq/vwsB2564hlDZWb+1AxCDnS7XBMxq1aHhv25wONxm1r7LShIzb0RMveGR XC8VwCxaDW10Kg3aFihK3ZBnl7oGnqN1YFB7sTRoIxe587+aYsj1hVtYumK/hJed IjeUiyRVyT4yV4FnykyJFLLVDjdRRD23BBq+/o+LdyuGaO6hIGeInMnbKItNA0wx bOevMygKX/AdEKJOJkkHsrBbISKUYnTGy2p5ScsE1d9NzpMCTbrA4MyYpBhOpPDQ FSJhqBiinuTzj9YWqYs2GeWwG3K91UCz/uDz51EfQyQ6xZjcmdKsalTKlwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGf+qH7y1sLBMbOJfY4VedjNYVFHMB8GA1UdIwQY MBaAFIfZkBMUZ7d9ERYrefvjsGyoqy05MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaDltUUV4Um50MzBSRml0NS0tT3diS2lyTFRrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni81ZGVhOTctN2VmNy00ZGIwLTk0YmMt YjhlOGIzNGRiMjkwLzEvaDltUUV4Um50MzBSRml0NS0tT3diS2lyTFRrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni81ZGVhOTctN2VmNy00ZGIwLTk0YmMtYjhlOGIzNGRiMjkw LzEvaDltUUV4Um50MzBSRml0NS0tT3diS2lyTFRrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqcY/vDVw Hua6K13VDJGng2k+wRnzlFtKpu85LrHnNDc6IipEDSQaFoKzCH8ujb8IcEOb7TRA yqclnWw7QFOnLBXg/wlaouhTLEpS6Rrx3+VRHOvTV6XqnmebaNDeH3hLXjPcdIN0 lP+qux5qXtddvR0Zt7pGyHPoszUmDgx/8qStIOFxhOi0wkh7c5E2Hb0GW0LILwvR TFnlAD4hRAP4OKdiZO6D2vM3f7qA42KVcr1r2RxGnfRkvTHEoyantb1/xtwkZSEr 844mkh31KCkZoP69a5qS8+zcwud4cgpr2A34EFV1BLE10tfkugHaoTJyuI4ec1ft zrQZAukZ0+5BwA== -----END CERTIFICATE-----Generated at Fri Dec 26 15:47:22 2025 by rpki-client