This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.mft File: HYYmdJy_hLz0Lrsphbht7oMOXBQ.mft (raw, json) Hash identifier: Wth6i3uOVY+eCAMlmCK5ujSrUE0GUiByzVmmtrh+lyM= Subject key identifier: F0:02:7A:BA:6E:53:2D:FC:61:FA:D2:A6:5B:A6:00:D9:92:DD:16:F6 Authority key identifier: 1D:86:26:74:9C:BF:84:BC:F4:2E:BB:29:85:B8:6D:EE:83:0E:5C:14 Certificate issuer: /CN=1d8626749cbf84bcf42ebb2985b86dee830e5c14 Certificate serial: 019B0F007F09D115E5678DE253E7A4303CAD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HYYmdJy_hLz0Lrsphbht7oMOXBQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.mft Manifest number: 1778 Signing time: Thu 11 Dec 2025 20:00:49 +0000 Manifest this update: Thu 11 Dec 2025 20:00:49 +0000 Manifest next update: Fri 12 Dec 2025 20:00:49 +0000 Files and hashes: 1: 1a8VrRBxuEM9gIitWA-MTYGiH6k.roa (hash: o75BqB590sV6r1bb5EcguY1B6QE3rDYfVkZNGdgh7Sw=) 2: 5xOfslnPq8-oHcDS47I_csGpD8Q.roa (hash: 4dFQELulj6P8yjTGdV2+DXhC0ieIeLQi8X9meQWips0=) 3: DCocrInE23WH5yhpx0FXxrNY7_Y.roa (hash: O6VU1JCrRAIS6a+yNeHmYk7E8wYytQ8Lu8b/Fc+fOqI=) 4: HYYmdJy_hLz0Lrsphbht7oMOXBQ.crl (hash: NZy0nb4VN2KkZMFdD+Wn0PVEGn2R634YXPlKNoRhYAY=) 5: du6DBdKlb1Cr5Z5mqlctF2rW68k.roa (hash: XaoP28uRsMgk856VCX7c/74Lo2ezwg/z+6hQ43OafIc=) 6: gvR46ytTmKrRi4maCYGnQqf4WI8.roa (hash: ViNC6FNBy9cckM8WILnCXIRpeOOtSFGRhOo8i05WQf8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.crl rsync://rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.mft rsync://rpki.ripe.net/repository/DEFAULT/HYYmdJy_hLz0Lrsphbht7oMOXBQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 20:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0f:00:7f:09:d1:15:e5:67:8d:e2:53:e7:a4:30:3c:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1d8626749cbf84bcf42ebb2985b86dee830e5c14 Validity Not Before: Dec 11 20:00:49 2025 GMT Not After : Dec 12 20:00:49 2025 GMT Subject: CN=f0027aba6e532dfc61fad2a65ba600d992dd16f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:23:e3:31:94:65:52:5e:75:94:95:ec:50:1c: 45:b7:3e:e7:91:d3:03:a3:05:13:d2:50:9f:39:3b: 08:57:27:0f:e7:34:16:2b:e0:e8:bc:84:2c:b7:ab: 22:47:30:63:3a:4e:5d:02:77:46:7e:b1:cd:ca:12: cf:9b:c7:8a:ea:e2:74:0d:c4:53:10:76:40:a8:42: 40:51:1c:c6:55:06:73:c0:2e:4c:35:b6:0c:eb:b3: d0:45:29:c6:a3:7c:aa:30:57:dc:e4:09:2a:8b:1c: 4d:36:20:c6:74:97:ef:dc:79:ce:6b:d1:2c:01:2b: fd:17:7e:3f:be:45:32:5c:91:2b:2c:f6:57:43:a6: 4d:0a:8e:64:79:6e:01:31:c8:2a:f7:ab:d3:6e:a4: 4d:c8:67:5f:32:8b:2a:7b:3b:30:62:e3:ca:b3:a9: b9:58:af:16:2a:ff:49:6c:ea:ca:aa:31:0f:1f:20: f1:38:c3:da:a1:8e:06:c4:64:c1:fd:6a:70:e4:fd: 4a:c9:03:5f:20:9a:b8:8b:89:00:38:02:55:4a:23: 25:94:9d:cd:44:54:c4:ae:65:54:cd:b5:d5:89:70: 6e:7e:c2:6b:40:d5:bb:b1:9a:9d:16:ce:cf:73:3a: ec:8a:d7:75:f1:97:1e:2d:69:17:46:13:6b:a7:cd: a5:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:02:7A:BA:6E:53:2D:FC:61:FA:D2:A6:5B:A6:00:D9:92:DD:16:F6 X509v3 Authority Key Identifier: keyid:1D:86:26:74:9C:BF:84:BC:F4:2E:BB:29:85:B8:6D:EE:83:0E:5C:14 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HYYmdJy_hLz0Lrsphbht7oMOXBQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7c:51:35:26:25:9a:70:8b:c3:9f:a6:0e:3e:40:d7:d2:c5:4e: 55:49:b0:a0:91:24:b5:40:79:90:ac:ed:33:a7:bc:a4:0d:70: f4:3b:09:28:78:9e:af:dc:0b:52:4e:8f:5c:50:f3:dc:e9:e5: b6:6a:11:ed:7d:20:c8:8e:ea:39:d2:55:35:6b:ac:1e:14:53: ac:17:35:73:50:e1:bb:dd:1c:a6:39:e7:96:a5:d9:f4:09:b3: 48:e4:94:4c:ab:80:c4:73:44:74:1c:ec:b4:da:51:4b:8e:a9: 62:f0:d6:81:e2:04:4f:90:7f:40:9f:c9:ef:15:8a:ec:31:68: af:29:6b:ed:ed:e1:ef:f8:c5:bb:62:43:ab:68:ec:97:4d:ac: 84:a7:38:3e:25:37:10:7e:89:ea:32:20:2e:04:53:58:1f:61: e0:13:fd:fb:b8:0b:51:af:fa:d6:d2:ab:ac:6f:f2:96:c9:f9: 9f:29:bd:64:34:14:77:59:61:7f:60:39:70:83:45:ca:7e:a2: 9a:64:17:c8:51:22:0c:40:56:52:38:23:d2:6b:3c:e0:e8:25: 6d:55:31:77:e2:5c:df:a6:d5:d5:40:ef:20:7c:0d:9d:b6:2c: 86:49:86:02:1b:a7:53:44:a8:1c:38:21:58:8d:ce:34:63:13: b6:de:f6:36 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsPAH8J0RXlZ43iU+ekMDytMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkODYyNjc0OWNiZjg0YmNmNDJlYmIyOTg1Yjg2ZGVlODMw ZTVjMTQwHhcNMjUxMjExMjAwMDQ5WhcNMjUxMjEyMjAwMDQ5WjAzMTEwLwYDVQQD EyhmMDAyN2FiYTZlNTMyZGZjNjFmYWQyYTY1YmE2MDBkOTkyZGQxNmY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApiPjMZRlUl51lJXsUBxFtz7nkdMD owUT0lCfOTsIVycP5zQWK+DovIQst6siRzBjOk5dAndGfrHNyhLPm8eK6uJ0DcRT EHZAqEJAURzGVQZzwC5MNbYM67PQRSnGo3yqMFfc5AkqixxNNiDGdJfv3HnOa9Es ASv9F34/vkUyXJErLPZXQ6ZNCo5keW4BMcgq96vTbqRNyGdfMosqezswYuPKs6m5 WK8WKv9JbOrKqjEPHyDxOMPaoY4GxGTB/Wpw5P1KyQNfIJq4i4kAOAJVSiMllJ3N RFTErmVUzbXViXBufsJrQNW7sZqdFs7Pczrsitd18ZceLWkXRhNrp82lFwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPACerpuUy38YfrSplumANmS3Rb2MB8GA1UdIwQY MBaAFB2GJnScv4S89C67KYW4be6DDlwUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSFlZbWRKeV9oTHowTHJzcGhiaHQ3b01PWEJRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny85NTFjOGUtNGE4Ni00YzhlLTk5ODYt MGJmYmFkNDg0OWNkLzEvSFlZbWRKeV9oTHowTHJzcGhiaHQ3b01PWEJRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ny85NTFjOGUtNGE4Ni00YzhlLTk5ODYtMGJmYmFkNDg0OWNk LzEvSFlZbWRKeV9oTHowTHJzcGhiaHQ3b01PWEJRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfFE1JiWa cIvDn6YOPkDX0sVOVUmwoJEktUB5kKztM6e8pA1w9DsJKHier9wLUk6PXFDz3Onl tmoR7X0gyI7qOdJVNWusHhRTrBc1c1Dhu90cpjnnlqXZ9AmzSOSUTKuAxHNEdBzs tNpRS46pYvDWgeIET5B/QJ/J7xWK7DForylr7e3h7/jFu2JDq2jsl02shKc4PiU3 EH6J6jIgLgRTWB9h4BP9+7gLUa/61tKrrG/ylsn5nym9ZDQUd1lhf2A5cINFyn6i mmQXyFEiDEBWUjgj0ms84OglbVUxd+Jc36bV1UDvIHwNnbYshkmGAhunU0SoHDgh WI3ONGMTtt72Ng== -----END CERTIFICATE-----Generated at Fri Dec 12 05:33:02 2025 by rpki-client