This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.mft File: 0HCWDtmg2hybfiRX6ry2YEeNCK4.mft (raw, json) Hash identifier: gqXj9JdYTWKfceFNU934h4UHFVBT47DcriKFmkwz+Xg= Subject key identifier: 9A:D3:3E:AF:11:BC:90:1D:4F:5C:8A:6C:3E:5E:BF:0C:E7:02:E9:82 Authority key identifier: D0:70:96:0E:D9:A0:DA:1C:9B:7E:24:57:EA:BC:B6:60:47:8D:08:AE Certificate issuer: /CN=d070960ed9a0da1c9b7e2457eabcb660478d08ae Certificate serial: 019B1F18ECF3558339A9C238FA00932977AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0HCWDtmg2hybfiRX6ry2YEeNCK4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.mft Manifest number: 0859 Signing time: Sun 14 Dec 2025 23:01:25 +0000 Manifest this update: Sun 14 Dec 2025 23:01:25 +0000 Manifest next update: Mon 15 Dec 2025 23:01:25 +0000 Files and hashes: 1: 0HCWDtmg2hybfiRX6ry2YEeNCK4.crl (hash: 8iSNBSsLYnGNTiWMsb85VbNzrNMYeq0Z1RyUdqw7qvk=) 2: ZYblDAaDwwmnrchNjFrf0zm4tO0.roa (hash: TUJh6mrSVIERTxbeRqv55tj1PiJ2BrobmYQdllbfBL8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.crl rsync://rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.mft rsync://rpki.ripe.net/repository/DEFAULT/0HCWDtmg2hybfiRX6ry2YEeNCK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1f:18:ec:f3:55:83:39:a9:c2:38:fa:00:93:29:77:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d070960ed9a0da1c9b7e2457eabcb660478d08ae Validity Not Before: Dec 14 23:01:25 2025 GMT Not After : Dec 15 23:01:25 2025 GMT Subject: CN=9ad33eaf11bc901d4f5c8a6c3e5ebf0ce702e982 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:4f:1b:cc:99:78:3e:97:fe:94:00:99:8b:d5: 8a:d3:69:04:d7:d1:91:dc:47:9e:ad:b0:b6:58:ab: dd:11:16:2e:40:25:c9:bc:83:10:47:d2:16:ea:73: 21:7a:ea:66:c1:16:25:7c:65:e6:71:b1:5c:d3:14: 79:8f:08:07:96:26:fd:99:a1:22:82:e8:8a:cb:e4: 84:95:d9:e7:b5:56:a2:41:9c:8a:11:4b:61:73:d4: 44:2f:3e:69:f8:cf:a5:63:7b:45:cb:2c:eb:af:00: 15:c9:25:da:e2:47:26:32:8c:7e:2c:eb:98:b1:39: a1:0a:1a:cc:8c:f7:ac:c6:98:08:18:d2:ba:cc:88: 04:32:b8:97:99:ec:a3:8c:c1:e0:04:ed:bf:2b:71: e3:ee:1a:98:8e:f9:4b:04:bf:3e:0f:ca:2e:d9:5c: 14:3f:1d:2b:de:81:b7:7f:36:95:f1:d3:df:ca:1c: f1:ca:5f:d1:8d:37:84:b7:be:16:a2:42:5c:c8:6f: 21:e2:43:8b:39:39:e0:d5:7c:7c:73:5d:0a:53:30: cb:f1:5b:dd:c5:e3:2d:6d:d8:39:3b:b4:09:8a:27: 89:57:8b:e2:19:e0:2d:4d:4c:cd:19:2f:fd:ad:92: 6c:cb:03:67:dd:d5:d8:f9:a0:10:30:03:e6:bb:0d: 0c:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:D3:3E:AF:11:BC:90:1D:4F:5C:8A:6C:3E:5E:BF:0C:E7:02:E9:82 X509v3 Authority Key Identifier: keyid:D0:70:96:0E:D9:A0:DA:1C:9B:7E:24:57:EA:BC:B6:60:47:8D:08:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0HCWDtmg2hybfiRX6ry2YEeNCK4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/03558e-688f-4e1c-a66f-6eefda1108ad/1/0HCWDtmg2hybfiRX6ry2YEeNCK4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6b:cd:8e:17:25:83:e2:2f:14:26:ec:4f:d6:70:7f:69:a1:04: 34:56:d2:68:07:dd:ba:ee:7e:be:3f:5b:10:ae:1c:cd:00:0c: 16:15:48:83:e4:53:3a:9a:dc:81:a1:5b:3b:de:7a:d4:f3:9d: ee:26:d4:e2:63:d9:30:4a:9f:f0:66:9f:ab:bd:10:d2:5f:76: ba:37:51:13:c8:f2:bb:20:1c:52:42:99:ca:e1:56:05:b3:e5: f2:a3:bc:68:04:3e:ad:0a:85:50:0d:72:53:bd:36:ad:56:61: e7:d3:f1:e6:61:ec:8a:11:4e:24:9c:77:27:e3:80:7a:b3:7d: b3:71:ec:43:b1:19:d5:4e:40:31:61:63:27:1f:92:7c:d8:d5: a9:ca:5a:65:26:84:77:27:36:1d:3b:46:c2:77:9f:b8:4c:0e: 91:44:e8:d1:35:f9:34:bf:2c:79:a6:fd:e8:c2:e2:12:3e:fb: b1:22:ab:40:dc:8c:89:11:e9:b2:35:03:f3:65:b0:03:48:35: af:71:18:dc:65:e4:22:a0:b2:59:cc:1a:c0:0d:b7:65:c7:0f: 0e:77:b8:bc:f6:fb:40:59:64:93:d2:06:46:d6:b6:ea:d6:f1: 6c:da:92:30:2b:cf:23:fe:8a:15:31:ed:51:bb:16:00:1b:4e: aa:c5:cf:67 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsfGOzzVYM5qcI4+gCTKXevMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQwNzA5NjBlZDlhMGRhMWM5YjdlMjQ1N2VhYmNiNjYwNDc4 ZDA4YWUwHhcNMjUxMjE0MjMwMTI1WhcNMjUxMjE1MjMwMTI1WjAzMTEwLwYDVQQD Eyg5YWQzM2VhZjExYmM5MDFkNGY1YzhhNmMzZTVlYmYwY2U3MDJlOTgyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv08bzJl4Ppf+lACZi9WK02kE19GR 3EeerbC2WKvdERYuQCXJvIMQR9IW6nMheupmwRYlfGXmcbFc0xR5jwgHlib9maEi guiKy+SEldnntVaiQZyKEUthc9RELz5p+M+lY3tFyyzrrwAVySXa4kcmMox+LOuY sTmhChrMjPesxpgIGNK6zIgEMriXmeyjjMHgBO2/K3Hj7hqYjvlLBL8+D8ou2VwU Px0r3oG3fzaV8dPfyhzxyl/RjTeEt74WokJcyG8h4kOLOTng1Xx8c10KUzDL8Vvd xeMtbdg5O7QJiieJV4viGeAtTUzNGS/9rZJsywNn3dXY+aAQMAPmuw0MywIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJrTPq8RvJAdT1yKbD5evwznAumCMB8GA1UdIwQY MBaAFNBwlg7ZoNocm34kV+q8tmBHjQiuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMEhDV0R0bWcyaHliZmlSWDZyeTJZRWVOQ0s0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Zi8wMzU1OGUtNjg4Zi00ZTFjLWE2NmYt NmVlZmRhMTEwOGFkLzEvMEhDV0R0bWcyaHliZmlSWDZyeTJZRWVOQ0s0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Zi8wMzU1OGUtNjg4Zi00ZTFjLWE2NmYtNmVlZmRhMTEwOGFk LzEvMEhDV0R0bWcyaHliZmlSWDZyeTJZRWVOQ0s0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAa82OFyWD 4i8UJuxP1nB/aaEENFbSaAfduu5+vj9bEK4czQAMFhVIg+RTOprcgaFbO9561POd 7ibU4mPZMEqf8Gafq70Q0l92ujdRE8jyuyAcUkKZyuFWBbPl8qO8aAQ+rQqFUA1y U702rVZh59Px5mHsihFOJJx3J+OAerN9s3HsQ7EZ1U5AMWFjJx+SfNjVqcpaZSaE dyc2HTtGwnefuEwOkUTo0TX5NL8seab96MLiEj77sSKrQNyMiRHpsjUD82WwA0g1 r3EY3GXkIqCyWcwawA23ZccPDne4vPb7QFlkk9IGRta26tbxbNqSMCvPI/6KFTHt UbsWABtOqsXPZw== -----END CERTIFICATE-----Generated at Mon Dec 15 04:17:23 2025 by rpki-client