This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/0a9a33-99dc-4b92-8ced-836ac97c01bb/1/hXosdK9aRNmq5HoLiUJfpPf8fBk.mft File: hXosdK9aRNmq5HoLiUJfpPf8fBk.mft (raw, json) Hash identifier: Dr2h6SNNJzbwCyzAQ69XZsJGbZoJtXOMtQqlaW5mYVI= Subject key identifier: 5B:C2:4F:D9:30:2A:D1:95:42:18:D2:49:87:78:A1:97:6B:2B:78:91 Authority key identifier: 85:7A:2C:74:AF:5A:44:D9:AA:E4:7A:0B:89:42:5F:A4:F7:FC:7C:19 Certificate issuer: /CN=857a2c74af5a44d9aae47a0b89425fa4f7fc7c19 Certificate serial: 019B10148601E8D20F1DF22452DDAE9E744A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hXosdK9aRNmq5HoLiUJfpPf8fBk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/0a9a33-99dc-4b92-8ced-836ac97c01bb/1/hXosdK9aRNmq5HoLiUJfpPf8fBk.mft Manifest number: 1771 Signing time: Fri 12 Dec 2025 01:02:19 +0000 Manifest this update: Fri 12 Dec 2025 01:02:19 +0000 Manifest next update: Sat 13 Dec 2025 01:02:19 +0000 Files and hashes: 1: 2ocBNxmBQmUkoRPjhlhWgOYgiMs.roa (hash: vHBT5RZYwMgp/JaFcd7djyz4ta6PJ5W0BzdunzoRb3k=) 2: GLrf-4476lN-mWAGatfWehKzDpo.roa (hash: UBhmVRo+40lzdmL/jOTwvI0uo4yogaRRq+nqy+WHQ4s=) 3: bAf4pYlPQH01VJAbtj0tnC5SXTs.roa (hash: Is6byuQI/ji+q5pWZ94ZQraf9joydkFIunAau5zwEaA=) 4: hXosdK9aRNmq5HoLiUJfpPf8fBk.crl (hash: 08EUQ7662a5V9beb1O6uamlS9fI8BwhGDdxQgE+EcfQ=) 5: t7q0gRp_Rjm1TKofQQJGVXRxiQ4.roa (hash: 8i0M18hNbssP3r3dcfAr+F0zW7Rf4keL31Nq8c6T/TQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/0a9a33-99dc-4b92-8ced-836ac97c01bb/1/hXosdK9aRNmq5HoLiUJfpPf8fBk.crl rsync://rpki.ripe.net/repository/DEFAULT/93/0a9a33-99dc-4b92-8ced-836ac97c01bb/1/hXosdK9aRNmq5HoLiUJfpPf8fBk.mft rsync://rpki.ripe.net/repository/DEFAULT/hXosdK9aRNmq5HoLiUJfpPf8fBk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:10:14:86:01:e8:d2:0f:1d:f2:24:52:dd:ae:9e:74:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=857a2c74af5a44d9aae47a0b89425fa4f7fc7c19 Validity Not Before: Dec 12 01:02:19 2025 GMT Not After : Dec 13 01:02:19 2025 GMT Subject: CN=5bc24fd9302ad1954218d2498778a1976b2b7891 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:59:0a:68:51:d3:80:75:cf:f5:5f:57:27:63: 01:e6:44:a0:4d:cf:ad:5c:1d:e6:04:bc:61:bf:ac: fb:cd:ce:5a:8b:4a:55:3f:21:e0:d3:a4:00:cb:9e: 7c:3e:19:2b:1c:3c:57:ab:67:0b:97:f4:91:f0:2f: e6:6d:39:5b:17:90:59:18:a2:34:fe:a4:54:10:1e: 68:e3:f1:5d:7f:38:7b:4c:f2:25:fe:80:78:a2:69: 13:d4:3a:06:33:21:34:9a:41:79:7b:f5:e3:cc:71: c4:c2:49:16:d0:c7:37:80:35:50:81:d2:ba:f7:de: 5b:31:ac:43:d9:65:2c:ab:06:18:9d:5c:ca:93:c9: 7e:d6:c4:4a:93:53:d1:4d:6b:4c:d6:34:e3:94:29: a1:38:92:14:5c:f7:e8:2c:9b:6d:be:c9:25:39:e6: ba:ed:3e:60:6c:8a:e2:83:a7:5b:2c:97:dc:41:ad: ac:1c:71:cb:57:2d:76:a0:be:5f:73:66:6f:42:e9: 19:ed:fb:c5:8a:d9:fe:a1:12:8c:5d:27:86:8a:9e: fb:13:9c:78:db:78:20:9e:1d:14:ba:0c:8c:0d:1c: 82:9d:47:ef:f1:c9:57:a0:0c:a2:b9:39:ad:e1:2a: 49:ac:88:88:fd:49:49:ef:b9:be:92:38:53:5b:71: 09:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:C2:4F:D9:30:2A:D1:95:42:18:D2:49:87:78:A1:97:6B:2B:78:91 X509v3 Authority Key Identifier: keyid:85:7A:2C:74:AF:5A:44:D9:AA:E4:7A:0B:89:42:5F:A4:F7:FC:7C:19 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hXosdK9aRNmq5HoLiUJfpPf8fBk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/0a9a33-99dc-4b92-8ced-836ac97c01bb/1/hXosdK9aRNmq5HoLiUJfpPf8fBk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/93/0a9a33-99dc-4b92-8ced-836ac97c01bb/1/hXosdK9aRNmq5HoLiUJfpPf8fBk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:49:f7:b4:f2:b1:01:5f:b6:7d:32:96:01:2f:6d:e1:7d:b4: 7c:e0:51:dc:61:e0:5f:d8:8d:91:51:08:7c:85:d1:9d:d3:f8: e7:1a:22:7b:38:dc:91:5b:78:df:0e:60:5d:fd:6e:b9:ca:98: b2:37:7a:b2:94:9f:57:6b:6f:e2:80:76:c1:f0:dc:5f:ee:5d: ef:39:c1:e0:c6:ea:51:27:f7:0c:4c:dc:cd:71:71:b1:9c:c8: 6f:d3:5a:a2:3e:70:8f:fc:1d:2a:4b:07:63:f7:94:1d:8f:0b: eb:53:5f:ea:e8:82:d4:51:d7:8d:00:9c:eb:4c:83:72:68:95: fe:42:b7:5f:d4:f7:31:ad:dd:13:8a:79:af:a8:36:64:f7:20: 8d:c6:25:ae:00:dc:7d:d4:f7:a1:67:c6:4d:66:69:87:c2:ea: c2:64:c1:e3:1c:65:34:91:e7:15:99:15:3d:e8:92:fc:3e:80: 24:86:b5:24:fe:e1:76:06:79:e9:98:6a:cb:d9:36:f1:86:59: fa:7c:c1:cd:b7:fb:c6:d5:4c:4b:3e:a4:99:ed:5b:d0:b1:bf: b8:5b:70:5e:0b:3f:52:b2:f8:2f:7d:e1:04:25:7d:d0:14:08: d1:cf:41:ca:9e:0b:38:1a:12:10:17:57:67:3a:0b:0f:3f:17: 35:61:4b:b9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsQFIYB6NIPHfIkUt2unnRKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1N2EyYzc0YWY1YTQ0ZDlhYWU0N2EwYjg5NDI1ZmE0Zjdm YzdjMTkwHhcNMjUxMjEyMDEwMjE5WhcNMjUxMjEzMDEwMjE5WjAzMTEwLwYDVQQD Eyg1YmMyNGZkOTMwMmFkMTk1NDIxOGQyNDk4Nzc4YTE5NzZiMmI3ODkxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkVkKaFHTgHXP9V9XJ2MB5kSgTc+t XB3mBLxhv6z7zc5ai0pVPyHg06QAy558PhkrHDxXq2cLl/SR8C/mbTlbF5BZGKI0 /qRUEB5o4/Fdfzh7TPIl/oB4omkT1DoGMyE0mkF5e/XjzHHEwkkW0Mc3gDVQgdK6 995bMaxD2WUsqwYYnVzKk8l+1sRKk1PRTWtM1jTjlCmhOJIUXPfoLJttvsklOea6 7T5gbIrig6dbLJfcQa2sHHHLVy12oL5fc2ZvQukZ7fvFitn+oRKMXSeGip77E5x4 23ggnh0UugyMDRyCnUfv8clXoAyiuTmt4SpJrIiI/UlJ77m+kjhTW3EJqQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFvCT9kwKtGVQhjSSYd4oZdrK3iRMB8GA1UdIwQY MBaAFIV6LHSvWkTZquR6C4lCX6T3/HwZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaFhvc2RLOWFSTm1xNUhvTGlVSmZwUGY4ZkJrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85My8wYTlhMzMtOTlkYy00YjkyLThjZWQt ODM2YWM5N2MwMWJiLzEvaFhvc2RLOWFSTm1xNUhvTGlVSmZwUGY4ZkJrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85My8wYTlhMzMtOTlkYy00YjkyLThjZWQtODM2YWM5N2MwMWJi LzEvaFhvc2RLOWFSTm1xNUhvTGlVSmZwUGY4ZkJrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjkn3tPKx AV+2fTKWAS9t4X20fOBR3GHgX9iNkVEIfIXRndP45xoiezjckVt43w5gXf1uucqY sjd6spSfV2tv4oB2wfDcX+5d7znB4MbqUSf3DEzczXFxsZzIb9Naoj5wj/wdKksH Y/eUHY8L61Nf6uiC1FHXjQCc60yDcmiV/kK3X9T3Ma3dE4p5r6g2ZPcgjcYlrgDc fdT3oWfGTWZph8LqwmTB4xxlNJHnFZkVPeiS/D6AJIa1JP7hdgZ56Zhqy9k28YZZ +nzBzbf7xtVMSz6kme1b0LG/uFtwXgs/UrL4L33hBCV90BQI0c9Byp4LOBoSEBdX ZzoLDz8XNWFLuQ== -----END CERTIFICATE-----Generated at Fri Dec 12 06:20:00 2025 by rpki-client