This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/001406-2e1f-4aeb-90a7-7528350d4c13/1/ha9TEIBex1YaGiL5yJDJcx-23r8.mft File: ha9TEIBex1YaGiL5yJDJcx-23r8.mft (raw, json) Hash identifier: hzCr05TjA8rPuWO9CWzYVZAZcAj+UWOvlP4JxFhWM7c= Subject key identifier: 45:53:10:F5:CD:A7:F0:F0:FA:82:91:54:7B:44:2F:97:B2:02:8F:4A Authority key identifier: 85:AF:53:10:80:5E:C7:56:1A:1A:22:F9:C8:90:C9:73:1F:B6:DE:BF Certificate issuer: /CN=85af5310805ec7561a1a22f9c890c9731fb6debf Certificate serial: 019B33E902906B8B2432F559F7466B27E407 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ha9TEIBex1YaGiL5yJDJcx-23r8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/001406-2e1f-4aeb-90a7-7528350d4c13/1/ha9TEIBex1YaGiL5yJDJcx-23r8.mft Manifest number: 1787 Signing time: Fri 19 Dec 2025 00:01:07 +0000 Manifest this update: Fri 19 Dec 2025 00:01:07 +0000 Manifest next update: Sat 20 Dec 2025 00:01:07 +0000 Files and hashes: 1: Gumma7CSH0QJDyYLGYO8JVucFbw.roa (hash: AHbFRK4oddEvM9hnH4lxRaSLOWlIxIkwfpWyReC2ymY=) 2: ha9TEIBex1YaGiL5yJDJcx-23r8.crl (hash: MgSEsCga09Jhh6RhdgYcsie1QZv4LIHdDlivPthsntE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/001406-2e1f-4aeb-90a7-7528350d4c13/1/ha9TEIBex1YaGiL5yJDJcx-23r8.crl rsync://rpki.ripe.net/repository/DEFAULT/94/001406-2e1f-4aeb-90a7-7528350d4c13/1/ha9TEIBex1YaGiL5yJDJcx-23r8.mft rsync://rpki.ripe.net/repository/DEFAULT/ha9TEIBex1YaGiL5yJDJcx-23r8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 00:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:33:e9:02:90:6b:8b:24:32:f5:59:f7:46:6b:27:e4:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85af5310805ec7561a1a22f9c890c9731fb6debf Validity Not Before: Dec 19 00:01:07 2025 GMT Not After : Dec 20 00:01:07 2025 GMT Subject: CN=455310f5cda7f0f0fa8291547b442f97b2028f4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:1e:39:3b:ef:cc:68:e0:b9:c4:22:0d:04:3b: 9b:99:54:1a:9a:fc:26:df:7f:35:c6:f8:d8:40:f9: e5:bb:1c:83:cd:64:98:40:cf:ad:47:24:8d:35:2a: 69:3b:46:a5:09:e5:38:b3:54:9a:f7:ff:47:b7:5b: f0:10:4f:61:e4:b5:bf:0e:61:a5:61:49:4a:1c:5f: f3:ce:db:08:42:54:06:a6:ec:3d:b9:61:57:1b:c5: b8:4e:20:27:db:44:64:f2:03:f5:56:a6:56:47:10: 25:2c:32:c1:87:1c:94:af:02:ca:d8:b5:2a:87:78: c2:38:5d:69:e8:bf:c3:14:b4:bc:a6:8a:97:a2:4e: 28:21:6e:6d:51:cc:a7:68:a5:8c:e8:64:4f:9d:22: 7a:68:56:7c:ca:e1:ff:46:7a:16:69:a4:b4:6a:f9: a5:95:81:5a:78:4f:de:72:33:07:cd:29:06:b5:29: 69:3c:11:86:c6:37:c7:5e:82:54:eb:82:be:58:c1: 9c:93:14:31:3d:38:22:d2:99:c1:96:80:9e:e9:39: b7:e2:ca:68:39:ef:a0:0b:ed:5f:e2:37:7d:21:e3: b9:23:b0:b4:57:0a:af:4a:77:fe:32:bf:c5:b4:5a: c1:37:8f:34:aa:bf:a9:65:81:4c:45:ac:ee:94:54: 45:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:53:10:F5:CD:A7:F0:F0:FA:82:91:54:7B:44:2F:97:B2:02:8F:4A X509v3 Authority Key Identifier: keyid:85:AF:53:10:80:5E:C7:56:1A:1A:22:F9:C8:90:C9:73:1F:B6:DE:BF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ha9TEIBex1YaGiL5yJDJcx-23r8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/001406-2e1f-4aeb-90a7-7528350d4c13/1/ha9TEIBex1YaGiL5yJDJcx-23r8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/94/001406-2e1f-4aeb-90a7-7528350d4c13/1/ha9TEIBex1YaGiL5yJDJcx-23r8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9a:0a:6a:b4:ad:1c:f1:9e:e3:18:c3:27:66:1a:2e:c7:10:4f: 1c:62:1c:8f:e1:ac:86:0e:4d:a5:6b:56:49:af:94:0f:d7:55: 4d:b4:04:b4:bb:12:4f:2e:5d:96:55:19:e9:ea:ee:30:f7:b5: 9b:50:06:b9:8a:09:9e:41:3d:ea:96:41:0b:a1:12:3f:b9:47: c5:f8:b2:0c:43:03:81:cd:a6:04:bf:06:5b:c7:b6:03:34:2d: 3e:93:70:54:b4:3f:2a:ca:f7:dc:43:d9:49:ad:b7:cc:cf:01: 33:9b:99:e3:06:82:9f:81:17:df:19:12:c5:9a:de:79:25:8e: 05:29:b1:a7:30:61:9d:01:95:6e:aa:3f:30:f3:d1:c7:7e:76: a4:8b:4e:8e:72:9c:52:fe:a7:7b:66:17:91:dc:b7:1b:8f:3f: b4:33:af:5c:b0:0d:ad:e1:1d:93:a5:5a:2b:61:c3:f3:42:1e: 43:da:fb:b0:32:2f:b6:c6:2a:4a:d6:d0:61:43:8b:b1:41:f1: c3:3d:f6:8c:dc:de:24:07:47:70:f2:80:0e:d9:f5:c6:7e:92: 3d:71:84:36:95:e6:ca:f5:ad:5f:7a:b3:de:a3:65:92:4c:63: 40:80:62:b4:98:7b:9b:cc:76:fa:e1:58:e3:88:cc:29:93:74: 4c:1f:f5:27 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsz6QKQa4skMvVZ90ZrJ+QHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1YWY1MzEwODA1ZWM3NTYxYTFhMjJmOWM4OTBjOTczMWZi NmRlYmYwHhcNMjUxMjE5MDAwMTA3WhcNMjUxMjIwMDAwMTA3WjAzMTEwLwYDVQQD Eyg0NTUzMTBmNWNkYTdmMGYwZmE4MjkxNTQ3YjQ0MmY5N2IyMDI4ZjRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqB45O+/MaOC5xCINBDubmVQamvwm 3381xvjYQPnluxyDzWSYQM+tRySNNSppO0alCeU4s1Sa9/9Ht1vwEE9h5LW/DmGl YUlKHF/zztsIQlQGpuw9uWFXG8W4TiAn20Rk8gP1VqZWRxAlLDLBhxyUrwLK2LUq h3jCOF1p6L/DFLS8poqXok4oIW5tUcynaKWM6GRPnSJ6aFZ8yuH/RnoWaaS0avml lYFaeE/ecjMHzSkGtSlpPBGGxjfHXoJU64K+WMGckxQxPTgi0pnBloCe6Tm34spo Oe+gC+1f4jd9IeO5I7C0VwqvSnf+Mr/FtFrBN480qr+pZYFMRazulFRF0wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEVTEPXNp/Dw+oKRVHtEL5eyAo9KMB8GA1UdIwQY MBaAFIWvUxCAXsdWGhoi+ciQyXMftt6/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGE5VEVJQmV4MVlhR2lMNXlKREpjeC0yM3I4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC8wMDE0MDYtMmUxZi00YWViLTkwYTct NzUyODM1MGQ0YzEzLzEvaGE5VEVJQmV4MVlhR2lMNXlKREpjeC0yM3I4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NC8wMDE0MDYtMmUxZi00YWViLTkwYTctNzUyODM1MGQ0YzEz LzEvaGE5VEVJQmV4MVlhR2lMNXlKREpjeC0yM3I4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmgpqtK0c 8Z7jGMMnZhouxxBPHGIcj+Gshg5NpWtWSa+UD9dVTbQEtLsSTy5dllUZ6eruMPe1 m1AGuYoJnkE96pZBC6ESP7lHxfiyDEMDgc2mBL8GW8e2AzQtPpNwVLQ/Ksr33EPZ Sa23zM8BM5uZ4waCn4EX3xkSxZreeSWOBSmxpzBhnQGVbqo/MPPRx352pItOjnKc Uv6ne2YXkdy3G48/tDOvXLANreEdk6VaK2HD80IeQ9r7sDIvtsYqStbQYUOLsUHx wz32jNzeJAdHcPKADtn1xn6SPXGENpXmyvWtX3qz3qNlkkxjQIBitJh7m8x2+uFY 44jMKZN0TB/1Jw== -----END CERTIFICATE-----Generated at Fri Dec 19 08:13:04 2025 by rpki-client