This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft File: hbYRoLfUM0t6I5XozOew48m4OOg.mft (raw, json) Hash identifier: RvqcgaCxgUi8ZV8CjFT7yPQY5iAArL0MOoXbiUkAjjA= Subject key identifier: CC:3F:8B:3D:B0:4F:5C:68:1A:5E:52:55:08:B0:E0:33:96:CB:6A:54 Authority key identifier: 85:B6:11:A0:B7:D4:33:4B:7A:23:95:E8:CC:E7:B0:E3:C9:B8:38:E8 Certificate issuer: /CN=85b611a0b7d4334b7a2395e8cce7b0e3c9b838e8 Certificate serial: 019B25511D91E14C0752C28BE7F75448FF50 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft Manifest number: 1284 Signing time: Tue 16 Dec 2025 04:00:31 +0000 Manifest this update: Tue 16 Dec 2025 04:00:31 +0000 Manifest next update: Wed 17 Dec 2025 04:00:31 +0000 Files and hashes: 1: GqM4YVlqC8-erWafuFUuhTFle_c.roa (hash: i4cVcC9yh3IAaqw92giD4QCQEZ24C42b9AxtQz5mdqI=) 2: V5ey2q7KwpxyFqlUebHjJUU7ouc.roa (hash: Yxgk3WfNc3AICgrW7BBAgfdy4JGwXPs53GHlVT7wvGA=) 3: hbYRoLfUM0t6I5XozOew48m4OOg.crl (hash: Wx0fjMX+ArNHoegGc9UpW2aQn+FVn+FvCKwovy/VTVo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.crl rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 04:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:25:51:1d:91:e1:4c:07:52:c2:8b:e7:f7:54:48:ff:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85b611a0b7d4334b7a2395e8cce7b0e3c9b838e8 Validity Not Before: Dec 16 04:00:31 2025 GMT Not After : Dec 17 04:00:31 2025 GMT Subject: CN=cc3f8b3db04f5c681a5e525508b0e03396cb6a54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:ba:d7:5c:9a:20:ed:04:bf:8e:b8:12:35:bd: 12:22:ec:7d:65:f0:26:94:4d:3d:09:f9:b5:41:f1: 9f:df:02:e4:28:18:cb:95:38:2c:69:88:ab:cd:29: 1e:05:1b:cb:ff:68:58:2a:2d:0a:3c:41:6f:c9:bc: 94:8c:1d:f2:dd:63:dd:53:f3:04:c7:e5:f0:44:1a: 76:5b:6d:1c:12:29:49:a5:1e:4b:ae:60:fa:ae:10: eb:d2:a4:ed:f6:9a:5a:19:9d:96:c0:bb:44:4c:ef: 70:b0:e6:8b:72:ee:9e:85:3e:ff:c6:27:05:2a:67: 73:86:d9:f0:e4:f2:5b:29:d2:03:24:af:52:3c:77: 7b:50:ee:c9:62:cf:14:47:9a:87:03:ee:8d:32:c0: 0d:9b:58:24:41:a2:09:4c:e8:50:98:87:d1:cd:38: bd:2e:a0:62:95:30:da:0d:64:08:79:7f:10:c0:4d: 53:87:47:cc:35:35:86:fc:5c:04:47:9a:a2:66:42: f9:30:8b:0f:8d:39:eb:9f:64:78:2a:2d:cb:a5:78: c9:39:63:0c:86:dc:f8:e1:a7:c8:96:1e:6b:05:16: 58:74:fb:d3:6e:95:e9:cc:6c:33:e1:ad:46:c5:c4: 13:04:d2:ab:3a:ce:f7:7e:a5:41:55:76:cd:59:f4: 35:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:3F:8B:3D:B0:4F:5C:68:1A:5E:52:55:08:B0:E0:33:96:CB:6A:54 X509v3 Authority Key Identifier: keyid:85:B6:11:A0:B7:D4:33:4B:7A:23:95:E8:CC:E7:B0:E3:C9:B8:38:E8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hbYRoLfUM0t6I5XozOew48m4OOg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/98/9d563d-c470-43b3-82bb-88cb4e7106ea/1/hbYRoLfUM0t6I5XozOew48m4OOg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:81:cd:55:22:02:3f:1d:5c:3e:e1:79:f3:ef:26:8d:e8:5d: b9:0b:a2:40:f8:30:f6:7d:1d:17:3a:59:99:06:b7:a2:33:50: 5f:95:1e:e5:d6:7e:95:c1:52:6a:57:42:ba:63:80:5a:f5:cd: 79:33:1b:ba:56:aa:20:9f:2b:a2:6f:90:23:5a:40:40:4e:37: ff:2d:da:01:50:09:be:a3:79:a7:a9:4d:1a:0a:c4:8c:0a:2e: 46:9b:a2:1b:53:a4:df:65:ab:93:1a:d1:fc:6b:95:5d:56:d7: 9c:b9:b9:c7:9d:7f:d8:51:b5:dc:7b:b0:c2:13:60:f6:61:04: c1:57:b0:4b:69:8a:c2:c7:c0:82:d8:05:fe:55:63:89:df:13: 74:06:39:2a:10:7e:f1:e3:80:0d:72:86:06:5d:ff:28:45:d1: 48:d8:d5:0e:de:98:51:1a:b2:82:85:b8:ab:de:22:9d:57:23: ec:e6:52:fb:9d:3b:1e:6e:52:2f:4b:3a:bc:23:e0:56:01:ad: 34:06:4b:21:08:c8:db:39:43:2e:3f:70:0d:cc:c8:f6:2d:ba: e6:8a:67:cf:3b:d7:dc:c9:6f:81:88:b0:4c:7e:82:ba:c7:5b: 45:c5:24:95:0f:f0:84:63:aa:4e:87:8f:e0:97:1e:f2:2a:94: 43:57:e3:d0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZslUR2R4UwHUsKL5/dUSP9QMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1YjYxMWEwYjdkNDMzNGI3YTIzOTVlOGNjZTdiMGUzYzli ODM4ZTgwHhcNMjUxMjE2MDQwMDMxWhcNMjUxMjE3MDQwMDMxWjAzMTEwLwYDVQQD EyhjYzNmOGIzZGIwNGY1YzY4MWE1ZTUyNTUwOGIwZTAzMzk2Y2I2YTU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1brXXJog7QS/jrgSNb0SIux9ZfAm lE09Cfm1QfGf3wLkKBjLlTgsaYirzSkeBRvL/2hYKi0KPEFvybyUjB3y3WPdU/ME x+XwRBp2W20cEilJpR5LrmD6rhDr0qTt9ppaGZ2WwLtETO9wsOaLcu6ehT7/xicF Kmdzhtnw5PJbKdIDJK9SPHd7UO7JYs8UR5qHA+6NMsANm1gkQaIJTOhQmIfRzTi9 LqBilTDaDWQIeX8QwE1Th0fMNTWG/FwER5qiZkL5MIsPjTnrn2R4Ki3LpXjJOWMM htz44afIlh5rBRZYdPvTbpXpzGwz4a1GxcQTBNKrOs73fqVBVXbNWfQ1kQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMw/iz2wT1xoGl5SVQiw4DOWy2pUMB8GA1UdIwQY MBaAFIW2EaC31DNLeiOV6MznsOPJuDjoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGJZUm9MZlVNMHQ2STVYb3pPZXc0OG00T09nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC85ZDU2M2QtYzQ3MC00M2IzLTgyYmIt ODhjYjRlNzEwNmVhLzEvaGJZUm9MZlVNMHQ2STVYb3pPZXc0OG00T09nLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OC85ZDU2M2QtYzQ3MC00M2IzLTgyYmItODhjYjRlNzEwNmVh LzEvaGJZUm9MZlVNMHQ2STVYb3pPZXc0OG00T09nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWIHNVSIC Px1cPuF58+8mjehduQuiQPgw9n0dFzpZmQa3ojNQX5Ue5dZ+lcFSaldCumOAWvXN eTMbulaqIJ8rom+QI1pAQE43/y3aAVAJvqN5p6lNGgrEjAouRpuiG1Ok32WrkxrR /GuVXVbXnLm5x51/2FG13HuwwhNg9mEEwVewS2mKwsfAgtgF/lVjid8TdAY5KhB+ 8eOADXKGBl3/KEXRSNjVDt6YURqygoW4q94inVcj7OZS+507Hm5SL0s6vCPgVgGt NAZLIQjI2zlDLj9wDczI9i265opnzzvX3MlvgYiwTH6CusdbRcUklQ/whGOqToeP 4Jce8iqUQ1fj0A== -----END CERTIFICATE-----Generated at Tue Dec 16 11:51:10 2025 by rpki-client