This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/hUu3qjkIyZjePEL34YSVOLBZJhc.mft File: hUu3qjkIyZjePEL34YSVOLBZJhc.mft (raw, json) Hash identifier: Dr9gQ0QRx7lqfvSDhh7HL6pJksYLeEn7WYvzFE1t5BE= Subject key identifier: EE:51:3F:96:8B:EA:5C:70:E9:E8:56:70:88:8F:C8:60:6D:F3:8B:85 Authority key identifier: 85:4B:B7:AA:39:08:C9:98:DE:3C:42:F7:E1:84:95:38:B0:59:26:17 Certificate issuer: /CN=854bb7aa3908c998de3c42f7e1849538b0592617 Certificate serial: 019B1ACD88750976D9DBB8E8DF02E2EC0DA9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hUu3qjkIyZjePEL34YSVOLBZJhc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/hUu3qjkIyZjePEL34YSVOLBZJhc.mft Manifest number: 0FF8 Signing time: Sun 14 Dec 2025 03:00:35 +0000 Manifest this update: Sun 14 Dec 2025 03:00:35 +0000 Manifest next update: Mon 15 Dec 2025 03:00:35 +0000 Files and hashes: 1: hUu3qjkIyZjePEL34YSVOLBZJhc.crl (hash: 0IHPD7L2t30D0Tp+Fk9m5QdzjZCX/owcMT4OO/fgzqU=) 2: pkoA1nbX0r8lwiVwxbfu80R8kOU.roa (hash: dAPrEkvaKQk5s5Z7WHpV1G3F1Sw4lOg/QTiasC7ZX1U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/hUu3qjkIyZjePEL34YSVOLBZJhc.crl rsync://rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/hUu3qjkIyZjePEL34YSVOLBZJhc.mft rsync://rpki.ripe.net/repository/DEFAULT/hUu3qjkIyZjePEL34YSVOLBZJhc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 20:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1a:cd:88:75:09:76:d9:db:b8:e8:df:02:e2:ec:0d:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=854bb7aa3908c998de3c42f7e1849538b0592617 Validity Not Before: Dec 14 03:00:35 2025 GMT Not After : Dec 15 03:00:35 2025 GMT Subject: CN=ee513f968bea5c70e9e85670888fc8606df38b85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ef:48:0b:8b:05:69:12:a6:6e:b3:85:f7:50: 63:a2:72:e2:f9:19:b0:86:10:ef:ac:3c:b4:24:32: 8f:ce:7f:ab:d1:9a:40:cd:92:9a:f4:80:46:53:f1: 43:1c:5a:c4:0c:6a:35:c3:d2:31:9a:f9:56:67:1f: 8f:4f:f1:15:93:cc:b7:14:c1:2e:21:d3:27:10:19: 5f:6c:fa:1e:1b:5d:b5:d9:75:75:d8:69:52:65:eb: 43:ee:e2:08:b4:ee:4f:38:e3:25:a1:4f:fe:e8:7b: 2a:04:64:f7:4a:42:5c:b5:8f:43:f9:84:64:83:2e: 69:a0:b3:62:b6:33:9a:ae:77:b5:16:f5:0c:e0:84: e2:19:58:4b:61:b9:c2:1b:0f:ef:78:2b:a6:7e:b4: d0:da:dc:df:18:8e:58:fb:b8:a3:fa:7b:03:e3:ea: 8a:3b:64:47:76:ff:80:4d:c1:d2:c2:81:54:5a:d4: 09:28:d4:23:42:19:42:1c:0a:a5:02:d0:86:ab:fe: 76:d8:d2:4b:ce:46:ad:72:e6:83:12:c1:28:08:d3: f9:aa:87:61:f7:c0:4d:0a:c6:f1:9f:34:45:d4:80: 05:67:2c:c6:20:8c:6d:52:39:3f:bf:a3:0b:0c:33: 17:d6:18:0f:da:be:cf:b2:24:43:8a:36:53:9a:19: 2d:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:51:3F:96:8B:EA:5C:70:E9:E8:56:70:88:8F:C8:60:6D:F3:8B:85 X509v3 Authority Key Identifier: keyid:85:4B:B7:AA:39:08:C9:98:DE:3C:42:F7:E1:84:95:38:B0:59:26:17 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hUu3qjkIyZjePEL34YSVOLBZJhc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/hUu3qjkIyZjePEL34YSVOLBZJhc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/hUu3qjkIyZjePEL34YSVOLBZJhc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:d9:28:a2:1f:9a:6f:1a:99:f5:1e:a8:8c:37:61:7e:62:b6: c3:d7:1f:ef:7c:48:34:ba:fb:fc:aa:00:9e:13:13:57:eb:cb: 1a:07:f0:7a:e3:96:35:37:bd:41:ca:2d:97:28:e0:0f:90:7b: c7:ad:8d:8d:68:e8:35:07:ab:d6:b0:52:e4:fc:0b:ef:31:27: 2a:e1:ea:7a:f4:b5:cc:ce:90:05:3a:16:35:8f:b8:9a:64:0b: af:1b:dd:54:bf:47:d3:bd:f6:0b:13:ed:2e:17:09:51:98:fa: af:64:c0:54:70:44:e2:20:39:b9:2a:e1:88:8d:1f:bd:79:76: 3f:0f:4e:95:67:6b:31:ed:a7:81:d7:ad:4d:05:97:26:b2:90: 4f:5d:3d:40:fb:4f:ba:65:3f:0e:68:dd:36:95:fc:13:49:06: f9:ac:1f:f9:18:31:e3:84:2f:a3:ac:a2:e0:25:6d:fc:ad:8b: d9:23:7b:7e:e9:87:f3:af:b7:24:96:c1:2d:2f:42:cc:f3:5b: f9:a1:16:7e:51:14:85:b3:dc:36:71:b9:7e:ee:0e:07:5b:a8: 8a:b2:b2:7c:46:b9:5c:58:f3:92:f1:b9:9e:b8:ad:19:d8:ef: 4c:88:9b:b4:24:e2:2a:fa:a2:32:8f:7b:fd:84:40:ed:c8:68: 34:d5:94:dc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsazYh1CXbZ27jo3wLi7A2pMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1NGJiN2FhMzkwOGM5OThkZTNjNDJmN2UxODQ5NTM4YjA1 OTI2MTcwHhcNMjUxMjE0MDMwMDM1WhcNMjUxMjE1MDMwMDM1WjAzMTEwLwYDVQQD EyhlZTUxM2Y5NjhiZWE1YzcwZTllODU2NzA4ODhmYzg2MDZkZjM4Yjg1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxO9IC4sFaRKmbrOF91BjonLi+Rmw hhDvrDy0JDKPzn+r0ZpAzZKa9IBGU/FDHFrEDGo1w9IxmvlWZx+PT/EVk8y3FMEu IdMnEBlfbPoeG1212XV12GlSZetD7uIItO5POOMloU/+6HsqBGT3SkJctY9D+YRk gy5poLNitjOarne1FvUM4ITiGVhLYbnCGw/veCumfrTQ2tzfGI5Y+7ij+nsD4+qK O2RHdv+ATcHSwoFUWtQJKNQjQhlCHAqlAtCGq/522NJLzkatcuaDEsEoCNP5qodh 98BNCsbxnzRF1IAFZyzGIIxtUjk/v6MLDDMX1hgP2r7PsiRDijZTmhktvQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO5RP5aL6lxw6ehWcIiPyGBt84uFMB8GA1UdIwQY MBaAFIVLt6o5CMmY3jxC9+GElTiwWSYXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaFV1M3Fqa0l5WmplUEVMMzRZU1ZPTEJaSmhjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi85NjU4MjYtZWI5My00NzBlLWI2N2Et NjRlNTJiOWRkOGQxLzEvaFV1M3Fqa0l5WmplUEVMMzRZU1ZPTEJaSmhjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMi85NjU4MjYtZWI5My00NzBlLWI2N2EtNjRlNTJiOWRkOGQx LzEvaFV1M3Fqa0l5WmplUEVMMzRZU1ZPTEJaSmhjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZdkooh+a bxqZ9R6ojDdhfmK2w9cf73xINLr7/KoAnhMTV+vLGgfweuOWNTe9QcotlyjgD5B7 x62NjWjoNQer1rBS5PwL7zEnKuHqevS1zM6QBToWNY+4mmQLrxvdVL9H0732CxPt LhcJUZj6r2TAVHBE4iA5uSrhiI0fvXl2Pw9OlWdrMe2ngdetTQWXJrKQT109QPtP umU/DmjdNpX8E0kG+awf+Rgx44Qvo6yi4CVt/K2L2SN7fumH86+3JJbBLS9CzPNb +aEWflEUhbPcNnG5fu4OB1uoirKyfEa5XFjzkvG5nritGdjvTIibtCTiKvqiMo97 /YRA7choNNWU3A== -----END CERTIFICATE-----Generated at Sun Dec 14 05:30:35 2025 by rpki-client