This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft File: HY6N9cAxEHEY2mHymrT0GdKdWoo.mft (raw, json) Hash identifier: TLCqJl9IXO/djX3BA+rDkaiLnyFNUAHxvfIoXuCYfTM= Subject key identifier: 0B:58:EC:6B:EB:91:94:DF:DD:5F:4F:2E:7B:29:46:8F:E3:D5:D1:AC Authority key identifier: 1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A Certificate issuer: /CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a Certificate serial: 019B19165D9169BC29CDC6F79C4FFEC7C3F5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft Manifest number: 038B Signing time: Sat 13 Dec 2025 19:00:54 +0000 Manifest this update: Sat 13 Dec 2025 19:00:54 +0000 Manifest next update: Sun 14 Dec 2025 19:00:54 +0000 Files and hashes: 1: HY6N9cAxEHEY2mHymrT0GdKdWoo.crl (hash: OFPIrPqiQc6LczepgAxUVRjINpV5/WhC8nCxAlbBgfE=) 2: aMYTDoy-atROFcdvcAZ3DJlPN5M.roa (hash: xs/811bK0GOCRDo/JHIlphnjgoQcSZGktyUSLqywPok=) 3: hc_WEE647lzFURB_xuAQSI93cMk.roa (hash: dEd68WTNgomGf/knb8KdzL0EdhKoQSwJyVCrqzwbNzU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 17:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:19:16:5d:91:69:bc:29:cd:c6:f7:9c:4f:fe:c7:c3:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a Validity Not Before: Dec 13 19:00:54 2025 GMT Not After : Dec 14 19:00:54 2025 GMT Subject: CN=0b58ec6beb9194dfdd5f4f2e7b29468fe3d5d1ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d4:55:cb:d0:87:c6:8f:bb:39:98:89:1d:78: 22:e2:5c:ce:81:83:89:cd:99:4a:ac:4f:87:e0:8b: bd:5f:1d:3c:15:62:7f:fb:7e:ca:e3:bb:99:c0:d4: a8:1f:6c:8a:50:24:cd:eb:8c:6a:ed:1a:e5:9c:61: c7:2c:8e:b8:b2:35:e0:f1:90:66:ce:65:7a:0f:8d: 87:a9:52:6e:0e:08:ce:fd:f4:11:7b:0e:50:33:bd: b6:a4:33:45:13:56:92:8a:51:67:39:b6:87:16:dc: e7:48:0a:d8:02:d5:10:c2:5c:25:2c:66:f5:60:e7: de:dd:61:5e:b4:32:1c:93:b0:6f:97:b1:54:8a:4c: 81:74:78:dc:49:9a:a9:92:65:73:3a:00:c3:77:7a: 47:d5:70:96:c2:03:d2:cc:6f:d8:68:28:ed:63:ec: 50:c4:01:0f:76:c9:09:b8:5d:87:a1:5e:73:94:6f: ab:1b:43:45:77:99:68:5e:3f:f0:e8:d7:14:4e:39: 45:ca:df:38:b6:12:a6:2f:9b:74:20:66:21:ed:6b: b7:85:35:9a:96:67:a9:95:0b:67:d4:37:3e:ab:6d: ed:81:15:bb:bf:a5:9c:d3:9f:d6:7e:25:16:95:3e: 61:64:f0:6e:56:de:bb:2c:09:b5:f8:46:6d:bd:36: d6:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:58:EC:6B:EB:91:94:DF:DD:5F:4F:2E:7B:29:46:8F:E3:D5:D1:AC X509v3 Authority Key Identifier: keyid:1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 30:5c:96:41:71:1f:23:f3:fd:7e:6e:83:9c:31:8b:33:68:f3: d4:bd:5c:ec:00:16:23:8a:89:c4:73:3b:10:a2:d1:da:3d:d8: 8a:3d:82:0e:ba:6a:83:21:9e:28:6d:df:ab:f0:d8:d7:07:87: 9f:25:5f:c5:3b:df:2e:2e:3c:b9:1b:58:ed:49:4f:2a:e2:21: 31:4f:12:23:8a:cf:23:bf:47:b8:7a:44:e0:60:70:c8:55:e4: ac:bf:eb:cc:52:69:b3:e8:0a:66:c7:21:7e:29:44:6d:b7:75: 8d:6c:60:b7:40:fc:93:f9:d1:f5:d9:2f:22:34:45:dd:df:c7: 1a:99:bc:4a:d0:45:f8:f7:0a:5f:dd:da:59:7e:33:59:e1:84: 75:bd:37:81:bb:02:3f:e4:d2:89:c6:b6:27:b8:21:1a:58:f9: c8:e7:a2:29:d8:b3:61:d6:14:ff:45:b8:53:17:4d:f6:40:48: b3:1b:eb:53:6a:82:04:10:c0:02:8b:ea:cc:1f:16:e9:fd:a5: d5:7f:0f:9a:c7:3f:7b:d4:d9:9d:2a:e8:ea:26:b7:7d:25:cc: 99:6b:c0:d8:00:d1:2d:7c:c6:d8:fc:8a:07:3c:b1:c8:c0:65: b7:bf:7e:7c:5f:0c:cd:d6:25:57:00:af:1e:e5:b9:97:c6:82: cc:e2:e5:d6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsZFl2Rabwpzcb3nE/+x8P1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkOGU4ZGY1YzAzMTEwNzExOGRhNjFmMjlhYjRmNDE5ZDI5 ZDVhOGEwHhcNMjUxMjEzMTkwMDU0WhcNMjUxMjE0MTkwMDU0WjAzMTEwLwYDVQQD EygwYjU4ZWM2YmViOTE5NGRmZGQ1ZjRmMmU3YjI5NDY4ZmUzZDVkMWFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx9RVy9CHxo+7OZiJHXgi4lzOgYOJ zZlKrE+H4Iu9Xx08FWJ/+37K47uZwNSoH2yKUCTN64xq7RrlnGHHLI64sjXg8ZBm zmV6D42HqVJuDgjO/fQRew5QM722pDNFE1aSilFnObaHFtznSArYAtUQwlwlLGb1 YOfe3WFetDIck7Bvl7FUikyBdHjcSZqpkmVzOgDDd3pH1XCWwgPSzG/YaCjtY+xQ xAEPdskJuF2HoV5zlG+rG0NFd5loXj/w6NcUTjlFyt84thKmL5t0IGYh7Wu3hTWa lmeplQtn1Dc+q23tgRW7v6Wc05/WfiUWlT5hZPBuVt67LAm1+EZtvTbW1wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAtY7GvrkZTf3V9PLnspRo/j1dGsMB8GA1UdIwQY MBaAFB2OjfXAMRBxGNph8pq09BnSnVqKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSFk2TjljQXhFSEVZMm1IeW1yVDBHZEtkV29vLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS81NWFjNjctOWM3Ni00ODkzLTg5YTUt YjFkMzhiMTNmZGE5LzEvSFk2TjljQXhFSEVZMm1IeW1yVDBHZEtkV29vLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS81NWFjNjctOWM3Ni00ODkzLTg5YTUtYjFkMzhiMTNmZGE5 LzEvSFk2TjljQXhFSEVZMm1IeW1yVDBHZEtkV29vLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMFyWQXEf I/P9fm6DnDGLM2jz1L1c7AAWI4qJxHM7EKLR2j3Yij2CDrpqgyGeKG3fq/DY1weH nyVfxTvfLi48uRtY7UlPKuIhMU8SI4rPI79HuHpE4GBwyFXkrL/rzFJps+gKZsch filEbbd1jWxgt0D8k/nR9dkvIjRF3d/HGpm8StBF+PcKX93aWX4zWeGEdb03gbsC P+TSica2J7ghGlj5yOeiKdizYdYU/0W4UxdN9kBIsxvrU2qCBBDAAovqzB8W6f2l 1X8Pmsc/e9TZnSro6ia3fSXMmWvA2ADRLXzG2PyKBzyxyMBlt79+fF8MzdYlVwCv HuW5l8aCzOLl1g== -----END CERTIFICATE-----Generated at Sun Dec 14 01:56:22 2025 by rpki-client