This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.mft File: 1-hskeN_g8zonixP0LdMZYB1jeKg.mft (raw, json) Hash identifier: lSo56vwBOKyZXAxUtDhlYUwrM7JN+U1m2T6QbMTGfOw= Subject key identifier: 1D:FB:B1:77:F7:A3:EE:65:74:19:A6:00:E6:F9:D9:74:36:49:8A:B5 Authority key identifier: FA:1B:24:78:DF:E0:F3:3A:27:8B:13:F4:2D:D3:19:60:1D:63:78:A8 Certificate issuer: /CN=fa1b2478dfe0f33a278b13f42dd319601d6378a8 Certificate serial: 019B0ECA366B9406D6338010B533AE8BB164 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-hskeN_g8zonixP0LdMZYB1jeKg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.mft Manifest number: 0899 Signing time: Thu 11 Dec 2025 19:01:31 +0000 Manifest this update: Thu 11 Dec 2025 19:01:31 +0000 Manifest next update: Fri 12 Dec 2025 19:01:31 +0000 Files and hashes: 1: 0DRjjmcZlOUPV43RadORGLY5fAU.roa (hash: OsLSdbKdwCfPfb6fa3q09CVq+CXKI7ScoH/tLbYmOyY=) 2: 1-hskeN_g8zonixP0LdMZYB1jeKg.crl (hash: zmSz4/TUUb0mBKxoRsMZK1V86C3dvf9S8qMKyJ1j0mw=) 3: M4s-_cED_UmJMrNFksqxDmieBbc.roa (hash: ZyoLq1Z/3bfjk1VdO62xUznD9Mn7kYIEhSQSV8tMSeA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.crl rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.mft rsync://rpki.ripe.net/repository/DEFAULT/1-hskeN_g8zonixP0LdMZYB1jeKg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 14:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0e:ca:36:6b:94:06:d6:33:80:10:b5:33:ae:8b:b1:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fa1b2478dfe0f33a278b13f42dd319601d6378a8 Validity Not Before: Dec 11 19:01:31 2025 GMT Not After : Dec 12 19:01:31 2025 GMT Subject: CN=1dfbb177f7a3ee657419a600e6f9d97436498ab5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:76:f1:9e:00:f1:f3:f7:c1:08:95:40:08:ad: ea:30:4c:8d:db:1e:a9:bf:d9:d5:1f:69:86:a1:47: c9:f6:ba:16:9e:f8:31:94:61:bd:9e:e1:1c:ce:8d: 9f:46:e1:e1:2d:f0:78:24:85:ff:5c:d3:fa:4a:68: 52:b7:e8:31:de:fd:3f:8b:9b:9b:ba:52:6b:0c:ad: 62:65:4d:31:ba:5f:c5:36:e7:77:f1:96:ce:7e:ff: 87:4a:35:f2:d4:2a:04:9b:b6:3d:32:f6:c2:5e:c0: 2d:38:1a:c4:b3:6e:46:83:e6:31:59:b9:9b:a8:71: ce:04:27:c1:83:d2:27:5f:2c:9b:52:0d:4f:e6:ca: 83:b8:1b:7c:47:f5:e4:81:5d:26:37:0c:0c:76:45: 10:5c:7e:07:c4:e2:ac:89:c7:fe:8f:f9:8b:e3:90: d6:4a:3c:79:77:ba:06:79:e3:0e:2a:1e:5f:a7:cf: 6c:8a:7c:94:c3:97:5a:5b:eb:32:e5:50:46:30:14: 46:e8:6b:b2:5f:85:79:06:d8:ca:6b:32:71:da:d1: 4f:2f:99:18:85:18:fd:44:25:29:dc:e5:a6:a8:02: 98:60:89:ea:89:09:37:ed:3b:e1:48:8f:8c:c3:8f: 18:e9:7c:2d:2e:5d:38:c3:46:23:0c:ea:ab:7a:eb: 46:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:FB:B1:77:F7:A3:EE:65:74:19:A6:00:E6:F9:D9:74:36:49:8A:B5 X509v3 Authority Key Identifier: keyid:FA:1B:24:78:DF:E0:F3:3A:27:8B:13:F4:2D:D3:19:60:1D:63:78:A8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-hskeN_g8zonixP0LdMZYB1jeKg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/08a9c8-4be3-4682-af82-2a1cce7d2c65/1/1-hskeN_g8zonixP0LdMZYB1jeKg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 66:9f:1a:51:59:81:c3:5c:7a:7d:f4:d4:37:e7:93:88:3a:db: 6c:3c:8c:86:02:92:e0:50:cb:1a:1a:1c:79:a9:0a:3b:dc:61: ef:03:d3:fa:2f:be:65:79:f5:48:b7:91:b2:39:f3:cf:81:99: 29:f8:99:7c:24:11:f9:f8:3d:69:7c:da:76:bc:d3:df:d7:59: 03:0b:23:19:ba:8b:f7:81:11:99:8e:06:c8:ee:19:07:39:68: 69:83:0a:33:09:bd:71:02:59:59:0d:e9:61:64:f2:c0:94:fd: 8f:71:44:38:17:2b:6c:af:a9:8f:5b:43:e2:f5:bb:c3:c8:41: 75:0c:90:bd:74:48:02:bd:33:ca:1c:8a:f1:ed:ed:a0:a8:13: 45:02:49:42:68:69:c5:7a:1f:b8:4c:ff:ed:d2:f8:c0:73:c4: 0e:89:e7:57:d9:a5:34:83:aa:50:cc:cd:0c:4d:c6:d0:59:b0: 01:27:61:06:3c:54:12:5e:6f:e1:fa:74:15:40:05:2b:49:93: 5a:93:1a:5b:9e:77:6a:66:78:03:b4:0c:96:3f:c7:b0:be:dd: 0c:e1:05:81:99:01:f1:ec:c1:e4:32:2a:28:c6:5f:e3:14:03: d1:4a:d9:e3:f4:f0:a4:a6:f1:fb:15:26:0a:12:d2:78:33:10: 7c:21:dc:6b -----BEGIN CERTIFICATE----- MIIFGTCCBAGgAwIBAgISAZsOyjZrlAbWM4AQtTOui7FkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZhMWIyNDc4ZGZlMGYzM2EyNzhiMTNmNDJkZDMxOTYwMWQ2 Mzc4YTgwHhcNMjUxMjExMTkwMTMxWhcNMjUxMjEyMTkwMTMxWjAzMTEwLwYDVQQD EygxZGZiYjE3N2Y3YTNlZTY1NzQxOWE2MDBlNmY5ZDk3NDM2NDk4YWI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsnbxngDx8/fBCJVACK3qMEyN2x6p v9nVH2mGoUfJ9roWnvgxlGG9nuEczo2fRuHhLfB4JIX/XNP6SmhSt+gx3v0/i5ub ulJrDK1iZU0xul/FNud38ZbOfv+HSjXy1CoEm7Y9MvbCXsAtOBrEs25Gg+YxWbmb qHHOBCfBg9InXyybUg1P5sqDuBt8R/XkgV0mNwwMdkUQXH4HxOKsicf+j/mL45DW Sjx5d7oGeeMOKh5fp89sinyUw5daW+sy5VBGMBRG6GuyX4V5BtjKazJx2tFPL5kY hRj9RCUp3OWmqAKYYInqiQk37TvhSI+Mw48Y6XwtLl04w0YjDOqreutGDwIDAQAB o4ICJTCCAiEwHQYDVR0OBBYEFB37sXf3o+5ldBmmAOb52XQ2SYq1MB8GA1UdIwQY MBaAFPobJHjf4PM6J4sT9C3TGWAdY3ioMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1oc2tlTl9nOHpvbml4UDBMZE1aWUIxamVLZy5jZXIw gY4GCCsGAQUFBwELBIGBMH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWYvMDhhOWM4LTRiZTMtNDY4Mi1hZjgy LTJhMWNjZTdkMmM2NS8xLzEtaHNrZU5fZzh6b25peFAwTGRNWllCMWplS2cubWZ0 MIGCBgNVHR8EezB5MHegdaBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3Np dG9yeS9ERUZBVUxUL2FmLzA4YTljOC00YmUzLTQ2ODItYWY4Mi0yYTFjY2U3ZDJj NjUvMS8xLWhza2VOX2c4em9uaXhQMExkTVpZQjFqZUtnLmNybDAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgAC BQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZp8a UVmBw1x6ffTUN+eTiDrbbDyMhgKS4FDLGhoceakKO9xh7wPT+i++ZXn1SLeRsjnz z4GZKfiZfCQR+fg9aXzadrzT39dZAwsjGbqL94ERmY4GyO4ZBzloaYMKMwm9cQJZ WQ3pYWTywJT9j3FEOBcrbK+pj1tD4vW7w8hBdQyQvXRIAr0zyhyK8e3toKgTRQJJ QmhpxXofuEz/7dL4wHPEDonnV9mlNIOqUMzNDE3G0FmwASdhBjxUEl5v4fp0FUAF K0mTWpMaW553amZ4A7QMlj/HsL7dDOEFgZkB8ezB5DIqKMZf4xQD0UrZ4/TwpKbx +xUmChLSeDMQfCHcaw== -----END CERTIFICATE-----Generated at Fri Dec 12 00:57:29 2025 by rpki-client