This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft File: hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft (raw, json) Hash identifier: /NEObsBSnr/CTVPH8JxET5uN+cTslsPtEKySR/nr+Sk= Subject key identifier: 58:9C:0C:7F:EB:1E:90:82:A6:CE:11:B6:CB:C2:E8:93:8D:45:D6:D5 Authority key identifier: 85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD Certificate issuer: /CN=85d0e763f935c171694f172056eb44209db2e2cd Certificate serial: 019B07EBE61B675907666848C79D7DCEBA16 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft Manifest number: 138D Signing time: Wed 10 Dec 2025 11:00:58 +0000 Manifest this update: Wed 10 Dec 2025 11:00:58 +0000 Manifest next update: Thu 11 Dec 2025 11:00:58 +0000 Files and hashes: 1: 2Il6q-ZqOuI80bOhmO2ATk_4gjA.roa (hash: qZ2AvjwfuN5RofSpAulT+zvOokvk9hdo9R5gBG6wVV8=) 2: EqxVNlycylxq6ufI9ng2ltdK1KM.roa (hash: b+kpuQsONfGhMD7qgwxZkbzW/4IKkzNE5v/myC4W0qY=) 3: MceCU4XPd0t7fhZxTxvxReumv1Q.roa (hash: 5TdX80iYVUkF2JY7Z9ZEOYjAnRhS8f4vWckTIPnEXdo=) 4: QdYIwbhgXZFZDGrsD1bCfWnJfNM.roa (hash: GAa3KktDwm+TlBojUO7F6LnOQMJ0zxC/VLgeFCn23pI=) 5: V1rb0y6iu1TTOsIZQYPUPITNZdc.roa (hash: 4TLj9uQX2T55ymBodPD3FK/tTeE67Ngmw9g4awglSqU=) 6: Yjrt4HsK8wh6pJI81KOUWlnSEwg.roa (hash: XmuwPChIn1UvgMab/4oMWsQTN7bkJ51y5zUd1xVolH0=) 7: aaic0TQ08KDxqNotu0QjynGFp8k.roa (hash: y+rn4gyMmixGkyVVHgb8Zj+xOMFFm7BJm3FAMYf/M4M=) 8: cO2-NOuH2RV4sPciOdoA32su67Q.roa (hash: 9jc3V+7f0q1/c2NMI1faaA1MEEx9FCl4Vp7wxvOlyNU=) 9: euovkC8FzqkWizkBlJiIPuOidbU.roa (hash: NVQ3tcOFWDZctMMGjmKl2U9mGUa0NK9LjFLKrJC2iHM=) 10: gdNItxWNsM4KiGU05OylhksApCc.roa (hash: WiPvUqderzx9CicZMrqZIDKRBrczrFFx57GnwN1V0lI=) 11: hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl (hash: M7Ff95N2d20rJYbhjc9f2xJthcajqkD1U8KhwvvV0jc=) 12: o1oWSbF99ChHezdi7-NEtS6WqIQ.roa (hash: ssh+w8HWpTpbSb7HfHBqwKGeOCK5JvaJKAWgtYiNFsU=) 13: oMpZucICfk-8ZesIjg26RzH9z8Q.roa (hash: avfjdtl0mm9+afn2EBtC58m5oIaLp8/rBFhWdaYQq6o=) 14: zYeF4EOXDH9wga2Hl1a9xt43c_E.roa (hash: qprf7Kh7V9oLipnyoiqapOwT3fD2c8ij+cCs23g5KeE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 11 Dec 2025 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:07:eb:e6:1b:67:59:07:66:68:48:c7:9d:7d:ce:ba:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85d0e763f935c171694f172056eb44209db2e2cd Validity Not Before: Dec 10 11:00:58 2025 GMT Not After : Dec 11 11:00:58 2025 GMT Subject: CN=589c0c7feb1e9082a6ce11b6cbc2e8938d45d6d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:69:06:2b:a0:ad:22:1d:ca:2b:fd:3a:3c:1e: 1d:1f:e5:c4:4e:15:03:48:8d:91:d2:b4:76:60:40: 43:d4:2f:0f:43:93:2f:eb:a5:fd:8d:de:42:3a:b3: b9:67:15:52:7c:b3:2f:9e:b4:a2:dc:99:15:b5:c0: 7d:2e:8f:7f:ee:02:b9:cc:14:e6:55:de:37:3c:65: cb:55:f4:88:7d:9d:b4:90:c6:e8:d4:60:d4:58:ae: f3:20:9c:b7:90:3e:9d:eb:32:7f:e9:02:27:06:d3: 2f:55:79:d3:bc:ff:cd:f5:95:87:16:72:4a:ac:fe: 8b:50:f5:8b:4a:b6:9f:b4:30:0e:62:34:e9:99:2d: 71:d2:94:04:96:3e:24:37:18:c0:94:94:5a:a7:bd: 5a:1f:db:03:05:b3:de:d6:25:65:16:ed:26:b1:a7: 75:f5:d3:08:69:4e:71:da:42:fc:30:ff:64:45:f8: 14:a4:1a:a5:f0:e9:97:ef:40:34:7a:70:89:1d:f9: 3e:e0:af:db:98:9a:ae:f0:b4:0b:74:b5:59:3f:9e: 17:2b:31:8e:47:e1:9e:ed:e0:d1:81:6b:36:5e:12: 74:d6:d1:ff:b1:d7:ef:11:4d:d1:a4:2b:de:80:f5: c8:0b:97:ea:05:7a:08:80:ee:13:43:f7:86:d9:fe: 34:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:9C:0C:7F:EB:1E:90:82:A6:CE:11:B6:CB:C2:E8:93:8D:45:D6:D5 X509v3 Authority Key Identifier: keyid:85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:60:77:8b:a9:d5:41:44:fa:e9:d2:88:ba:70:92:5d:e7:f3: 8c:89:c7:fe:af:ef:a0:95:0d:d1:45:43:09:46:5c:3c:67:38: 16:dd:ec:aa:74:31:e1:35:64:1f:7d:40:62:be:1b:98:dc:52: 01:8f:6f:0f:ca:90:3b:67:f7:09:fd:cd:64:ff:f5:31:00:eb: 9c:cd:b3:7f:d8:a1:38:f5:69:48:aa:e5:37:89:cf:04:fb:3a: fa:f9:a0:08:d2:03:93:ee:4c:d6:74:f0:d2:29:2e:97:a1:e6: bb:8d:44:ce:ad:12:34:05:90:0f:15:98:42:0c:18:11:91:3e: 47:84:69:b3:0b:3a:ae:25:ee:06:80:09:56:32:7d:39:7a:9a: 5a:e0:f5:7a:2e:30:33:0a:13:ec:6f:c0:a8:72:03:51:3b:a3: cf:8e:cf:8f:7d:f5:23:49:4c:8b:b0:25:96:25:09:01:e3:d9: 55:71:b0:b3:b8:e6:bd:3f:0f:ab:39:b3:c5:9d:9a:ac:65:90: 73:4f:e8:b6:f5:c9:13:fa:4a:a4:35:51:85:e0:49:a9:66:b9: 72:93:7e:45:0f:58:03:73:a5:1c:73:be:98:fd:46:63:57:00: 6e:14:2f:85:39:6e:3b:53:8b:28:96:b5:63:fd:61:9b:b2:df: 7f:96:80:1b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsH6+YbZ1kHZmhIx519zroWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1ZDBlNzYzZjkzNWMxNzE2OTRmMTcyMDU2ZWI0NDIwOWRi MmUyY2QwHhcNMjUxMjEwMTEwMDU4WhcNMjUxMjExMTEwMDU4WjAzMTEwLwYDVQQD Eyg1ODljMGM3ZmViMWU5MDgyYTZjZTExYjZjYmMyZTg5MzhkNDVkNmQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoGkGK6CtIh3KK/06PB4dH+XEThUD SI2R0rR2YEBD1C8PQ5Mv66X9jd5COrO5ZxVSfLMvnrSi3JkVtcB9Lo9/7gK5zBTm Vd43PGXLVfSIfZ20kMbo1GDUWK7zIJy3kD6d6zJ/6QInBtMvVXnTvP/N9ZWHFnJK rP6LUPWLSraftDAOYjTpmS1x0pQElj4kNxjAlJRap71aH9sDBbPe1iVlFu0msad1 9dMIaU5x2kL8MP9kRfgUpBql8OmX70A0enCJHfk+4K/bmJqu8LQLdLVZP54XKzGO R+Ge7eDRgWs2XhJ01tH/sdfvEU3RpCvegPXIC5fqBXoIgO4TQ/eG2f40hwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFicDH/rHpCCps4RtsvC6JONRdbVMB8GA1UdIwQY MBaAFIXQ52P5NcFxaU8XIFbrRCCdsuLNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi83NDY0MTAtMDI2Yi00NWM5LTgxY2Qt ZjEyODM1ZjAyNDdiLzEvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi83NDY0MTAtMDI2Yi00NWM5LTgxY2QtZjEyODM1ZjAyNDdi LzEvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAamB3i6nV QUT66dKIunCSXefzjInH/q/voJUN0UVDCUZcPGc4Ft3sqnQx4TVkH31AYr4bmNxS AY9vD8qQO2f3Cf3NZP/1MQDrnM2zf9ihOPVpSKrlN4nPBPs6+vmgCNIDk+5M1nTw 0ikul6Hmu41Ezq0SNAWQDxWYQgwYEZE+R4Rpsws6riXuBoAJVjJ9OXqaWuD1ei4w MwoT7G/AqHIDUTujz47Pj331I0lMi7AlliUJAePZVXGws7jmvT8PqzmzxZ2arGWQ c0/otvXJE/pKpDVRheBJqWa5cpN+RQ9YA3OlHHO+mP1GY1cAbhQvhTluO1OLKJa1 Y/1hm7Lff5aAGw== -----END CERTIFICATE-----Generated at Wed Dec 10 18:08:53 2025 by rpki-client