This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft File: hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft (raw, json) Hash identifier: Cvft3ca2eZkxPf92s8KApAC8v9u39Tk21SFtPKr+IWc= Subject key identifier: 13:0D:BE:40:74:7A:C0:75:21:98:9C:0B:16:2A:1A:11:AB:AA:4C:20 Authority key identifier: 85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD Certificate issuer: /CN=85d0e763f935c171694f172056eb44209db2e2cd Certificate serial: 019B47A6343BA2BC88EB25829A8AABF6EB2C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft Manifest number: 13AE Signing time: Mon 22 Dec 2025 20:00:33 +0000 Manifest this update: Mon 22 Dec 2025 20:00:33 +0000 Manifest next update: Tue 23 Dec 2025 20:00:33 +0000 Files and hashes: 1: 2Il6q-ZqOuI80bOhmO2ATk_4gjA.roa (hash: qZ2AvjwfuN5RofSpAulT+zvOokvk9hdo9R5gBG6wVV8=) 2: EqxVNlycylxq6ufI9ng2ltdK1KM.roa (hash: b+kpuQsONfGhMD7qgwxZkbzW/4IKkzNE5v/myC4W0qY=) 3: MceCU4XPd0t7fhZxTxvxReumv1Q.roa (hash: 5TdX80iYVUkF2JY7Z9ZEOYjAnRhS8f4vWckTIPnEXdo=) 4: QdYIwbhgXZFZDGrsD1bCfWnJfNM.roa (hash: GAa3KktDwm+TlBojUO7F6LnOQMJ0zxC/VLgeFCn23pI=) 5: V1rb0y6iu1TTOsIZQYPUPITNZdc.roa (hash: 4TLj9uQX2T55ymBodPD3FK/tTeE67Ngmw9g4awglSqU=) 6: Yjrt4HsK8wh6pJI81KOUWlnSEwg.roa (hash: XmuwPChIn1UvgMab/4oMWsQTN7bkJ51y5zUd1xVolH0=) 7: aaic0TQ08KDxqNotu0QjynGFp8k.roa (hash: y+rn4gyMmixGkyVVHgb8Zj+xOMFFm7BJm3FAMYf/M4M=) 8: cO2-NOuH2RV4sPciOdoA32su67Q.roa (hash: 9jc3V+7f0q1/c2NMI1faaA1MEEx9FCl4Vp7wxvOlyNU=) 9: euovkC8FzqkWizkBlJiIPuOidbU.roa (hash: NVQ3tcOFWDZctMMGjmKl2U9mGUa0NK9LjFLKrJC2iHM=) 10: gdNItxWNsM4KiGU05OylhksApCc.roa (hash: WiPvUqderzx9CicZMrqZIDKRBrczrFFx57GnwN1V0lI=) 11: hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl (hash: +/VUmRtQu+gV9+YI+4ylxAL+2Z/ibPhH59ya+o4n00Y=) 12: o1oWSbF99ChHezdi7-NEtS6WqIQ.roa (hash: ssh+w8HWpTpbSb7HfHBqwKGeOCK5JvaJKAWgtYiNFsU=) 13: oMpZucICfk-8ZesIjg26RzH9z8Q.roa (hash: avfjdtl0mm9+afn2EBtC58m5oIaLp8/rBFhWdaYQq6o=) 14: zYeF4EOXDH9wga2Hl1a9xt43c_E.roa (hash: qprf7Kh7V9oLipnyoiqapOwT3fD2c8ij+cCs23g5KeE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 20:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:47:a6:34:3b:a2:bc:88:eb:25:82:9a:8a:ab:f6:eb:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85d0e763f935c171694f172056eb44209db2e2cd Validity Not Before: Dec 22 20:00:33 2025 GMT Not After : Dec 23 20:00:33 2025 GMT Subject: CN=130dbe40747ac07521989c0b162a1a11abaa4c20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:4c:76:b1:3c:f2:09:fb:8c:96:da:23:72:4d: 2e:6a:0b:77:9d:f3:38:8d:97:cc:31:30:07:4e:ae: 79:55:68:7d:8b:a0:13:92:2b:dd:11:37:be:27:38: c6:0b:73:42:b5:aa:2c:df:60:e2:de:76:89:ee:e6: e7:69:70:9c:e6:81:0b:ee:02:98:a7:bc:f5:9d:15: 02:a8:b3:e8:50:0d:48:85:0c:ef:b4:1d:6a:76:2a: 13:af:e1:8b:8a:58:84:8f:4b:78:82:47:36:41:ee: 2e:54:7f:3f:eb:bf:2d:08:74:6b:68:98:bd:5c:ce: f9:df:f7:78:b4:72:60:21:5b:ef:fa:86:fc:81:7e: 1e:fc:04:fa:77:98:45:da:15:40:7c:20:39:fc:b8: 87:27:2f:8f:e8:26:4d:2f:a0:b1:dc:51:80:99:e7: 98:02:8f:26:b4:e8:51:89:ae:55:6b:11:2d:86:e1: b4:be:a1:ca:cf:b6:1a:53:f5:5a:58:09:74:96:2a: 48:dc:e5:46:3d:c7:25:48:75:41:9d:a8:de:44:bc: 99:58:a0:a8:4e:76:9c:05:41:b4:91:88:fa:f0:18: d5:bc:7e:ab:03:d5:ee:47:e5:3f:6c:32:87:63:45: f6:85:c7:98:64:bd:31:f3:0e:e9:09:2a:7b:a1:32: d5:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:0D:BE:40:74:7A:C0:75:21:98:9C:0B:16:2A:1A:11:AB:AA:4C:20 X509v3 Authority Key Identifier: keyid:85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9d:0e:49:20:15:99:a1:9e:ae:8b:e7:3a:b0:e5:c7:67:3b:76: e9:6f:ca:a4:f5:db:4e:a8:1c:cf:1b:ff:a0:8c:57:ba:8a:f6: cf:e7:ed:98:ca:23:06:bc:a5:35:e3:a2:a4:09:0e:0f:db:31: 30:e8:66:1a:ca:6c:b6:ba:12:6d:ef:48:12:94:12:7c:70:2a: 7e:be:ac:31:c0:30:4a:a7:6e:cb:bb:36:73:e8:32:24:1b:b5: e2:82:f5:9f:20:c6:f1:2b:9f:de:f6:01:1f:b2:b8:69:95:11: 76:7f:de:35:a7:08:63:d3:20:3c:d8:d5:1a:9b:17:e5:56:c7: e9:07:18:18:4e:0d:c7:72:34:93:d5:4c:0c:75:96:cd:b1:5a: e8:5e:15:43:96:1e:ae:b6:76:7c:68:69:ba:97:c0:e2:36:5f: 08:60:8d:a9:f8:74:22:8f:b9:6b:46:cb:3e:c0:fb:f9:45:e8: 85:ef:97:83:b6:df:35:d2:8c:9a:80:65:6a:f1:1c:5a:c2:13: a8:26:63:5c:c4:b7:15:a7:3c:16:a7:12:dd:15:15:4d:84:b0: be:aa:58:21:6b:15:4e:dd:58:b9:6c:35:00:87:09:56:aa:3e: f8:ab:2a:f4:30:fa:6f:f2:24:60:cb:56:9e:f6:e1:be:43:3c: fb:1d:e7:4d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtHpjQ7oryI6yWCmoqr9ussMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1ZDBlNzYzZjkzNWMxNzE2OTRmMTcyMDU2ZWI0NDIwOWRi MmUyY2QwHhcNMjUxMjIyMjAwMDMzWhcNMjUxMjIzMjAwMDMzWjAzMTEwLwYDVQQD EygxMzBkYmU0MDc0N2FjMDc1MjE5ODljMGIxNjJhMWExMWFiYWE0YzIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw0x2sTzyCfuMltojck0uagt3nfM4 jZfMMTAHTq55VWh9i6ATkivdETe+JzjGC3NCtaos32Di3naJ7ubnaXCc5oEL7gKY p7z1nRUCqLPoUA1IhQzvtB1qdioTr+GLiliEj0t4gkc2Qe4uVH8/678tCHRraJi9 XM753/d4tHJgIVvv+ob8gX4e/AT6d5hF2hVAfCA5/LiHJy+P6CZNL6Cx3FGAmeeY Ao8mtOhRia5VaxEthuG0vqHKz7YaU/VaWAl0lipI3OVGPcclSHVBnajeRLyZWKCo TnacBUG0kYj68BjVvH6rA9XuR+U/bDKHY0X2hceYZL0x8w7pCSp7oTLVXQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBMNvkB0esB1IZicCxYqGhGrqkwgMB8GA1UdIwQY MBaAFIXQ52P5NcFxaU8XIFbrRCCdsuLNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi83NDY0MTAtMDI2Yi00NWM5LTgxY2Qt ZjEyODM1ZjAyNDdiLzEvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi83NDY0MTAtMDI2Yi00NWM5LTgxY2QtZjEyODM1ZjAyNDdi LzEvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnQ5JIBWZ oZ6ui+c6sOXHZzt26W/KpPXbTqgczxv/oIxXuor2z+ftmMojBrylNeOipAkOD9sx MOhmGspstroSbe9IEpQSfHAqfr6sMcAwSqduy7s2c+gyJBu14oL1nyDG8Suf3vYB H7K4aZURdn/eNacIY9MgPNjVGpsX5VbH6QcYGE4Nx3I0k9VMDHWWzbFa6F4VQ5Ye rrZ2fGhpupfA4jZfCGCNqfh0Io+5a0bLPsD7+UXohe+Xg7bfNdKMmoBlavEcWsIT qCZjXMS3Fac8FqcS3RUVTYSwvqpYIWsVTt1YuWw1AIcJVqo++Ksq9DD6b/IkYMtW nvbhvkM8+x3nTQ== -----END CERTIFICATE-----Generated at Tue Dec 23 01:57:31 2025 by rpki-client