This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft File: hnWNin7SGnQXLM7sM4xk02sDeNQ.mft (raw, json) Hash identifier: AIPLu/3ivzkkePDWyLWxpqGPM6fxnOwzlnHqSQEHDE4= Subject key identifier: 2A:0D:5C:22:08:C7:B6:6E:B4:22:04:B3:8E:BC:68:76:01:EC:E1:57 Authority key identifier: 86:75:8D:8A:7E:D2:1A:74:17:2C:CE:EC:33:8C:64:D3:6B:03:78:D4 Certificate issuer: /CN=86758d8a7ed21a74172cceec338c64d36b0378d4 Certificate serial: 019B59AD215081A39499D779E254C371E798 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hnWNin7SGnQXLM7sM4xk02sDeNQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft Manifest number: 05FF Signing time: Fri 26 Dec 2025 08:01:17 +0000 Manifest this update: Fri 26 Dec 2025 08:01:17 +0000 Manifest next update: Sat 27 Dec 2025 08:01:17 +0000 Files and hashes: 1: Tmqal5XUVoUE8c77AFlzaqU97c0.roa (hash: r3d2ZcS64ApbYh564RwP4TPidKg35TEhpwQ3BNXhcQw=) 2: hnWNin7SGnQXLM7sM4xk02sDeNQ.crl (hash: 2l22RcfPcSPEiLA4FMNUnZhNvmoVXmBjoHvAhJinDfU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.crl rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft rsync://rpki.ripe.net/repository/DEFAULT/hnWNin7SGnQXLM7sM4xk02sDeNQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:ad:21:50:81:a3:94:99:d7:79:e2:54:c3:71:e7:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86758d8a7ed21a74172cceec338c64d36b0378d4 Validity Not Before: Dec 26 08:01:17 2025 GMT Not After : Dec 27 08:01:17 2025 GMT Subject: CN=2a0d5c2208c7b66eb42204b38ebc687601ece157 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:8d:b6:e8:c3:d9:dc:72:02:cb:a9:01:ee:ea: 04:15:9b:90:60:4f:9b:54:be:f5:3c:04:ae:7c:5c: b1:22:d4:ef:71:a6:d2:6c:c9:6b:5a:04:6a:b2:06: 56:71:dc:f8:cf:df:b3:4f:00:26:b7:b8:f5:41:1e: 16:69:53:90:e9:b5:3e:87:b7:e0:b9:e7:b6:bb:90: aa:22:72:20:a2:ce:fc:aa:ee:f3:12:3a:ed:5e:5e: d2:f7:82:19:26:9a:e8:60:69:d4:d7:a3:82:0d:e3: 84:f7:60:a5:33:e2:20:91:d8:7b:e0:0e:5d:c7:9f: 6f:92:ad:1e:75:9e:b7:45:96:c3:84:26:c2:1e:41: c5:36:0b:3b:fb:51:eb:dc:70:3e:1c:6e:b1:79:b3: 9a:e0:63:0a:87:ae:23:12:8f:ad:62:9c:80:9c:35: e1:9a:84:c3:25:7f:7d:f2:b5:a7:74:99:58:33:89: cd:6b:62:24:c0:d8:4e:5f:3b:f3:48:fb:b7:49:d3: 7d:74:0e:07:a0:ec:30:81:e0:2a:b2:a7:cc:ef:00: 08:1c:62:29:ff:3c:92:7f:0b:84:99:ae:c9:56:00: 87:81:02:38:f3:5b:40:dd:84:af:a2:48:ea:c3:ff: 0b:5b:c2:d4:54:79:45:55:7e:41:47:78:2a:85:42: 7f:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:0D:5C:22:08:C7:B6:6E:B4:22:04:B3:8E:BC:68:76:01:EC:E1:57 X509v3 Authority Key Identifier: keyid:86:75:8D:8A:7E:D2:1A:74:17:2C:CE:EC:33:8C:64:D3:6B:03:78:D4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hnWNin7SGnQXLM7sM4xk02sDeNQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/e55a9b-2fa0-4af4-90dd-cdacb8467187/1/hnWNin7SGnQXLM7sM4xk02sDeNQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:0f:41:03:55:41:de:2c:eb:c4:07:e8:cd:75:d8:8a:69:d8: f4:48:55:79:01:20:a3:0c:b5:1a:a1:58:7c:d9:16:ac:12:de: 30:01:9a:40:29:f7:03:2f:a5:d3:8c:74:14:4c:6a:e1:6f:53: 09:54:f5:b6:91:e2:e2:5f:47:c0:72:dc:4f:af:3a:30:9c:45: d7:c0:c0:ed:5a:e4:18:2f:93:1a:0d:10:5c:99:ca:a7:90:6f: 6f:d0:45:3e:fb:32:96:11:57:0c:dc:e0:f7:2e:3e:2b:ac:78: d7:14:40:bf:dc:15:27:37:b6:e6:42:bb:13:4b:91:f7:fe:58: 41:61:7e:46:5e:1a:d0:99:18:ea:3b:68:41:74:c5:8e:65:3c: 31:4a:2c:d4:2f:b2:df:4c:18:9b:12:4c:37:2b:2d:66:df:ac: 82:c4:d0:43:6c:21:ea:be:42:30:83:85:72:41:ba:5c:41:b6: 6b:49:bf:a2:eb:5e:10:04:55:3d:96:f3:24:35:01:ad:23:5c: c4:db:8f:8d:b6:8e:07:66:0e:04:68:6d:4f:5f:9d:c8:bf:0b: 07:04:77:8f:d6:92:2e:34:eb:16:b2:46:fd:ee:ab:9b:8e:ae: dd:34:8e:34:e1:ec:3a:5f:7f:d0:8d:41:04:1f:63:6a:aa:d0: 0d:80:d7:99 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZrSFQgaOUmdd54lTDceeYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2NzU4ZDhhN2VkMjFhNzQxNzJjY2VlYzMzOGM2NGQzNmIw Mzc4ZDQwHhcNMjUxMjI2MDgwMTE3WhcNMjUxMjI3MDgwMTE3WjAzMTEwLwYDVQQD EygyYTBkNWMyMjA4YzdiNjZlYjQyMjA0YjM4ZWJjNjg3NjAxZWNlMTU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA34226MPZ3HICy6kB7uoEFZuQYE+b VL71PASufFyxItTvcabSbMlrWgRqsgZWcdz4z9+zTwAmt7j1QR4WaVOQ6bU+h7fg uee2u5CqInIgos78qu7zEjrtXl7S94IZJproYGnU16OCDeOE92ClM+Igkdh74A5d x59vkq0edZ63RZbDhCbCHkHFNgs7+1Hr3HA+HG6xebOa4GMKh64jEo+tYpyAnDXh moTDJX998rWndJlYM4nNa2IkwNhOXzvzSPu3SdN9dA4HoOwwgeAqsqfM7wAIHGIp /zySfwuEma7JVgCHgQI481tA3YSvokjqw/8LW8LUVHlFVX5BR3gqhUJ/hwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCoNXCIIx7ZutCIEs468aHYB7OFXMB8GA1UdIwQY MBaAFIZ1jYp+0hp0FyzO7DOMZNNrA3jUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaG5XTmluN1NHblFYTE03c000eGswMnNEZU5RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi9lNTVhOWItMmZhMC00YWY0LTkwZGQt Y2RhY2I4NDY3MTg3LzEvaG5XTmluN1NHblFYTE03c000eGswMnNEZU5RLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYi9lNTVhOWItMmZhMC00YWY0LTkwZGQtY2RhY2I4NDY3MTg3 LzEvaG5XTmluN1NHblFYTE03c000eGswMnNEZU5RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWA9BA1VB 3izrxAfozXXYimnY9EhVeQEgowy1GqFYfNkWrBLeMAGaQCn3Ay+l04x0FExq4W9T CVT1tpHi4l9HwHLcT686MJxF18DA7VrkGC+TGg0QXJnKp5Bvb9BFPvsylhFXDNzg 9y4+K6x41xRAv9wVJze25kK7E0uR9/5YQWF+Rl4a0JkY6jtoQXTFjmU8MUos1C+y 30wYmxJMNystZt+sgsTQQ2wh6r5CMIOFckG6XEG2a0m/outeEARVPZbzJDUBrSNc xNuPjbaOB2YOBGhtT1+dyL8LBwR3j9aSLjTrFrJG/e6rm46u3TSONOHsOl9/0I1B BB9jaqrQDYDXmQ== -----END CERTIFICATE-----Generated at Fri Dec 26 14:17:26 2025 by rpki-client