This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.mft File: hiGwt9-gp4iPde_yDzIUWgs_DdU.mft (raw, json) Hash identifier: c+rCKGbHvwDtnneuJ/UhXBvUiFRDuJ1GQ/SPke0g/hE= Subject key identifier: A9:8E:0D:66:7D:59:62:4D:C6:3F:26:54:E5:9E:0D:A6:1E:2A:0F:0E Authority key identifier: 86:21:B0:B7:DF:A0:A7:88:8F:75:EF:F2:0F:32:14:5A:0B:3F:0D:D5 Certificate issuer: /CN=8621b0b7dfa0a7888f75eff20f32145a0b3f0dd5 Certificate serial: 019B1CF330E7FEBDF382688972AC0047C8B6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hiGwt9-gp4iPde_yDzIUWgs_DdU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.mft Manifest number: 1778 Signing time: Sun 14 Dec 2025 13:00:58 +0000 Manifest this update: Sun 14 Dec 2025 13:00:58 +0000 Manifest next update: Mon 15 Dec 2025 13:00:58 +0000 Files and hashes: 1: E7w56iH6n62Qtx76-l21Wicx0tI.roa (hash: mYbpZ2jovxydBfbzCm7J8lBecdgedCJGDSbz9EY1aRY=) 2: hiGwt9-gp4iPde_yDzIUWgs_DdU.crl (hash: CxJZcwfN/szljhS4bg5cIeNiRtXCobl32JvacotnAv8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.crl rsync://rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.mft rsync://rpki.ripe.net/repository/DEFAULT/hiGwt9-gp4iPde_yDzIUWgs_DdU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 11:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1c:f3:30:e7:fe:bd:f3:82:68:89:72:ac:00:47:c8:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8621b0b7dfa0a7888f75eff20f32145a0b3f0dd5 Validity Not Before: Dec 14 13:00:58 2025 GMT Not After : Dec 15 13:00:58 2025 GMT Subject: CN=a98e0d667d59624dc63f2654e59e0da61e2a0f0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:75:ec:8c:75:f2:0f:53:58:6b:5c:39:8f:66: c2:7e:4c:5d:ee:39:17:b4:4e:c1:bb:8c:78:88:5e: b3:da:7c:f1:13:dd:41:2e:2d:87:32:b9:3c:05:a8: 0f:8a:f7:6a:fc:bd:d3:1f:f4:86:a5:0e:97:6d:06: 4f:ff:ca:82:4c:66:89:07:8d:51:2f:ce:08:98:27: 7c:15:a4:e0:aa:56:5f:7e:3f:ea:b8:87:04:59:e4: 28:08:7c:1b:db:40:34:96:da:de:3e:aa:61:27:47: 62:8c:77:69:7b:64:d0:c0:1f:bf:90:ef:ff:1a:44: 46:8d:c1:ae:db:a5:d5:a6:33:5e:c9:9c:68:54:43: b2:ac:0b:fb:c2:45:a8:08:fc:24:45:ee:22:f9:f9: 7e:f7:e4:13:d9:f9:73:b0:8e:dd:6a:34:9c:2a:62: 6d:93:5c:6d:5a:98:e7:e1:d1:99:ed:75:cb:22:01: b4:5f:0e:18:7e:c4:83:54:51:ce:59:43:e1:43:16: 94:fe:e5:f7:75:72:00:fb:c7:63:a6:9e:c7:6b:ee: 5a:4c:54:b3:07:32:8f:47:9b:81:cf:bf:24:90:67: 93:02:b6:96:24:d5:b5:4b:2b:b5:fa:43:ea:f7:fe: dc:f0:ef:9a:8c:f7:22:ee:9d:e2:12:a7:6c:e5:c7: 1b:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:8E:0D:66:7D:59:62:4D:C6:3F:26:54:E5:9E:0D:A6:1E:2A:0F:0E X509v3 Authority Key Identifier: keyid:86:21:B0:B7:DF:A0:A7:88:8F:75:EF:F2:0F:32:14:5A:0B:3F:0D:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hiGwt9-gp4iPde_yDzIUWgs_DdU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 74:ac:e7:a0:84:82:8b:2a:93:5e:7a:cc:51:31:da:77:c1:3a: bb:7f:57:3f:7c:1e:45:9e:31:08:d0:ee:1b:be:cc:46:aa:b6: 0b:30:33:e7:92:71:f2:84:be:49:cf:7f:6c:68:10:6b:9a:7d: d6:0d:c0:59:23:d5:7a:52:3a:76:39:d7:2b:02:04:86:50:ae: 84:03:6b:66:7e:4f:bb:b4:3d:23:5c:bd:e5:34:9a:b8:ae:2a: 2c:9d:a9:c8:da:9d:05:54:f3:02:83:b2:09:78:23:63:c3:a9: 9e:90:db:99:82:f7:7a:2c:25:78:de:9e:2a:2b:ca:bf:3d:67: ad:4b:64:56:43:6b:61:1b:49:54:04:d4:cb:e5:1a:c8:e7:04: 0b:fe:cf:7c:5a:25:4b:8d:67:bb:9c:aa:31:c1:91:16:25:1d: 3c:b7:6a:02:ed:1d:7f:16:37:a3:41:a5:c9:e7:97:a3:7f:91: fc:65:0c:55:96:31:09:58:fc:b4:84:35:22:8c:9f:cc:ce:62: 3c:73:89:a1:19:d2:5b:0d:72:52:30:fe:69:dc:91:d2:02:e6: 14:aa:cf:06:02:06:c6:36:d6:dc:2f:36:f7:83:68:45:8c:14: cb:f0:6c:db:f6:b3:14:9e:c1:42:80:90:c6:2e:90:f3:6b:e3: c6:1b:1b:d6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsc8zDn/r3zgmiJcqwAR8i2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2MjFiMGI3ZGZhMGE3ODg4Zjc1ZWZmMjBmMzIxNDVhMGIz ZjBkZDUwHhcNMjUxMjE0MTMwMDU4WhcNMjUxMjE1MTMwMDU4WjAzMTEwLwYDVQQD EyhhOThlMGQ2NjdkNTk2MjRkYzYzZjI2NTRlNTllMGRhNjFlMmEwZjBlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6XXsjHXyD1NYa1w5j2bCfkxd7jkX tE7Bu4x4iF6z2nzxE91BLi2HMrk8BagPivdq/L3TH/SGpQ6XbQZP/8qCTGaJB41R L84ImCd8FaTgqlZffj/quIcEWeQoCHwb20A0ltrePqphJ0dijHdpe2TQwB+/kO// GkRGjcGu26XVpjNeyZxoVEOyrAv7wkWoCPwkRe4i+fl+9+QT2flzsI7dajScKmJt k1xtWpjn4dGZ7XXLIgG0Xw4YfsSDVFHOWUPhQxaU/uX3dXIA+8djpp7Ha+5aTFSz BzKPR5uBz78kkGeTAraWJNW1Syu1+kPq9/7c8O+ajPci7p3iEqds5ccbtwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKmODWZ9WWJNxj8mVOWeDaYeKg8OMB8GA1UdIwQY MBaAFIYhsLffoKeIj3Xv8g8yFFoLPw3VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGlHd3Q5LWdwNGlQZGVfeUR6SVVXZ3NfRGRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZi9iYTA1NzktYTFlNy00YjI0LTgwMzMt NmIzZTBhYTJjYmIyLzEvaGlHd3Q5LWdwNGlQZGVfeUR6SVVXZ3NfRGRVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZi9iYTA1NzktYTFlNy00YjI0LTgwMzMtNmIzZTBhYTJjYmIy LzEvaGlHd3Q5LWdwNGlQZGVfeUR6SVVXZ3NfRGRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdKznoISC iyqTXnrMUTHad8E6u39XP3weRZ4xCNDuG77MRqq2CzAz55Jx8oS+Sc9/bGgQa5p9 1g3AWSPVelI6djnXKwIEhlCuhANrZn5Pu7Q9I1y95TSauK4qLJ2pyNqdBVTzAoOy CXgjY8OpnpDbmYL3eiwleN6eKivKvz1nrUtkVkNrYRtJVATUy+UayOcEC/7PfFol S41nu5yqMcGRFiUdPLdqAu0dfxY3o0GlyeeXo3+R/GUMVZYxCVj8tIQ1IoyfzM5i PHOJoRnSWw1yUjD+adyR0gLmFKrPBgIGxjbW3C8294NoRYwUy/Bs2/azFJ7BQoCQ xi6Q82vjxhsb1g== -----END CERTIFICATE-----Generated at Sun Dec 14 19:13:22 2025 by rpki-client