This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.mft File: hiGwt9-gp4iPde_yDzIUWgs_DdU.mft (raw, json) Hash identifier: QUrZ80Scgho9AoBMIdmUHt+i3CxrdNC9UKkRWV/5OGk= Subject key identifier: CB:64:6B:2A:02:F3:90:4A:54:DC:76:70:59:70:7E:99:51:E6:47:A1 Authority key identifier: 86:21:B0:B7:DF:A0:A7:88:8F:75:EF:F2:0F:32:14:5A:0B:3F:0D:D5 Certificate issuer: /CN=8621b0b7dfa0a7888f75eff20f32145a0b3f0dd5 Certificate serial: 019B3231803B20B32494E4CF89950AF1C56D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hiGwt9-gp4iPde_yDzIUWgs_DdU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.mft Manifest number: 1783 Signing time: Thu 18 Dec 2025 16:01:03 +0000 Manifest this update: Thu 18 Dec 2025 16:01:03 +0000 Manifest next update: Fri 19 Dec 2025 16:01:03 +0000 Files and hashes: 1: E7w56iH6n62Qtx76-l21Wicx0tI.roa (hash: mYbpZ2jovxydBfbzCm7J8lBecdgedCJGDSbz9EY1aRY=) 2: hiGwt9-gp4iPde_yDzIUWgs_DdU.crl (hash: 1Z9Kcr7GImtSKm0pSaoWYFMDpSBbZHGB46nLnnmWkcw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.crl rsync://rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.mft rsync://rpki.ripe.net/repository/DEFAULT/hiGwt9-gp4iPde_yDzIUWgs_DdU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 16:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:32:31:80:3b:20:b3:24:94:e4:cf:89:95:0a:f1:c5:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8621b0b7dfa0a7888f75eff20f32145a0b3f0dd5 Validity Not Before: Dec 18 16:01:03 2025 GMT Not After : Dec 19 16:01:03 2025 GMT Subject: CN=cb646b2a02f3904a54dc767059707e9951e647a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:e7:22:29:9a:0f:bb:f3:c6:30:30:14:e6:a0: c0:ae:76:07:f4:6a:e2:c2:89:a9:40:4c:73:66:d5: 0a:8a:09:1a:13:f8:92:82:63:6d:f8:92:62:c3:29: 52:50:80:00:2d:ed:c7:cc:50:90:84:0b:83:40:33: ac:cf:3d:2a:dc:2d:68:51:13:22:4f:5a:d9:2a:1b: 4f:77:7f:40:15:97:76:c6:c2:74:73:6e:fe:76:67: c1:0d:25:9d:39:c8:71:79:9f:dd:91:89:84:8f:ef: e0:08:fb:c1:16:14:b8:f0:3a:41:d8:72:bd:08:3f: c1:94:18:0a:93:1a:69:1e:94:47:99:3b:a4:b8:07: b6:a4:42:7b:ca:2f:65:87:3a:8b:c9:a5:0c:3c:25: 53:bd:63:a1:8b:61:45:35:80:7b:7b:7d:b0:9b:7c: d4:52:97:e9:30:32:f0:2d:5c:e0:d7:64:04:b8:c6: e6:f2:42:a6:02:52:31:f9:e3:78:70:cb:0e:5e:21: 95:55:1a:49:99:cc:dd:fb:20:34:de:e2:08:65:fc: 0c:ef:18:4e:7b:32:93:d2:6f:db:3e:d4:60:2b:bf: 48:53:33:ad:2b:a9:0a:53:ac:f9:6b:1e:d7:1f:26: 04:21:98:1f:47:9c:ca:86:d7:a3:bf:bc:d6:44:58: 4e:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:64:6B:2A:02:F3:90:4A:54:DC:76:70:59:70:7E:99:51:E6:47:A1 X509v3 Authority Key Identifier: keyid:86:21:B0:B7:DF:A0:A7:88:8F:75:EF:F2:0F:32:14:5A:0B:3F:0D:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hiGwt9-gp4iPde_yDzIUWgs_DdU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/ba0579-a1e7-4b24-8033-6b3e0aa2cbb2/1/hiGwt9-gp4iPde_yDzIUWgs_DdU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:33:37:af:dc:b4:be:ea:59:01:91:fe:6a:b9:7b:70:73:3e: cb:9a:11:75:85:af:3b:ad:8d:f3:00:c6:f0:f1:90:18:bd:f5: 96:50:bc:c8:1c:09:df:c8:2a:3e:11:5d:91:e1:d7:b1:47:50: c3:ba:20:26:a7:34:b4:e5:17:a3:1b:2d:a1:30:bf:23:90:08: 36:88:80:cd:ff:8b:b9:c3:b6:e3:fa:cc:bd:9a:84:cf:92:1a: 96:98:51:35:97:40:50:71:5b:cc:3a:9a:a3:57:f7:e4:89:d0: a8:ce:ac:69:da:f4:f9:3a:b3:96:a5:f6:51:7e:5c:05:8a:fc: ab:8f:17:9f:b8:9c:cb:db:94:23:05:39:91:76:0e:60:c8:86: 60:25:be:95:37:94:e2:59:da:f3:07:24:52:5c:3c:1e:45:60: 86:9a:b8:6d:89:d3:5d:8f:5f:7b:61:6c:08:f5:24:f3:b1:2e: 8b:96:ea:cd:f9:a4:68:e7:4d:c8:7a:68:ca:3d:c4:f3:4c:c8: fc:ff:ba:ad:77:9f:b1:25:cd:ff:6d:93:a0:fb:60:c6:1b:da: 6c:db:09:2c:42:60:df:a8:e6:b1:bd:f3:e2:b2:70:5d:f2:36: c4:e5:d5:78:d0:43:d7:6d:54:bb:3c:20:de:a5:86:7a:3e:00: 68:62:2c:80 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsyMYA7ILMklOTPiZUK8cVtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2MjFiMGI3ZGZhMGE3ODg4Zjc1ZWZmMjBmMzIxNDVhMGIz ZjBkZDUwHhcNMjUxMjE4MTYwMTAzWhcNMjUxMjE5MTYwMTAzWjAzMTEwLwYDVQQD EyhjYjY0NmIyYTAyZjM5MDRhNTRkYzc2NzA1OTcwN2U5OTUxZTY0N2ExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo+ciKZoPu/PGMDAU5qDArnYH9Gri wompQExzZtUKigkaE/iSgmNt+JJiwylSUIAALe3HzFCQhAuDQDOszz0q3C1oURMi T1rZKhtPd39AFZd2xsJ0c27+dmfBDSWdOchxeZ/dkYmEj+/gCPvBFhS48DpB2HK9 CD/BlBgKkxppHpRHmTukuAe2pEJ7yi9lhzqLyaUMPCVTvWOhi2FFNYB7e32wm3zU UpfpMDLwLVzg12QEuMbm8kKmAlIx+eN4cMsOXiGVVRpJmczd+yA03uIIZfwM7xhO ezKT0m/bPtRgK79IUzOtK6kKU6z5ax7XHyYEIZgfR5zKhtejv7zWRFhOYQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMtkayoC85BKVNx2cFlwfplR5kehMB8GA1UdIwQY MBaAFIYhsLffoKeIj3Xv8g8yFFoLPw3VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGlHd3Q5LWdwNGlQZGVfeUR6SVVXZ3NfRGRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZi9iYTA1NzktYTFlNy00YjI0LTgwMzMt NmIzZTBhYTJjYmIyLzEvaGlHd3Q5LWdwNGlQZGVfeUR6SVVXZ3NfRGRVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZi9iYTA1NzktYTFlNy00YjI0LTgwMzMtNmIzZTBhYTJjYmIy LzEvaGlHd3Q5LWdwNGlQZGVfeUR6SVVXZ3NfRGRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAjM3r9y0 vupZAZH+arl7cHM+y5oRdYWvO62N8wDG8PGQGL31llC8yBwJ38gqPhFdkeHXsUdQ w7ogJqc0tOUXoxstoTC/I5AINoiAzf+LucO24/rMvZqEz5IalphRNZdAUHFbzDqa o1f35InQqM6sadr0+TqzlqX2UX5cBYr8q48Xn7icy9uUIwU5kXYOYMiGYCW+lTeU 4lna8wckUlw8HkVghpq4bYnTXY9fe2FsCPUk87Eui5bqzfmkaOdNyHpoyj3E80zI /P+6rXefsSXN/22ToPtgxhvabNsJLEJg36jmsb3z4rJwXfI2xOXVeNBD121Uuzwg 3qWGej4AaGIsgA== -----END CERTIFICATE-----Generated at Thu Dec 18 23:30:58 2025 by rpki-client