This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/bdc9d1-e59e-4d1e-ba85-190afa2c1361/1/mHUtGGZ9v_hCL5fh44kOmTgdCdQ.mft File: mHUtGGZ9v_hCL5fh44kOmTgdCdQ.mft (raw, json) Hash identifier: RELQbfPu+lPAAZrxDkGfsO9q/0fVkvSc9IIPMDiQ9u0= Subject key identifier: 14:D3:DA:19:5E:A8:28:69:DD:64:52:0D:AD:D7:D1:83:FB:3A:3B:0F Authority key identifier: 98:75:2D:18:66:7D:BF:F8:42:2F:97:E1:E3:89:0E:99:38:1D:09:D4 Certificate issuer: /CN=98752d18667dbff8422f97e1e3890e99381d09d4 Certificate serial: 019B378EE89614C77DBF29367659691B7904 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mHUtGGZ9v_hCL5fh44kOmTgdCdQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/bdc9d1-e59e-4d1e-ba85-190afa2c1361/1/mHUtGGZ9v_hCL5fh44kOmTgdCdQ.mft Manifest number: 081B Signing time: Fri 19 Dec 2025 17:01:10 +0000 Manifest this update: Fri 19 Dec 2025 17:01:10 +0000 Manifest next update: Sat 20 Dec 2025 17:01:10 +0000 Files and hashes: 1: eEuL986vzdl5Ue42JMTwEjrhHL8.roa (hash: sD06A9ioFyTX7xWQwS5R0iqBwd3oxcUKyjznK7FeoF8=) 2: mHUtGGZ9v_hCL5fh44kOmTgdCdQ.crl (hash: SvqDR8N3YrzK53GHq5RA/7OeZ0c3zkA0vP7OfHhj3RE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/bdc9d1-e59e-4d1e-ba85-190afa2c1361/1/mHUtGGZ9v_hCL5fh44kOmTgdCdQ.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/bdc9d1-e59e-4d1e-ba85-190afa2c1361/1/mHUtGGZ9v_hCL5fh44kOmTgdCdQ.mft rsync://rpki.ripe.net/repository/DEFAULT/mHUtGGZ9v_hCL5fh44kOmTgdCdQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:37:8e:e8:96:14:c7:7d:bf:29:36:76:59:69:1b:79:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=98752d18667dbff8422f97e1e3890e99381d09d4 Validity Not Before: Dec 19 17:01:10 2025 GMT Not After : Dec 20 17:01:10 2025 GMT Subject: CN=14d3da195ea82869dd64520dadd7d183fb3a3b0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:16:41:b1:4d:03:87:40:e7:bb:84:1a:2b:1f: 24:03:93:c4:ab:d6:54:3a:b4:c0:fb:28:8d:7f:51: 96:42:1a:71:2c:c4:33:d6:79:33:b4:5d:e9:d9:b7: 29:d4:df:f7:0b:f0:cc:cb:63:02:14:12:b1:a7:73: 2b:25:7d:e3:ef:f0:92:6a:65:09:1b:96:17:6e:a6: f8:b7:dd:0d:ee:7f:3d:eb:dd:34:30:1c:e7:f7:3f: a1:d9:fb:f0:ae:4d:9d:2c:00:8e:60:dc:4a:a0:b9: db:df:47:01:6d:00:5d:11:61:74:9f:56:b9:a1:b1: 58:f9:f6:65:74:db:21:ab:c0:92:9a:fd:eb:74:f2: 03:e7:fd:a7:fc:d9:cf:8a:aa:cc:64:02:b9:b2:ef: a3:b0:c5:e7:38:cb:e7:6a:b2:a1:19:ee:6c:ee:5e: e3:46:b7:7d:50:44:ed:ab:1a:ae:9a:84:83:ff:78: 7d:6c:f9:02:3c:99:b7:29:8d:83:7e:05:30:31:d0: c1:38:bb:bc:4c:89:dd:31:65:53:4c:b3:0c:bd:2e: 27:5f:2e:21:22:9c:73:58:4e:e6:70:0f:f9:b9:54: dc:7a:b9:f0:9a:f4:28:6e:4e:b4:5b:5b:3c:ad:04: 5d:90:eb:cf:db:b4:d3:d9:3b:32:5a:43:bd:a1:1f: 54:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:D3:DA:19:5E:A8:28:69:DD:64:52:0D:AD:D7:D1:83:FB:3A:3B:0F X509v3 Authority Key Identifier: keyid:98:75:2D:18:66:7D:BF:F8:42:2F:97:E1:E3:89:0E:99:38:1D:09:D4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mHUtGGZ9v_hCL5fh44kOmTgdCdQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/bdc9d1-e59e-4d1e-ba85-190afa2c1361/1/mHUtGGZ9v_hCL5fh44kOmTgdCdQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/bdc9d1-e59e-4d1e-ba85-190afa2c1361/1/mHUtGGZ9v_hCL5fh44kOmTgdCdQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2d:9c:47:8d:33:de:2f:50:80:7a:d8:2f:b9:b3:f8:8a:9b:c7: cd:e4:56:e1:aa:98:6b:b2:a6:a5:d9:07:57:53:c4:b3:b3:ba: 78:9e:d6:d3:ac:d6:1f:2d:c3:00:28:d9:06:8b:5b:85:b8:2b: 6c:47:e6:58:11:83:ef:60:2f:a2:50:2b:58:c5:5d:cc:a3:f6: 4c:32:de:f4:4c:48:a9:9f:45:c9:eb:f0:36:f0:3b:76:18:90: bc:3f:05:cb:70:a2:43:e6:12:d0:e7:09:7a:89:05:46:c0:be: 22:c7:d2:82:72:31:d7:d6:43:14:f2:6c:1f:5f:39:12:d5:a6: 12:3f:9b:4e:d4:00:9a:fa:4d:af:54:a8:3b:d5:72:e5:a5:d4: d6:fb:34:52:78:2a:c0:ab:0c:c1:70:ba:99:89:d0:5f:27:c0: 57:d4:be:e5:08:8a:a1:e4:fc:f3:35:45:4b:83:dd:e9:17:5f: 1a:6f:be:a5:54:37:21:97:f1:bb:52:12:75:8c:b6:61:2b:a5: 82:a3:d9:0b:50:0c:12:d9:01:a5:62:78:26:71:7a:f5:70:d2: ae:91:2e:2f:dd:3e:31:1e:a4:2c:5a:a3:fc:f2:fa:81:1b:0b: a3:b9:7e:26:20:62:65:cc:5b:52:e7:bb:e2:a4:45:d9:b2:56: 36:ad:50:ff -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs3juiWFMd9vyk2dllpG3kEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk4NzUyZDE4NjY3ZGJmZjg0MjJmOTdlMWUzODkwZTk5Mzgx ZDA5ZDQwHhcNMjUxMjE5MTcwMTEwWhcNMjUxMjIwMTcwMTEwWjAzMTEwLwYDVQQD EygxNGQzZGExOTVlYTgyODY5ZGQ2NDUyMGRhZGQ3ZDE4M2ZiM2EzYjBmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsBZBsU0Dh0Dnu4QaKx8kA5PEq9ZU OrTA+yiNf1GWQhpxLMQz1nkztF3p2bcp1N/3C/DMy2MCFBKxp3MrJX3j7/CSamUJ G5YXbqb4t90N7n896900MBzn9z+h2fvwrk2dLACOYNxKoLnb30cBbQBdEWF0n1a5 obFY+fZldNshq8CSmv3rdPID5/2n/NnPiqrMZAK5su+jsMXnOMvnarKhGe5s7l7j Rrd9UETtqxqumoSD/3h9bPkCPJm3KY2DfgUwMdDBOLu8TIndMWVTTLMMvS4nXy4h IpxzWE7mcA/5uVTcernwmvQobk60W1s8rQRdkOvP27TT2TsyWkO9oR9U/wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBTT2hleqChp3WRSDa3X0YP7OjsPMB8GA1UdIwQY MBaAFJh1LRhmfb/4Qi+X4eOJDpk4HQnUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbUhVdEdHWjl2X2hDTDVmaDQ0a09tVGdkQ2RRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC9iZGM5ZDEtZTU5ZS00ZDFlLWJhODUt MTkwYWZhMmMxMzYxLzEvbUhVdEdHWjl2X2hDTDVmaDQ0a09tVGdkQ2RRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC9iZGM5ZDEtZTU5ZS00ZDFlLWJhODUtMTkwYWZhMmMxMzYx LzEvbUhVdEdHWjl2X2hDTDVmaDQ0a09tVGdkQ2RRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALZxHjTPe L1CAetgvubP4ipvHzeRW4aqYa7KmpdkHV1PEs7O6eJ7W06zWHy3DACjZBotbhbgr bEfmWBGD72AvolArWMVdzKP2TDLe9ExIqZ9FyevwNvA7dhiQvD8Fy3CiQ+YS0OcJ eokFRsC+IsfSgnIx19ZDFPJsH185EtWmEj+bTtQAmvpNr1SoO9Vy5aXU1vs0Ungq wKsMwXC6mYnQXyfAV9S+5QiKoeT88zVFS4Pd6RdfGm++pVQ3IZfxu1ISdYy2YSul gqPZC1AMEtkBpWJ4JnF69XDSrpEuL90+MR6kLFqj/PL6gRsLo7l+JiBiZcxbUue7 4qRF2bJWNq1Q/w== -----END CERTIFICATE-----Generated at Fri Dec 19 23:06:33 2025 by rpki-client