This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft File: hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft (raw, json) Hash identifier: fUV2RN7mBdT7iUufOD6M5gfTlkyQyi6M3CrQHRqu9pg= Subject key identifier: DE:52:9B:DA:54:34:85:7C:BF:9A:E6:78:A2:08:A9:1B:0C:C9:19:39 Authority key identifier: 86:38:41:50:6D:02:61:31:96:50:57:40:9A:16:04:A5:67:1F:05:41 Certificate issuer: /CN=863841506d026131965057409a1604a5671f0541 Certificate serial: 019B1D97C623D3FB815033953376D256BA9A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft Manifest number: 0540 Signing time: Sun 14 Dec 2025 16:00:44 +0000 Manifest this update: Sun 14 Dec 2025 16:00:44 +0000 Manifest next update: Mon 15 Dec 2025 16:00:44 +0000 Files and hashes: 1: hXap7hNXLEAQarnfnwYswdCAdkQ.roa (hash: bNhK/WdUp/9xvJiGhX97CJWQhZiON1WPJ6uWrAYKvFI=) 2: hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl (hash: op7vfZtWQmuC2Bx1Ek/69kcZ4oJGunBRfdjZZqXjdAs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 14:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1d:97:c6:23:d3:fb:81:50:33:95:33:76:d2:56:ba:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=863841506d026131965057409a1604a5671f0541 Validity Not Before: Dec 14 16:00:44 2025 GMT Not After : Dec 15 16:00:44 2025 GMT Subject: CN=de529bda5434857cbf9ae678a208a91b0cc91939 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:b2:80:84:86:70:8e:ee:a9:73:1c:7b:3d:ba: 99:44:9a:4b:82:94:94:9d:14:b1:40:44:68:41:4c: 1d:86:2d:21:37:0f:8f:f9:c5:4b:31:fc:5a:35:ec: 95:ba:68:ac:8d:67:02:7e:8b:6d:bd:1f:e2:3c:4c: ac:aa:b1:0f:b6:87:e3:c2:02:3f:4d:20:fc:18:27: 40:3b:77:da:9a:a2:ff:29:d7:82:85:00:10:06:cd: 01:d6:a1:b7:ad:c7:80:fb:b3:da:30:04:2f:cb:f7: 79:38:a6:65:f5:9b:c3:cf:37:e1:a6:67:37:45:83: 15:e1:66:83:28:0d:04:32:eb:7c:c3:84:70:e1:e4: 0a:6e:74:8e:28:f0:f3:26:95:c5:c9:75:ff:b1:46: 1b:f7:29:82:1c:00:ad:91:c1:6c:18:26:57:e6:b0: 09:3a:7a:c2:31:af:59:8c:8c:d1:af:4c:81:b8:94: 0f:f8:91:8c:17:cc:b2:11:2b:33:20:fb:1c:ad:8b: 65:0a:73:55:b4:ff:33:de:2a:f3:bc:fb:77:68:74: 14:24:9e:45:12:db:8e:29:35:c8:8d:ca:c9:0c:47: af:f2:f4:4c:eb:13:82:91:29:7f:84:1e:d5:2c:1f: aa:d4:23:1f:9e:99:de:5b:5a:bf:0f:3b:65:9a:92: 05:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:52:9B:DA:54:34:85:7C:BF:9A:E6:78:A2:08:A9:1B:0C:C9:19:39 X509v3 Authority Key Identifier: keyid:86:38:41:50:6D:02:61:31:96:50:57:40:9A:16:04:A5:67:1F:05:41 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hjhBUG0CYTGWUFdAmhYEpWcfBUE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/1f1563-b331-43a9-b9cc-3bfa0509201f/1/hjhBUG0CYTGWUFdAmhYEpWcfBUE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 53:e9:9d:63:5c:b1:d5:9c:26:9c:8c:5a:79:7a:a7:c9:51:9d: d6:78:cb:9a:f3:eb:a2:b8:46:dd:96:80:c7:18:3c:99:5b:03: d7:0e:fa:9a:f2:ef:93:6d:43:97:3e:c2:fd:55:7e:0f:7f:b8: 1e:f9:d8:79:e9:a3:cb:0b:1a:06:92:28:5b:38:74:18:d3:6f: 3e:3f:40:20:a0:7c:51:72:d2:72:71:1a:06:d7:b3:ab:69:38: e2:88:07:ef:78:80:94:3f:4f:e3:bc:28:57:0a:45:3e:e4:fa: f6:49:21:86:06:8d:c1:5c:93:a1:ec:5b:c7:e4:56:3f:c8:32: 5e:06:9c:fc:f5:94:ab:eb:9d:97:1d:1e:00:a3:a6:37:b5:1b: 60:c2:67:1c:20:13:2c:46:2d:77:88:5e:ba:e3:62:cd:fc:8d: 62:0f:68:2c:73:a8:e0:d7:a5:eb:3a:25:7f:cd:35:42:b2:b3: e3:74:6c:8c:d8:b5:8c:ce:81:01:03:55:9e:29:59:9b:9d:0e: ac:a5:8b:8f:67:df:c8:02:19:6f:63:a2:06:b9:8d:f3:c3:50: f9:a9:d1:ec:ea:e6:4d:e0:66:9e:0f:23:8c:5f:f3:1a:ec:8f: 5d:2e:16:6f:a5:6e:2f:97:0f:75:25:35:3b:db:85:ff:e9:c7: 32:81:a1:d4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsdl8Yj0/uBUDOVM3bSVrqaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2Mzg0MTUwNmQwMjYxMzE5NjUwNTc0MDlhMTYwNGE1Njcx ZjA1NDEwHhcNMjUxMjE0MTYwMDQ0WhcNMjUxMjE1MTYwMDQ0WjAzMTEwLwYDVQQD EyhkZTUyOWJkYTU0MzQ4NTdjYmY5YWU2NzhhMjA4YTkxYjBjYzkxOTM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1rKAhIZwju6pcxx7PbqZRJpLgpSU nRSxQERoQUwdhi0hNw+P+cVLMfxaNeyVumisjWcCfottvR/iPEysqrEPtofjwgI/ TSD8GCdAO3famqL/KdeChQAQBs0B1qG3rceA+7PaMAQvy/d5OKZl9ZvDzzfhpmc3 RYMV4WaDKA0EMut8w4Rw4eQKbnSOKPDzJpXFyXX/sUYb9ymCHACtkcFsGCZX5rAJ OnrCMa9ZjIzRr0yBuJQP+JGMF8yyESszIPscrYtlCnNVtP8z3irzvPt3aHQUJJ5F EtuOKTXIjcrJDEev8vRM6xOCkSl/hB7VLB+q1CMfnpneW1q/DztlmpIF6QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN5Sm9pUNIV8v5rmeKIIqRsMyRk5MB8GA1UdIwQY MBaAFIY4QVBtAmExllBXQJoWBKVnHwVBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGpoQlVHMENZVEdXVUZkQW1oWUVwV2NmQlVFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi8xZjE1NjMtYjMzMS00M2E5LWI5Y2Mt M2JmYTA1MDkyMDFmLzEvaGpoQlVHMENZVEdXVUZkQW1oWUVwV2NmQlVFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi8xZjE1NjMtYjMzMS00M2E5LWI5Y2MtM2JmYTA1MDkyMDFm LzEvaGpoQlVHMENZVEdXVUZkQW1oWUVwV2NmQlVFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU+mdY1yx 1ZwmnIxaeXqnyVGd1njLmvProrhG3ZaAxxg8mVsD1w76mvLvk21Dlz7C/VV+D3+4 HvnYeemjywsaBpIoWzh0GNNvPj9AIKB8UXLScnEaBtezq2k44ogH73iAlD9P47wo VwpFPuT69kkhhgaNwVyToexbx+RWP8gyXgac/PWUq+udlx0eAKOmN7UbYMJnHCAT LEYtd4heuuNizfyNYg9oLHOo4Nel6zolf801QrKz43RsjNi1jM6BAQNVnilZm50O rKWLj2ffyAIZb2OiBrmN88NQ+anR7OrmTeBmng8jjF/zGuyPXS4Wb6VuL5cPdSU1 O9uF/+nHMoGh1A== -----END CERTIFICATE-----Generated at Sun Dec 14 22:16:44 2025 by rpki-client