This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.mft File: hdycVeFZfohWTa9WflpGZZeMe4U.mft (raw, json) Hash identifier: Xh8wFuVH/9NUmpj0/DqfGOf8wSb9S+8y/084zcterLA= Subject key identifier: 7F:B1:53:A6:94:C5:14:4F:C8:C8:7B:BF:71:21:25:CA:58:CD:20:1D Authority key identifier: 85:DC:9C:55:E1:59:7E:88:56:4D:AF:56:7E:5A:46:65:97:8C:7B:85 Certificate issuer: /CN=85dc9c55e1597e88564daf567e5a4665978c7b85 Certificate serial: 019AEE9A4572B561C06318B4D2043BAD022F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdycVeFZfohWTa9WflpGZZeMe4U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.mft Manifest number: 11A2 Signing time: Fri 05 Dec 2025 13:01:18 +0000 Manifest this update: Fri 05 Dec 2025 13:01:18 +0000 Manifest next update: Sat 06 Dec 2025 13:01:18 +0000 Files and hashes: 1: 0pi9IaQq2fBWcGfcpKeC_IHzvEQ.roa (hash: 7NVRHz/yavsbwJXBgfeDxYrCqDuUxp9nZbgGaZLZ9oA=) 2: 3wW5MOLSStojI9xiPbeDzYTIyjU.roa (hash: 2XAYsLytjrXYCpBJtfGxqKAam2Z4NRRhSRFoEEd4Llk=) 3: bpfV9qpUqRU7ZbL5m4qH_-0K2rg.roa (hash: 4P0zOtuiLjjQhgT/25d48jeUAEanfYakXWIUUX0ljiU=) 4: hdycVeFZfohWTa9WflpGZZeMe4U.crl (hash: THJGLomXkhy7zoxLMZpBEAge3d0x5aDLNcVW4FpgVx8=) 5: mPqcgtGb2yf9In758ERINrkMypo.roa (hash: NIdkZJadBz8qYXRNbhuo0LCb4YMZcnXeOqxZtSChOrc=) 6: yXjHrq-s43_JYr0rLELUWWQUfRw.roa (hash: 4zzMUSCqPCS+1DFvUjbQidVA6cErC1SxAP7lBmahGck=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.crl rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.mft rsync://rpki.ripe.net/repository/DEFAULT/hdycVeFZfohWTa9WflpGZZeMe4U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 11:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:ee:9a:45:72:b5:61:c0:63:18:b4:d2:04:3b:ad:02:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85dc9c55e1597e88564daf567e5a4665978c7b85 Validity Not Before: Dec 5 13:01:18 2025 GMT Not After : Dec 6 13:01:18 2025 GMT Subject: CN=7fb153a694c5144fc8c87bbf712125ca58cd201d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:09:6c:a6:ff:19:2c:54:64:fe:ba:37:cf:15: 44:81:d0:ce:4d:ec:89:4b:3f:81:8a:20:cd:d4:ab: b2:99:2b:a4:b0:8b:d5:58:cd:ff:de:71:63:a7:d9: a9:86:3c:60:16:8d:08:ac:0a:48:e9:fb:8f:9f:73: 0b:2b:84:84:3b:92:55:ce:d8:9f:58:22:1b:37:44: 4d:fd:12:be:6b:53:6a:98:57:4d:bf:1b:2d:10:7b: 0b:c1:be:e5:c6:68:00:3d:1d:09:2a:a4:17:03:24: a5:27:fa:24:eb:ec:1f:81:36:a9:1d:22:8e:34:46: c6:73:e9:95:b5:39:15:40:ee:fc:d4:81:d4:38:be: c5:f3:8f:ce:c3:84:b5:df:f2:e2:3a:a2:c2:12:a2: d0:c1:cf:2c:0d:5b:b2:f5:3d:f7:ef:b3:a7:33:27: 8e:85:68:de:f7:ef:ee:66:0c:11:ff:17:c9:6b:06: 7a:c1:16:3d:81:1a:ee:e1:f0:1e:91:22:a8:ef:45: 75:fc:cf:e6:05:47:fc:27:5a:76:12:d0:64:d1:e6: ba:5f:07:aa:76:5b:8a:f7:37:30:c5:fd:34:c3:ea: 12:fa:92:60:41:98:29:82:99:8c:71:03:fa:c4:ce: c0:74:f0:2d:ea:a2:15:86:c7:0f:b7:a0:08:9b:5a: 29:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:B1:53:A6:94:C5:14:4F:C8:C8:7B:BF:71:21:25:CA:58:CD:20:1D X509v3 Authority Key Identifier: keyid:85:DC:9C:55:E1:59:7E:88:56:4D:AF:56:7E:5A:46:65:97:8C:7B:85 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdycVeFZfohWTa9WflpGZZeMe4U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4a:ed:d9:b0:d4:96:20:c2:28:fd:6e:b0:6d:61:1d:e6:24:9b: 66:b9:8b:81:21:b6:61:d4:18:59:0f:8a:4c:68:da:f7:ed:1c: ed:4c:79:59:2f:b4:64:6a:b7:45:0b:06:62:58:1d:55:7d:ef: 3f:3e:6e:0e:60:5a:03:0b:c7:00:79:b7:4e:e6:8e:48:29:cc: 3f:5f:02:d7:32:5b:9c:70:9f:ea:c2:eb:37:5d:28:fa:81:06: cd:f2:9d:25:82:54:15:43:a0:f0:58:d0:39:0e:34:4f:5d:eb: 9c:12:17:81:77:36:e9:66:93:ef:de:da:6a:77:a9:4f:9c:31: 8b:f2:c7:57:3c:c4:2d:93:9d:a6:48:a9:23:31:23:0d:16:b9: 1d:4b:21:82:8f:e4:86:f8:c8:4f:3c:73:61:d3:4c:3b:6f:2d: 1e:ec:35:15:6a:e5:6c:e6:b6:00:82:f5:df:8d:68:8b:7e:11: 83:97:48:83:68:8f:cd:cd:ca:62:5c:3b:e3:a5:6a:c9:11:d8: 81:53:99:eb:6d:e0:7a:6d:97:9e:0f:85:0a:0b:7d:97:81:02: 89:45:a9:55:a5:d5:44:79:a1:a6:a8:38:ab:7a:c5:27:41:61: 78:e3:91:d8:d4:2f:d3:76:a6:ad:cf:dd:da:53:87:14:0c:db: 88:72:46:7a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrumkVytWHAYxi00gQ7rQIvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1ZGM5YzU1ZTE1OTdlODg1NjRkYWY1NjdlNWE0NjY1OTc4 YzdiODUwHhcNMjUxMjA1MTMwMTE4WhcNMjUxMjA2MTMwMTE4WjAzMTEwLwYDVQQD Eyg3ZmIxNTNhNjk0YzUxNDRmYzhjODdiYmY3MTIxMjVjYTU4Y2QyMDFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAywlspv8ZLFRk/ro3zxVEgdDOTeyJ Sz+BiiDN1KuymSuksIvVWM3/3nFjp9mphjxgFo0IrApI6fuPn3MLK4SEO5JVztif WCIbN0RN/RK+a1NqmFdNvxstEHsLwb7lxmgAPR0JKqQXAySlJ/ok6+wfgTapHSKO NEbGc+mVtTkVQO781IHUOL7F84/Ow4S13/LiOqLCEqLQwc8sDVuy9T3377OnMyeO hWje9+/uZgwR/xfJawZ6wRY9gRru4fAekSKo70V1/M/mBUf8J1p2EtBk0ea6Xweq dluK9zcwxf00w+oS+pJgQZgpgpmMcQP6xM7AdPAt6qIVhscPt6AIm1oplwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH+xU6aUxRRPyMh7v3EhJcpYzSAdMB8GA1UdIwQY MBaAFIXcnFXhWX6IVk2vVn5aRmWXjHuFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGR5Y1ZlRlpmb2hXVGE5V2ZscEdaWmVNZTRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi9mMDdmYmMtNGMzMi00ZDg3LWE0Mjkt ODZlYTE5ZDI5MTYzLzEvaGR5Y1ZlRlpmb2hXVGE5V2ZscEdaWmVNZTRVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi9mMDdmYmMtNGMzMi00ZDg3LWE0MjktODZlYTE5ZDI5MTYz LzEvaGR5Y1ZlRlpmb2hXVGE5V2ZscEdaWmVNZTRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASu3ZsNSW IMIo/W6wbWEd5iSbZrmLgSG2YdQYWQ+KTGja9+0c7Ux5WS+0ZGq3RQsGYlgdVX3v Pz5uDmBaAwvHAHm3TuaOSCnMP18C1zJbnHCf6sLrN10o+oEGzfKdJYJUFUOg8FjQ OQ40T13rnBIXgXc26WaT797aanepT5wxi/LHVzzELZOdpkipIzEjDRa5HUshgo/k hvjITzxzYdNMO28tHuw1FWrlbOa2AIL1341oi34Rg5dIg2iPzc3KYlw746VqyRHY gVOZ623gem2Xng+FCgt9l4ECiUWpVaXVRHmhpqg4q3rFJ0FheOOR2NQv03amrc/d 2lOHFAzbiHJGeg== -----END CERTIFICATE-----Generated at Fri Dec 5 15:53:48 2025 by rpki-client