This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft File: HH3TyBbYWWCARyBUNICV7SuFUeU.mft (raw, json) Hash identifier: v6XsDhX3BBMGKne7kPoot8lDROw+Uxqq5pWTHDQGDgI= Subject key identifier: 79:58:07:3B:CE:16:51:82:4E:0B:B1:9F:8A:EB:1F:EF:AD:C9:9A:82 Authority key identifier: 1C:7D:D3:C8:16:D8:59:60:80:47:20:54:34:80:95:ED:2B:85:51:E5 Certificate issuer: /CN=1c7dd3c816d8596080472054348095ed2b8551e5 Certificate serial: 019AF164651ED812482C6553A94254C7F983 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft Manifest number: 14D4 Signing time: Sat 06 Dec 2025 02:01:19 +0000 Manifest this update: Sat 06 Dec 2025 02:01:19 +0000 Manifest next update: Sun 07 Dec 2025 02:01:19 +0000 Files and hashes: 1: HH3TyBbYWWCARyBUNICV7SuFUeU.crl (hash: WjXD+Z3Mo+IaHAmMn/y88OAr6fkhUx+iRE+R9/clkpM=) 2: lUApR8rVpWyDLR1GadE8v1PzIFI.roa (hash: SjTc2RPVxxZZujKF5tyIKpHPh6Uad/TapUg1uEd/j6M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.crl rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:64:65:1e:d8:12:48:2c:65:53:a9:42:54:c7:f9:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c7dd3c816d8596080472054348095ed2b8551e5 Validity Not Before: Dec 6 02:01:19 2025 GMT Not After : Dec 7 02:01:19 2025 GMT Subject: CN=7958073bce1651824e0bb19f8aeb1fefadc99a82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a6:26:55:70:ae:e4:06:cc:53:1e:68:f7:a2: 3f:1a:04:02:38:b5:78:01:11:7d:c3:d5:75:36:79: 8e:d4:3d:89:4e:0b:a0:77:d4:cd:3a:88:cd:93:b6: 1b:8a:f7:f7:5a:a0:2d:38:1a:01:4a:08:64:80:bc: b3:38:30:9e:bd:3e:63:a3:c3:8a:9a:12:cf:ad:02: 43:49:a2:ef:c7:bc:24:2a:57:c9:06:95:65:8c:a9: 4a:89:0e:0d:cd:f0:6a:5d:38:65:9c:0b:ae:7d:9a: 41:c5:53:38:34:b6:e9:fa:7f:42:2c:4a:71:c8:95: 88:af:30:ec:bb:9c:c1:c8:0b:75:f7:20:f0:3a:7e: b9:89:75:d5:49:0d:ed:c6:53:94:ef:b9:37:34:bb: 1c:8a:9a:ec:cd:31:8c:90:3b:a4:47:0e:d9:20:7b: 3a:7f:6f:57:65:2e:b3:23:03:e3:74:60:06:83:91: 07:50:d5:b7:71:e7:c9:2e:b4:d8:39:a8:47:11:be: a5:49:26:df:9a:42:9d:d5:a6:63:b9:28:86:d9:23: 23:f6:72:b0:bc:43:a6:d7:3f:f5:de:a3:b9:88:8f: 5e:fc:2d:b7:4d:05:5a:b9:84:c8:c3:91:b1:ed:0c: 19:f1:1d:a7:57:f9:d6:51:94:0c:a1:d7:37:ca:c8: a5:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:58:07:3B:CE:16:51:82:4E:0B:B1:9F:8A:EB:1F:EF:AD:C9:9A:82 X509v3 Authority Key Identifier: keyid:1C:7D:D3:C8:16:D8:59:60:80:47:20:54:34:80:95:ED:2B:85:51:E5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2d:02:b9:50:80:a9:7c:8b:45:a9:19:bd:c6:6f:40:56:db:c5: 8c:40:dd:4a:65:5f:d0:1d:75:6c:a1:9b:d0:b8:71:f7:34:06: 4e:93:62:06:f0:b9:8c:99:4a:15:a0:40:fa:de:91:49:fd:d1: 91:7c:8d:6f:ae:48:cf:06:45:16:0c:86:d9:43:ce:85:6e:d3: b1:df:e6:d0:6c:f3:41:f4:18:75:39:ac:2c:93:44:35:9c:f5: 46:18:9a:83:73:7f:4a:64:5d:c7:ec:91:30:18:fa:0d:b5:b8: ca:54:fa:e2:85:6b:df:09:88:a1:5c:2a:ef:b1:ef:6b:80:12: 62:2f:be:24:77:d1:0f:bc:e1:40:e4:29:de:98:b5:45:25:ec: e0:12:ef:4e:80:f4:21:1f:c4:2b:26:90:0b:3e:29:ad:5b:c4: 19:45:f1:f1:80:d8:97:53:fa:59:a8:99:0c:c4:86:1c:9e:a1: 53:3e:49:53:ad:d1:54:4d:73:44:e4:03:01:73:fe:b4:7c:f3: 0d:2d:f0:84:78:25:bf:00:2f:54:f5:4f:eb:9e:c4:a4:73:f3: 55:15:0e:8e:d6:24:7e:5e:e6:0a:25:27:e1:e8:f6:5e:92:15: ef:f2:6c:1a:ad:19:ae:ed:05:3b:d4:77:a9:a8:93:3f:f3:91: 0f:c2:4f:27 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxZGUe2BJILGVTqUJUx/mDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjN2RkM2M4MTZkODU5NjA4MDQ3MjA1NDM0ODA5NWVkMmI4 NTUxZTUwHhcNMjUxMjA2MDIwMTE5WhcNMjUxMjA3MDIwMTE5WjAzMTEwLwYDVQQD Eyg3OTU4MDczYmNlMTY1MTgyNGUwYmIxOWY4YWViMWZlZmFkYzk5YTgyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxaYmVXCu5AbMUx5o96I/GgQCOLV4 ARF9w9V1NnmO1D2JTgugd9TNOojNk7Ybivf3WqAtOBoBSghkgLyzODCevT5jo8OK mhLPrQJDSaLvx7wkKlfJBpVljKlKiQ4NzfBqXThlnAuufZpBxVM4NLbp+n9CLEpx yJWIrzDsu5zByAt19yDwOn65iXXVSQ3txlOU77k3NLsciprszTGMkDukRw7ZIHs6 f29XZS6zIwPjdGAGg5EHUNW3cefJLrTYOahHEb6lSSbfmkKd1aZjuSiG2SMj9nKw vEOm1z/13qO5iI9e/C23TQVauYTIw5Gx7QwZ8R2nV/nWUZQModc3ysilTwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHlYBzvOFlGCTguxn4rrH++tyZqCMB8GA1UdIwQY MBaAFBx908gW2FlggEcgVDSAle0rhVHlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEgzVHlCYllXV0NBUnlCVU5JQ1Y3U3VGVWVVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9iYWFiMzYtODg4Ni00MjA2LTllNzkt Y2MyY2Q3ZDMxYTI2LzEvSEgzVHlCYllXV0NBUnlCVU5JQ1Y3U3VGVWVVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi9iYWFiMzYtODg4Ni00MjA2LTllNzktY2MyY2Q3ZDMxYTI2 LzEvSEgzVHlCYllXV0NBUnlCVU5JQ1Y3U3VGVWVVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALQK5UICp fItFqRm9xm9AVtvFjEDdSmVf0B11bKGb0Lhx9zQGTpNiBvC5jJlKFaBA+t6RSf3R kXyNb65IzwZFFgyG2UPOhW7Tsd/m0GzzQfQYdTmsLJNENZz1Rhiag3N/SmRdx+yR MBj6DbW4ylT64oVr3wmIoVwq77Hva4ASYi++JHfRD7zhQOQp3pi1RSXs4BLvToD0 IR/EKyaQCz4prVvEGUXx8YDYl1P6WaiZDMSGHJ6hUz5JU63RVE1zROQDAXP+tHzz DS3whHglvwAvVPVP657EpHPzVRUOjtYkfl7mCiUn4ej2XpIV7/JsGq0Zru0FO9R3 qaiTP/ORD8JPJw== -----END CERTIFICATE-----Generated at Sat Dec 6 09:11:24 2025 by rpki-client