This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/fbadff-75d7-4cba-9735-66ec2eaf646f/1/HPtt-TN1oGxWgsBXwP0qcwYhilQ.mft File: HPtt-TN1oGxWgsBXwP0qcwYhilQ.mft (raw, json) Hash identifier: prRIjzr+S+7rXy6RI4gNAI/NAbqUHC/7N8LObWS31pc= Subject key identifier: 8E:72:AD:5E:62:79:B0:32:47:DF:EB:77:B9:43:D9:60:CB:A1:0C:B4 Authority key identifier: 1C:FB:6D:F9:33:75:A0:6C:56:82:C0:57:C0:FD:2A:73:06:21:8A:54 Certificate issuer: /CN=1cfb6df93375a06c5682c057c0fd2a7306218a54 Certificate serial: 019AF19B71F438AD0B331FAC7F9B09009AC2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HPtt-TN1oGxWgsBXwP0qcwYhilQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/fbadff-75d7-4cba-9735-66ec2eaf646f/1/HPtt-TN1oGxWgsBXwP0qcwYhilQ.mft Manifest number: 036A Signing time: Sat 06 Dec 2025 03:01:27 +0000 Manifest this update: Sat 06 Dec 2025 03:01:27 +0000 Manifest next update: Sun 07 Dec 2025 03:01:27 +0000 Files and hashes: 1: Dm5YScd3hN-X30vyWwpd9nEvmc4.roa (hash: vtcKOSOsC15effmA9O/KkJoHDTDi9oZ8YT35or202RY=) 2: HPtt-TN1oGxWgsBXwP0qcwYhilQ.crl (hash: arpblnYO8XegoLh0s3slrsTw4AIFjFgaerjgEkg8lwA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/fbadff-75d7-4cba-9735-66ec2eaf646f/1/HPtt-TN1oGxWgsBXwP0qcwYhilQ.crl rsync://rpki.ripe.net/repository/DEFAULT/02/fbadff-75d7-4cba-9735-66ec2eaf646f/1/HPtt-TN1oGxWgsBXwP0qcwYhilQ.mft rsync://rpki.ripe.net/repository/DEFAULT/HPtt-TN1oGxWgsBXwP0qcwYhilQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:71:f4:38:ad:0b:33:1f:ac:7f:9b:09:00:9a:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1cfb6df93375a06c5682c057c0fd2a7306218a54 Validity Not Before: Dec 6 03:01:27 2025 GMT Not After : Dec 7 03:01:27 2025 GMT Subject: CN=8e72ad5e6279b03247dfeb77b943d960cba10cb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:46:e7:8b:d5:e5:4f:ac:98:f9:f1:80:33:87: 45:39:35:08:9c:7d:1e:47:de:ea:b9:18:e0:06:09: b0:7c:c6:1c:67:c7:eb:e3:15:ef:71:26:78:5d:6b: eb:70:e4:02:06:00:fa:84:39:bb:2f:80:fc:71:19: ee:3b:2e:94:e7:0a:89:f3:21:0f:38:d1:4a:8b:d5: 49:f2:e9:7e:8f:a3:f7:a3:1e:a4:79:69:fb:33:74: 29:fc:fd:0a:6d:55:ce:78:3f:1d:cd:ba:61:84:b7: d5:f4:cc:01:2b:4a:bc:70:6d:23:1a:4c:ff:3a:53: d3:a9:5f:68:d9:7a:ba:a4:8e:7b:38:01:51:07:cd: a8:93:68:e0:d6:5c:93:99:45:c4:f6:75:31:37:4a: 30:59:37:25:cd:cf:e7:c1:20:70:b0:d6:dc:d9:85: e3:5b:66:de:57:ad:ea:dc:48:59:f4:25:3d:c3:fc: ca:51:51:93:87:a2:bb:df:f4:b3:8b:4b:c4:23:d1: 11:e5:f8:80:e0:a5:49:b3:02:0d:56:02:94:de:9a: b5:86:92:4e:c5:05:d5:43:4a:79:6a:23:9c:60:11: dc:3a:33:2a:59:24:ca:c4:1f:99:e4:7e:62:dc:ce: 10:87:31:6e:f0:dc:87:c8:54:91:56:ed:92:eb:15: 2d:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:72:AD:5E:62:79:B0:32:47:DF:EB:77:B9:43:D9:60:CB:A1:0C:B4 X509v3 Authority Key Identifier: keyid:1C:FB:6D:F9:33:75:A0:6C:56:82:C0:57:C0:FD:2A:73:06:21:8A:54 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HPtt-TN1oGxWgsBXwP0qcwYhilQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/fbadff-75d7-4cba-9735-66ec2eaf646f/1/HPtt-TN1oGxWgsBXwP0qcwYhilQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/fbadff-75d7-4cba-9735-66ec2eaf646f/1/HPtt-TN1oGxWgsBXwP0qcwYhilQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 37:43:40:ef:1b:9d:2f:ba:e5:8d:fd:a1:06:35:0c:6a:6a:0f: f9:9d:01:62:10:c5:60:b1:eb:56:bb:d2:42:25:9b:db:a1:5a: 9b:eb:76:cc:8d:4e:a3:13:b6:51:e5:9e:a0:fc:80:27:47:e1: 94:1e:de:71:9a:41:e1:92:44:ac:68:5b:34:b1:0f:61:23:b4: c3:36:17:96:cf:fb:14:4e:c7:81:7a:4b:7b:ee:27:84:b0:b9: 37:a3:cc:3d:42:7b:57:71:d6:fb:05:17:87:6f:f2:28:3b:a5: 4a:c4:7a:20:65:46:99:cf:38:b3:f7:e9:35:7e:78:f2:b0:b7: 27:a6:5a:51:4a:ef:02:0d:52:e6:82:86:c2:fb:7c:88:e5:b0: c3:c9:2c:c7:a6:82:df:b6:ba:7a:ed:c0:2b:c1:91:47:06:9f: 47:2f:aa:77:e8:05:ff:61:e7:be:a8:09:c3:69:a2:8e:8a:4e: 89:da:2e:a2:b5:08:af:09:dc:94:31:65:14:a7:07:6b:ab:51: ba:68:ff:93:e9:c8:5a:6d:ba:a2:3a:1a:fc:ff:1d:5e:22:45: e6:40:68:ab:43:ae:64:49:e5:cf:77:22:c4:46:d0:16:31:a9: 04:c5:23:56:f2:94:8b:7b:90:65:87:a1:65:1e:d9:a2:c0:12: c2:6d:2f:c2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm3H0OK0LMx+sf5sJAJrCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjZmI2ZGY5MzM3NWEwNmM1NjgyYzA1N2MwZmQyYTczMDYy MThhNTQwHhcNMjUxMjA2MDMwMTI3WhcNMjUxMjA3MDMwMTI3WjAzMTEwLwYDVQQD Eyg4ZTcyYWQ1ZTYyNzliMDMyNDdkZmViNzdiOTQzZDk2MGNiYTEwY2I0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtUbni9XlT6yY+fGAM4dFOTUInH0e R97quRjgBgmwfMYcZ8fr4xXvcSZ4XWvrcOQCBgD6hDm7L4D8cRnuOy6U5wqJ8yEP ONFKi9VJ8ul+j6P3ox6keWn7M3Qp/P0KbVXOeD8dzbphhLfV9MwBK0q8cG0jGkz/ OlPTqV9o2Xq6pI57OAFRB82ok2jg1lyTmUXE9nUxN0owWTclzc/nwSBwsNbc2YXj W2beV63q3EhZ9CU9w/zKUVGTh6K73/Szi0vEI9ER5fiA4KVJswINVgKU3pq1hpJO xQXVQ0p5aiOcYBHcOjMqWSTKxB+Z5H5i3M4QhzFu8NyHyFSRVu2S6xUtaQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI5yrV5iebAyR9/rd7lD2WDLoQy0MB8GA1UdIwQY MBaAFBz7bfkzdaBsVoLAV8D9KnMGIYpUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSFB0dC1UTjFvR3hXZ3NCWHdQMHFjd1loaWxRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9mYmFkZmYtNzVkNy00Y2JhLTk3MzUt NjZlYzJlYWY2NDZmLzEvSFB0dC1UTjFvR3hXZ3NCWHdQMHFjd1loaWxRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi9mYmFkZmYtNzVkNy00Y2JhLTk3MzUtNjZlYzJlYWY2NDZm LzEvSFB0dC1UTjFvR3hXZ3NCWHdQMHFjd1loaWxRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAN0NA7xud L7rljf2hBjUMamoP+Z0BYhDFYLHrVrvSQiWb26Fam+t2zI1OoxO2UeWeoPyAJ0fh lB7ecZpB4ZJErGhbNLEPYSO0wzYXls/7FE7HgXpLe+4nhLC5N6PMPUJ7V3HW+wUX h2/yKDulSsR6IGVGmc84s/fpNX548rC3J6ZaUUrvAg1S5oKGwvt8iOWww8ksx6aC 37a6eu3AK8GRRwafRy+qd+gF/2HnvqgJw2mijopOidouorUIrwnclDFlFKcHa6tR umj/k+nIWm26ojoa/P8dXiJF5kBoq0OuZEnlz3cixEbQFjGpBMUjVvKUi3uQZYeh ZR7ZosASwm0vwg== -----END CERTIFICATE-----Generated at Sat Dec 6 08:01:07 2025 by rpki-client