This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.mft File: HlqvPQaD3IoNWMZDgm4WbTwozKk.mft (raw, json) Hash identifier: 2+/oXDXSKYdY7ol/K6PpSRQKdvP7Uj3myZogPpq7LOg= Subject key identifier: 94:A9:84:4A:D5:85:12:A0:42:5E:3B:01:2F:1F:60:CF:47:13:AE:EF Authority key identifier: 1E:5A:AF:3D:06:83:DC:8A:0D:58:C6:43:82:6E:16:6D:3C:28:CC:A9 Certificate issuer: /CN=1e5aaf3d0683dc8a0d58c643826e166d3c28cca9 Certificate serial: 019AF35208ED775AA604A67A60F39E496E6A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlqvPQaD3IoNWMZDgm4WbTwozKk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.mft Manifest number: 176C Signing time: Sat 06 Dec 2025 11:00:30 +0000 Manifest this update: Sat 06 Dec 2025 11:00:30 +0000 Manifest next update: Sun 07 Dec 2025 11:00:30 +0000 Files and hashes: 1: HlqvPQaD3IoNWMZDgm4WbTwozKk.crl (hash: zTwsFkey7aZPFCJywelt55rQrLm6K/D5VOx1OsuBaOE=) 2: RKyzB9bUwZYi5TsxSj7CGxt394k.roa (hash: Hh9WM4Bb/ik/WwsavUvg8LAp8Fn8QkXbUV4e4PeWt3s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.crl rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.mft rsync://rpki.ripe.net/repository/DEFAULT/HlqvPQaD3IoNWMZDgm4WbTwozKk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:52:08:ed:77:5a:a6:04:a6:7a:60:f3:9e:49:6e:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1e5aaf3d0683dc8a0d58c643826e166d3c28cca9 Validity Not Before: Dec 6 11:00:30 2025 GMT Not After : Dec 7 11:00:30 2025 GMT Subject: CN=94a9844ad58512a0425e3b012f1f60cf4713aeef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:b0:95:8e:e0:db:86:2c:81:22:f6:cd:5b:2f: 66:21:6f:90:20:be:06:02:4c:74:39:31:6e:c9:11: c9:bd:3c:79:e8:25:07:99:8d:2a:8f:b1:1c:41:ab: ae:69:ea:e8:b7:9b:68:7f:0e:95:bc:12:51:04:e6: 35:50:04:9b:bf:72:3a:ef:cf:e5:a2:61:9a:3f:2d: 06:7b:9f:01:c1:24:c1:c9:31:e0:69:87:a2:be:17: 0d:7a:c0:47:b8:d6:bc:d5:05:3b:bb:51:5b:9e:2f: bb:8f:21:a9:87:a5:5e:06:28:d8:24:b0:a6:ce:0b: 42:f8:23:e1:87:df:46:ba:7b:32:91:ff:d3:75:26: 9c:9d:90:43:08:23:73:8b:c1:6d:ee:58:4e:2f:97: ae:5b:e2:4c:c4:46:27:4a:7e:b2:cf:1b:dd:b6:8e: 4b:de:1a:a6:19:40:5f:3e:31:33:51:ef:f2:82:1f: b3:7e:8e:f0:b6:98:b4:db:90:c0:90:f4:30:66:a4: ed:29:d7:09:eb:26:74:81:ef:4c:3d:e5:ef:1d:e3: af:6a:9f:a7:67:55:8a:42:d1:80:9e:c8:de:d6:58: 12:9f:f6:11:2a:3a:42:7b:0f:06:f4:fc:eb:60:60: fe:7a:93:4e:f6:73:14:b2:3d:c5:1f:06:f0:97:7d: d2:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:A9:84:4A:D5:85:12:A0:42:5E:3B:01:2F:1F:60:CF:47:13:AE:EF X509v3 Authority Key Identifier: keyid:1E:5A:AF:3D:06:83:DC:8A:0D:58:C6:43:82:6E:16:6D:3C:28:CC:A9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlqvPQaD3IoNWMZDgm4WbTwozKk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6b:ca:ae:e9:3b:9e:b7:bf:1b:c5:72:86:d9:cd:76:6b:09:ff: 85:78:97:3a:8c:f8:91:2f:05:ae:62:65:69:91:94:ad:2a:64: bc:eb:a3:22:e6:d4:46:ab:74:1a:ac:4b:2a:2d:62:48:c8:1a: e6:bb:a0:24:5f:57:ec:07:c2:da:03:47:70:45:23:e0:f4:97: 3a:2f:4d:84:5f:72:d2:d0:e2:67:83:bb:45:88:fb:ae:82:9c: 5a:09:48:1f:86:0b:7e:f1:e2:69:a7:d3:c9:c4:aa:b4:03:fb: de:bf:54:ca:b4:68:30:33:6f:78:8d:61:91:8a:c4:fd:d8:01: b2:5c:ec:77:69:f3:21:05:c1:22:18:71:7d:99:d7:e7:fe:a1: 1b:a0:c8:9c:54:89:ff:ef:86:4e:44:21:af:41:1f:9e:f6:76: d7:6b:12:26:f3:9b:b4:e7:d7:8e:db:e6:8f:26:c7:7b:57:51: 32:88:91:f7:80:18:11:1a:1e:44:ad:e0:dc:e1:26:93:08:7c: 2a:fc:67:8a:cf:5d:1b:46:04:62:d1:fa:85:a4:c2:3b:16:b5: 38:f6:c1:c6:32:62:00:7d:44:2c:a6:22:97:3f:90:ea:01:03: 5c:fa:32:77:c2:ae:dc:5c:cb:eb:ec:ef:e4:02:d9:b9:33:4e: ab:59:5a:87 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzUgjtd1qmBKZ6YPOeSW5qMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlNWFhZjNkMDY4M2RjOGEwZDU4YzY0MzgyNmUxNjZkM2My OGNjYTkwHhcNMjUxMjA2MTEwMDMwWhcNMjUxMjA3MTEwMDMwWjAzMTEwLwYDVQQD Eyg5NGE5ODQ0YWQ1ODUxMmEwNDI1ZTNiMDEyZjFmNjBjZjQ3MTNhZWVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArLCVjuDbhiyBIvbNWy9mIW+QIL4G Akx0OTFuyRHJvTx56CUHmY0qj7EcQauuaerot5tofw6VvBJRBOY1UASbv3I678/l omGaPy0Ge58BwSTByTHgaYeivhcNesBHuNa81QU7u1Fbni+7jyGph6VeBijYJLCm zgtC+CPhh99Gunsykf/TdSacnZBDCCNzi8Ft7lhOL5euW+JMxEYnSn6yzxvdto5L 3hqmGUBfPjEzUe/ygh+zfo7wtpi025DAkPQwZqTtKdcJ6yZ0ge9MPeXvHeOvap+n Z1WKQtGAnsje1lgSn/YRKjpCew8G9PzrYGD+epNO9nMUsj3FHwbwl33SfwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJSphErVhRKgQl47AS8fYM9HE67vMB8GA1UdIwQY MBaAFB5arz0Gg9yKDVjGQ4JuFm08KMypMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSGxxdlBRYUQzSW9OV01aRGdtNFdiVHdvektrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi84M2RmNWItZDE1My00Y2I2LWJhZjMt NGNkMzhiNzU4ZDVjLzEvSGxxdlBRYUQzSW9OV01aRGdtNFdiVHdvektrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNi84M2RmNWItZDE1My00Y2I2LWJhZjMtNGNkMzhiNzU4ZDVj LzEvSGxxdlBRYUQzSW9OV01aRGdtNFdiVHdvektrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAa8qu6Tue t78bxXKG2c12awn/hXiXOoz4kS8FrmJlaZGUrSpkvOujIubURqt0GqxLKi1iSMga 5rugJF9X7AfC2gNHcEUj4PSXOi9NhF9y0tDiZ4O7RYj7roKcWglIH4YLfvHiaafT ycSqtAP73r9UyrRoMDNveI1hkYrE/dgBslzsd2nzIQXBIhhxfZnX5/6hG6DInFSJ /++GTkQhr0EfnvZ212sSJvObtOfXjtvmjybHe1dRMoiR94AYERoeRK3g3OEmkwh8 Kvxnis9dG0YEYtH6haTCOxa1OPbBxjJiAH1ELKYilz+Q6gEDXPoyd8Ku3FzL6+zv 5ALZuTNOq1lahw== -----END CERTIFICATE-----Generated at Sat Dec 6 14:55:53 2025 by rpki-client