This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft File: h-2cuDQKwglaTLBSjl6i9zjOpnI.mft (raw, json) Hash identifier: +XDHKokvnqdqW08BiJU4gwqdzq+pG303YSarEBkcghs= Subject key identifier: 38:32:06:F1:CC:DF:01:C1:14:04:68:EE:39:F6:AF:02:E0:63:AF:4A Authority key identifier: 87:ED:9C:B8:34:0A:C2:09:5A:4C:B0:52:8E:5E:A2:F7:38:CE:A6:72 Certificate issuer: /CN=87ed9cb8340ac2095a4cb0528e5ea2f738cea672 Certificate serial: 019AF27689D35597833B2EF7E900F73D30A2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft Manifest number: 052D Signing time: Sat 06 Dec 2025 07:00:46 +0000 Manifest this update: Sat 06 Dec 2025 07:00:46 +0000 Manifest next update: Sun 07 Dec 2025 07:00:46 +0000 Files and hashes: 1: Q_kLSJOWLJDEhyzkodJRQWJEfMU.roa (hash: 2p8AahImaC704aSN2Sau8pFCrbFVUG9Dz60aJg9x1m8=) 2: h-2cuDQKwglaTLBSjl6i9zjOpnI.crl (hash: SeIxcgINzbOivRrltgecJUr6jumiUSZc7+FuO+yIWWY=) 3: hl-bZEBFsh1ZChc40Z0fl2eFeDc.roa (hash: GoC7lm4BXzEaLJBGVeCTSYenfrijER5VgtT8WvoxW4g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.crl rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 07:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:89:d3:55:97:83:3b:2e:f7:e9:00:f7:3d:30:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87ed9cb8340ac2095a4cb0528e5ea2f738cea672 Validity Not Before: Dec 6 07:00:46 2025 GMT Not After : Dec 7 07:00:46 2025 GMT Subject: CN=383206f1ccdf01c1140468ee39f6af02e063af4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:74:22:4b:de:9b:d6:7f:1d:bd:37:56:32:70: 02:e5:47:16:28:8b:e3:11:49:72:32:a2:21:de:1e: 30:19:f7:44:c0:66:5c:2d:90:72:de:80:b9:b3:ed: 80:b5:c9:c8:67:d2:ba:c0:41:31:d1:27:9c:65:b6: f4:88:73:da:83:78:fd:2f:a7:6d:d3:db:fc:c3:33: a3:5a:41:57:d2:06:ef:7f:bc:4e:cf:6f:26:ff:87: 47:bd:9c:a7:3a:33:6e:a7:cb:da:2c:f1:39:34:5e: 5b:d0:50:d9:91:3f:71:eb:eb:ee:02:26:e8:77:4a: fa:34:8b:2a:be:ee:08:a5:e4:be:b0:ee:82:7f:78: e8:61:ac:16:70:25:14:27:bf:bb:50:78:64:f9:b2: 71:19:f7:a6:f9:9b:60:32:c2:d9:77:61:84:3b:92: 71:25:af:58:ac:34:8c:51:cb:11:ae:ea:5a:1b:42: 45:02:00:4b:f4:7a:ae:b0:5e:bc:ea:53:06:71:fb: fa:a2:ad:27:cd:57:f8:17:09:ab:de:ce:ab:ef:f1: f3:db:c8:51:3b:ac:94:dd:d5:95:d2:0a:dd:a7:80: 0f:f0:cf:f5:a8:bb:19:30:36:52:03:11:69:d0:4c: 76:5c:84:c6:df:a2:e4:88:51:2f:f6:7f:cf:70:c7: 7e:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:32:06:F1:CC:DF:01:C1:14:04:68:EE:39:F6:AF:02:E0:63:AF:4A X509v3 Authority Key Identifier: keyid:87:ED:9C:B8:34:0A:C2:09:5A:4C:B0:52:8E:5E:A2:F7:38:CE:A6:72 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 64:d8:4b:02:68:cd:87:97:c1:f5:3e:be:ee:f2:03:11:5d:9d: 51:8e:4b:bf:95:cd:53:f6:24:5a:94:16:e9:0c:25:89:94:ae: 05:0a:0b:5a:dc:99:a5:32:57:17:6c:17:0e:8c:3b:e5:87:84: 18:9f:c0:a0:a1:84:f1:9e:b5:5b:4a:bd:1a:cd:95:69:95:48: 52:6b:c7:42:c5:86:fc:10:ad:80:d2:11:92:50:22:b4:8b:f3: 45:6d:fc:2e:28:14:22:08:39:77:d2:18:86:05:98:c8:2c:06: c1:f9:03:eb:5d:66:be:59:ad:ae:2e:9b:5b:18:e5:3c:4b:a6: 15:76:9f:eb:0a:51:6a:1e:aa:24:1b:f9:8c:58:05:37:70:39: a3:43:7a:8a:c7:8f:3f:27:f7:54:08:81:64:26:ab:62:1e:15: b9:eb:8f:e4:36:33:5e:e4:7b:77:96:93:d2:07:9c:28:ac:03: 1a:2e:11:59:30:e2:42:75:ac:7b:7e:e9:60:dd:a1:8c:8f:24: bf:4f:4f:76:36:0c:84:d8:90:05:8c:e9:8b:10:21:be:ea:17: 74:28:3c:bc:fa:ba:0c:fa:cc:79:7c:f7:ab:da:5f:a6:3c:81: 46:4d:c3:78:49:c7:1a:59:3e:17:03:d2:52:5e:fe:77:fe:33: 24:f4:67:b8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydonTVZeDOy736QD3PTCiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3ZWQ5Y2I4MzQwYWMyMDk1YTRjYjA1MjhlNWVhMmY3Mzhj ZWE2NzIwHhcNMjUxMjA2MDcwMDQ2WhcNMjUxMjA3MDcwMDQ2WjAzMTEwLwYDVQQD EygzODMyMDZmMWNjZGYwMWMxMTQwNDY4ZWUzOWY2YWYwMmUwNjNhZjRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwXQiS96b1n8dvTdWMnAC5UcWKIvj EUlyMqIh3h4wGfdEwGZcLZBy3oC5s+2AtcnIZ9K6wEEx0SecZbb0iHPag3j9L6dt 09v8wzOjWkFX0gbvf7xOz28m/4dHvZynOjNup8vaLPE5NF5b0FDZkT9x6+vuAibo d0r6NIsqvu4IpeS+sO6Cf3joYawWcCUUJ7+7UHhk+bJxGfem+ZtgMsLZd2GEO5Jx Ja9YrDSMUcsRrupaG0JFAgBL9HqusF686lMGcfv6oq0nzVf4Fwmr3s6r7/Hz28hR O6yU3dWV0grdp4AP8M/1qLsZMDZSAxFp0Ex2XITG36LkiFEv9n/PcMd+wwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDgyBvHM3wHBFARo7jn2rwLgY69KMB8GA1UdIwQY MBaAFIftnLg0CsIJWkywUo5eovc4zqZyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaC0yY3VEUUt3Z2xhVExCU2psNmk5empPcG5JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi82MzgxZDMtNWQwMS00YWJjLWJlZDct N2IyMWJmMzAzY2NjLzEvaC0yY3VEUUt3Z2xhVExCU2psNmk5empPcG5JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYi82MzgxZDMtNWQwMS00YWJjLWJlZDctN2IyMWJmMzAzY2Nj LzEvaC0yY3VEUUt3Z2xhVExCU2psNmk5empPcG5JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZNhLAmjN h5fB9T6+7vIDEV2dUY5Lv5XNU/YkWpQW6QwliZSuBQoLWtyZpTJXF2wXDow75YeE GJ/AoKGE8Z61W0q9Gs2VaZVIUmvHQsWG/BCtgNIRklAitIvzRW38LigUIgg5d9IY hgWYyCwGwfkD611mvlmtri6bWxjlPEumFXaf6wpRah6qJBv5jFgFN3A5o0N6iseP Pyf3VAiBZCarYh4VueuP5DYzXuR7d5aT0gecKKwDGi4RWTDiQnWse37pYN2hjI8k v09PdjYMhNiQBYzpixAhvuoXdCg8vPq6DPrMeXz3q9pfpjyBRk3DeEnHGlk+FwPS Ul7+d/4zJPRnuA== -----END CERTIFICATE-----Generated at Sat Dec 6 15:59:13 2025 by rpki-client