This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/a400b2-bab4-4119-a3d1-89981c8f9e7b/1/MHXYfBl6D6BNqPIlNY0_r3hvfQs.mft File: MHXYfBl6D6BNqPIlNY0_r3hvfQs.mft (raw, json) Hash identifier: Auu2bPr4Hx00UmAs7qsITlQqcCzBLDVTQJVQ916d/B0= Subject key identifier: DA:72:46:67:C9:EA:D0:94:1B:36:6B:F5:3A:5A:77:A2:D1:35:11:D4 Authority key identifier: 30:75:D8:7C:19:7A:0F:A0:4D:A8:F2:25:35:8D:3F:AF:78:6F:7D:0B Certificate issuer: /CN=3075d87c197a0fa04da8f225358d3faf786f7d0b Certificate serial: 019AF464FA972F4B6C03668764B835F2EBB2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MHXYfBl6D6BNqPIlNY0_r3hvfQs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/a400b2-bab4-4119-a3d1-89981c8f9e7b/1/MHXYfBl6D6BNqPIlNY0_r3hvfQs.mft Manifest number: 054D Signing time: Sat 06 Dec 2025 16:00:49 +0000 Manifest this update: Sat 06 Dec 2025 16:00:49 +0000 Manifest next update: Sun 07 Dec 2025 16:00:49 +0000 Files and hashes: 1: MHXYfBl6D6BNqPIlNY0_r3hvfQs.crl (hash: wM8j7SmdEUZsTLbbbAH6jlDcoxLNxvYCOQ+kFtbrx84=) 2: _Op4bSAp0gWDx4UfTJUc97va5qw.roa (hash: tJEKSC7Hrru5HEiTFvhI8vLaAa+FAs4tPlo2cnkUBAA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/a400b2-bab4-4119-a3d1-89981c8f9e7b/1/MHXYfBl6D6BNqPIlNY0_r3hvfQs.crl rsync://rpki.ripe.net/repository/DEFAULT/13/a400b2-bab4-4119-a3d1-89981c8f9e7b/1/MHXYfBl6D6BNqPIlNY0_r3hvfQs.mft rsync://rpki.ripe.net/repository/DEFAULT/MHXYfBl6D6BNqPIlNY0_r3hvfQs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:64:fa:97:2f:4b:6c:03:66:87:64:b8:35:f2:eb:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3075d87c197a0fa04da8f225358d3faf786f7d0b Validity Not Before: Dec 6 16:00:49 2025 GMT Not After : Dec 7 16:00:49 2025 GMT Subject: CN=da724667c9ead0941b366bf53a5a77a2d13511d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:31:f3:18:01:9a:6e:31:32:e5:42:7c:5b:ff: 84:40:44:a0:34:40:f1:10:2e:fe:bc:a3:27:52:cb: 2b:d4:81:ff:1b:0e:6b:20:b2:d5:fd:83:d1:ef:f6: 76:78:5b:ac:62:fb:bf:a9:05:fe:5e:9b:a8:a6:e4: 2a:6a:19:fa:3d:15:41:00:67:92:5f:33:90:87:78: 12:5f:29:22:47:9a:db:bb:cd:ea:d4:74:6a:04:5a: 45:c4:10:49:bd:46:59:01:aa:57:80:05:e8:03:e5: 57:05:2d:62:0c:5c:46:31:3c:02:7e:ed:ea:95:db: e6:71:60:cc:92:6f:45:b3:4c:61:66:8f:91:fa:53: 06:4a:c5:b7:5a:b7:c1:9f:6e:92:96:b4:ce:75:a3: 03:bd:0f:0f:2a:83:4e:6e:c8:58:c5:d9:2d:21:42: 83:76:96:d9:64:95:3c:cf:84:ef:f7:86:66:72:97: 4e:a2:28:72:0e:54:d6:18:6a:61:6d:79:f2:0d:1f: 2d:41:36:30:49:17:7d:d3:67:d3:ca:b4:88:99:da: 6c:a7:9e:3d:0e:e3:fb:c5:6b:59:c3:94:1f:18:b2: 17:7f:7b:e0:d5:59:1b:1e:d0:75:f4:cb:08:f0:e4: 3a:1b:c5:27:32:18:e7:a8:53:3e:de:6d:69:3e:74: 05:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:72:46:67:C9:EA:D0:94:1B:36:6B:F5:3A:5A:77:A2:D1:35:11:D4 X509v3 Authority Key Identifier: keyid:30:75:D8:7C:19:7A:0F:A0:4D:A8:F2:25:35:8D:3F:AF:78:6F:7D:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MHXYfBl6D6BNqPIlNY0_r3hvfQs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a400b2-bab4-4119-a3d1-89981c8f9e7b/1/MHXYfBl6D6BNqPIlNY0_r3hvfQs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a400b2-bab4-4119-a3d1-89981c8f9e7b/1/MHXYfBl6D6BNqPIlNY0_r3hvfQs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 24:b2:97:40:82:3f:e6:a6:90:c8:1b:c4:4d:29:e3:75:9d:30: 44:ab:9d:14:e5:8b:68:3d:31:96:a0:e4:4c:f0:f3:6c:62:92: ec:f0:f9:67:a1:bf:86:eb:42:b3:b4:fc:11:9e:dd:4c:b0:a3: 83:62:91:8e:bb:5a:f8:6f:0d:9f:b4:b7:29:a6:55:ba:f4:21: 6a:cc:cb:34:75:df:99:ed:de:80:2d:af:93:0c:a0:05:d3:6e: ec:3b:9e:9b:a3:3d:e9:33:34:da:83:00:fc:56:46:14:98:67: fd:b1:94:4a:1a:17:98:72:3f:18:cf:c1:f6:d8:61:32:be:d4: f9:bc:74:ba:eb:9d:bb:2b:eb:ed:30:f3:b1:bb:52:56:ac:c2: 84:bb:39:db:f4:cd:bb:22:63:5a:d5:b6:29:8c:84:d4:40:94: f0:62:18:d7:cd:f5:9c:f4:ab:0e:5f:b9:c5:a1:af:b4:65:77: 84:f9:46:f9:83:f4:37:10:7f:02:c3:7b:42:e3:9e:d5:c0:d7: ab:32:bc:c8:09:fe:2e:2b:99:27:d1:63:fa:6e:d7:6f:29:30: 71:42:cf:43:3a:aa:bb:8f:47:e9:4f:d0:c2:5d:5f:7f:26:3a: 80:c5:53:9e:40:d1:b9:6a:41:fb:03:a2:39:3b:28:dd:dc:d7: db:1d:53:cc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0ZPqXL0tsA2aHZLg18uuyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMwNzVkODdjMTk3YTBmYTA0ZGE4ZjIyNTM1OGQzZmFmNzg2 ZjdkMGIwHhcNMjUxMjA2MTYwMDQ5WhcNMjUxMjA3MTYwMDQ5WjAzMTEwLwYDVQQD EyhkYTcyNDY2N2M5ZWFkMDk0MWIzNjZiZjUzYTVhNzdhMmQxMzUxMWQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2THzGAGabjEy5UJ8W/+EQESgNEDx EC7+vKMnUssr1IH/Gw5rILLV/YPR7/Z2eFusYvu/qQX+XpuopuQqahn6PRVBAGeS XzOQh3gSXykiR5rbu83q1HRqBFpFxBBJvUZZAapXgAXoA+VXBS1iDFxGMTwCfu3q ldvmcWDMkm9Fs0xhZo+R+lMGSsW3WrfBn26SlrTOdaMDvQ8PKoNObshYxdktIUKD dpbZZJU8z4Tv94ZmcpdOoihyDlTWGGphbXnyDR8tQTYwSRd902fTyrSImdpsp549 DuP7xWtZw5QfGLIXf3vg1VkbHtB19MsI8OQ6G8UnMhjnqFM+3m1pPnQF/QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNpyRmfJ6tCUGzZr9Tpad6LRNRHUMB8GA1UdIwQY MBaAFDB12HwZeg+gTajyJTWNP694b30LMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTUhYWWZCbDZENkJOcVBJbE5ZMF9yM2h2ZlFzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9hNDAwYjItYmFiNC00MTE5LWEzZDEt ODk5ODFjOGY5ZTdiLzEvTUhYWWZCbDZENkJOcVBJbE5ZMF9yM2h2ZlFzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy9hNDAwYjItYmFiNC00MTE5LWEzZDEtODk5ODFjOGY5ZTdi LzEvTUhYWWZCbDZENkJOcVBJbE5ZMF9yM2h2ZlFzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJLKXQII/ 5qaQyBvETSnjdZ0wRKudFOWLaD0xlqDkTPDzbGKS7PD5Z6G/hutCs7T8EZ7dTLCj g2KRjrta+G8Nn7S3KaZVuvQhaszLNHXfme3egC2vkwygBdNu7Duem6M96TM02oMA /FZGFJhn/bGUShoXmHI/GM/B9thhMr7U+bx0uuuduyvr7TDzsbtSVqzChLs52/TN uyJjWtW2KYyE1ECU8GIY1831nPSrDl+5xaGvtGV3hPlG+YP0NxB/AsN7QuOe1cDX qzK8yAn+LiuZJ9Fj+m7XbykwcULPQzqqu49H6U/Qwl1ffyY6gMVTnkDRuWpB+wOi OTso3dzX2x1TzA== -----END CERTIFICATE-----Generated at Sat Dec 6 21:22:08 2025 by rpki-client