This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/48bf98-7e15-45be-bd39-205079e51c13/1/HrwURUFHAQyh700E0hASXh7X0ho.mft File: HrwURUFHAQyh700E0hASXh7X0ho.mft (raw, json) Hash identifier: fQ57Gl6rTCzwEPco049mDKAxqAf9vSVf4N2fbyHrZu0= Subject key identifier: 11:9D:1A:C9:CD:4E:6B:9D:16:BD:82:40:F2:F4:F9:15:91:90:09:97 Authority key identifier: 1E:BC:14:45:41:47:01:0C:A1:EF:4D:04:D2:10:12:5E:1E:D7:D2:1A Certificate issuer: /CN=1ebc14454147010ca1ef4d04d210125e1ed7d21a Certificate serial: 019AF0885C47D236167615E4DDC11F3D7B15 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HrwURUFHAQyh700E0hASXh7X0ho.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/48bf98-7e15-45be-bd39-205079e51c13/1/HrwURUFHAQyh700E0hASXh7X0ho.mft Manifest number: 0920 Signing time: Fri 05 Dec 2025 22:00:59 +0000 Manifest this update: Fri 05 Dec 2025 22:00:59 +0000 Manifest next update: Sat 06 Dec 2025 22:00:59 +0000 Files and hashes: 1: HrwURUFHAQyh700E0hASXh7X0ho.crl (hash: hg979qw2aEdBE7G5dVjj2Uxe6LfgkUgC4dLi18LxyfM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/48bf98-7e15-45be-bd39-205079e51c13/1/HrwURUFHAQyh700E0hASXh7X0ho.crl rsync://rpki.ripe.net/repository/DEFAULT/17/48bf98-7e15-45be-bd39-205079e51c13/1/HrwURUFHAQyh700E0hASXh7X0ho.mft rsync://rpki.ripe.net/repository/DEFAULT/HrwURUFHAQyh700E0hASXh7X0ho.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 22:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:88:5c:47:d2:36:16:76:15:e4:dd:c1:1f:3d:7b:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1ebc14454147010ca1ef4d04d210125e1ed7d21a Validity Not Before: Dec 5 22:00:59 2025 GMT Not After : Dec 6 22:00:59 2025 GMT Subject: CN=119d1ac9cd4e6b9d16bd8240f2f4f91591900997 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:4b:ad:cc:bb:f0:de:74:e0:2e:79:b3:5d:37: e8:cc:af:ec:9e:71:3a:88:63:86:e5:25:80:b7:cd: bf:5e:f2:3c:6d:81:d3:6e:c9:99:18:68:92:1b:15: 02:60:19:f5:bd:18:38:1f:26:12:a3:1a:a8:b4:39: e2:6c:74:6f:fe:6c:41:36:0e:23:e2:3b:93:a4:1a: d6:cd:8f:cf:54:06:81:e6:01:39:f3:8e:84:5f:90: d1:7e:b4:d4:dc:38:c9:a4:bc:17:fb:b2:99:ee:c4: 45:d3:99:07:01:ed:15:ce:5f:69:64:1c:16:62:1c: 8f:da:a3:0f:15:01:9f:09:1e:3e:8d:26:45:71:f2: 7d:e5:55:79:e5:0e:51:d4:3a:f1:f7:2d:4d:33:ef: 1b:6b:82:d7:81:a4:b2:e5:64:62:6a:ac:28:22:f9: 42:0a:6c:ec:29:80:af:b0:db:74:ba:37:5c:42:b1: 18:50:9b:0e:9d:23:4f:72:e5:8f:6a:be:82:40:9a: 98:c2:ab:a9:e0:32:9f:e2:64:b7:92:43:46:a4:f7: 88:d7:24:c3:a0:5e:45:30:85:86:4d:65:c1:2d:69: ce:25:73:d4:77:df:e4:a8:ae:1a:d2:c3:72:c8:ce: d8:3d:ed:b3:d1:75:9c:8f:7c:19:bd:fc:1e:13:b0: 81:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:9D:1A:C9:CD:4E:6B:9D:16:BD:82:40:F2:F4:F9:15:91:90:09:97 X509v3 Authority Key Identifier: keyid:1E:BC:14:45:41:47:01:0C:A1:EF:4D:04:D2:10:12:5E:1E:D7:D2:1A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HrwURUFHAQyh700E0hASXh7X0ho.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/48bf98-7e15-45be-bd39-205079e51c13/1/HrwURUFHAQyh700E0hASXh7X0ho.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/48bf98-7e15-45be-bd39-205079e51c13/1/HrwURUFHAQyh700E0hASXh7X0ho.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 31:49:1f:b6:07:34:47:0d:9e:f6:18:10:48:0b:00:36:b0:78: e4:ce:13:38:a4:7a:fd:10:0e:7a:dc:20:b2:39:3d:74:5d:6a: 5a:1c:d3:7c:b8:4b:fb:d1:1f:00:df:3f:b8:e2:b4:b3:6a:5d: 1b:23:b4:8a:93:24:8c:92:d6:33:8f:43:b2:da:e1:50:3c:65: bc:6e:ef:65:27:f0:f2:48:48:11:e8:56:08:8d:2f:23:ef:92: a6:de:71:4d:38:8c:ba:0e:48:5a:2e:26:b6:81:a5:c2:64:57: 65:e6:72:2b:ff:8e:8c:1b:62:df:3c:15:03:37:f3:d5:b3:a6: 08:af:a0:ab:81:25:ca:1a:a2:c5:da:7d:d9:b2:6b:f4:3a:64: 06:98:cd:87:04:02:d7:6d:dd:10:b7:10:fe:b6:4d:42:f9:11: 68:8d:50:95:31:13:fb:95:cf:9c:16:c0:03:3c:90:8b:14:b8: 2d:16:76:cf:64:43:ec:74:c6:e2:a9:2a:0f:96:8e:bf:14:e6: a1:63:11:39:49:32:2d:9f:61:ae:03:52:22:a5:8b:16:de:e3: 5a:89:47:b3:80:86:e6:99:fe:86:0f:8e:61:aa:08:75:3b:1d: b9:40:ed:3b:b2:2d:b2:4b:cc:92:d8:94:10:cf:87:41:8d:23: 51:5b:01:33 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwiFxH0jYWdhXk3cEfPXsVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlYmMxNDQ1NDE0NzAxMGNhMWVmNGQwNGQyMTAxMjVlMWVk N2QyMWEwHhcNMjUxMjA1MjIwMDU5WhcNMjUxMjA2MjIwMDU5WjAzMTEwLwYDVQQD EygxMTlkMWFjOWNkNGU2YjlkMTZiZDgyNDBmMmY0ZjkxNTkxOTAwOTk3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoUutzLvw3nTgLnmzXTfozK/snnE6 iGOG5SWAt82/XvI8bYHTbsmZGGiSGxUCYBn1vRg4HyYSoxqotDnibHRv/mxBNg4j 4juTpBrWzY/PVAaB5gE5846EX5DRfrTU3DjJpLwX+7KZ7sRF05kHAe0Vzl9pZBwW YhyP2qMPFQGfCR4+jSZFcfJ95VV55Q5R1Drx9y1NM+8ba4LXgaSy5WRiaqwoIvlC CmzsKYCvsNt0ujdcQrEYUJsOnSNPcuWPar6CQJqYwqup4DKf4mS3kkNGpPeI1yTD oF5FMIWGTWXBLWnOJXPUd9/kqK4a0sNyyM7YPe2z0XWcj3wZvfweE7CBnwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBGdGsnNTmudFr2CQPL0+RWRkAmXMB8GA1UdIwQY MBaAFB68FEVBRwEMoe9NBNIQEl4e19IaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSHJ3VVJVRkhBUXloNzAwRTBoQVNYaDdYMGhvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy80OGJmOTgtN2UxNS00NWJlLWJkMzkt MjA1MDc5ZTUxYzEzLzEvSHJ3VVJVRkhBUXloNzAwRTBoQVNYaDdYMGhvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy80OGJmOTgtN2UxNS00NWJlLWJkMzktMjA1MDc5ZTUxYzEz LzEvSHJ3VVJVRkhBUXloNzAwRTBoQVNYaDdYMGhvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMUkftgc0 Rw2e9hgQSAsANrB45M4TOKR6/RAOetwgsjk9dF1qWhzTfLhL+9EfAN8/uOK0s2pd GyO0ipMkjJLWM49DstrhUDxlvG7vZSfw8khIEehWCI0vI++Spt5xTTiMug5IWi4m toGlwmRXZeZyK/+OjBti3zwVAzfz1bOmCK+gq4Elyhqixdp92bJr9DpkBpjNhwQC 123dELcQ/rZNQvkRaI1QlTET+5XPnBbAAzyQixS4LRZ2z2RD7HTG4qkqD5aOvxTm oWMROUkyLZ9hrgNSIqWLFt7jWolHs4CG5pn+hg+OYaoIdTsduUDtO7ItskvMktiU EM+HQY0jUVsBMw== -----END CERTIFICATE-----Generated at Sat Dec 6 07:24:00 2025 by rpki-client