This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.mft File: HwGmewzRspUViU7OlrUurL4EG9Q.mft (raw, json) Hash identifier: m1Y2iSKCZLezhf0CS10/ONK9OVtgrEjSFDgZcDBbH0M= Subject key identifier: A7:98:E7:BC:C7:0E:CA:7B:6A:F6:F2:41:76:15:7C:AC:37:01:48:A0 Authority key identifier: 1F:01:A6:7B:0C:D1:B2:95:15:89:4E:CE:96:B5:2E:AC:BE:04:1B:D4 Certificate issuer: /CN=1f01a67b0cd1b29515894ece96b52eacbe041bd4 Certificate serial: 019AF0F5CC1F92CEFD1215EB98DAE47B7F56 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HwGmewzRspUViU7OlrUurL4EG9Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.mft Manifest number: 0A93 Signing time: Sat 06 Dec 2025 00:00:31 +0000 Manifest this update: Sat 06 Dec 2025 00:00:31 +0000 Manifest next update: Sun 07 Dec 2025 00:00:31 +0000 Files and hashes: 1: HwGmewzRspUViU7OlrUurL4EG9Q.crl (hash: yupWDQgZY36ZCe5MzcDk8LtTxWTMtVCagke3uqp0l4E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.crl rsync://rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.mft rsync://rpki.ripe.net/repository/DEFAULT/HwGmewzRspUViU7OlrUurL4EG9Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 00:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:f5:cc:1f:92:ce:fd:12:15:eb:98:da:e4:7b:7f:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1f01a67b0cd1b29515894ece96b52eacbe041bd4 Validity Not Before: Dec 6 00:00:31 2025 GMT Not After : Dec 7 00:00:31 2025 GMT Subject: CN=a798e7bcc70eca7b6af6f24176157cac370148a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:fa:8d:13:65:26:22:19:be:09:87:15:c9:e2: c8:9a:fa:fb:25:02:1b:99:2d:e9:2a:e3:a7:00:68: e8:05:b5:4f:bd:ac:9a:6b:41:35:ce:60:0b:6d:69: 81:78:68:d9:b0:4d:03:4e:3d:58:1a:ca:3d:23:04: 85:e3:fe:d2:eb:87:b3:f5:42:ff:6b:f1:f0:04:12: 02:b5:4b:a0:f6:9d:b7:5c:41:69:57:44:bd:7a:84: 60:d4:dc:e5:a7:6a:18:fd:ce:a6:96:4e:2c:ed:cb: e0:2f:3a:ff:8e:aa:bd:32:dd:05:a2:13:a8:87:e4: d4:95:78:8a:dd:df:be:4d:0f:8d:d9:86:2b:60:42: ad:f4:19:f6:ed:48:dd:57:66:7f:ca:49:32:d4:de: ae:17:5c:91:bc:16:08:27:e0:0d:73:81:3b:7f:22: 25:12:e6:93:29:77:e5:01:16:62:b9:98:98:bb:e2: f1:72:4e:0b:96:f6:d2:09:9e:a5:80:a8:65:9b:e8: 07:7a:af:aa:80:73:b1:4a:02:b2:a9:51:ea:fe:9b: 7b:2e:34:4d:ec:6d:43:81:e6:6c:c7:51:0a:d7:ed: f8:8c:94:19:16:02:3c:f8:d8:87:c3:71:c5:9c:d2: d0:36:37:fe:52:b9:6c:9b:d7:7f:c3:af:cb:dc:74: fb:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:98:E7:BC:C7:0E:CA:7B:6A:F6:F2:41:76:15:7C:AC:37:01:48:A0 X509v3 Authority Key Identifier: keyid:1F:01:A6:7B:0C:D1:B2:95:15:89:4E:CE:96:B5:2E:AC:BE:04:1B:D4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HwGmewzRspUViU7OlrUurL4EG9Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:0d:4f:69:36:2e:39:33:95:81:2a:dc:0c:32:37:08:08:23: e3:84:9d:05:d9:53:dc:e4:87:f0:07:27:00:ae:7d:37:a5:06: e3:06:83:cf:e3:cb:13:fd:95:d9:a6:89:24:85:13:a2:84:9a: b1:67:c5:66:e7:9e:b2:bc:17:f8:aa:2a:fb:f0:00:07:31:5c: 71:42:0d:c2:10:86:98:5c:df:8e:c7:60:c0:a1:ac:1e:70:59: f7:45:5f:27:8d:5c:76:41:d3:da:15:41:cf:19:c1:98:0b:20: 12:1b:56:fc:c6:05:13:0c:34:64:d7:29:06:a7:16:86:67:61: 81:c8:84:80:d0:33:64:26:63:49:9b:45:26:a6:1c:b7:b2:13: 8d:77:f6:d3:12:64:d6:f8:7f:19:6c:a8:b4:3c:d8:e7:69:95: 9c:1e:e6:cc:f9:e6:75:fe:7f:56:da:37:c2:74:aa:cc:cc:d8: 4b:c7:e2:ad:57:df:d6:09:f6:bd:6f:33:5c:5b:10:cb:9e:2f: a9:c6:23:21:2c:91:cd:7f:02:f3:f9:d5:e4:cf:f9:2c:0e:53: e9:b2:55:1a:19:73:cd:29:96:28:5a:94:38:f3:0e:1e:23:15: d7:8b:99:69:23:77:3f:fa:b9:7d:5d:59:ac:16:b1:a7:db:1b: b3:9a:74:3d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrw9cwfks79EhXrmNrke39WMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFmMDFhNjdiMGNkMWIyOTUxNTg5NGVjZTk2YjUyZWFjYmUw NDFiZDQwHhcNMjUxMjA2MDAwMDMxWhcNMjUxMjA3MDAwMDMxWjAzMTEwLwYDVQQD EyhhNzk4ZTdiY2M3MGVjYTdiNmFmNmYyNDE3NjE1N2NhYzM3MDE0OGEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyPqNE2UmIhm+CYcVyeLImvr7JQIb mS3pKuOnAGjoBbVPvayaa0E1zmALbWmBeGjZsE0DTj1YGso9IwSF4/7S64ez9UL/ a/HwBBICtUug9p23XEFpV0S9eoRg1Nzlp2oY/c6mlk4s7cvgLzr/jqq9Mt0FohOo h+TUlXiK3d++TQ+N2YYrYEKt9Bn27UjdV2Z/ykky1N6uF1yRvBYIJ+ANc4E7fyIl EuaTKXflARZiuZiYu+Lxck4LlvbSCZ6lgKhlm+gHeq+qgHOxSgKyqVHq/pt7LjRN 7G1DgeZsx1EK1+34jJQZFgI8+NiHw3HFnNLQNjf+Urlsm9d/w6/L3HT7DwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKeY57zHDsp7avbyQXYVfKw3AUigMB8GA1UdIwQY MBaAFB8BpnsM0bKVFYlOzpa1Lqy+BBvUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSHdHbWV3elJzcFVWaVU3T2xyVXVyTDRFRzlRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC9lYTJlOTMtMzFkMC00OGFkLTg3ZWMt YmRjMTE3MTIyZWZiLzEvSHdHbWV3elJzcFVWaVU3T2xyVXVyTDRFRzlRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZC9lYTJlOTMtMzFkMC00OGFkLTg3ZWMtYmRjMTE3MTIyZWZi LzEvSHdHbWV3elJzcFVWaVU3T2xyVXVyTDRFRzlRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQQ1PaTYu OTOVgSrcDDI3CAgj44SdBdlT3OSH8AcnAK59N6UG4waDz+PLE/2V2aaJJIUTooSa sWfFZueesrwX+Koq+/AABzFccUINwhCGmFzfjsdgwKGsHnBZ90VfJ41cdkHT2hVB zxnBmAsgEhtW/MYFEww0ZNcpBqcWhmdhgciEgNAzZCZjSZtFJqYct7ITjXf20xJk 1vh/GWyotDzY52mVnB7mzPnmdf5/Vto3wnSqzMzYS8firVff1gn2vW8zXFsQy54v qcYjISyRzX8C8/nV5M/5LA5T6bJVGhlzzSmWKFqUOPMOHiMV14uZaSN3P/q5fV1Z rBaxp9sbs5p0PQ== -----END CERTIFICATE-----Generated at Sat Dec 6 07:26:29 2025 by rpki-client