This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft File: HlcDhG16g2S-wwMDTbkay_9C2gw.mft (raw, json) Hash identifier: RtPKKD8KdPRJ+npMf5sz45+XApfuM5nihRbBr8eq8ZA= Subject key identifier: 9D:95:3E:97:8A:5D:CA:3B:99:AF:AB:F9:36:A3:C5:AB:FC:74:C2:21 Authority key identifier: 1E:57:03:84:6D:7A:83:64:BE:C3:03:03:4D:B9:1A:CB:FF:42:DA:0C Certificate issuer: /CN=1e5703846d7a8364bec303034db91acbff42da0c Certificate serial: 019AF2402BD5DEF0E2314F5C527C2AB4365E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft Manifest number: 0B22 Signing time: Sat 06 Dec 2025 06:01:22 +0000 Manifest this update: Sat 06 Dec 2025 06:01:22 +0000 Manifest next update: Sun 07 Dec 2025 06:01:22 +0000 Files and hashes: 1: 4PNlkOPWAaPkvxKKyZ24ywHUUNs.roa (hash: eaQPOrhXnd6IgLBTpKSTCgVJBcG3spHBZu3BsMLZw3g=) 2: HlcDhG16g2S-wwMDTbkay_9C2gw.crl (hash: vWf5exA5L8Vex8oEnT9GB1PAYNS5GNcA/GSlc24i7qE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.crl rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:40:2b:d5:de:f0:e2:31:4f:5c:52:7c:2a:b4:36:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1e5703846d7a8364bec303034db91acbff42da0c Validity Not Before: Dec 6 06:01:22 2025 GMT Not After : Dec 7 06:01:22 2025 GMT Subject: CN=9d953e978a5dca3b99afabf936a3c5abfc74c221 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:32:15:ad:2f:07:f6:45:dd:60:e1:68:54:01: 12:3b:08:db:b0:28:92:2a:0c:c8:34:2b:ef:43:d6: 2e:8d:6e:6e:ff:e1:89:53:d5:83:83:65:18:55:c1: 70:73:53:9c:69:5f:3c:61:09:19:d8:49:18:ba:98: 17:b0:0d:4d:cb:30:ac:f4:39:7f:f7:82:bb:9a:d7: 45:b6:b9:f7:99:ec:7b:8a:6d:35:0e:93:fe:81:d5: e4:cf:80:7c:e6:f5:03:69:90:87:ec:96:e4:d1:6e: 6f:7c:ff:db:43:c2:95:18:13:df:e0:4b:bd:62:b8: ec:0d:fb:4e:3b:ec:e9:a3:a3:e3:04:58:af:0b:09: 43:70:a5:59:ad:09:9b:9a:21:2c:77:8d:c4:a0:62: 00:6d:83:a9:12:f8:37:44:8d:0d:31:04:e4:11:9e: 7d:3d:fe:c3:fd:85:ea:24:07:a1:36:c6:c3:6a:38: e3:61:69:b5:38:51:d8:09:97:00:78:f1:3c:82:aa: 5d:56:36:06:08:c5:d2:4d:3b:09:cc:78:40:34:8a: c0:3c:d5:32:33:85:9b:ce:c3:8c:99:a4:08:ed:b6: 09:ba:4a:31:b3:e5:f2:59:71:1b:c2:9b:aa:37:27: dd:18:87:0b:52:d5:57:34:d6:42:3a:c7:67:eb:3d: bc:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:95:3E:97:8A:5D:CA:3B:99:AF:AB:F9:36:A3:C5:AB:FC:74:C2:21 X509v3 Authority Key Identifier: keyid:1E:57:03:84:6D:7A:83:64:BE:C3:03:03:4D:B9:1A:CB:FF:42:DA:0C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 94:e2:3e:5b:5e:df:55:62:10:d2:2e:0e:14:86:22:7e:e4:59: a1:ef:e3:99:b9:e4:85:d1:75:b9:cf:7c:19:48:28:cb:f8:14: f4:c7:38:ae:0c:75:f9:12:cf:05:9c:8b:44:94:06:33:cc:72: 9e:54:cf:f5:40:b8:45:0a:11:a2:e8:d3:95:50:56:9e:be:f3: f3:26:21:44:57:3d:ce:2c:58:d8:d2:4b:21:3c:7c:a6:b5:26: 37:07:44:f3:07:c2:c1:fe:e2:d1:45:93:c4:9e:1b:ca:0a:2e: 56:6a:8a:40:6e:34:26:2e:90:83:50:db:20:c1:1d:fe:a5:69: 1f:d5:c4:fe:76:32:80:c6:01:50:ee:41:29:f7:e5:4b:e6:b6: 78:3b:c1:cc:1b:c0:ab:c7:41:09:36:ca:e5:c0:d4:7f:69:fe: da:84:c2:b7:f6:4f:f5:d0:64:bc:2a:18:fd:37:e5:1f:2e:81: 3e:d0:81:88:88:c7:e7:06:a5:d7:f7:44:be:c3:0a:fd:0a:8a: 21:21:b6:74:f7:e7:e3:f6:d4:b7:0d:30:67:ae:e0:83:29:82: 7f:b3:05:0f:0a:14:1e:c7:1f:09:ca:e8:0f:e5:57:03:b6:59: fa:cb:5b:70:a9:4f:2b:5a:05:1f:f2:4a:eb:bc:7c:e7:20:d4: 1e:cd:12:79 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryQCvV3vDiMU9cUnwqtDZeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlNTcwMzg0NmQ3YTgzNjRiZWMzMDMwMzRkYjkxYWNiZmY0 MmRhMGMwHhcNMjUxMjA2MDYwMTIyWhcNMjUxMjA3MDYwMTIyWjAzMTEwLwYDVQQD Eyg5ZDk1M2U5NzhhNWRjYTNiOTlhZmFiZjkzNmEzYzVhYmZjNzRjMjIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuTIVrS8H9kXdYOFoVAESOwjbsCiS KgzINCvvQ9YujW5u/+GJU9WDg2UYVcFwc1OcaV88YQkZ2EkYupgXsA1NyzCs9Dl/ 94K7mtdFtrn3mex7im01DpP+gdXkz4B85vUDaZCH7Jbk0W5vfP/bQ8KVGBPf4Eu9 YrjsDftOO+zpo6PjBFivCwlDcKVZrQmbmiEsd43EoGIAbYOpEvg3RI0NMQTkEZ59 Pf7D/YXqJAehNsbDajjjYWm1OFHYCZcAePE8gqpdVjYGCMXSTTsJzHhANIrAPNUy M4WbzsOMmaQI7bYJukoxs+XyWXEbwpuqNyfdGIcLUtVXNNZCOsdn6z28twIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ2VPpeKXco7ma+r+Tajxav8dMIhMB8GA1UdIwQY MBaAFB5XA4RteoNkvsMDA025Gsv/QtoMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSGxjRGhHMTZnMlMtd3dNRFRia2F5XzlDMmd3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC9iYzY1OGYtYTUyOC00MzYwLWI1OGMt MDdiMDllNDY1MTE5LzEvSGxjRGhHMTZnMlMtd3dNRFRia2F5XzlDMmd3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNC9iYzY1OGYtYTUyOC00MzYwLWI1OGMtMDdiMDllNDY1MTE5 LzEvSGxjRGhHMTZnMlMtd3dNRFRia2F5XzlDMmd3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlOI+W17f VWIQ0i4OFIYifuRZoe/jmbnkhdF1uc98GUgoy/gU9Mc4rgx1+RLPBZyLRJQGM8xy nlTP9UC4RQoRoujTlVBWnr7z8yYhRFc9zixY2NJLITx8prUmNwdE8wfCwf7i0UWT xJ4bygouVmqKQG40Ji6Qg1DbIMEd/qVpH9XE/nYygMYBUO5BKfflS+a2eDvBzBvA q8dBCTbK5cDUf2n+2oTCt/ZP9dBkvCoY/TflHy6BPtCBiIjH5wal1/dEvsMK/QqK ISG2dPfn4/bUtw0wZ67ggymCf7MFDwoUHscfCcroD+VXA7ZZ+stbcKlPK1oFH/JK 67x85yDUHs0SeQ== -----END CERTIFICATE-----Generated at Sat Dec 6 10:18:15 2025 by rpki-client