This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/a0e90f-2198-442e-95fc-b7f63423f192/1/hGlcglEp42VKUIs7xSn-Ols4ObE.mft File: hGlcglEp42VKUIs7xSn-Ols4ObE.mft (raw, json) Hash identifier: uI6uxPRWJcvAwblN+SmVGtTP8A6gQpObohQ0yJxSl+0= Subject key identifier: B4:49:5D:E2:31:E5:76:A4:1C:BE:F6:F3:5B:E7:6A:3E:7F:D4:25:D3 Authority key identifier: 84:69:5C:82:51:29:E3:65:4A:50:8B:3B:C5:29:FE:3A:5B:38:39:B1 Certificate issuer: /CN=84695c825129e3654a508b3bc529fe3a5b3839b1 Certificate serial: 019AF12E13C4B7F5B2F9696A5F7553C986DE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hGlcglEp42VKUIs7xSn-Ols4ObE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/a0e90f-2198-442e-95fc-b7f63423f192/1/hGlcglEp42VKUIs7xSn-Ols4ObE.mft Manifest number: 12B2 Signing time: Sat 06 Dec 2025 01:02:00 +0000 Manifest this update: Sat 06 Dec 2025 01:02:00 +0000 Manifest next update: Sun 07 Dec 2025 01:02:00 +0000 Files and hashes: 1: DLIEmy-lWsyrr-sd36twYuEevio.roa (hash: aUcurTUu0ie7YyEr+ll+2DTq3WZheC8vTveKU2r56C8=) 2: hGlcglEp42VKUIs7xSn-Ols4ObE.crl (hash: 7Bn1esAdXhqYBLZG6Ow0fxo/i+nmQimcBQhkaGoJPoU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/a0e90f-2198-442e-95fc-b7f63423f192/1/hGlcglEp42VKUIs7xSn-Ols4ObE.crl rsync://rpki.ripe.net/repository/DEFAULT/27/a0e90f-2198-442e-95fc-b7f63423f192/1/hGlcglEp42VKUIs7xSn-Ols4ObE.mft rsync://rpki.ripe.net/repository/DEFAULT/hGlcglEp42VKUIs7xSn-Ols4ObE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:13:c4:b7:f5:b2:f9:69:6a:5f:75:53:c9:86:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84695c825129e3654a508b3bc529fe3a5b3839b1 Validity Not Before: Dec 6 01:02:00 2025 GMT Not After : Dec 7 01:02:00 2025 GMT Subject: CN=b4495de231e576a41cbef6f35be76a3e7fd425d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:00:bd:19:8c:21:d2:f8:7b:63:83:d8:d2:3a: 7b:8c:b9:3c:98:c7:5a:18:79:eb:09:b5:c2:73:bf: a6:7a:d5:aa:bd:5f:66:6c:36:d9:02:e6:f8:fa:60: 29:93:f1:54:07:7c:26:d5:8f:ef:d7:1e:84:4d:1b: 02:77:47:72:f2:de:74:46:a6:be:c6:ca:47:62:a6: 8c:3c:b8:a6:d8:42:63:8d:40:b0:64:dd:67:9a:df: 82:11:e0:a2:a8:89:c2:13:ff:e6:ef:5b:8b:bc:2e: 26:85:92:52:8b:1f:60:16:08:f9:9d:b8:4c:2d:d7: f1:28:04:cc:7b:1a:5d:dd:12:14:9c:7e:76:b7:16: 96:d0:d4:e6:03:18:10:dc:2e:45:fd:30:10:74:6e: 3d:7f:fd:32:15:d6:fb:44:ad:29:be:c6:88:19:ec: 1c:86:3b:a5:34:5f:d3:7b:0c:ac:5f:21:f8:4d:7c: 0a:b0:6b:26:7d:bb:8e:4c:9c:70:99:5f:12:d8:f5: 8c:47:e6:32:2a:ef:b9:5a:4b:50:51:c3:59:ee:23: 07:6c:d5:b9:c5:cf:02:8d:df:5c:56:49:18:72:1c: 51:27:c1:b6:4e:b1:14:7c:52:c2:db:f1:70:0c:28: 25:c4:f0:8b:06:af:24:62:c6:c2:f0:16:71:c9:69: ef:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:49:5D:E2:31:E5:76:A4:1C:BE:F6:F3:5B:E7:6A:3E:7F:D4:25:D3 X509v3 Authority Key Identifier: keyid:84:69:5C:82:51:29:E3:65:4A:50:8B:3B:C5:29:FE:3A:5B:38:39:B1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hGlcglEp42VKUIs7xSn-Ols4ObE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/a0e90f-2198-442e-95fc-b7f63423f192/1/hGlcglEp42VKUIs7xSn-Ols4ObE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/27/a0e90f-2198-442e-95fc-b7f63423f192/1/hGlcglEp42VKUIs7xSn-Ols4ObE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:00:ab:ef:3e:df:38:0c:00:65:37:73:47:f4:c1:7b:b0:93: d4:30:e8:a3:b3:ee:74:6f:da:4c:5d:ad:21:b0:07:f1:71:5d: f1:12:28:75:08:49:84:b4:b0:43:e3:23:02:e2:82:3e:72:85: 7a:1a:17:bf:6d:9d:45:c3:4e:d0:2b:db:5c:61:3a:ec:f8:c3: a8:8a:9f:53:f5:8c:50:77:73:7a:09:aa:93:38:07:7b:e2:35: ed:ac:ad:cb:01:81:b0:36:b0:2b:43:c8:fd:4b:84:55:e6:98: cc:08:a7:d9:74:9f:41:85:43:29:7d:36:28:ef:ce:1e:40:30: c0:e7:fb:c0:1e:e7:88:35:68:87:b7:e5:e1:68:71:e6:ef:0f: 21:24:ca:cf:ef:e0:85:15:22:69:fc:3b:00:d0:b1:1c:fb:ad: 4a:44:06:91:10:35:7d:19:a3:50:ad:9d:99:ea:00:b2:4a:b4: db:fc:b1:dd:9c:9d:bf:06:02:05:f5:f6:00:8a:85:ce:3e:b6: 2c:91:35:b2:5e:c5:69:c4:00:e2:ab:89:78:4f:3b:14:60:58: be:e2:c1:9b:cd:e0:04:6b:66:82:ed:be:d8:91:f2:ae:5e:b3: 9f:aa:1a:f1:ea:c1:f4:cf:e0:2b:8d:1f:a8:74:53:56:b6:97: 4c:9a:15:7a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLhPEt/Wy+WlqX3VTyYbeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0Njk1YzgyNTEyOWUzNjU0YTUwOGIzYmM1MjlmZTNhNWIz ODM5YjEwHhcNMjUxMjA2MDEwMjAwWhcNMjUxMjA3MDEwMjAwWjAzMTEwLwYDVQQD EyhiNDQ5NWRlMjMxZTU3NmE0MWNiZWY2ZjM1YmU3NmEzZTdmZDQyNWQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqQC9GYwh0vh7Y4PY0jp7jLk8mMda GHnrCbXCc7+metWqvV9mbDbZAub4+mApk/FUB3wm1Y/v1x6ETRsCd0dy8t50Rqa+ xspHYqaMPLim2EJjjUCwZN1nmt+CEeCiqInCE//m71uLvC4mhZJSix9gFgj5nbhM LdfxKATMexpd3RIUnH52txaW0NTmAxgQ3C5F/TAQdG49f/0yFdb7RK0pvsaIGewc hjulNF/TewysXyH4TXwKsGsmfbuOTJxwmV8S2PWMR+YyKu+5WktQUcNZ7iMHbNW5 xc8Cjd9cVkkYchxRJ8G2TrEUfFLC2/FwDCglxPCLBq8kYsbC8BZxyWnvyQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLRJXeIx5XakHL7281vnaj5/1CXTMB8GA1UdIwQY MBaAFIRpXIJRKeNlSlCLO8Up/jpbODmxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaEdsY2dsRXA0MlZLVUlzN3hTbi1PbHM0T2JFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy9hMGU5MGYtMjE5OC00NDJlLTk1ZmMt YjdmNjM0MjNmMTkyLzEvaEdsY2dsRXA0MlZLVUlzN3hTbi1PbHM0T2JFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNy9hMGU5MGYtMjE5OC00NDJlLTk1ZmMtYjdmNjM0MjNmMTky LzEvaEdsY2dsRXA0MlZLVUlzN3hTbi1PbHM0T2JFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATQCr7z7f OAwAZTdzR/TBe7CT1DDoo7PudG/aTF2tIbAH8XFd8RIodQhJhLSwQ+MjAuKCPnKF ehoXv22dRcNO0CvbXGE67PjDqIqfU/WMUHdzegmqkzgHe+I17aytywGBsDawK0PI /UuEVeaYzAin2XSfQYVDKX02KO/OHkAwwOf7wB7niDVoh7fl4Whx5u8PISTKz+/g hRUiafw7ANCxHPutSkQGkRA1fRmjUK2dmeoAskq02/yx3ZydvwYCBfX2AIqFzj62 LJE1sl7FacQA4quJeE87FGBYvuLBm83gBGtmgu2+2JHyrl6zn6oa8erB9M/gK40f qHRTVraXTJoVeg== -----END CERTIFICATE-----Generated at Sat Dec 6 08:22:02 2025 by rpki-client