This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/54cabe-0052-455f-8047-45fba5c97593/1/HNuFgmJdF7G8uuE_xt20OruV0v4.mft File: HNuFgmJdF7G8uuE_xt20OruV0v4.mft (raw, json) Hash identifier: 3cJUOIjMtgn5EbZfSvStjP4i3WhB25Zhy7hFt8isG7E= Subject key identifier: 5A:51:8C:0D:40:C5:1A:29:F0:8B:5B:92:5D:83:9F:55:93:D2:38:02 Authority key identifier: 1C:DB:85:82:62:5D:17:B1:BC:BA:E1:3F:C6:DD:B4:3A:BB:95:D2:FE Certificate issuer: /CN=1cdb8582625d17b1bcbae13fc6ddb43abb95d2fe Certificate serial: 019AF5E602CBCC1E2A0C266975BC6F36F261 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HNuFgmJdF7G8uuE_xt20OruV0v4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/54cabe-0052-455f-8047-45fba5c97593/1/HNuFgmJdF7G8uuE_xt20OruV0v4.mft Manifest number: 0320 Signing time: Sat 06 Dec 2025 23:01:23 +0000 Manifest this update: Sat 06 Dec 2025 23:01:23 +0000 Manifest next update: Sun 07 Dec 2025 23:01:23 +0000 Files and hashes: 1: HNuFgmJdF7G8uuE_xt20OruV0v4.crl (hash: gJY9rI+T55BqyzmDWj4nPTgfT6CHcFf4QknZAr6Ddy8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/54cabe-0052-455f-8047-45fba5c97593/1/HNuFgmJdF7G8uuE_xt20OruV0v4.crl rsync://rpki.ripe.net/repository/DEFAULT/28/54cabe-0052-455f-8047-45fba5c97593/1/HNuFgmJdF7G8uuE_xt20OruV0v4.mft rsync://rpki.ripe.net/repository/DEFAULT/HNuFgmJdF7G8uuE_xt20OruV0v4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:e6:02:cb:cc:1e:2a:0c:26:69:75:bc:6f:36:f2:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1cdb8582625d17b1bcbae13fc6ddb43abb95d2fe Validity Not Before: Dec 6 23:01:23 2025 GMT Not After : Dec 7 23:01:23 2025 GMT Subject: CN=5a518c0d40c51a29f08b5b925d839f5593d23802 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:9f:dc:12:f8:29:12:40:b1:be:5d:75:a9:98: 2f:6b:b3:a9:45:3c:97:4b:01:49:98:69:53:db:f7: e3:58:fc:50:a7:e9:09:df:64:81:e6:42:27:99:a1: 98:45:7d:31:75:f9:e2:83:05:30:da:49:a4:80:5a: b0:4e:0f:53:29:2a:06:72:76:af:1e:a6:66:5f:f3: 47:1c:e6:03:ce:1b:9d:52:2c:cb:58:dd:54:67:16: da:74:14:b8:d5:08:e3:ce:0d:3c:ce:64:03:50:f1: 7c:74:c4:c4:b2:3a:8d:60:98:55:f6:15:84:0e:ff: 4c:63:3a:50:ef:bc:fc:54:5e:17:2c:39:e3:07:8c: c4:4a:e9:18:cf:a0:40:47:e4:79:46:58:d8:39:9f: 55:a3:d3:29:c5:ef:54:e8:50:2a:3f:ff:0e:8d:da: 92:55:ce:8a:c2:9c:9f:1c:ac:9f:a1:d4:b0:4e:4e: b6:5d:a0:17:59:76:a7:fa:34:6e:b4:7d:81:1e:98: ed:59:ac:d7:78:40:bb:b4:e2:a8:71:13:ca:27:c8: b2:77:27:fe:be:ae:e7:cc:92:b3:12:33:ea:38:1c: 55:b5:1f:81:9e:6f:51:1a:f4:f6:58:51:1e:58:3b: e4:27:44:1b:47:1c:4b:82:2a:0b:0c:f4:d9:80:1b: 40:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:51:8C:0D:40:C5:1A:29:F0:8B:5B:92:5D:83:9F:55:93:D2:38:02 X509v3 Authority Key Identifier: keyid:1C:DB:85:82:62:5D:17:B1:BC:BA:E1:3F:C6:DD:B4:3A:BB:95:D2:FE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HNuFgmJdF7G8uuE_xt20OruV0v4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/54cabe-0052-455f-8047-45fba5c97593/1/HNuFgmJdF7G8uuE_xt20OruV0v4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/54cabe-0052-455f-8047-45fba5c97593/1/HNuFgmJdF7G8uuE_xt20OruV0v4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6c:f1:19:84:dd:8c:5d:36:6e:a0:d6:33:6f:8f:8e:3c:70:84: 28:a0:e3:ed:6a:16:f6:50:be:7d:34:78:ca:c6:81:67:8e:41: d1:10:f1:ba:40:4b:37:fd:2e:cd:b9:cd:0e:ad:46:fa:d5:4e: 77:4f:a5:af:c9:ef:59:5d:40:59:3f:fc:68:31:df:c4:ac:90: a1:3a:f8:21:7b:8c:1d:0d:bd:1a:5e:30:bd:5d:8e:65:13:19: 98:d6:d4:0d:56:f3:77:9c:f1:ed:0c:ad:96:c9:43:57:ba:4f: 6b:13:41:fe:ff:3e:ba:9c:78:c0:27:40:bc:4d:c6:53:d9:36: 3b:24:96:b9:91:ea:31:dc:25:7e:64:72:94:98:5b:6f:cb:a4: 65:81:38:fa:1a:8d:11:29:ab:50:10:21:c0:b9:49:16:83:7c: 24:c8:42:d4:ed:82:8c:3d:f5:10:64:2f:75:57:bf:4a:9f:35: 0b:22:21:db:a3:68:59:ef:10:67:e7:df:0f:bc:5d:7b:fa:e6: 9d:a1:85:4e:31:89:28:13:5a:dc:2f:84:10:f0:d3:fd:4f:fe: 3d:ae:4d:bb:aa:c3:0f:8f:c0:c2:5c:59:c1:91:d6:ac:d9:87: 62:93:73:1e:cd:98:9a:63:2b:65:c3:e0:ef:44:16:09:75:b9: 6d:72:49:7c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr15gLLzB4qDCZpdbxvNvJhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjZGI4NTgyNjI1ZDE3YjFiY2JhZTEzZmM2ZGRiNDNhYmI5 NWQyZmUwHhcNMjUxMjA2MjMwMTIzWhcNMjUxMjA3MjMwMTIzWjAzMTEwLwYDVQQD Eyg1YTUxOGMwZDQwYzUxYTI5ZjA4YjViOTI1ZDgzOWY1NTkzZDIzODAyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzJ/cEvgpEkCxvl11qZgva7OpRTyX SwFJmGlT2/fjWPxQp+kJ32SB5kInmaGYRX0xdfnigwUw2kmkgFqwTg9TKSoGcnav HqZmX/NHHOYDzhudUizLWN1UZxbadBS41Qjjzg08zmQDUPF8dMTEsjqNYJhV9hWE Dv9MYzpQ77z8VF4XLDnjB4zESukYz6BAR+R5RljYOZ9Vo9Mpxe9U6FAqP/8OjdqS Vc6KwpyfHKyfodSwTk62XaAXWXan+jRutH2BHpjtWazXeEC7tOKocRPKJ8iydyf+ vq7nzJKzEjPqOBxVtR+Bnm9RGvT2WFEeWDvkJ0QbRxxLgioLDPTZgBtACwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFpRjA1AxRop8Itbkl2Dn1WT0jgCMB8GA1UdIwQY MBaAFBzbhYJiXRexvLrhP8bdtDq7ldL+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSE51RmdtSmRGN0c4dXVFX3h0MjBPcnVWMHY0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC81NGNhYmUtMDA1Mi00NTVmLTgwNDct NDVmYmE1Yzk3NTkzLzEvSE51RmdtSmRGN0c4dXVFX3h0MjBPcnVWMHY0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC81NGNhYmUtMDA1Mi00NTVmLTgwNDctNDVmYmE1Yzk3NTkz LzEvSE51RmdtSmRGN0c4dXVFX3h0MjBPcnVWMHY0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbPEZhN2M XTZuoNYzb4+OPHCEKKDj7WoW9lC+fTR4ysaBZ45B0RDxukBLN/0uzbnNDq1G+tVO d0+lr8nvWV1AWT/8aDHfxKyQoTr4IXuMHQ29Gl4wvV2OZRMZmNbUDVbzd5zx7Qyt lslDV7pPaxNB/v8+upx4wCdAvE3GU9k2OySWuZHqMdwlfmRylJhbb8ukZYE4+hqN ESmrUBAhwLlJFoN8JMhC1O2CjD31EGQvdVe/Sp81CyIh26NoWe8QZ+ffD7xde/rm naGFTjGJKBNa3C+EEPDT/U/+Pa5Nu6rDD4/AwlxZwZHWrNmHYpNzHs2YmmMrZcPg 70QWCXW5bXJJfA== -----END CERTIFICATE-----Generated at Sun Dec 7 08:19:35 2025 by rpki-client