This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.mft File: hWNQMF8ROHUA8DxaBv9zqhNZLxw.mft (raw, json) Hash identifier: zWpAAvcEN6ZrY+W7e34ZIvL92aiyT5LWsB6K0krZU7c= Subject key identifier: 85:F8:BB:A5:DF:1A:AF:F3:FF:0B:30:E6:98:00:9F:5B:18:33:D8:33 Authority key identifier: 85:63:50:30:5F:11:38:75:00:F0:3C:5A:06:FF:73:AA:13:59:2F:1C Certificate issuer: /CN=856350305f11387500f03c5a06ff73aa13592f1c Certificate serial: 019AF19B5C1DF263C28F18917E9FABE48190 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWNQMF8ROHUA8DxaBv9zqhNZLxw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.mft Manifest number: 175D Signing time: Sat 06 Dec 2025 03:01:21 +0000 Manifest this update: Sat 06 Dec 2025 03:01:21 +0000 Manifest next update: Sun 07 Dec 2025 03:01:21 +0000 Files and hashes: 1: hWNQMF8ROHUA8DxaBv9zqhNZLxw.crl (hash: yxs1eRoWkyTn0IpscnRC7XvE0YKy9cqlfblnMCpydys=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.crl rsync://rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.mft rsync://rpki.ripe.net/repository/DEFAULT/hWNQMF8ROHUA8DxaBv9zqhNZLxw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:5c:1d:f2:63:c2:8f:18:91:7e:9f:ab:e4:81:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=856350305f11387500f03c5a06ff73aa13592f1c Validity Not Before: Dec 6 03:01:21 2025 GMT Not After : Dec 7 03:01:21 2025 GMT Subject: CN=85f8bba5df1aaff3ff0b30e698009f5b1833d833 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d3:f6:75:9e:24:b2:9c:07:0c:73:40:d9:76: c0:94:ff:e3:52:61:84:b3:bf:4b:71:eb:90:0f:8b: 98:68:a8:22:5b:ae:1a:6c:e2:86:24:0e:e7:96:73: 48:27:ea:1a:28:02:6b:c5:69:9a:cf:6c:39:d7:c6: f1:58:88:44:ee:77:0c:cb:ea:8c:b4:b3:4f:64:4d: d6:81:4a:27:a1:66:cf:f8:11:29:51:e5:fa:6f:df: 4e:5f:61:03:0f:58:8d:eb:7a:45:26:f4:e8:e4:a0: 8d:d2:37:e8:fd:73:ca:7f:48:03:09:68:74:f5:6e: 16:39:29:24:7b:4e:1a:64:93:c2:d9:f9:6d:8c:b3: 49:79:4e:00:4a:a9:0a:d6:18:2d:5d:ec:ef:da:c4: 23:1f:0f:e0:8b:40:34:1e:fa:30:c0:e7:4c:55:25: 45:54:81:99:43:82:92:83:85:5a:b0:05:9d:b9:a7: b9:c4:bc:eb:9d:de:ee:40:4f:c3:3b:31:a0:0e:22: 5f:cd:8f:5b:cd:0b:f8:13:45:cf:6d:48:48:75:10: 31:71:1f:06:76:35:d2:fd:08:7a:9e:f0:97:22:ed: ce:f6:42:13:3b:18:c1:1d:98:1a:4e:e5:0b:24:dc: 0a:5d:36:71:fb:11:4c:f5:f3:e5:41:7b:4d:c8:c7: b3:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:F8:BB:A5:DF:1A:AF:F3:FF:0B:30:E6:98:00:9F:5B:18:33:D8:33 X509v3 Authority Key Identifier: keyid:85:63:50:30:5F:11:38:75:00:F0:3C:5A:06:FF:73:AA:13:59:2F:1C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWNQMF8ROHUA8DxaBv9zqhNZLxw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/7129e7-8247-4bbd-b017-ecec1b2edb59/1/hWNQMF8ROHUA8DxaBv9zqhNZLxw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:48:29:2b:15:64:95:3f:a0:e6:79:f1:a6:e8:f0:25:78:2a: ab:9b:17:fe:43:04:12:8d:1a:25:98:47:f1:92:59:87:8f:6f: 4e:86:12:aa:11:aa:b5:5a:64:cd:cc:9e:df:73:28:a1:00:2b: 81:5b:04:d0:77:31:6d:50:bd:dd:6c:dc:af:92:b7:61:14:b2: d8:7d:d8:ab:44:be:2e:fe:99:40:83:8b:1f:c5:0e:11:d3:d8: 6b:86:c5:1f:9d:c3:15:6f:bf:bf:4a:5a:e1:bc:4a:fe:08:3d: bc:5b:77:c1:6e:79:db:49:44:f4:de:e0:1e:03:cc:0c:39:c7: 30:c6:5b:17:8d:4f:d5:68:41:24:d3:77:1d:cf:ce:bd:c4:08: 0e:f2:f7:7b:af:80:35:87:3a:98:01:72:5d:ec:27:df:b5:92: 65:98:34:4f:89:ad:e6:16:c1:a0:a1:c7:02:33:a6:28:6c:a9: d7:08:d6:65:de:42:b9:9e:33:2e:44:15:85:39:d2:d3:13:3d: f3:88:75:8c:2e:20:f7:8c:d9:03:bd:6c:e7:23:4d:4a:20:6d: aa:d3:a0:a9:17:d2:4d:b7:14:85:84:12:dc:7e:76:6a:13:59: a6:74:42:6b:1d:ac:e2:77:2e:6d:d6:fc:57:34:20:0a:20:3d: 79:fb:d2:b5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm1wd8mPCjxiRfp+r5IGQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1NjM1MDMwNWYxMTM4NzUwMGYwM2M1YTA2ZmY3M2FhMTM1 OTJmMWMwHhcNMjUxMjA2MDMwMTIxWhcNMjUxMjA3MDMwMTIxWjAzMTEwLwYDVQQD Eyg4NWY4YmJhNWRmMWFhZmYzZmYwYjMwZTY5ODAwOWY1YjE4MzNkODMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx9P2dZ4kspwHDHNA2XbAlP/jUmGE s79LceuQD4uYaKgiW64abOKGJA7nlnNIJ+oaKAJrxWmaz2w518bxWIhE7ncMy+qM tLNPZE3WgUonoWbP+BEpUeX6b99OX2EDD1iN63pFJvTo5KCN0jfo/XPKf0gDCWh0 9W4WOSkke04aZJPC2fltjLNJeU4ASqkK1hgtXezv2sQjHw/gi0A0HvowwOdMVSVF VIGZQ4KSg4VasAWduae5xLzrnd7uQE/DOzGgDiJfzY9bzQv4E0XPbUhIdRAxcR8G djXS/Qh6nvCXIu3O9kITOxjBHZgaTuULJNwKXTZx+xFM9fPlQXtNyMezlwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIX4u6XfGq/z/wsw5pgAn1sYM9gzMB8GA1UdIwQY MBaAFIVjUDBfETh1APA8Wgb/c6oTWS8cMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaFdOUU1GOFJPSFVBOER4YUJ2OXpxaE5aTHh3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC83MTI5ZTctODI0Ny00YmJkLWIwMTct ZWNlYzFiMmVkYjU5LzEvaFdOUU1GOFJPSFVBOER4YUJ2OXpxaE5aTHh3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZC83MTI5ZTctODI0Ny00YmJkLWIwMTctZWNlYzFiMmVkYjU5 LzEvaFdOUU1GOFJPSFVBOER4YUJ2OXpxaE5aTHh3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADkgpKxVk lT+g5nnxpujwJXgqq5sX/kMEEo0aJZhH8ZJZh49vToYSqhGqtVpkzcye33MooQAr gVsE0HcxbVC93Wzcr5K3YRSy2H3Yq0S+Lv6ZQIOLH8UOEdPYa4bFH53DFW+/v0pa 4bxK/gg9vFt3wW5520lE9N7gHgPMDDnHMMZbF41P1WhBJNN3Hc/OvcQIDvL3e6+A NYc6mAFyXewn37WSZZg0T4mt5hbBoKHHAjOmKGyp1wjWZd5CuZ4zLkQVhTnS0xM9 84h1jC4g94zZA71s5yNNSiBtqtOgqRfSTbcUhYQS3H52ahNZpnRCax2s4ncubdb8 VzQgCiA9efvStQ== -----END CERTIFICATE-----Generated at Sat Dec 6 07:59:54 2025 by rpki-client