This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft File: hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft (raw, json) Hash identifier: jvWISXReBw1tCJvA0TGrA0yUJN10YsiR+l1kNJNh1PQ= Subject key identifier: F2:F9:1E:03:89:6E:6C:51:67:42:C8:0B:1E:49:56:44:8F:6A:87:59 Authority key identifier: 84:A3:CF:11:4B:E4:FA:4C:4F:F7:6B:21:8F:AD:50:E5:17:39:16:0D Certificate issuer: /CN=84a3cf114be4fa4c4ff76b218fad50e51739160d Certificate serial: 019AF509A7929DCBCC362549716C17697874 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hKPPEUvk-kxP92shj61Q5Rc5Fg0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft Manifest number: 113F Signing time: Sat 06 Dec 2025 19:00:41 +0000 Manifest this update: Sat 06 Dec 2025 19:00:41 +0000 Manifest next update: Sun 07 Dec 2025 19:00:41 +0000 Files and hashes: 1: hKPPEUvk-kxP92shj61Q5Rc5Fg0.crl (hash: l/T5fc1T5fKNihYM1CgGvXiQNfn6Wq0tzEjGXY6/Xd8=) 2: sudojg6HDCizETctxsBEtvD9ceA.roa (hash: WBqfbYsjDjIGknBmCSsGnzqS8ek9/ghen0y1LOmx5Ns=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.crl rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft rsync://rpki.ripe.net/repository/DEFAULT/hKPPEUvk-kxP92shj61Q5Rc5Fg0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:09:a7:92:9d:cb:cc:36:25:49:71:6c:17:69:78:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84a3cf114be4fa4c4ff76b218fad50e51739160d Validity Not Before: Dec 6 19:00:41 2025 GMT Not After : Dec 7 19:00:41 2025 GMT Subject: CN=f2f91e03896e6c516742c80b1e4956448f6a8759 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:3a:0a:12:a7:d4:6a:dc:ce:e3:9f:8b:bd:f5: 04:d3:51:39:f5:af:5c:32:1f:0d:bb:4e:10:ae:ab: 32:a5:00:dd:f8:66:55:ad:17:33:a2:f2:e6:38:ed: 7f:78:07:25:77:ad:7b:30:48:27:bf:7c:15:c5:21: 44:e4:df:be:5d:20:c2:56:50:8c:fc:21:f8:d9:02: f8:f1:10:5e:b8:48:d4:47:1b:22:90:5c:ec:e8:0a: a2:e3:c7:0e:1f:ba:af:ac:ad:9f:60:73:82:b7:36: 46:81:28:af:c2:31:b1:4e:51:c1:64:49:38:df:87: 12:71:43:80:89:e8:2b:18:af:a7:6d:88:5b:62:52: 5e:ac:32:22:0a:6c:b2:db:03:4a:1a:f8:c6:c9:f9: 8c:df:e5:94:de:6b:aa:2a:7a:00:2c:88:3d:5a:12: 58:d7:af:5c:12:eb:63:10:77:ca:bd:94:0f:fb:26: cb:2b:38:6e:03:29:a7:92:6b:fb:4a:c8:87:33:32: 7a:ad:c5:94:35:71:3f:98:52:4e:be:43:16:f7:22: e4:2b:87:32:2e:a1:f1:70:c3:5d:a2:18:3b:d0:e7: 24:50:2d:e8:83:eb:c1:c4:35:5a:bb:e8:ca:ec:36: 61:d7:76:72:a4:b3:81:43:bb:bb:d4:fe:74:57:cc: 9d:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:F9:1E:03:89:6E:6C:51:67:42:C8:0B:1E:49:56:44:8F:6A:87:59 X509v3 Authority Key Identifier: keyid:84:A3:CF:11:4B:E4:FA:4C:4F:F7:6B:21:8F:AD:50:E5:17:39:16:0D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hKPPEUvk-kxP92shj61Q5Rc5Fg0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/39/605f46-7d4c-46b8-baa5-539329bed46e/1/hKPPEUvk-kxP92shj61Q5Rc5Fg0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0f:d8:a3:ce:af:83:bc:d6:8e:f4:9d:72:58:32:88:7a:79:3b: f2:8a:95:32:f0:f2:02:e9:50:05:f5:43:a2:c2:bb:34:a3:3e: 63:ed:4c:5a:97:ed:94:e5:04:a1:e3:fb:5a:08:bd:53:9c:8b: e6:20:ea:ea:a9:eb:eb:7f:f6:4c:d4:9d:2a:68:cd:8f:48:bf: 10:10:ea:73:d0:fa:0e:a1:a1:82:08:32:b7:f5:ec:a5:d9:c0: 2f:7b:f5:05:62:b3:d8:0b:fc:c4:da:9e:28:0b:6a:eb:a7:7b: 80:71:dc:3a:54:12:1b:95:0c:f0:a2:59:72:81:c6:50:c2:f5: 30:7c:25:65:93:64:b3:e3:92:02:e5:94:55:a7:4d:f1:ef:ea: 79:69:15:d7:b7:9d:ef:93:3e:23:81:36:a4:06:d1:7f:ce:05: 29:aa:f8:dd:97:2f:8e:e2:f4:91:45:d5:a6:27:9e:7a:ef:53: 36:5e:98:53:7e:d4:92:ec:45:42:ef:61:8e:84:7d:9b:3e:13: 1b:d1:4d:a9:ab:e6:99:dd:6f:76:e6:86:3f:a5:90:2f:84:32: 0a:11:c0:1f:79:f6:c9:bf:0b:71:d8:5f:f2:2e:0f:3b:f3:68: 37:84:88:54:b3:71:3a:23:a3:fc:65:9c:2e:fa:cd:89:a9:ee: 9f:bb:a5:ca -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1CaeSncvMNiVJcWwXaXh0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0YTNjZjExNGJlNGZhNGM0ZmY3NmIyMThmYWQ1MGU1MTcz OTE2MGQwHhcNMjUxMjA2MTkwMDQxWhcNMjUxMjA3MTkwMDQxWjAzMTEwLwYDVQQD EyhmMmY5MWUwMzg5NmU2YzUxNjc0MmM4MGIxZTQ5NTY0NDhmNmE4NzU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtDoKEqfUatzO45+LvfUE01E59a9c Mh8Nu04QrqsypQDd+GZVrRczovLmOO1/eAcld617MEgnv3wVxSFE5N++XSDCVlCM /CH42QL48RBeuEjURxsikFzs6Aqi48cOH7qvrK2fYHOCtzZGgSivwjGxTlHBZEk4 34cScUOAiegrGK+nbYhbYlJerDIiCmyy2wNKGvjGyfmM3+WU3muqKnoALIg9WhJY 169cEutjEHfKvZQP+ybLKzhuAymnkmv7SsiHMzJ6rcWUNXE/mFJOvkMW9yLkK4cy LqHxcMNdohg70OckUC3og+vBxDVau+jK7DZh13ZypLOBQ7u71P50V8ydKwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPL5HgOJbmxRZ0LICx5JVkSPaodZMB8GA1UdIwQY MBaAFISjzxFL5PpMT/drIY+tUOUXORYNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaEtQUEVVdmsta3hQOTJzaGo2MVE1UmM1RmcwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS82MDVmNDYtN2Q0Yy00NmI4LWJhYTUt NTM5MzI5YmVkNDZlLzEvaEtQUEVVdmsta3hQOTJzaGo2MVE1UmM1RmcwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOS82MDVmNDYtN2Q0Yy00NmI4LWJhYTUtNTM5MzI5YmVkNDZl LzEvaEtQUEVVdmsta3hQOTJzaGo2MVE1UmM1RmcwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD9ijzq+D vNaO9J1yWDKIenk78oqVMvDyAulQBfVDosK7NKM+Y+1MWpftlOUEoeP7Wgi9U5yL 5iDq6qnr63/2TNSdKmjNj0i/EBDqc9D6DqGhgggyt/XspdnAL3v1BWKz2Av8xNqe KAtq66d7gHHcOlQSG5UM8KJZcoHGUML1MHwlZZNks+OSAuWUVadN8e/qeWkV17ed 75M+I4E2pAbRf84FKar43ZcvjuL0kUXVpieeeu9TNl6YU37UkuxFQu9hjoR9mz4T G9FNqavmmd1vduaGP6WQL4QyChHAH3n2yb8Lcdhf8i4PO/NoN4SIVLNxOiOj/GWc LvrNianun7ulyg== -----END CERTIFICATE-----Generated at Sat Dec 6 22:29:20 2025 by rpki-client