This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/4fe983-7152-4933-9f36-d86cadd610b8/1/HdXNKgJh4eYGndd1iU2CbuiDbB4.mft File: HdXNKgJh4eYGndd1iU2CbuiDbB4.mft (raw, json) Hash identifier: eoXRWGb8eKvwk1dpsCaEDyrbHsNaXKofv8l2bAc9MPk= Subject key identifier: 8C:00:E1:0D:B4:F4:3C:DD:59:7A:C4:4C:E9:C3:5C:12:34:BD:6D:B7 Authority key identifier: 1D:D5:CD:2A:02:61:E1:E6:06:9D:D7:75:89:4D:82:6E:E8:83:6C:1E Certificate issuer: /CN=1dd5cd2a0261e1e6069dd775894d826ee8836c1e Certificate serial: 019AF42E0537C08A7FC4E4B392A5CEAF5C2A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HdXNKgJh4eYGndd1iU2CbuiDbB4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/4fe983-7152-4933-9f36-d86cadd610b8/1/HdXNKgJh4eYGndd1iU2CbuiDbB4.mft Manifest number: 1763 Signing time: Sat 06 Dec 2025 15:00:47 +0000 Manifest this update: Sat 06 Dec 2025 15:00:47 +0000 Manifest next update: Sun 07 Dec 2025 15:00:47 +0000 Files and hashes: 1: HdXNKgJh4eYGndd1iU2CbuiDbB4.crl (hash: qwUhGjtz+kTggswdk/MPGRJ3eLDMjD1+wY+HGh3TjMI=) 2: Z-7u2MA1CjZD5hYP8TfU-VSZNR8.roa (hash: /80xhWNAq5Vxx5IxhDuQbH3UW7oLWMSaFXrTwbB6FYA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/4fe983-7152-4933-9f36-d86cadd610b8/1/HdXNKgJh4eYGndd1iU2CbuiDbB4.crl rsync://rpki.ripe.net/repository/DEFAULT/3b/4fe983-7152-4933-9f36-d86cadd610b8/1/HdXNKgJh4eYGndd1iU2CbuiDbB4.mft rsync://rpki.ripe.net/repository/DEFAULT/HdXNKgJh4eYGndd1iU2CbuiDbB4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:2e:05:37:c0:8a:7f:c4:e4:b3:92:a5:ce:af:5c:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1dd5cd2a0261e1e6069dd775894d826ee8836c1e Validity Not Before: Dec 6 15:00:47 2025 GMT Not After : Dec 7 15:00:47 2025 GMT Subject: CN=8c00e10db4f43cdd597ac44ce9c35c1234bd6db7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:a4:8a:5c:9a:82:50:cc:86:e6:1a:ee:c1:41: 71:29:cc:85:50:6b:70:bb:91:4b:09:44:78:15:9e: 14:8a:7b:29:86:a1:88:c7:20:42:d6:d4:0e:e8:88: ef:ea:58:46:27:77:7f:34:3e:08:54:2c:00:39:53: 45:99:10:fd:55:0e:42:84:5c:ac:5c:51:e8:0f:88: 58:8a:81:7d:bd:f8:10:ff:d7:5f:9c:f4:12:d3:19: db:e0:ae:44:eb:fb:33:36:8a:a1:2c:19:b9:f9:6d: dc:f1:31:b1:ed:01:97:4a:32:e9:2c:a8:72:9d:e9: f8:79:55:9e:83:e9:46:fa:8f:99:36:8c:54:44:f7: f0:60:81:5a:35:1e:0c:7e:ca:16:6c:cb:8d:19:a6: e6:64:b8:fc:50:a2:e5:4a:49:a7:78:f2:76:29:1d: f3:ce:5e:b4:9a:cd:57:70:90:41:74:1a:f3:45:30: 13:fc:44:f0:c4:d3:97:a3:ae:a8:f0:5c:2d:df:94: ad:e9:a6:17:bb:e4:dd:a9:78:1f:ed:13:aa:8a:5d: 7b:5e:86:02:9f:e7:ef:45:25:1e:ac:fe:49:8d:57: cb:5a:92:c3:24:eb:c2:4f:44:02:93:a5:ef:69:3e: b2:ae:5d:4c:8e:f5:09:aa:b2:bb:1a:53:44:2f:28: c4:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:00:E1:0D:B4:F4:3C:DD:59:7A:C4:4C:E9:C3:5C:12:34:BD:6D:B7 X509v3 Authority Key Identifier: keyid:1D:D5:CD:2A:02:61:E1:E6:06:9D:D7:75:89:4D:82:6E:E8:83:6C:1E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HdXNKgJh4eYGndd1iU2CbuiDbB4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/4fe983-7152-4933-9f36-d86cadd610b8/1/HdXNKgJh4eYGndd1iU2CbuiDbB4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/4fe983-7152-4933-9f36-d86cadd610b8/1/HdXNKgJh4eYGndd1iU2CbuiDbB4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b2:60:42:2c:b8:ba:b3:43:52:cf:d5:c9:a4:c7:a6:7e:4e:7b: 5a:0f:9f:bd:da:3f:12:9f:f9:f9:b4:b3:e3:8e:ae:bb:54:e6: 8a:68:75:f9:c6:34:e2:2a:8e:d1:18:69:7e:f4:ab:19:c8:97: 98:a4:be:61:67:c0:ff:06:f8:75:05:17:03:df:b5:c7:2a:43: f0:ca:3b:ef:81:75:20:79:65:90:3c:5d:43:69:60:d5:7e:d9: 48:e7:15:30:bb:21:e2:37:b6:4e:92:cf:ce:ca:e3:f0:7e:8f: a9:27:dd:06:fb:d3:70:f0:dd:bd:1c:c9:70:55:b6:08:58:42: e1:5b:10:db:1f:38:6c:86:d0:99:b6:7c:bd:18:16:4f:9a:0d: bf:2a:04:b1:6f:66:df:e0:d0:cf:3a:ba:73:0e:bf:a3:74:a8: 89:c8:fb:aa:e1:23:02:1b:7f:c0:34:27:d9:4b:96:d7:83:e1: 92:24:dd:ce:a1:02:61:d3:9b:a9:72:03:0e:f0:9b:9d:8f:ae: c0:36:18:72:2f:2e:f6:cb:9f:f2:d7:86:f9:86:cb:1a:1d:5b: 28:78:0a:38:a1:94:a0:5e:e6:70:74:f8:2b:ab:08:77:8e:66: 29:ab:1e:1e:61:e7:58:82:a2:50:9c:11:83:27:9b:d2:48:0b: 55:f8:97:17 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0LgU3wIp/xOSzkqXOr1wqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkZDVjZDJhMDI2MWUxZTYwNjlkZDc3NTg5NGQ4MjZlZTg4 MzZjMWUwHhcNMjUxMjA2MTUwMDQ3WhcNMjUxMjA3MTUwMDQ3WjAzMTEwLwYDVQQD Eyg4YzAwZTEwZGI0ZjQzY2RkNTk3YWM0NGNlOWMzNWMxMjM0YmQ2ZGI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn6SKXJqCUMyG5hruwUFxKcyFUGtw u5FLCUR4FZ4UinsphqGIxyBC1tQO6Ijv6lhGJ3d/ND4IVCwAOVNFmRD9VQ5ChFys XFHoD4hYioF9vfgQ/9dfnPQS0xnb4K5E6/szNoqhLBm5+W3c8TGx7QGXSjLpLKhy nen4eVWeg+lG+o+ZNoxURPfwYIFaNR4MfsoWbMuNGabmZLj8UKLlSkmnePJ2KR3z zl60ms1XcJBBdBrzRTAT/ETwxNOXo66o8Fwt35St6aYXu+TdqXgf7ROqil17XoYC n+fvRSUerP5JjVfLWpLDJOvCT0QCk6XvaT6yrl1MjvUJqrK7GlNELyjEGQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIwA4Q209DzdWXrETOnDXBI0vW23MB8GA1UdIwQY MBaAFB3VzSoCYeHmBp3XdYlNgm7og2weMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSGRYTktnSmg0ZVlHbmRkMWlVMkNidWlEYkI0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi80ZmU5ODMtNzE1Mi00OTMzLTlmMzYt ZDg2Y2FkZDYxMGI4LzEvSGRYTktnSmg0ZVlHbmRkMWlVMkNidWlEYkI0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYi80ZmU5ODMtNzE1Mi00OTMzLTlmMzYtZDg2Y2FkZDYxMGI4 LzEvSGRYTktnSmg0ZVlHbmRkMWlVMkNidWlEYkI0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsmBCLLi6 s0NSz9XJpMemfk57Wg+fvdo/Ep/5+bSz446uu1Tmimh1+cY04iqO0RhpfvSrGciX mKS+YWfA/wb4dQUXA9+1xypD8Mo774F1IHllkDxdQ2lg1X7ZSOcVMLsh4je2TpLP zsrj8H6PqSfdBvvTcPDdvRzJcFW2CFhC4VsQ2x84bIbQmbZ8vRgWT5oNvyoEsW9m 3+DQzzq6cw6/o3Soicj7quEjAht/wDQn2UuW14PhkiTdzqECYdObqXIDDvCbnY+u wDYYci8u9suf8teG+YbLGh1bKHgKOKGUoF7mcHT4K6sId45mKaseHmHnWIKiUJwR gyeb0kgLVfiXFw== -----END CERTIFICATE-----Generated at Sat Dec 6 19:35:12 2025 by rpki-client