This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft File: HTHgIH7TynaEoD6I-aHeKSLdRd4.mft (raw, json) Hash identifier: oelCLa4AfvXikpalRnYnWUZZXx8J2KPZBJziT8TMyBk= Subject key identifier: E9:D1:88:07:B1:38:2D:48:C1:46:53:FD:FE:93:71:6C:4E:8B:C9:24 Authority key identifier: 1D:31:E0:20:7E:D3:CA:76:84:A0:3E:88:F9:A1:DE:29:22:DD:45:DE Certificate issuer: /CN=1d31e0207ed3ca7684a03e88f9a1de2922dd45de Certificate serial: 019AF31B5F70FDACBB115C59665D78A3E170 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft Manifest number: 030A Signing time: Sat 06 Dec 2025 10:00:48 +0000 Manifest this update: Sat 06 Dec 2025 10:00:48 +0000 Manifest next update: Sun 07 Dec 2025 10:00:48 +0000 Files and hashes: 1: HTHgIH7TynaEoD6I-aHeKSLdRd4.crl (hash: nm1DhNAmA8TF/MH375gcFXRcXZ3a8aIjL4aBELxuWgU=) 2: ZwHdEqulD1m_3ODalRm8KKpV4D8.roa (hash: AgKObURVZ2No/6B5xbYFDC7jFhFUnrv7+FottsPk3vg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.crl rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1b:5f:70:fd:ac:bb:11:5c:59:66:5d:78:a3:e1:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1d31e0207ed3ca7684a03e88f9a1de2922dd45de Validity Not Before: Dec 6 10:00:48 2025 GMT Not After : Dec 7 10:00:48 2025 GMT Subject: CN=e9d18807b1382d48c14653fdfe93716c4e8bc924 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e3:cb:4a:e5:dd:44:69:eb:5d:b1:44:4c:25: 6a:ec:b5:e3:36:eb:a7:53:e4:55:75:05:44:14:bd: 8d:89:e6:31:f9:cc:bc:f5:a8:df:92:6a:04:fc:c2: 72:a6:69:f8:a6:b5:7a:6c:29:bc:64:5c:8e:f8:bf: bf:1d:b6:da:09:dc:6d:29:77:00:eb:e7:1a:44:21: 16:df:e1:1f:ca:9e:a3:7e:16:96:89:69:61:77:1c: f7:c3:c6:86:8c:0e:08:49:fc:5e:83:39:67:4c:69: f9:6d:0b:ad:6b:f4:23:99:fe:00:d4:c1:33:cd:a3: 1d:a8:3b:d7:74:0e:69:39:30:68:c2:d8:c6:55:9f: 92:aa:13:27:fc:e5:9c:d4:99:55:96:cc:aa:6a:37: 24:e2:22:33:f6:bb:2e:b4:e2:c7:66:75:09:89:26: 80:d1:78:0d:46:09:80:22:cb:7e:4f:af:aa:2b:a3: 9e:87:d8:98:12:cf:e8:d2:7d:2d:59:50:ec:0c:91: c7:3d:c1:4f:27:58:56:7a:3d:50:7e:fb:98:26:1a: 28:54:a9:1a:2c:aa:11:25:a1:01:7d:53:e4:c6:bd: 21:26:1b:f1:71:44:78:f2:40:7f:59:1f:ea:69:ec: 6c:82:20:97:d2:77:46:9c:e0:d7:de:fc:8c:6a:e5: 2b:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:D1:88:07:B1:38:2D:48:C1:46:53:FD:FE:93:71:6C:4E:8B:C9:24 X509v3 Authority Key Identifier: keyid:1D:31:E0:20:7E:D3:CA:76:84:A0:3E:88:F9:A1:DE:29:22:DD:45:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a2:70:5c:a7:8e:85:4b:d9:2c:96:7e:40:ff:4d:6e:1b:c4:0c: cd:d0:fc:4f:6c:d1:f1:87:16:b7:c8:cd:ba:bc:89:28:f5:bd: e7:19:a0:f9:f2:fc:1f:1a:6f:90:b1:47:be:17:b7:5d:e0:19: 04:e1:bc:e7:c9:14:b1:4c:e5:61:08:03:6c:63:6d:71:3f:85: 2b:0f:b1:88:8d:16:2c:c1:98:d2:a8:71:fd:e2:f6:98:9c:81: 2c:dc:41:e5:68:3c:21:b1:a1:f5:72:5f:3c:ca:f8:8d:5a:b0: 6f:ab:6e:b8:1b:0a:ba:5e:95:3c:5d:97:24:02:1a:1d:70:bf: 50:37:dc:68:7b:a4:65:38:1c:9e:ce:b5:88:28:94:e3:2c:a2: 83:51:74:c0:bd:b5:a2:bc:dc:7b:23:02:37:ae:84:82:21:f1: cf:92:a9:01:09:cc:ea:a0:2f:e4:8b:9e:d8:e3:b0:87:e5:8e: 91:6e:e4:64:9e:ba:0d:4e:f0:a9:c8:61:d9:35:e8:29:38:f6: 2e:6d:f0:03:18:62:e2:c8:05:17:b1:0a:c1:5a:98:6f:dc:96: ef:71:46:05:a4:57:25:b7:47:65:8b:f9:f9:ba:06:27:02:d8: 13:63:3a:96:26:3e:b0:43:6e:b2:17:ed:20:04:7f:39:12:09: a9:23:da:32 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzG19w/ay7EVxZZl14o+FwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkMzFlMDIwN2VkM2NhNzY4NGEwM2U4OGY5YTFkZTI5MjJk ZDQ1ZGUwHhcNMjUxMjA2MTAwMDQ4WhcNMjUxMjA3MTAwMDQ4WjAzMTEwLwYDVQQD EyhlOWQxODgwN2IxMzgyZDQ4YzE0NjUzZmRmZTkzNzE2YzRlOGJjOTI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyePLSuXdRGnrXbFETCVq7LXjNuun U+RVdQVEFL2NieYx+cy89ajfkmoE/MJypmn4prV6bCm8ZFyO+L+/HbbaCdxtKXcA 6+caRCEW3+Efyp6jfhaWiWlhdxz3w8aGjA4ISfxegzlnTGn5bQuta/Qjmf4A1MEz zaMdqDvXdA5pOTBowtjGVZ+SqhMn/OWc1JlVlsyqajck4iIz9rsutOLHZnUJiSaA 0XgNRgmAIst+T6+qK6Oeh9iYEs/o0n0tWVDsDJHHPcFPJ1hWej1QfvuYJhooVKka LKoRJaEBfVPkxr0hJhvxcUR48kB/WR/qaexsgiCX0ndGnODX3vyMauUr8QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOnRiAexOC1IwUZT/f6TcWxOi8kkMB8GA1UdIwQY MBaAFB0x4CB+08p2hKA+iPmh3iki3UXeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSFRIZ0lIN1R5bmFFb0Q2SS1hSGVLU0xkUmQ0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My83MzBlMzgtZmY4OS00M2UxLTk0ZmUt YTFiNzc4ZjRkMDdkLzEvSFRIZ0lIN1R5bmFFb0Q2SS1hSGVLU0xkUmQ0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My83MzBlMzgtZmY4OS00M2UxLTk0ZmUtYTFiNzc4ZjRkMDdk LzEvSFRIZ0lIN1R5bmFFb0Q2SS1hSGVLU0xkUmQ0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAonBcp46F S9ksln5A/01uG8QMzdD8T2zR8YcWt8jNuryJKPW95xmg+fL8HxpvkLFHvhe3XeAZ BOG858kUsUzlYQgDbGNtcT+FKw+xiI0WLMGY0qhx/eL2mJyBLNxB5Wg8IbGh9XJf PMr4jVqwb6tuuBsKul6VPF2XJAIaHXC/UDfcaHukZTgcns61iCiU4yyig1F0wL21 orzceyMCN66EgiHxz5KpAQnM6qAv5Iue2OOwh+WOkW7kZJ66DU7wqchh2TXoKTj2 Lm3wAxhi4sgFF7EKwVqYb9yW73FGBaRXJbdHZYv5+boGJwLYE2M6liY+sENushft IAR/ORIJqSPaMg== -----END CERTIFICATE-----Generated at Sat Dec 6 14:04:04 2025 by rpki-client