This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft File: HK37nPzahCYhLdfYhztf5ItBLyo.mft (raw, json) Hash identifier: ofXDnzu60PNKXohkFwFFKt/xAX7C1fqNwma7DAgLnuQ= Subject key identifier: BE:E0:91:2F:AA:CD:5D:55:1F:EF:0C:F3:3F:48:55:57:93:27:E3:90 Authority key identifier: 1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A Certificate issuer: /CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a Certificate serial: 019AF31C794E2A0DCB7D96B586993E07C44B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft Manifest number: 1261 Signing time: Sat 06 Dec 2025 10:02:00 +0000 Manifest this update: Sat 06 Dec 2025 10:02:00 +0000 Manifest next update: Sun 07 Dec 2025 10:02:00 +0000 Files and hashes: 1: HK37nPzahCYhLdfYhztf5ItBLyo.crl (hash: e/FvZtjdKjLcYc9SWClaKFTAMYVWsEfQgbOFJ+fu37w=) 2: qlhTst1KI05-IXjT0Jjp1aMzFfc.roa (hash: AXRjUWRMdXCLNCZlSVsLAGGspUQ5o0C4cdNp8OmuROM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1c:79:4e:2a:0d:cb:7d:96:b5:86:99:3e:07:c4:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a Validity Not Before: Dec 6 10:02:00 2025 GMT Not After : Dec 7 10:02:00 2025 GMT Subject: CN=bee0912faacd5d551fef0cf33f4855579327e390 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:f5:3f:9b:c8:10:fe:c5:47:8b:13:5a:88:88: 1f:90:9e:1c:14:79:ed:0e:82:b5:99:08:f0:9c:80: a3:b0:d6:64:a3:d4:2e:88:3d:18:4e:0f:1c:94:ea: ab:41:c8:b6:aa:cc:07:51:b1:c6:12:a7:63:8b:c5: ab:fd:f8:db:5e:75:a5:33:17:6c:f9:5a:a3:ff:d8: 65:4e:28:4b:87:d2:3a:d5:62:b6:8f:99:e4:ba:db: db:7c:59:1c:29:60:79:6b:9f:8c:e9:ea:0f:36:72: 27:44:1a:6b:e0:e4:40:9b:ed:30:40:f4:d8:c8:0e: 11:72:75:c1:25:21:af:8e:63:46:fc:95:47:5c:3f: e6:9e:1a:17:7f:99:13:4c:36:7e:61:7b:dc:9b:2e: 3d:35:2d:c8:b2:1c:87:d2:06:5c:a4:ed:24:0f:4d: bf:3b:94:a4:83:d7:4b:40:97:70:ae:b8:f6:f2:aa: a8:9e:a8:73:d6:93:62:e7:1b:30:e6:12:f2:32:a4: 9e:60:bb:1d:dc:c1:78:86:cb:29:f2:c1:11:48:22: 14:d9:f2:13:75:da:eb:e1:aa:bc:68:12:f1:95:17: ba:42:c1:e3:9f:22:f0:7c:6b:ff:5a:ea:45:04:82: f9:52:8e:38:df:e5:10:8d:12:48:78:16:7a:83:89: 49:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:E0:91:2F:AA:CD:5D:55:1F:EF:0C:F3:3F:48:55:57:93:27:E3:90 X509v3 Authority Key Identifier: keyid:1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 39:59:75:60:a7:4a:e4:94:58:ab:b3:b1:5a:17:7e:b6:f3:f8: b8:c5:68:d2:b1:f6:8d:da:f5:8f:c1:c7:98:00:4c:df:6d:c4: ee:ab:ae:d5:b3:76:2e:ce:3d:8a:01:2b:35:ae:22:14:17:62: c6:3c:59:03:c3:e6:5b:03:eb:9f:95:c4:32:3c:d4:6d:54:b0: b1:8f:35:a7:72:4f:57:5d:1c:5c:d2:70:4c:c2:1b:d8:ac:f4: ae:14:5a:cb:80:23:75:3c:f5:4d:82:6d:d8:24:e8:36:f1:5c: 2a:cd:e2:5e:b4:c5:d3:8e:5e:e3:be:83:c2:51:dc:73:c9:e3: df:6c:c2:0d:6b:e7:c6:54:da:6d:60:9c:70:a2:2c:c1:07:0b: bd:31:db:2f:04:f5:9f:8f:8e:b4:ae:2b:86:33:3e:b1:35:9b: a2:77:66:92:5f:d7:77:5c:47:58:45:24:4a:0b:71:d1:91:2f: d1:76:90:83:6c:4a:6c:a7:11:40:5e:46:2e:9d:b0:66:46:7d: 07:87:1d:02:80:aa:ea:52:66:b8:51:a6:13:38:c1:f6:c5:8a: 36:b6:39:61:f4:86:c0:3a:10:62:37:03:5d:94:24:37:02:a9: 4a:1b:d6:6e:52:44:76:96:83:eb:e0:d1:4b:d0:e6:3c:75:62: 7e:27:72:b2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHHlOKg3LfZa1hpk+B8RLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjYWRmYjljZmNkYTg0MjYyMTJkZDdkODg3M2I1ZmU0OGI0 MTJmMmEwHhcNMjUxMjA2MTAwMjAwWhcNMjUxMjA3MTAwMjAwWjAzMTEwLwYDVQQD EyhiZWUwOTEyZmFhY2Q1ZDU1MWZlZjBjZjMzZjQ4NTU1NzkzMjdlMzkwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAifU/m8gQ/sVHixNaiIgfkJ4cFHnt DoK1mQjwnICjsNZko9QuiD0YTg8clOqrQci2qswHUbHGEqdji8Wr/fjbXnWlMxds +Vqj/9hlTihLh9I61WK2j5nkutvbfFkcKWB5a5+M6eoPNnInRBpr4ORAm+0wQPTY yA4RcnXBJSGvjmNG/JVHXD/mnhoXf5kTTDZ+YXvcmy49NS3IshyH0gZcpO0kD02/ O5Skg9dLQJdwrrj28qqonqhz1pNi5xsw5hLyMqSeYLsd3MF4hssp8sERSCIU2fIT ddrr4aq8aBLxlRe6QsHjnyLwfGv/WupFBIL5Uo443+UQjRJIeBZ6g4lJowIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL7gkS+qzV1VH+8M8z9IVVeTJ+OQMB8GA1UdIwQY MBaAFByt+5z82oQmIS3X2Ic7X+SLQS8qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEszN25QemFoQ1loTGRmWWh6dGY1SXRCTHlvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My9jODQwNmQtYTU2NC00Nzk1LTk4YjAt ODY4MTYwNjY4MzgyLzEvSEszN25QemFoQ1loTGRmWWh6dGY1SXRCTHlvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My9jODQwNmQtYTU2NC00Nzk1LTk4YjAtODY4MTYwNjY4Mzgy LzEvSEszN25QemFoQ1loTGRmWWh6dGY1SXRCTHlvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOVl1YKdK 5JRYq7OxWhd+tvP4uMVo0rH2jdr1j8HHmABM323E7quu1bN2Ls49igErNa4iFBdi xjxZA8PmWwPrn5XEMjzUbVSwsY81p3JPV10cXNJwTMIb2Kz0rhRay4AjdTz1TYJt 2CToNvFcKs3iXrTF045e476DwlHcc8nj32zCDWvnxlTabWCccKIswQcLvTHbLwT1 n4+OtK4rhjM+sTWbondmkl/Xd1xHWEUkSgtx0ZEv0XaQg2xKbKcRQF5GLp2wZkZ9 B4cdAoCq6lJmuFGmEzjB9sWKNrY5YfSGwDoQYjcDXZQkNwKpShvWblJEdpaD6+DR S9DmPHVifidysg== -----END CERTIFICATE-----Generated at Sat Dec 6 15:08:32 2025 by rpki-client