This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft File: HVceK9tBEuxdazpkuxe_CygP5uE.mft (raw, json) Hash identifier: vLZ/yP+juXGwqU28DeUS6e61vmDVSraSL9QbPFXj+zc= Subject key identifier: 85:70:BA:97:AA:DF:CD:3A:9B:6C:B8:AA:19:F8:DA:8C:6A:39:0C:40 Authority key identifier: 1D:57:1E:2B:DB:41:12:EC:5D:6B:3A:64:BB:17:BF:0B:28:0F:E6:E1 Certificate issuer: /CN=1d571e2bdb4112ec5d6b3a64bb17bf0b280fe6e1 Certificate serial: 019AF12DB09B0CA6B5B8D069F1EEDD64CFB6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft Manifest number: 0EE6 Signing time: Sat 06 Dec 2025 01:01:34 +0000 Manifest this update: Sat 06 Dec 2025 01:01:34 +0000 Manifest next update: Sun 07 Dec 2025 01:01:34 +0000 Files and hashes: 1: HVceK9tBEuxdazpkuxe_CygP5uE.crl (hash: P8AkAjYxVLe/w7IdMOrNY9jHNZWDXgPZ1uehZ5LoV2Y=) 2: h7CHzkBnlnsCPZHhaVmBEiptsJU.roa (hash: EbCVP8Yz7oXyf9jeo4iTmjzKKTktTCeVwJmVIt/iZmE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.crl rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:b0:9b:0c:a6:b5:b8:d0:69:f1:ee:dd:64:cf:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1d571e2bdb4112ec5d6b3a64bb17bf0b280fe6e1 Validity Not Before: Dec 6 01:01:34 2025 GMT Not After : Dec 7 01:01:34 2025 GMT Subject: CN=8570ba97aadfcd3a9b6cb8aa19f8da8c6a390c40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:41:88:be:b0:78:b0:d0:c8:23:49:e4:b6:b1: 11:15:b9:1a:a0:94:bb:f7:41:c7:85:c1:cd:c5:77: b5:9b:5c:4e:a8:07:e7:41:6c:5e:1b:fa:38:72:7b: fc:4f:ba:53:5e:6d:67:84:4f:44:cc:f3:8b:61:f1: 92:cb:30:65:9a:cc:f6:23:97:24:cf:49:08:32:d1: f8:72:74:74:fe:cd:c2:b8:8d:0d:72:67:66:ac:f4: 93:da:2b:fa:ad:4f:80:25:31:e1:fe:0c:7b:2b:34: b4:03:e4:55:49:ca:00:9f:a2:1d:7d:97:96:36:8d: 1b:79:1a:fe:14:83:17:c1:72:50:74:c8:c5:37:99: e6:cd:9f:5e:c6:d6:6a:3a:f2:95:f5:a5:71:b8:31: 76:3f:39:1f:0e:78:33:5d:0c:d3:49:9f:c7:52:93: af:b6:d7:f3:b1:13:69:59:06:a8:6a:a3:30:c5:3c: 91:6d:c7:e0:ba:46:5f:63:86:8b:98:fb:8f:af:2d: 83:cc:b9:bb:18:8f:17:68:4d:7e:3e:7a:cf:ea:d8: 40:9a:e9:af:be:10:41:95:e7:91:80:cd:6f:c0:2e: 8a:9e:6c:a8:6a:f1:60:58:b3:9e:ce:b7:62:51:1a: 5b:81:0f:2f:96:fd:16:66:b4:fe:18:6c:af:56:3e: a3:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:70:BA:97:AA:DF:CD:3A:9B:6C:B8:AA:19:F8:DA:8C:6A:39:0C:40 X509v3 Authority Key Identifier: keyid:1D:57:1E:2B:DB:41:12:EC:5D:6B:3A:64:BB:17:BF:0B:28:0F:E6:E1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:38:3c:ae:ea:56:be:78:f0:90:0d:81:0b:27:95:df:c3:d0: e2:7a:1d:ce:e7:69:17:19:84:17:fc:27:2e:46:17:5f:5e:ab: a7:44:83:b2:f0:07:81:26:5c:6e:28:7d:dd:7b:e7:16:47:b5: 54:21:a8:7d:bd:a3:d5:ab:9a:94:05:88:c3:1d:8b:52:7e:75: 34:12:2d:e3:c8:69:85:13:a9:36:49:e0:46:21:3f:1b:72:6e: 97:99:38:f2:04:a7:8e:d0:8a:24:78:e6:dd:2e:e9:ed:e4:a5: d8:dd:f1:62:aa:9b:e9:18:4c:35:2e:af:09:5d:ef:90:b1:6a: 00:a6:9b:3d:48:89:ac:aa:a7:8b:a7:ec:ef:8a:ef:94:79:05: 60:9c:11:b5:ee:47:43:42:11:cc:19:f8:d5:84:1d:94:f8:03: 98:7a:51:2d:27:83:5b:73:df:c7:89:07:35:4e:d8:42:08:1a: 49:dd:05:c3:c3:b0:b1:54:bb:1d:bc:7c:ce:70:d6:ec:7d:ac: 9a:42:0d:07:52:19:93:80:ae:49:40:29:bc:78:00:2e:0a:85: fa:ea:51:fa:8a:a6:f9:c8:f5:b0:ed:d2:b6:38:f7:c1:ed:fe: ed:d3:73:5e:f5:e0:6d:b1:9e:aa:a1:ca:b9:68:df:bd:0c:36: 63:d5:ae:5e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLbCbDKa1uNBp8e7dZM+2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkNTcxZTJiZGI0MTEyZWM1ZDZiM2E2NGJiMTdiZjBiMjgw ZmU2ZTEwHhcNMjUxMjA2MDEwMTM0WhcNMjUxMjA3MDEwMTM0WjAzMTEwLwYDVQQD Eyg4NTcwYmE5N2FhZGZjZDNhOWI2Y2I4YWExOWY4ZGE4YzZhMzkwYzQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw0GIvrB4sNDII0nktrERFbkaoJS7 90HHhcHNxXe1m1xOqAfnQWxeG/o4cnv8T7pTXm1nhE9EzPOLYfGSyzBlmsz2I5ck z0kIMtH4cnR0/s3CuI0NcmdmrPST2iv6rU+AJTHh/gx7KzS0A+RVScoAn6IdfZeW No0beRr+FIMXwXJQdMjFN5nmzZ9extZqOvKV9aVxuDF2PzkfDngzXQzTSZ/HUpOv ttfzsRNpWQaoaqMwxTyRbcfgukZfY4aLmPuPry2DzLm7GI8XaE1+PnrP6thAmumv vhBBleeRgM1vwC6KnmyoavFgWLOezrdiURpbgQ8vlv0WZrT+GGyvVj6jhQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIVwupeq3806m2y4qhn42oxqOQxAMB8GA1UdIwQY MBaAFB1XHivbQRLsXWs6ZLsXvwsoD+bhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSFZjZUs5dEJFdXhkYXpwa3V4ZV9DeWdQNXVFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC9hYzY4ZWUtYjU5MC00NmFjLWI1MmUt ZGIyNTcyZGFjYjQ1LzEvSFZjZUs5dEJFdXhkYXpwa3V4ZV9DeWdQNXVFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NC9hYzY4ZWUtYjU5MC00NmFjLWI1MmUtZGIyNTcyZGFjYjQ1 LzEvSFZjZUs5dEJFdXhkYXpwa3V4ZV9DeWdQNXVFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADjg8rupW vnjwkA2BCyeV38PQ4nodzudpFxmEF/wnLkYXX16rp0SDsvAHgSZcbih93XvnFke1 VCGofb2j1aualAWIwx2LUn51NBIt48hphROpNkngRiE/G3Jul5k48gSnjtCKJHjm 3S7p7eSl2N3xYqqb6RhMNS6vCV3vkLFqAKabPUiJrKqni6fs74rvlHkFYJwRte5H Q0IRzBn41YQdlPgDmHpRLSeDW3Pfx4kHNU7YQggaSd0Fw8OwsVS7Hbx8znDW7H2s mkINB1IZk4CuSUApvHgALgqF+upR+oqm+cj1sO3Stjj3we3+7dNzXvXgbbGeqqHK uWjfvQw2Y9WuXg== -----END CERTIFICATE-----Generated at Sat Dec 6 10:15:07 2025 by rpki-client