This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/c8d78f-c28c-4116-a3a2-5bf998e27fc0/1/Hn19JBnxEYqsXJktKt_2l7A-mns.mft File: Hn19JBnxEYqsXJktKt_2l7A-mns.mft (raw, json) Hash identifier: p2/upYoikeCvBSteHMRWlDcw706xJu3QuSHSVVMN8pg= Subject key identifier: 15:36:BD:6B:2E:1F:E0:88:B0:AC:E4:B6:74:ED:A8:67:30:7B:77:E9 Authority key identifier: 1E:7D:7D:24:19:F1:11:8A:AC:5C:99:2D:2A:DF:F6:97:B0:3E:9A:7B Certificate issuer: /CN=1e7d7d2419f1118aac5c992d2adff697b03e9a7b Certificate serial: 019AF276B057517552A69AC337923D59D8D6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hn19JBnxEYqsXJktKt_2l7A-mns.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/c8d78f-c28c-4116-a3a2-5bf998e27fc0/1/Hn19JBnxEYqsXJktKt_2l7A-mns.mft Manifest number: 093A Signing time: Sat 06 Dec 2025 07:00:55 +0000 Manifest this update: Sat 06 Dec 2025 07:00:55 +0000 Manifest next update: Sun 07 Dec 2025 07:00:55 +0000 Files and hashes: 1: Hn19JBnxEYqsXJktKt_2l7A-mns.crl (hash: pHw+eqh4dDNVWXTzXiDvF/4xSlJDcqf+hjf5uKZ43tw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/c8d78f-c28c-4116-a3a2-5bf998e27fc0/1/Hn19JBnxEYqsXJktKt_2l7A-mns.crl rsync://rpki.ripe.net/repository/DEFAULT/4b/c8d78f-c28c-4116-a3a2-5bf998e27fc0/1/Hn19JBnxEYqsXJktKt_2l7A-mns.mft rsync://rpki.ripe.net/repository/DEFAULT/Hn19JBnxEYqsXJktKt_2l7A-mns.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:b0:57:51:75:52:a6:9a:c3:37:92:3d:59:d8:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1e7d7d2419f1118aac5c992d2adff697b03e9a7b Validity Not Before: Dec 6 07:00:55 2025 GMT Not After : Dec 7 07:00:55 2025 GMT Subject: CN=1536bd6b2e1fe088b0ace4b674eda867307b77e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:4a:2f:a1:3d:0a:1e:27:f3:7f:cd:27:12:cd: fb:fe:ad:d5:69:4b:4b:c2:2c:ed:d5:b5:e8:49:40: 1b:99:c5:5d:90:6f:12:0f:3d:fa:3c:3f:c8:fd:34: d3:b8:d6:fb:06:01:56:c6:5f:74:24:34:46:b8:47: 14:9c:e9:17:2c:92:17:c2:73:b8:6a:13:26:eb:07: c3:bb:ea:40:88:23:7c:f8:b5:a2:72:1b:bd:fa:55: 40:9b:61:d3:bd:20:df:e4:f3:ec:2e:c4:ed:25:cd: 71:bf:51:e0:f1:4c:64:1c:4b:13:02:52:69:0a:35: fc:66:42:2d:ce:a2:9d:37:de:48:b0:ea:78:71:e1: c4:d5:b1:5f:92:35:79:f0:e6:4d:02:86:c3:83:23: a0:5c:49:cf:0b:b5:6f:0e:7d:8c:99:81:fa:d6:e8: 80:eb:0f:e3:dd:96:06:0d:51:4d:5f:aa:d5:07:b3: 4a:f1:cb:34:af:84:10:27:38:8c:b5:89:e9:25:fe: eb:1d:f1:5a:9d:b8:63:ce:43:bf:bc:ce:b2:bb:f9: be:83:5e:18:51:af:ff:5a:94:ee:1d:3f:b9:a9:e3: f5:60:ba:04:0d:44:68:6b:4b:95:a7:53:68:96:1c: 68:9c:58:37:8e:89:b2:8e:cc:d3:d0:03:ee:bb:56: f4:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:36:BD:6B:2E:1F:E0:88:B0:AC:E4:B6:74:ED:A8:67:30:7B:77:E9 X509v3 Authority Key Identifier: keyid:1E:7D:7D:24:19:F1:11:8A:AC:5C:99:2D:2A:DF:F6:97:B0:3E:9A:7B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hn19JBnxEYqsXJktKt_2l7A-mns.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/c8d78f-c28c-4116-a3a2-5bf998e27fc0/1/Hn19JBnxEYqsXJktKt_2l7A-mns.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/c8d78f-c28c-4116-a3a2-5bf998e27fc0/1/Hn19JBnxEYqsXJktKt_2l7A-mns.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5d:49:8c:90:37:0a:2a:ee:44:b3:92:69:e5:91:91:ce:d6:67: 2d:a8:6d:54:44:d2:14:2e:01:89:0b:41:a4:11:5e:1f:b9:91: af:f5:ca:46:73:0d:92:31:81:88:bd:6b:c4:ed:25:63:22:41: a5:41:b3:bd:9e:19:26:f8:bf:50:ee:fa:dc:a7:8d:a7:62:fc: 2c:f2:0e:03:36:3d:ad:4f:02:3a:8c:bb:9d:5b:dc:e7:ae:bf: 9f:1d:10:94:ba:ab:50:5b:ba:89:d1:1a:2e:be:ed:8a:cd:29: de:19:34:b0:92:37:9f:b3:18:5d:4c:32:f1:2e:89:a8:50:bd: fd:2f:0c:9c:6b:20:e0:9c:f9:a4:f4:2b:ea:82:e7:5a:ad:15: 94:90:db:ed:53:a1:51:a1:b3:5c:d9:7b:33:5e:73:09:45:b3: 87:a2:3c:fe:43:ba:35:2d:88:5a:10:35:6e:b6:61:21:f6:87: 10:3f:a1:61:85:08:d0:6b:83:cc:fa:b3:52:c2:4f:6d:b3:50: 62:00:35:b1:a6:54:d3:6b:5e:03:2d:18:e1:5b:a3:55:fd:65: dd:ab:47:d4:86:e4:3f:d3:17:3a:b7:b8:be:84:8d:0f:28:f2: e9:13:c8:c5:4d:a2:da:29:e3:61:6e:62:76:e3:56:a0:d9:ba: f9:86:fa:dc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydrBXUXVSpprDN5I9WdjWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlN2Q3ZDI0MTlmMTExOGFhYzVjOTkyZDJhZGZmNjk3YjAz ZTlhN2IwHhcNMjUxMjA2MDcwMDU1WhcNMjUxMjA3MDcwMDU1WjAzMTEwLwYDVQQD EygxNTM2YmQ2YjJlMWZlMDg4YjBhY2U0YjY3NGVkYTg2NzMwN2I3N2U5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuEovoT0KHifzf80nEs37/q3VaUtL wizt1bXoSUAbmcVdkG8SDz36PD/I/TTTuNb7BgFWxl90JDRGuEcUnOkXLJIXwnO4 ahMm6wfDu+pAiCN8+LWichu9+lVAm2HTvSDf5PPsLsTtJc1xv1Hg8UxkHEsTAlJp CjX8ZkItzqKdN95IsOp4ceHE1bFfkjV58OZNAobDgyOgXEnPC7VvDn2MmYH61uiA 6w/j3ZYGDVFNX6rVB7NK8cs0r4QQJziMtYnpJf7rHfFanbhjzkO/vM6yu/m+g14Y Ua//WpTuHT+5qeP1YLoEDURoa0uVp1NolhxonFg3jomyjszT0APuu1b0dQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBU2vWsuH+CIsKzktnTtqGcwe3fpMB8GA1UdIwQY MBaAFB59fSQZ8RGKrFyZLSrf9pewPpp7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSG4xOUpCbnhFWXFzWEprdEt0XzJsN0EtbW5zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi9jOGQ3OGYtYzI4Yy00MTE2LWEzYTIt NWJmOTk4ZTI3ZmMwLzEvSG4xOUpCbnhFWXFzWEprdEt0XzJsN0EtbW5zLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yi9jOGQ3OGYtYzI4Yy00MTE2LWEzYTItNWJmOTk4ZTI3ZmMw LzEvSG4xOUpCbnhFWXFzWEprdEt0XzJsN0EtbW5zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXUmMkDcK Ku5Es5Jp5ZGRztZnLahtVETSFC4BiQtBpBFeH7mRr/XKRnMNkjGBiL1rxO0lYyJB pUGzvZ4ZJvi/UO763KeNp2L8LPIOAzY9rU8COoy7nVvc566/nx0QlLqrUFu6idEa Lr7tis0p3hk0sJI3n7MYXUwy8S6JqFC9/S8MnGsg4Jz5pPQr6oLnWq0VlJDb7VOh UaGzXNl7M15zCUWzh6I8/kO6NS2IWhA1brZhIfaHED+hYYUI0GuDzPqzUsJPbbNQ YgA1saZU02teAy0Y4VujVf1l3atH1IbkP9MXOre4voSNDyjy6RPIxU2i2injYW5i duNWoNm6+Yb63A== -----END CERTIFICATE-----Generated at Sat Dec 6 09:44:50 2025 by rpki-client