This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/c8d78f-c28c-4116-a3a2-5bf998e27fc0/1/Hn19JBnxEYqsXJktKt_2l7A-mns.mft File: Hn19JBnxEYqsXJktKt_2l7A-mns.mft (raw, json) Hash identifier: XIXEM1VFuD0+kutBJaW16lgvfFLjv/zXveoPl6/a4d4= Subject key identifier: 51:7F:E7:E7:17:BF:70:AC:06:46:19:D9:29:1D:ED:5C:FC:13:41:82 Authority key identifier: 1E:7D:7D:24:19:F1:11:8A:AC:5C:99:2D:2A:DF:F6:97:B0:3E:9A:7B Certificate issuer: /CN=1e7d7d2419f1118aac5c992d2adff697b03e9a7b Certificate serial: 019B24AC8E034692BD361CF130C2289AAF46 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hn19JBnxEYqsXJktKt_2l7A-mns.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/c8d78f-c28c-4116-a3a2-5bf998e27fc0/1/Hn19JBnxEYqsXJktKt_2l7A-mns.mft Manifest number: 0954 Signing time: Tue 16 Dec 2025 01:00:46 +0000 Manifest this update: Tue 16 Dec 2025 01:00:46 +0000 Manifest next update: Wed 17 Dec 2025 01:00:46 +0000 Files and hashes: 1: Hn19JBnxEYqsXJktKt_2l7A-mns.crl (hash: rmGbLCPPNbsmdJNPwk6M/Xh+8Y/aBpJAHTOVWn3wnIY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/c8d78f-c28c-4116-a3a2-5bf998e27fc0/1/Hn19JBnxEYqsXJktKt_2l7A-mns.crl rsync://rpki.ripe.net/repository/DEFAULT/4b/c8d78f-c28c-4116-a3a2-5bf998e27fc0/1/Hn19JBnxEYqsXJktKt_2l7A-mns.mft rsync://rpki.ripe.net/repository/DEFAULT/Hn19JBnxEYqsXJktKt_2l7A-mns.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:24:ac:8e:03:46:92:bd:36:1c:f1:30:c2:28:9a:af:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1e7d7d2419f1118aac5c992d2adff697b03e9a7b Validity Not Before: Dec 16 01:00:46 2025 GMT Not After : Dec 17 01:00:46 2025 GMT Subject: CN=517fe7e717bf70ac064619d9291ded5cfc134182 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:b9:2a:53:ee:c7:22:3e:58:f0:ec:b4:6e:4f: c1:18:10:b7:03:76:6f:2d:c0:6e:03:4a:a0:63:3b: 07:67:5a:be:c2:2b:8a:38:59:c9:18:ef:b6:8a:4c: 4e:31:e8:4a:2f:55:52:b7:35:b1:08:75:51:8c:af: 15:23:47:27:9c:03:8b:d5:23:56:f6:29:b7:3c:cc: 0a:e9:a3:0a:72:d7:c3:44:8b:00:d7:80:98:15:d7: a8:62:86:55:c8:b3:bf:f8:b1:fe:da:e5:03:69:08: 92:44:5b:67:a0:15:2b:6d:f5:c4:e2:21:d5:d4:ef: 6f:f3:0a:cb:30:9d:2b:a3:fe:73:ed:a4:d8:d9:12: 7f:78:7b:7f:37:0b:a2:dd:ce:3d:6b:68:3f:91:0e: bd:65:eb:dd:4d:46:46:fd:a9:06:28:14:cc:46:48: 81:93:11:90:ea:22:ab:0b:4b:2e:0f:6e:bd:96:ef: 5d:02:38:08:1b:f8:e2:a1:7b:5b:7b:dc:40:d6:99: 3f:a7:b9:a8:42:2c:80:2e:c4:0d:76:e1:4a:23:e2: 4d:cc:4e:68:df:0d:d9:c3:7e:d7:5e:68:6e:dd:37: f4:d6:a9:07:7f:59:19:9b:2e:e4:a1:33:6d:26:3e: aa:07:59:cb:82:36:2d:06:50:57:fd:ca:8d:5f:eb: f7:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:7F:E7:E7:17:BF:70:AC:06:46:19:D9:29:1D:ED:5C:FC:13:41:82 X509v3 Authority Key Identifier: keyid:1E:7D:7D:24:19:F1:11:8A:AC:5C:99:2D:2A:DF:F6:97:B0:3E:9A:7B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hn19JBnxEYqsXJktKt_2l7A-mns.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/c8d78f-c28c-4116-a3a2-5bf998e27fc0/1/Hn19JBnxEYqsXJktKt_2l7A-mns.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/c8d78f-c28c-4116-a3a2-5bf998e27fc0/1/Hn19JBnxEYqsXJktKt_2l7A-mns.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:f5:1a:0b:25:07:08:8a:35:6a:8a:bf:d5:2c:21:f1:5d:9d: d1:94:83:9b:3a:98:a0:b9:55:3b:44:00:3a:40:8c:72:b6:a0: a6:31:a2:84:1f:5a:5a:de:37:7c:0b:77:4d:9f:3b:b6:72:ba: 5c:6c:74:26:be:39:18:09:de:bd:b0:99:76:3a:f8:88:12:8f: 16:a2:31:53:ca:f1:02:5a:3b:c6:79:f5:39:e1:cf:50:44:b9: 37:13:52:d4:74:68:19:95:a1:2b:88:1d:ec:99:53:5b:8e:04: e5:73:6e:e7:12:12:5e:b1:45:fd:60:25:7c:b1:03:9d:38:76: e8:dd:f0:cf:09:29:96:b1:32:48:0f:8c:75:9a:78:99:3c:30: 22:99:f1:d9:4a:d0:11:79:1c:79:94:62:54:d3:60:20:2d:7a: a4:10:c0:ab:10:ff:dc:d1:c1:b7:73:f2:dd:6c:04:d3:b1:82: 6a:e9:c1:76:e4:ae:0b:1a:d3:d0:30:e0:13:94:69:11:ad:bf: d8:d5:83:0f:17:7e:30:d8:12:68:7a:ae:00:1a:24:ed:90:d4: 52:09:c4:97:2e:58:74:93:d3:28:a3:61:5f:40:81:b8:b8:6f: 30:ae:09:48:be:6c:a5:59:00:80:dd:fe:6a:f9:45:7e:f4:88: 89:ad:34:bb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZskrI4DRpK9NhzxMMIomq9GMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlN2Q3ZDI0MTlmMTExOGFhYzVjOTkyZDJhZGZmNjk3YjAz ZTlhN2IwHhcNMjUxMjE2MDEwMDQ2WhcNMjUxMjE3MDEwMDQ2WjAzMTEwLwYDVQQD Eyg1MTdmZTdlNzE3YmY3MGFjMDY0NjE5ZDkyOTFkZWQ1Y2ZjMTM0MTgyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5rkqU+7HIj5Y8Oy0bk/BGBC3A3Zv LcBuA0qgYzsHZ1q+wiuKOFnJGO+2ikxOMehKL1VStzWxCHVRjK8VI0cnnAOL1SNW 9im3PMwK6aMKctfDRIsA14CYFdeoYoZVyLO/+LH+2uUDaQiSRFtnoBUrbfXE4iHV 1O9v8wrLMJ0ro/5z7aTY2RJ/eHt/Nwui3c49a2g/kQ69ZevdTUZG/akGKBTMRkiB kxGQ6iKrC0suD269lu9dAjgIG/jioXtbe9xA1pk/p7moQiyALsQNduFKI+JNzE5o 3w3Zw37XXmhu3Tf01qkHf1kZmy7koTNtJj6qB1nLgjYtBlBX/cqNX+v3awIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFF/5+cXv3CsBkYZ2Skd7Vz8E0GCMB8GA1UdIwQY MBaAFB59fSQZ8RGKrFyZLSrf9pewPpp7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSG4xOUpCbnhFWXFzWEprdEt0XzJsN0EtbW5zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi9jOGQ3OGYtYzI4Yy00MTE2LWEzYTIt NWJmOTk4ZTI3ZmMwLzEvSG4xOUpCbnhFWXFzWEprdEt0XzJsN0EtbW5zLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yi9jOGQ3OGYtYzI4Yy00MTE2LWEzYTItNWJmOTk4ZTI3ZmMw LzEvSG4xOUpCbnhFWXFzWEprdEt0XzJsN0EtbW5zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX/UaCyUH CIo1aoq/1Swh8V2d0ZSDmzqYoLlVO0QAOkCMcragpjGihB9aWt43fAt3TZ87tnK6 XGx0Jr45GAnevbCZdjr4iBKPFqIxU8rxAlo7xnn1OeHPUES5NxNS1HRoGZWhK4gd 7JlTW44E5XNu5xISXrFF/WAlfLEDnTh26N3wzwkplrEySA+MdZp4mTwwIpnx2UrQ EXkceZRiVNNgIC16pBDAqxD/3NHBt3Py3WwE07GCaunBduSuCxrT0DDgE5RpEa2/ 2NWDDxd+MNgSaHquABok7ZDUUgnEly5YdJPTKKNhX0CBuLhvMK4JSL5spVkAgN3+ avlFfvSIia00uw== -----END CERTIFICATE-----Generated at Tue Dec 16 07:03:26 2025 by rpki-client