This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/15c39c-f7d4-4a1f-a49a-4918b02742c7/1/hqSVrmh0HnnVjjiGviqoeMSME7Y.mft File: hqSVrmh0HnnVjjiGviqoeMSME7Y.mft (raw, json) Hash identifier: 1CjfZk+xj1nzu2hlZwUnKw/OdyO86UKy7yhVBX6Gso8= Subject key identifier: 59:E3:76:7D:0B:8C:FB:0E:4B:CD:CB:CB:6A:F9:97:43:37:33:F2:00 Authority key identifier: 86:A4:95:AE:68:74:1E:79:D5:8E:38:86:BE:2A:A8:78:C4:8C:13:B6 Certificate issuer: /CN=86a495ae68741e79d58e3886be2aa878c48c13b6 Certificate serial: 019AF2091AC967D55947CD1516E4ECB1DD98 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hqSVrmh0HnnVjjiGviqoeMSME7Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/15c39c-f7d4-4a1f-a49a-4918b02742c7/1/hqSVrmh0HnnVjjiGviqoeMSME7Y.mft Manifest number: 175E Signing time: Sat 06 Dec 2025 05:01:14 +0000 Manifest this update: Sat 06 Dec 2025 05:01:14 +0000 Manifest next update: Sun 07 Dec 2025 05:01:14 +0000 Files and hashes: 1: hqSVrmh0HnnVjjiGviqoeMSME7Y.crl (hash: LYNycFc3vEeIXQ4RSLjTYvfPEUVltCckisjunk0bu4I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/15c39c-f7d4-4a1f-a49a-4918b02742c7/1/hqSVrmh0HnnVjjiGviqoeMSME7Y.crl rsync://rpki.ripe.net/repository/DEFAULT/61/15c39c-f7d4-4a1f-a49a-4918b02742c7/1/hqSVrmh0HnnVjjiGviqoeMSME7Y.mft rsync://rpki.ripe.net/repository/DEFAULT/hqSVrmh0HnnVjjiGviqoeMSME7Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:1a:c9:67:d5:59:47:cd:15:16:e4:ec:b1:dd:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86a495ae68741e79d58e3886be2aa878c48c13b6 Validity Not Before: Dec 6 05:01:14 2025 GMT Not After : Dec 7 05:01:14 2025 GMT Subject: CN=59e3767d0b8cfb0e4bcdcbcb6af997433733f200 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:16:05:81:f3:25:44:0f:a1:bc:f2:b5:b1:f1: 88:3a:1e:85:93:d0:4a:97:f3:3c:20:8a:c8:69:55: 30:9c:bf:4d:b6:25:27:b0:a9:16:7e:ee:b9:eb:8d: 7c:42:44:7e:ed:cf:1a:2a:76:9f:83:82:65:5b:16: b7:fe:64:84:0f:00:31:55:4d:c3:55:c2:a0:57:90: ec:c1:7e:b2:fc:24:be:af:f6:02:ed:5a:de:a6:8a: d7:0f:c2:81:5b:20:2f:ab:bf:75:aa:88:ba:12:bb: 42:de:d6:9c:1c:d3:77:cb:75:26:e8:e3:e5:a9:27: 0d:4e:1c:b9:b3:33:07:ca:a3:18:74:1f:92:d0:74: 94:db:f6:53:96:34:48:68:69:db:a9:4b:07:bd:16: 07:ec:22:ba:c7:44:d6:35:77:83:79:cd:27:03:02: c1:06:30:6d:10:b1:a4:74:e1:c2:bd:bc:69:fb:76: e1:d4:06:7a:61:f5:bb:ea:0c:3e:2b:39:11:4e:88: 85:6b:aa:22:ca:c4:2b:a6:f6:2d:fa:9a:ae:ec:75: 44:74:2a:88:e5:27:f5:a0:32:1f:86:9a:49:7d:cd: d0:7e:76:5d:bb:24:29:76:1b:38:8c:9b:80:f3:da: ca:aa:59:1c:0a:47:60:40:9d:f1:a5:9f:10:68:61: d4:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:E3:76:7D:0B:8C:FB:0E:4B:CD:CB:CB:6A:F9:97:43:37:33:F2:00 X509v3 Authority Key Identifier: keyid:86:A4:95:AE:68:74:1E:79:D5:8E:38:86:BE:2A:A8:78:C4:8C:13:B6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hqSVrmh0HnnVjjiGviqoeMSME7Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/15c39c-f7d4-4a1f-a49a-4918b02742c7/1/hqSVrmh0HnnVjjiGviqoeMSME7Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/61/15c39c-f7d4-4a1f-a49a-4918b02742c7/1/hqSVrmh0HnnVjjiGviqoeMSME7Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 87:05:33:82:3f:79:b2:c4:c2:ba:69:b5:f7:d9:9d:0d:28:3f: 58:80:e6:e3:f7:af:7f:70:5d:5b:5e:a6:77:75:9f:3c:77:45: e0:04:53:bb:ae:a2:94:26:7a:ec:df:a9:e6:b5:d4:c5:74:3a: 7f:72:01:0e:f6:2a:18:14:b5:a8:c6:f0:f8:9f:c5:d9:a9:98: a1:41:58:7e:e2:1a:97:0d:04:07:f8:99:ca:52:cf:d7:b7:cc: 9b:d2:93:e4:22:f7:ed:34:fd:a2:6c:67:b0:ce:69:ab:b5:a0: 63:e1:14:18:03:f6:ec:f7:4e:d9:a2:d5:95:6f:41:84:b1:a0: f8:8a:69:2d:b8:d1:cc:8d:8c:b0:92:4a:48:56:ee:81:38:77: 87:2a:b7:01:ce:04:5b:36:0f:1b:6e:de:64:4d:b9:26:ee:da: 2e:0f:89:73:46:d7:0a:79:a0:4d:27:d3:68:87:19:5e:3a:96: 6a:1e:dc:f4:7f:2a:84:fe:e2:e7:9f:7c:21:12:11:eb:4c:a6: 20:59:0a:b4:9c:18:ef:e6:27:53:29:7d:49:d0:a8:c9:82:63: 15:2e:e6:cb:d5:ae:27:d3:54:71:01:9f:62:17:e4:97:67:3a: 45:cb:69:cc:0d:bd:d6:21:98:66:d3:7f:45:62:1e:3a:76:38: 3d:01:e6:95 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCRrJZ9VZR80VFuTssd2YMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2YTQ5NWFlNjg3NDFlNzlkNThlMzg4NmJlMmFhODc4YzQ4 YzEzYjYwHhcNMjUxMjA2MDUwMTE0WhcNMjUxMjA3MDUwMTE0WjAzMTEwLwYDVQQD Eyg1OWUzNzY3ZDBiOGNmYjBlNGJjZGNiY2I2YWY5OTc0MzM3MzNmMjAwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArxYFgfMlRA+hvPK1sfGIOh6Fk9BK l/M8IIrIaVUwnL9NtiUnsKkWfu656418QkR+7c8aKnafg4JlWxa3/mSEDwAxVU3D VcKgV5DswX6y/CS+r/YC7VreporXD8KBWyAvq791qoi6ErtC3tacHNN3y3Um6OPl qScNThy5szMHyqMYdB+S0HSU2/ZTljRIaGnbqUsHvRYH7CK6x0TWNXeDec0nAwLB BjBtELGkdOHCvbxp+3bh1AZ6YfW76gw+KzkRToiFa6oiysQrpvYt+pqu7HVEdCqI 5Sf1oDIfhppJfc3QfnZduyQpdhs4jJuA89rKqlkcCkdgQJ3xpZ8QaGHUrQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFnjdn0LjPsOS83Ly2r5l0M3M/IAMB8GA1UdIwQY MBaAFIakla5odB551Y44hr4qqHjEjBO2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHFTVnJtaDBIbm5WamppR3ZpcW9lTVNNRTdZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS8xNWMzOWMtZjdkNC00YTFmLWE0OWEt NDkxOGIwMjc0MmM3LzEvaHFTVnJtaDBIbm5WamppR3ZpcW9lTVNNRTdZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MS8xNWMzOWMtZjdkNC00YTFmLWE0OWEtNDkxOGIwMjc0MmM3 LzEvaHFTVnJtaDBIbm5WamppR3ZpcW9lTVNNRTdZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhwUzgj95 ssTCumm199mdDSg/WIDm4/evf3BdW16md3WfPHdF4ARTu66ilCZ67N+p5rXUxXQ6 f3IBDvYqGBS1qMbw+J/F2amYoUFYfuIalw0EB/iZylLP17fMm9KT5CL37TT9omxn sM5pq7WgY+EUGAP27PdO2aLVlW9BhLGg+IppLbjRzI2MsJJKSFbugTh3hyq3Ac4E WzYPG27eZE25Ju7aLg+Jc0bXCnmgTSfTaIcZXjqWah7c9H8qhP7i5598IRIR60ym IFkKtJwY7+YnUyl9SdCoyYJjFS7my9WuJ9NUcQGfYhfkl2c6RctpzA291iGYZtN/ RWIeOnY4PQHmlQ== -----END CERTIFICATE-----Generated at Sat Dec 6 08:07:31 2025 by rpki-client