This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.mft File: hpwOc330guiapnJs3YqZWKp0ER4.mft (raw, json) Hash identifier: 9PGvPDtbrg6S20Xevwc0ilSO3HKcOJqVkfBgghxZOKM= Subject key identifier: 81:E7:D7:BA:02:D7:1B:FF:F5:B1:C6:8C:0F:2E:49:E9:BD:D6:3B:06 Authority key identifier: 86:9C:0E:73:7D:F4:82:E8:9A:A6:72:6C:DD:8A:99:58:AA:74:11:1E Certificate issuer: /CN=869c0e737df482e89aa6726cdd8a9958aa74111e Certificate serial: 019AF1645297AF06EA41F2DE0C3AC03325AB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hpwOc330guiapnJs3YqZWKp0ER4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.mft Manifest number: 01C4 Signing time: Sat 06 Dec 2025 02:01:15 +0000 Manifest this update: Sat 06 Dec 2025 02:01:15 +0000 Manifest next update: Sun 07 Dec 2025 02:01:15 +0000 Files and hashes: 1: f9MGnlddFQ2IMf-Uoo2fTYxJ_co.roa (hash: kPIpbLqEj4dHSmVPx7WOIcV4CWQtCce8UvwQXn1AUT0=) 2: hpwOc330guiapnJs3YqZWKp0ER4.crl (hash: ynkMCsi20l34VB3lNHEdJlkPW9y2oAcZQhN5jzUF6ag=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.crl rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.mft rsync://rpki.ripe.net/repository/DEFAULT/hpwOc330guiapnJs3YqZWKp0ER4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:64:52:97:af:06:ea:41:f2:de:0c:3a:c0:33:25:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=869c0e737df482e89aa6726cdd8a9958aa74111e Validity Not Before: Dec 6 02:01:15 2025 GMT Not After : Dec 7 02:01:15 2025 GMT Subject: CN=81e7d7ba02d71bfff5b1c68c0f2e49e9bdd63b06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:8e:6c:9e:04:1d:05:ac:2a:0e:17:86:aa:ec: 31:1a:a4:86:32:03:7b:5f:a1:e6:b7:b9:0b:3b:37: c7:d4:0a:46:a6:0d:38:4d:b0:01:7c:85:3f:27:e4: db:53:b4:ee:0d:3e:e3:04:4b:1e:71:e0:34:a6:d3: 32:77:87:8a:57:ae:a7:b3:4b:a0:a8:45:b2:09:5e: 86:66:b2:d5:a6:6f:75:b3:98:07:ad:fa:a4:59:e0: 2b:51:32:3f:b2:55:c6:34:b9:dc:54:20:8e:e5:7c: 68:61:f6:1e:90:c8:68:5f:6e:5c:c5:b5:de:3a:9b: 82:f0:d7:32:67:6a:38:60:97:33:19:e1:19:74:d8: 83:ee:61:d3:7d:5a:25:3b:1a:bf:a9:24:39:c1:1c: bc:46:05:1e:67:6b:38:a0:2b:49:54:cb:08:8a:40: 18:37:3f:37:22:d9:7c:3f:ca:9d:90:1c:96:7e:8a: 39:35:13:2b:19:15:f2:5f:b7:54:83:41:6a:0a:cd: 76:2f:ce:c3:fb:d2:07:6b:0f:f8:d2:b7:59:88:74: f6:b5:65:71:a7:3d:d7:d9:36:d5:88:a7:d8:78:4f: 1d:ed:d1:74:a8:a5:42:c7:49:a7:e0:4c:7a:05:fe: 73:ea:18:d2:da:82:f1:54:ad:2e:93:b8:ef:50:53: c4:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:E7:D7:BA:02:D7:1B:FF:F5:B1:C6:8C:0F:2E:49:E9:BD:D6:3B:06 X509v3 Authority Key Identifier: keyid:86:9C:0E:73:7D:F4:82:E8:9A:A6:72:6C:DD:8A:99:58:AA:74:11:1E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hpwOc330guiapnJs3YqZWKp0ER4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 83:2d:11:58:b3:3f:53:9b:aa:52:e5:bb:5c:4f:a1:00:c0:e2: 4b:b4:3c:c6:12:65:72:84:d1:d3:7f:42:cf:8c:26:7d:e9:40: 87:96:74:c8:53:3c:61:11:eb:a9:18:33:20:7c:4d:e8:b8:b8: 14:4a:a4:23:9b:72:d0:cd:53:f6:8f:c1:78:ca:b7:e6:e1:c7: bd:6e:5f:f1:c1:6f:70:b6:4a:66:9f:a1:52:ca:87:4e:20:6f: 2c:f2:4c:ed:20:f8:3d:bf:fe:d1:f8:fa:72:ad:cd:8f:0e:26: 7d:fc:f5:5e:26:37:b9:a0:1e:3b:87:0f:a8:d5:22:0f:a7:d2: dc:e3:6a:15:e4:b3:5c:c6:3d:eb:15:97:73:5b:58:77:8b:fc: cd:d0:5f:f5:27:59:e6:6b:7f:a8:a4:04:7e:b5:25:81:50:17: 0b:0f:db:c4:07:fe:99:6e:12:ad:ae:1a:2d:e3:81:b1:6d:12: 51:6f:3c:5b:a8:e8:66:67:9f:0b:77:7d:99:66:ea:58:ca:cc: 1c:a0:6f:7f:74:02:b0:51:c2:64:3b:1b:c5:4c:b7:62:46:e4: f8:92:14:73:78:1e:e4:26:85:da:15:de:e4:90:e2:f6:d5:34: 38:d9:b8:6e:35:cb:87:5a:72:0c:c8:c1:17:d0:11:6f:64:02: c6:21:f8:a0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxZFKXrwbqQfLeDDrAMyWrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2OWMwZTczN2RmNDgyZTg5YWE2NzI2Y2RkOGE5OTU4YWE3 NDExMWUwHhcNMjUxMjA2MDIwMTE1WhcNMjUxMjA3MDIwMTE1WjAzMTEwLwYDVQQD Eyg4MWU3ZDdiYTAyZDcxYmZmZjViMWM2OGMwZjJlNDllOWJkZDYzYjA2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoI5sngQdBawqDheGquwxGqSGMgN7 X6Hmt7kLOzfH1ApGpg04TbABfIU/J+TbU7TuDT7jBEseceA0ptMyd4eKV66ns0ug qEWyCV6GZrLVpm91s5gHrfqkWeArUTI/slXGNLncVCCO5XxoYfYekMhoX25cxbXe OpuC8NcyZ2o4YJczGeEZdNiD7mHTfVolOxq/qSQ5wRy8RgUeZ2s4oCtJVMsIikAY Nz83Itl8P8qdkByWfoo5NRMrGRXyX7dUg0FqCs12L87D+9IHaw/40rdZiHT2tWVx pz3X2TbViKfYeE8d7dF0qKVCx0mn4Ex6Bf5z6hjS2oLxVK0uk7jvUFPElwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIHn17oC1xv/9bHGjA8uSem91jsGMB8GA1UdIwQY MBaAFIacDnN99ILomqZybN2KmViqdBEeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHB3T2MzMzBndWlhcG5KczNZcVpXS3AwRVI0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny9hNzk4MGItY2VmOC00YjUzLWEwMzEt YzVlMGZhY2E0YTVlLzEvaHB3T2MzMzBndWlhcG5KczNZcVpXS3AwRVI0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ny9hNzk4MGItY2VmOC00YjUzLWEwMzEtYzVlMGZhY2E0YTVl LzEvaHB3T2MzMzBndWlhcG5KczNZcVpXS3AwRVI0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgy0RWLM/ U5uqUuW7XE+hAMDiS7Q8xhJlcoTR039Cz4wmfelAh5Z0yFM8YRHrqRgzIHxN6Li4 FEqkI5ty0M1T9o/BeMq35uHHvW5f8cFvcLZKZp+hUsqHTiBvLPJM7SD4Pb/+0fj6 cq3Njw4mffz1XiY3uaAeO4cPqNUiD6fS3ONqFeSzXMY96xWXc1tYd4v8zdBf9SdZ 5mt/qKQEfrUlgVAXCw/bxAf+mW4Sra4aLeOBsW0SUW88W6joZmefC3d9mWbqWMrM HKBvf3QCsFHCZDsbxUy3Ykbk+JIUc3ge5CaF2hXe5JDi9tU0ONm4bjXLh1pyDMjB F9ARb2QCxiH4oA== -----END CERTIFICATE-----Generated at Sat Dec 6 11:12:42 2025 by rpki-client