This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/abd004-c68f-49b1-a2c4-b9056ebbc576/1/hPQw2a2cucQsS9ZpDp9YEqRXoC8.mft File: hPQw2a2cucQsS9ZpDp9YEqRXoC8.mft (raw, json) Hash identifier: G1dryKXEBZ4EcV9dCl+qa4qCXj4b/LDpTu6GJ0ww2MQ= Subject key identifier: F9:3C:1B:5F:B2:89:27:1C:F2:72:7F:2A:05:8F:F9:13:6E:D8:11:6E Authority key identifier: 84:F4:30:D9:AD:9C:B9:C4:2C:4B:D6:69:0E:9F:58:12:A4:57:A0:2F Certificate issuer: /CN=84f430d9ad9cb9c42c4bd6690e9f5812a457a02f Certificate serial: 019B27ADDFE13D02F24D23B98FFFE28847B3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hPQw2a2cucQsS9ZpDp9YEqRXoC8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/abd004-c68f-49b1-a2c4-b9056ebbc576/1/hPQw2a2cucQsS9ZpDp9YEqRXoC8.mft Manifest number: 1231 Signing time: Tue 16 Dec 2025 15:01:04 +0000 Manifest this update: Tue 16 Dec 2025 15:01:04 +0000 Manifest next update: Wed 17 Dec 2025 15:01:04 +0000 Files and hashes: 1: 9IYJ3JT9uAsxxt2lyjGjJVqXG38.roa (hash: Fm2Q+Megk5GLVl9u0EHQZ20RgFMN11FSbY9n50k8CTU=) 2: hPQw2a2cucQsS9ZpDp9YEqRXoC8.crl (hash: SCSlIoBxcoltn0gWdmogzOqC+EnRIuISr5jRjxDBPfg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/abd004-c68f-49b1-a2c4-b9056ebbc576/1/hPQw2a2cucQsS9ZpDp9YEqRXoC8.crl rsync://rpki.ripe.net/repository/DEFAULT/6a/abd004-c68f-49b1-a2c4-b9056ebbc576/1/hPQw2a2cucQsS9ZpDp9YEqRXoC8.mft rsync://rpki.ripe.net/repository/DEFAULT/hPQw2a2cucQsS9ZpDp9YEqRXoC8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 14:45:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:27:ad:df:e1:3d:02:f2:4d:23:b9:8f:ff:e2:88:47:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84f430d9ad9cb9c42c4bd6690e9f5812a457a02f Validity Not Before: Dec 16 15:01:04 2025 GMT Not After : Dec 17 15:01:04 2025 GMT Subject: CN=f93c1b5fb289271cf2727f2a058ff9136ed8116e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:6e:ef:63:b0:4d:9b:ec:63:39:0a:86:c3:2d: f8:81:1e:aa:e9:59:2e:cd:04:8a:2d:cd:d0:46:57: 51:0f:e5:5d:fe:6a:39:c2:79:75:56:7d:ca:b4:8b: 28:ae:b5:b3:0f:96:b5:84:f8:fa:a3:bd:b2:52:04: 80:dd:c3:ed:ab:62:6b:a3:41:a9:f1:bc:74:3e:b9: ac:74:32:25:cf:6b:98:fc:36:fc:39:ee:2d:a4:f5: 56:d6:94:cb:e6:b0:96:98:80:c8:48:3a:b0:75:c8: 0b:6e:c2:f7:cf:b1:fd:53:7e:93:c0:c5:99:ea:da: 60:46:d9:5f:d4:11:45:9c:c3:77:2c:fa:7f:2d:aa: ca:b9:5b:1d:f4:df:0c:18:19:8c:70:ac:eb:5d:61: 80:9c:6f:68:d9:f7:55:c1:c0:d5:3b:9d:58:d3:b1: 6e:b6:58:c4:54:55:ff:50:61:4f:59:3c:44:73:08: 35:fc:8b:43:f7:c9:5d:c2:d1:c6:ed:44:14:eb:c4: 7d:9b:ce:2b:c3:da:08:ff:6a:99:7a:78:18:b1:ac: d0:04:24:ff:24:11:5b:c4:54:be:3c:85:8d:5e:7e: 68:fb:bc:96:d4:cc:61:dc:7d:e8:73:67:35:60:e3: 6b:a3:1a:55:10:11:1a:ea:c3:0f:ec:cc:2b:45:0c: 6c:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:3C:1B:5F:B2:89:27:1C:F2:72:7F:2A:05:8F:F9:13:6E:D8:11:6E X509v3 Authority Key Identifier: keyid:84:F4:30:D9:AD:9C:B9:C4:2C:4B:D6:69:0E:9F:58:12:A4:57:A0:2F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hPQw2a2cucQsS9ZpDp9YEqRXoC8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/abd004-c68f-49b1-a2c4-b9056ebbc576/1/hPQw2a2cucQsS9ZpDp9YEqRXoC8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/abd004-c68f-49b1-a2c4-b9056ebbc576/1/hPQw2a2cucQsS9ZpDp9YEqRXoC8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a9:68:97:26:a8:e4:3c:ad:0d:25:b4:91:a1:49:38:2e:5d:f0: 4f:8d:be:1c:35:d9:b0:71:7c:88:6d:36:ee:66:f8:bd:c3:15: 40:f6:db:38:1c:99:36:11:ff:18:f5:c2:7a:73:42:08:57:c9: 15:f4:14:8f:15:75:01:c8:4f:4e:da:d4:f9:ac:54:ce:00:66: 14:7c:1f:12:82:29:3c:53:61:07:b3:c7:96:3f:db:94:33:8b: 06:7b:9b:bd:de:6c:0b:bc:ee:18:fb:ed:26:09:a8:fe:69:30: 36:dc:5a:85:13:0c:17:7e:b7:6f:e1:59:74:5b:55:f0:86:91: 1e:a0:b6:6f:20:4f:bc:4e:52:e2:ac:10:f7:28:76:2e:da:c0: 63:a5:c7:6c:55:50:62:0d:92:b7:e5:68:5d:a2:b1:6e:da:6f: 0a:78:cf:7f:a0:35:76:dc:0a:83:b9:f3:d8:5b:20:86:6d:a1: 0c:35:15:9a:ba:b2:63:85:d0:4a:29:ab:5a:f7:6a:d7:05:9d: c8:2c:57:5b:bc:65:9f:e6:ae:f7:ce:3b:84:b4:10:98:d3:85: a3:82:62:dd:14:1a:80:f4:4b:1c:61:b1:2c:37:22:eb:db:95: e2:20:cc:c4:39:10:c3:a4:f9:85:3e:0b:02:c8:62:70:cb:3b: 43:4b:b3:d6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsnrd/hPQLyTSO5j//iiEezMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0ZjQzMGQ5YWQ5Y2I5YzQyYzRiZDY2OTBlOWY1ODEyYTQ1 N2EwMmYwHhcNMjUxMjE2MTUwMTA0WhcNMjUxMjE3MTUwMTA0WjAzMTEwLwYDVQQD EyhmOTNjMWI1ZmIyODkyNzFjZjI3MjdmMmEwNThmZjkxMzZlZDgxMTZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAum7vY7BNm+xjOQqGwy34gR6q6Vku zQSKLc3QRldRD+Vd/mo5wnl1Vn3KtIsorrWzD5a1hPj6o72yUgSA3cPtq2Jro0Gp 8bx0PrmsdDIlz2uY/Db8Oe4tpPVW1pTL5rCWmIDISDqwdcgLbsL3z7H9U36TwMWZ 6tpgRtlf1BFFnMN3LPp/LarKuVsd9N8MGBmMcKzrXWGAnG9o2fdVwcDVO51Y07Fu tljEVFX/UGFPWTxEcwg1/ItD98ldwtHG7UQU68R9m84rw9oI/2qZengYsazQBCT/ JBFbxFS+PIWNXn5o+7yW1Mxh3H3oc2c1YONroxpVEBEa6sMP7MwrRQxs8wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPk8G1+yiScc8nJ/KgWP+RNu2BFuMB8GA1UdIwQY MBaAFIT0MNmtnLnELEvWaQ6fWBKkV6AvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaFBRdzJhMmN1Y1FzUzlacERwOVlFcVJYb0M4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS9hYmQwMDQtYzY4Zi00OWIxLWEyYzQt YjkwNTZlYmJjNTc2LzEvaFBRdzJhMmN1Y1FzUzlacERwOVlFcVJYb0M4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82YS9hYmQwMDQtYzY4Zi00OWIxLWEyYzQtYjkwNTZlYmJjNTc2 LzEvaFBRdzJhMmN1Y1FzUzlacERwOVlFcVJYb0M4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqWiXJqjk PK0NJbSRoUk4Ll3wT42+HDXZsHF8iG027mb4vcMVQPbbOByZNhH/GPXCenNCCFfJ FfQUjxV1AchPTtrU+axUzgBmFHwfEoIpPFNhB7PHlj/blDOLBnubvd5sC7zuGPvt Jgmo/mkwNtxahRMMF363b+FZdFtV8IaRHqC2byBPvE5S4qwQ9yh2LtrAY6XHbFVQ Yg2St+VoXaKxbtpvCnjPf6A1dtwKg7nz2Fsghm2hDDUVmrqyY4XQSimrWvdq1wWd yCxXW7xln+au9847hLQQmNOFo4Ji3RQagPRLHGGxLDci69uV4iDMxDkQw6T5hT4L AshicMs7Q0uz1g== -----END CERTIFICATE-----Generated at Tue Dec 16 20:44:12 2025 by rpki-client