This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/eade98-4e1d-4c98-8509-134415fe15d0/1/HzPIww-60mD0qd98O1IGahp7TtU.mft File: HzPIww-60mD0qd98O1IGahp7TtU.mft (raw, json) Hash identifier: lbAeHW9zOHfKR0hOGZjioA3Ayjlyxm117h7Y9xFHb5Y= Subject key identifier: B8:CA:B2:95:2C:88:DD:72:A6:BE:91:99:80:8C:8A:F1:D3:1B:80:F0 Authority key identifier: 1F:33:C8:C3:0F:BA:D2:60:F4:A9:DF:7C:3B:52:06:6A:1A:7B:4E:D5 Certificate issuer: /CN=1f33c8c30fbad260f4a9df7c3b52066a1a7b4ed5 Certificate serial: 019AF208A85C3093F470CCEA9D90F4FCF1F5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HzPIww-60mD0qd98O1IGahp7TtU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/eade98-4e1d-4c98-8509-134415fe15d0/1/HzPIww-60mD0qd98O1IGahp7TtU.mft Manifest number: 0120 Signing time: Sat 06 Dec 2025 05:00:44 +0000 Manifest this update: Sat 06 Dec 2025 05:00:44 +0000 Manifest next update: Sun 07 Dec 2025 05:00:44 +0000 Files and hashes: 1: HzPIww-60mD0qd98O1IGahp7TtU.crl (hash: /6IC/tPYmHnQyK4Ozze5ER7iwRixXbksguo3SlXphqE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/eade98-4e1d-4c98-8509-134415fe15d0/1/HzPIww-60mD0qd98O1IGahp7TtU.crl rsync://rpki.ripe.net/repository/DEFAULT/6e/eade98-4e1d-4c98-8509-134415fe15d0/1/HzPIww-60mD0qd98O1IGahp7TtU.mft rsync://rpki.ripe.net/repository/DEFAULT/HzPIww-60mD0qd98O1IGahp7TtU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:08:a8:5c:30:93:f4:70:cc:ea:9d:90:f4:fc:f1:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1f33c8c30fbad260f4a9df7c3b52066a1a7b4ed5 Validity Not Before: Dec 6 05:00:44 2025 GMT Not After : Dec 7 05:00:44 2025 GMT Subject: CN=b8cab2952c88dd72a6be9199808c8af1d31b80f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:76:2a:50:6c:63:3c:65:c3:6b:d4:bf:74:1e: 76:13:1b:40:07:62:7e:a6:db:05:fc:86:a1:66:ca: 9a:24:38:ad:a8:42:3f:c9:b7:48:e7:58:d3:53:e4: 75:be:31:75:60:f2:a5:93:f7:cf:56:e7:b8:a1:32: f3:4b:a1:5e:af:c9:ab:6a:13:37:ac:55:34:c1:3b: 47:aa:04:28:e0:f2:d0:fc:83:aa:ef:19:bb:f5:76: 12:39:79:ab:b7:06:c1:e1:0d:fd:c3:f5:1f:90:10: 7e:cd:a2:a7:25:92:9c:59:57:d3:01:a3:a1:9f:7f: e6:cb:8a:9b:8d:f8:20:ae:25:de:03:88:c6:52:06: 82:b9:78:cd:39:a5:9a:0b:0c:74:55:46:ce:4d:7d: cd:f0:88:78:a0:58:18:81:d3:73:76:93:2b:7f:d5: 34:fd:a6:18:c3:cc:06:47:93:45:e9:88:35:ae:78: ce:bd:6d:f4:58:57:c0:30:95:df:1e:43:4a:e8:00: 35:13:33:1c:3d:58:f5:fd:b8:f8:72:74:34:fa:0b: 48:30:1c:c6:73:eb:64:91:cf:81:0e:8c:23:6c:9d: 20:be:ee:e5:cc:57:d9:63:b4:f7:e8:a0:55:b4:3d: bb:7f:a5:f4:9e:03:1b:ba:a7:ad:64:15:17:38:13: cd:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:CA:B2:95:2C:88:DD:72:A6:BE:91:99:80:8C:8A:F1:D3:1B:80:F0 X509v3 Authority Key Identifier: keyid:1F:33:C8:C3:0F:BA:D2:60:F4:A9:DF:7C:3B:52:06:6A:1A:7B:4E:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HzPIww-60mD0qd98O1IGahp7TtU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/eade98-4e1d-4c98-8509-134415fe15d0/1/HzPIww-60mD0qd98O1IGahp7TtU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/eade98-4e1d-4c98-8509-134415fe15d0/1/HzPIww-60mD0qd98O1IGahp7TtU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:05:75:97:e1:9e:a5:c3:38:e9:4c:d8:14:2e:20:13:d5:7f: e9:c6:27:ca:be:61:52:58:12:d8:86:cd:ce:c0:77:6d:9a:20: e2:7e:fb:c1:01:e7:b1:c5:b7:da:b6:9f:59:b8:21:25:47:6e: 87:d4:58:77:af:a1:1e:99:c4:b8:c1:b1:c7:19:e5:f4:c1:72: 67:c3:fa:bb:bc:b3:41:d7:6d:ec:6d:80:b7:ab:7a:ee:eb:cd: 9b:35:93:f2:e8:28:89:96:94:3a:ce:e0:91:d2:9d:89:27:c9: b1:ff:bf:a6:52:6d:44:86:34:ce:34:70:a6:f7:cb:b4:1e:2b: 73:24:a3:ef:37:11:17:7d:9c:6c:54:74:81:56:1b:a5:24:1b: 59:b6:16:9c:61:ee:c8:7a:7c:b7:73:a6:39:9f:ec:c1:c1:2d: 1e:57:d7:d0:5e:72:01:28:e8:97:5d:70:b6:e6:3d:30:32:8f: 4f:87:e0:6e:40:dc:6e:c5:5d:dd:33:9f:3e:d4:bc:13:e2:93: 4b:69:b7:0e:fb:40:8b:f8:0c:d4:db:44:12:98:9c:6f:5d:52: 06:c9:03:08:8e:20:b8:47:6a:25:00:e6:15:3f:06:97:03:a4: f2:59:0c:e3:65:bf:cc:7b:79:09:10:54:ed:82:a8:01:72:32: 27:69:34:f8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCKhcMJP0cMzqnZD0/PH1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFmMzNjOGMzMGZiYWQyNjBmNGE5ZGY3YzNiNTIwNjZhMWE3 YjRlZDUwHhcNMjUxMjA2MDUwMDQ0WhcNMjUxMjA3MDUwMDQ0WjAzMTEwLwYDVQQD EyhiOGNhYjI5NTJjODhkZDcyYTZiZTkxOTk4MDhjOGFmMWQzMWI4MGYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0HYqUGxjPGXDa9S/dB52ExtAB2J+ ptsF/IahZsqaJDitqEI/ybdI51jTU+R1vjF1YPKlk/fPVue4oTLzS6Fer8mrahM3 rFU0wTtHqgQo4PLQ/IOq7xm79XYSOXmrtwbB4Q39w/UfkBB+zaKnJZKcWVfTAaOh n3/my4qbjfggriXeA4jGUgaCuXjNOaWaCwx0VUbOTX3N8Ih4oFgYgdNzdpMrf9U0 /aYYw8wGR5NF6Yg1rnjOvW30WFfAMJXfHkNK6AA1EzMcPVj1/bj4cnQ0+gtIMBzG c+tkkc+BDowjbJ0gvu7lzFfZY7T36KBVtD27f6X0ngMbuqetZBUXOBPN+wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLjKspUsiN1ypr6RmYCMivHTG4DwMB8GA1UdIwQY MBaAFB8zyMMPutJg9KnffDtSBmoae07VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSHpQSXd3LTYwbUQwcWQ5OE8xSUdhaHA3VHRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZS9lYWRlOTgtNGUxZC00Yzk4LTg1MDkt MTM0NDE1ZmUxNWQwLzEvSHpQSXd3LTYwbUQwcWQ5OE8xSUdhaHA3VHRVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82ZS9lYWRlOTgtNGUxZC00Yzk4LTg1MDktMTM0NDE1ZmUxNWQw LzEvSHpQSXd3LTYwbUQwcWQ5OE8xSUdhaHA3VHRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVwV1l+Ge pcM46UzYFC4gE9V/6cYnyr5hUlgS2IbNzsB3bZog4n77wQHnscW32rafWbghJUdu h9RYd6+hHpnEuMGxxxnl9MFyZ8P6u7yzQddt7G2At6t67uvNmzWT8ugoiZaUOs7g kdKdiSfJsf+/plJtRIY0zjRwpvfLtB4rcySj7zcRF32cbFR0gVYbpSQbWbYWnGHu yHp8t3OmOZ/swcEtHlfX0F5yASjol11wtuY9MDKPT4fgbkDcbsVd3TOfPtS8E+KT S2m3DvtAi/gM1NtEEpicb11SBskDCI4guEdqJQDmFT8GlwOk8lkM42W/zHt5CRBU 7YKoAXIyJ2k0+A== -----END CERTIFICATE-----Generated at Sat Dec 6 12:23:28 2025 by rpki-client