This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/71492d-8c60-409d-a009-d6ada1281668/1/hwCTRBAfUQ52oqserOnpp9kuTtU.mft File: hwCTRBAfUQ52oqserOnpp9kuTtU.mft (raw, json) Hash identifier: jQSmdRosWqX3yNEfl/Ur8mB0KC1gLcZ7TOL5XKOF4xg= Subject key identifier: 96:7B:E0:E0:7B:C0:54:59:B2:10:8B:BF:CE:84:F4:8C:70:CC:28:B5 Authority key identifier: 87:00:93:44:10:1F:51:0E:76:A2:AB:1E:AC:E9:E9:A7:D9:2E:4E:D5 Certificate issuer: /CN=87009344101f510e76a2ab1eace9e9a7d92e4ed5 Certificate serial: 019AF31C5D165CD96EC74EB3446B7C030E34 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hwCTRBAfUQ52oqserOnpp9kuTtU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/71492d-8c60-409d-a009-d6ada1281668/1/hwCTRBAfUQ52oqserOnpp9kuTtU.mft Manifest number: 09C4 Signing time: Sat 06 Dec 2025 10:01:53 +0000 Manifest this update: Sat 06 Dec 2025 10:01:53 +0000 Manifest next update: Sun 07 Dec 2025 10:01:53 +0000 Files and hashes: 1: hwCTRBAfUQ52oqserOnpp9kuTtU.crl (hash: BC0ENuQ2Hygf7V/Iqwyh5+I6GgBo0YeidOmef/0219k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/71492d-8c60-409d-a009-d6ada1281668/1/hwCTRBAfUQ52oqserOnpp9kuTtU.crl rsync://rpki.ripe.net/repository/DEFAULT/71/71492d-8c60-409d-a009-d6ada1281668/1/hwCTRBAfUQ52oqserOnpp9kuTtU.mft rsync://rpki.ripe.net/repository/DEFAULT/hwCTRBAfUQ52oqserOnpp9kuTtU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1c:5d:16:5c:d9:6e:c7:4e:b3:44:6b:7c:03:0e:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87009344101f510e76a2ab1eace9e9a7d92e4ed5 Validity Not Before: Dec 6 10:01:53 2025 GMT Not After : Dec 7 10:01:53 2025 GMT Subject: CN=967be0e07bc05459b2108bbfce84f48c70cc28b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:f0:a8:66:46:9c:5e:06:fd:9e:03:14:5a:f5: 4e:e6:2a:8e:b4:4e:dc:3e:40:e0:77:c7:45:2b:6a: 13:33:01:3d:84:d9:b6:cc:b2:1a:9f:a2:36:9c:44: 54:1b:c3:02:20:ad:77:cf:14:9d:94:8f:59:fb:3a: 40:1b:41:4e:0a:a3:84:29:44:e3:e7:52:89:2b:d0: 6d:48:97:e7:5e:64:94:56:64:1d:f7:5d:e0:3f:9a: 09:01:9e:6a:75:59:ae:c5:91:19:c3:91:b9:a0:af: 3f:ea:25:8a:8d:2d:3c:98:83:c4:c6:c2:da:91:da: 75:e0:7e:f2:1a:cd:d7:c6:20:b7:ca:1b:95:5a:5a: 59:ed:14:74:3d:d1:3d:d0:f2:a5:a6:03:ea:02:e8: ab:f5:4f:30:3a:d3:62:ab:99:0b:46:b7:24:ea:cf: 81:6a:d3:db:ed:2b:f4:f6:88:c3:b2:75:d2:cb:01: 9c:30:74:22:34:82:00:b7:92:1b:97:b9:31:6d:4f: 49:54:d5:51:75:44:c8:84:fa:2d:1f:d1:dc:5b:6c: 2c:95:40:13:c2:07:48:f1:a4:f5:36:5f:9b:0b:a8: 6c:f0:ae:3b:22:c9:f2:ea:4d:b3:13:25:c4:2f:15: 22:2a:fa:d6:58:02:05:51:b3:d1:4b:20:f7:a2:6a: a5:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:7B:E0:E0:7B:C0:54:59:B2:10:8B:BF:CE:84:F4:8C:70:CC:28:B5 X509v3 Authority Key Identifier: keyid:87:00:93:44:10:1F:51:0E:76:A2:AB:1E:AC:E9:E9:A7:D9:2E:4E:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hwCTRBAfUQ52oqserOnpp9kuTtU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/71492d-8c60-409d-a009-d6ada1281668/1/hwCTRBAfUQ52oqserOnpp9kuTtU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/71/71492d-8c60-409d-a009-d6ada1281668/1/hwCTRBAfUQ52oqserOnpp9kuTtU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 16:21:f5:e4:cd:43:9b:39:53:18:3b:5c:6b:ad:32:bb:39:f1: 12:b5:4f:4b:65:de:db:0b:f0:b7:49:3e:10:47:13:f4:c2:9a: 3a:d5:23:a4:f7:40:2e:2f:9c:6e:46:25:1c:38:68:12:de:97: 78:c0:cc:47:1c:77:f9:43:0a:41:49:04:b6:6a:e5:a7:bd:ee: f0:20:4d:be:11:7f:db:c1:c3:70:d3:ab:e3:6c:e8:73:7c:64: ff:a6:d5:0e:99:40:47:10:66:c7:96:83:6a:bc:2d:c8:81:c9: 8d:2f:07:48:0f:7b:0d:8e:73:b3:f3:75:fd:44:31:bf:93:27: 8d:0f:68:80:57:4f:c6:61:33:89:33:c4:5b:c7:a5:6c:20:e0: b1:0e:57:d5:95:e5:c6:cc:27:0a:d3:d3:46:28:61:1d:78:58: 90:40:51:bb:74:4a:2d:85:7c:49:c5:67:2c:96:cb:16:3e:a8: 06:ab:e7:13:24:80:ac:2d:4c:8d:46:8b:9d:8b:df:08:37:0e: aa:fa:45:1d:2d:f5:10:f4:80:1d:98:d4:91:81:ab:19:82:37: e4:f2:a4:f1:5a:f7:d8:e6:07:16:ef:3d:1a:2c:a7:b0:63:f4: 20:d1:bc:be:ef:9b:d7:25:3d:59:57:c9:01:58:c9:0c:33:62: 91:90:40:c1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHF0WXNlux06zRGt8Aw40MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3MDA5MzQ0MTAxZjUxMGU3NmEyYWIxZWFjZTllOWE3ZDky ZTRlZDUwHhcNMjUxMjA2MTAwMTUzWhcNMjUxMjA3MTAwMTUzWjAzMTEwLwYDVQQD Eyg5NjdiZTBlMDdiYzA1NDU5YjIxMDhiYmZjZTg0ZjQ4YzcwY2MyOGI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwPCoZkacXgb9ngMUWvVO5iqOtE7c PkDgd8dFK2oTMwE9hNm2zLIan6I2nERUG8MCIK13zxSdlI9Z+zpAG0FOCqOEKUTj 51KJK9BtSJfnXmSUVmQd913gP5oJAZ5qdVmuxZEZw5G5oK8/6iWKjS08mIPExsLa kdp14H7yGs3XxiC3yhuVWlpZ7RR0PdE90PKlpgPqAuir9U8wOtNiq5kLRrck6s+B atPb7Sv09ojDsnXSywGcMHQiNIIAt5Ibl7kxbU9JVNVRdUTIhPotH9HcW2wslUAT wgdI8aT1Nl+bC6hs8K47Isny6k2zEyXELxUiKvrWWAIFUbPRSyD3omqlJQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJZ74OB7wFRZshCLv86E9IxwzCi1MB8GA1UdIwQY MBaAFIcAk0QQH1EOdqKrHqzp6afZLk7VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHdDVFJCQWZVUTUyb3FzZXJPbnBwOWt1VHRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS83MTQ5MmQtOGM2MC00MDlkLWEwMDkt ZDZhZGExMjgxNjY4LzEvaHdDVFJCQWZVUTUyb3FzZXJPbnBwOWt1VHRVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MS83MTQ5MmQtOGM2MC00MDlkLWEwMDktZDZhZGExMjgxNjY4 LzEvaHdDVFJCQWZVUTUyb3FzZXJPbnBwOWt1VHRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFiH15M1D mzlTGDtca60yuznxErVPS2Xe2wvwt0k+EEcT9MKaOtUjpPdALi+cbkYlHDhoEt6X eMDMRxx3+UMKQUkEtmrlp73u8CBNvhF/28HDcNOr42zoc3xk/6bVDplARxBmx5aD arwtyIHJjS8HSA97DY5zs/N1/UQxv5MnjQ9ogFdPxmEziTPEW8elbCDgsQ5X1ZXl xswnCtPTRihhHXhYkEBRu3RKLYV8ScVnLJbLFj6oBqvnEySArC1MjUaLnYvfCDcO qvpFHS31EPSAHZjUkYGrGYI35PKk8Vr32OYHFu89GiynsGP0ING8vu+b1yU9WVfJ AVjJDDNikZBAwQ== -----END CERTIFICATE-----Generated at Sat Dec 6 12:58:16 2025 by rpki-client