This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/5a99e8-bb46-4fcd-aea1-8d56a7b09953/1/hPWQymLCRkQFg4GMMfJXOg9Q_9A.mft File: hPWQymLCRkQFg4GMMfJXOg9Q_9A.mft (raw, json) Hash identifier: EEUt4s9hxQpfP2xJa+9L8QTNYV4XMUmunIFO5Bk4CCw= Subject key identifier: C8:0A:15:D0:FB:4C:4C:A2:94:9D:17:30:F7:1E:7A:11:A4:44:F6:C5 Authority key identifier: 84:F5:90:CA:62:C2:46:44:05:83:81:8C:31:F2:57:3A:0F:50:FF:D0 Certificate issuer: /CN=84f590ca62c246440583818c31f2573a0f50ffd0 Certificate serial: 019AF3C07E64B3A5A14B7F469A47884773D8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hPWQymLCRkQFg4GMMfJXOg9Q_9A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/5a99e8-bb46-4fcd-aea1-8d56a7b09953/1/hPWQymLCRkQFg4GMMfJXOg9Q_9A.mft Manifest number: 0B76 Signing time: Sat 06 Dec 2025 13:01:09 +0000 Manifest this update: Sat 06 Dec 2025 13:01:09 +0000 Manifest next update: Sun 07 Dec 2025 13:01:09 +0000 Files and hashes: 1: hPWQymLCRkQFg4GMMfJXOg9Q_9A.crl (hash: IXmhcYWelwXLij52X9mWJWDe6DEvAkGKltwH9pVs25Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/5a99e8-bb46-4fcd-aea1-8d56a7b09953/1/hPWQymLCRkQFg4GMMfJXOg9Q_9A.crl rsync://rpki.ripe.net/repository/DEFAULT/77/5a99e8-bb46-4fcd-aea1-8d56a7b09953/1/hPWQymLCRkQFg4GMMfJXOg9Q_9A.mft rsync://rpki.ripe.net/repository/DEFAULT/hPWQymLCRkQFg4GMMfJXOg9Q_9A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:c0:7e:64:b3:a5:a1:4b:7f:46:9a:47:88:47:73:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84f590ca62c246440583818c31f2573a0f50ffd0 Validity Not Before: Dec 6 13:01:09 2025 GMT Not After : Dec 7 13:01:09 2025 GMT Subject: CN=c80a15d0fb4c4ca2949d1730f71e7a11a444f6c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:62:40:e5:c5:42:2c:b2:cc:80:b8:3d:cd:45: 86:59:b9:2c:f6:47:0e:44:a3:25:20:cd:b3:de:00: 5e:9a:37:87:15:c4:0a:eb:23:53:51:3a:68:a1:67: 2a:4e:9c:65:84:ad:c6:13:1c:6e:29:84:b0:d4:57: ff:6e:6c:82:89:e3:16:a6:d1:78:24:98:c2:8f:df: 73:6e:a0:75:ba:30:4a:d4:29:d0:22:5e:b7:70:f9: 28:6a:96:42:6f:34:5c:73:ce:b7:36:17:5c:92:e4: be:c7:5d:95:a5:36:1c:08:58:e0:40:5d:d0:e1:bb: 1b:3f:bc:88:b6:bd:8d:49:d9:5c:7e:df:10:74:12: de:46:6e:60:37:d4:c3:54:3c:25:33:6d:99:b7:e3: f4:3f:ab:a8:b7:64:36:36:f1:b0:43:20:88:cb:16: c7:de:24:b7:ab:64:85:a7:38:f3:15:8f:23:8c:a0: e8:48:63:81:63:69:dc:67:64:43:6c:f0:be:93:60: 00:7c:eb:63:e5:c8:57:92:d3:31:e8:aa:22:d4:30: ce:b3:66:a5:6a:d5:7f:89:70:09:5a:0c:b8:3d:57: 28:93:22:e8:22:b7:80:d1:9e:71:2a:10:d1:21:5b: 3e:60:92:ff:42:ad:74:37:4f:09:de:3f:4e:86:28: 32:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:0A:15:D0:FB:4C:4C:A2:94:9D:17:30:F7:1E:7A:11:A4:44:F6:C5 X509v3 Authority Key Identifier: keyid:84:F5:90:CA:62:C2:46:44:05:83:81:8C:31:F2:57:3A:0F:50:FF:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hPWQymLCRkQFg4GMMfJXOg9Q_9A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/5a99e8-bb46-4fcd-aea1-8d56a7b09953/1/hPWQymLCRkQFg4GMMfJXOg9Q_9A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/77/5a99e8-bb46-4fcd-aea1-8d56a7b09953/1/hPWQymLCRkQFg4GMMfJXOg9Q_9A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6b:a3:fa:85:eb:99:9b:cf:ab:7c:e9:28:ff:1f:93:c0:14:c8: eb:0a:4a:08:2d:d0:34:b9:bb:0b:25:f3:85:96:10:5e:31:86: e0:a6:bf:7e:b5:2b:18:3a:79:52:26:68:c4:2b:a0:4a:01:0d: e1:40:24:f6:fa:38:7c:a0:cc:1b:9f:c8:37:55:8f:1f:f0:38: dc:25:77:7d:86:f0:78:af:e6:45:1d:ee:a8:f4:d4:64:90:ce: 2d:e5:64:14:36:f5:5d:86:e9:92:f5:f3:61:8d:36:a3:90:13: 0f:0d:90:b5:fe:a3:9c:38:8f:7e:81:3f:b8:93:58:eb:d1:37: e9:26:d5:fa:77:41:9e:78:0c:cf:4c:00:a7:2f:4b:b1:83:40: 87:0c:3e:15:05:87:86:a5:63:1e:c9:e4:1d:93:82:15:d5:81: 4d:fd:cf:ac:03:b3:dd:53:a2:0c:f4:e9:ec:5b:4f:9a:f3:40: 80:46:70:e2:79:5c:ac:ce:27:23:7f:b3:02:67:6b:48:e9:e6: 6e:fc:00:e2:d9:11:3b:a2:4b:a1:29:e5:4a:ec:c6:bb:d0:01: b1:fd:0c:a8:65:90:b8:8c:5e:76:de:29:64:f8:ad:46:c0:16: d6:b4:5f:d7:e6:87:2c:c8:cc:68:a1:d9:ed:39:b0:ee:05:b0: 21:aa:49:5b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzwH5ks6WhS39GmkeIR3PYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0ZjU5MGNhNjJjMjQ2NDQwNTgzODE4YzMxZjI1NzNhMGY1 MGZmZDAwHhcNMjUxMjA2MTMwMTA5WhcNMjUxMjA3MTMwMTA5WjAzMTEwLwYDVQQD EyhjODBhMTVkMGZiNGM0Y2EyOTQ5ZDE3MzBmNzFlN2ExMWE0NDRmNmM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAumJA5cVCLLLMgLg9zUWGWbks9kcO RKMlIM2z3gBemjeHFcQK6yNTUTpooWcqTpxlhK3GExxuKYSw1Ff/bmyCieMWptF4 JJjCj99zbqB1ujBK1CnQIl63cPkoapZCbzRcc863NhdckuS+x12VpTYcCFjgQF3Q 4bsbP7yItr2NSdlcft8QdBLeRm5gN9TDVDwlM22Zt+P0P6uot2Q2NvGwQyCIyxbH 3iS3q2SFpzjzFY8jjKDoSGOBY2ncZ2RDbPC+k2AAfOtj5chXktMx6Koi1DDOs2al atV/iXAJWgy4PVcokyLoIreA0Z5xKhDRIVs+YJL/Qq10N08J3j9OhigyVwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMgKFdD7TEyilJ0XMPceehGkRPbFMB8GA1UdIwQY MBaAFIT1kMpiwkZEBYOBjDHyVzoPUP/QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaFBXUXltTENSa1FGZzRHTU1mSlhPZzlRXzlBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny81YTk5ZTgtYmI0Ni00ZmNkLWFlYTEt OGQ1NmE3YjA5OTUzLzEvaFBXUXltTENSa1FGZzRHTU1mSlhPZzlRXzlBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ny81YTk5ZTgtYmI0Ni00ZmNkLWFlYTEtOGQ1NmE3YjA5OTUz LzEvaFBXUXltTENSa1FGZzRHTU1mSlhPZzlRXzlBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAa6P6heuZ m8+rfOko/x+TwBTI6wpKCC3QNLm7CyXzhZYQXjGG4Ka/frUrGDp5UiZoxCugSgEN 4UAk9vo4fKDMG5/IN1WPH/A43CV3fYbweK/mRR3uqPTUZJDOLeVkFDb1XYbpkvXz YY02o5ATDw2Qtf6jnDiPfoE/uJNY69E36SbV+ndBnngMz0wApy9LsYNAhww+FQWH hqVjHsnkHZOCFdWBTf3PrAOz3VOiDPTp7FtPmvNAgEZw4nlcrM4nI3+zAmdrSOnm bvwA4tkRO6JLoSnlSuzGu9ABsf0MqGWQuIxedt4pZPitRsAW1rRf1+aHLMjMaKHZ 7Tmw7gWwIapJWw== -----END CERTIFICATE-----Generated at Sat Dec 6 15:56:18 2025 by rpki-client