This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/HDepAm5Fto_kc1pGm3VjYTCtElw.mft File: HDepAm5Fto_kc1pGm3VjYTCtElw.mft (raw, json) Hash identifier: I0B4BmiYECE/N6vqFzOvwd11VsOGHQDPMWDPqrj48C8= Subject key identifier: 1A:95:1D:5D:FD:2A:C8:F7:31:15:ED:43:8A:B4:F0:88:DA:B0:3E:50 Authority key identifier: 1C:37:A9:02:6E:45:B6:8F:E4:73:5A:46:9B:75:63:61:30:AD:12:5C Certificate issuer: /CN=1c37a9026e45b68fe4735a469b75636130ad125c Certificate serial: 019AF19AC2AA4C3A1B3A28389221F8B08298 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HDepAm5Fto_kc1pGm3VjYTCtElw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/HDepAm5Fto_kc1pGm3VjYTCtElw.mft Manifest number: 0A9A Signing time: Sat 06 Dec 2025 03:00:42 +0000 Manifest this update: Sat 06 Dec 2025 03:00:42 +0000 Manifest next update: Sun 07 Dec 2025 03:00:42 +0000 Files and hashes: 1: HDepAm5Fto_kc1pGm3VjYTCtElw.crl (hash: 1GqykAZdfN55aByMP9jAxZwac8lchcFSU0IwoLtMP5Q=) 2: uaDvodSl9Qqt6SU3QvEP4PKpm0c.roa (hash: KfFNiihZ95ffen8bkT+elj9FXLgX4E04ZxK55q4T9Kw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/HDepAm5Fto_kc1pGm3VjYTCtElw.crl rsync://rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/HDepAm5Fto_kc1pGm3VjYTCtElw.mft rsync://rpki.ripe.net/repository/DEFAULT/HDepAm5Fto_kc1pGm3VjYTCtElw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9a:c2:aa:4c:3a:1b:3a:28:38:92:21:f8:b0:82:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c37a9026e45b68fe4735a469b75636130ad125c Validity Not Before: Dec 6 03:00:42 2025 GMT Not After : Dec 7 03:00:42 2025 GMT Subject: CN=1a951d5dfd2ac8f73115ed438ab4f088dab03e50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d5:85:f1:d1:b0:3b:71:86:59:d0:1d:ea:48: 13:ba:0b:06:ec:92:48:3c:d0:72:91:6a:9e:9b:10: 4a:2e:b6:76:d2:96:5e:70:73:f7:bc:eb:81:c5:90: 8d:c6:0f:5e:c4:3c:86:81:eb:66:58:3a:ef:e5:41: f4:47:c3:1e:99:89:08:8e:03:ac:b4:d2:dc:82:46: de:b7:7d:e5:7a:f1:ae:17:ef:26:74:cb:d6:a3:18: a3:e6:91:52:e2:f6:64:02:58:9b:4d:05:e0:ee:4c: de:0c:52:85:68:35:c1:1a:fc:3c:7e:0b:62:a0:3c: 3f:4e:a7:0b:00:89:33:37:aa:71:64:9e:a6:de:d7: 42:3d:83:1d:44:8b:ce:c1:25:35:e6:62:39:9f:2f: df:ed:98:01:e2:39:29:f7:23:a4:d9:75:9c:b8:4f: 98:35:e4:4c:02:66:1d:b0:c3:37:af:88:d0:05:c6: 3b:72:e2:7d:77:40:47:c7:a1:86:4b:30:a0:78:50: 8f:32:f0:b3:33:80:1f:42:8c:7a:73:0d:a6:29:44: 45:87:ee:71:b8:66:f3:36:9a:aa:1c:81:b1:43:5c: 77:9c:44:4b:c9:cb:7a:a1:f7:40:f1:5c:b8:4b:68: 9e:11:41:ab:7c:81:72:ae:2c:d4:04:80:a1:19:53: 75:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:95:1D:5D:FD:2A:C8:F7:31:15:ED:43:8A:B4:F0:88:DA:B0:3E:50 X509v3 Authority Key Identifier: keyid:1C:37:A9:02:6E:45:B6:8F:E4:73:5A:46:9B:75:63:61:30:AD:12:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HDepAm5Fto_kc1pGm3VjYTCtElw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/HDepAm5Fto_kc1pGm3VjYTCtElw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/HDepAm5Fto_kc1pGm3VjYTCtElw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption de:57:85:ff:d3:95:66:57:6d:fd:18:6d:d3:02:21:20:ea:38: 85:fa:3e:96:25:b6:f4:20:f2:cc:ac:45:fd:83:d9:66:75:6b: 9d:4b:b5:1a:20:97:f2:34:b4:85:0a:6c:5b:16:ec:a5:5c:5e: d7:5f:f6:d1:0a:8f:03:50:a0:48:21:9d:55:d6:fb:a3:5b:b2: de:3d:ec:70:a8:c2:44:9d:a7:55:d9:79:e3:e1:e3:38:38:59: c6:da:de:a0:c5:01:97:75:48:47:46:2a:8a:58:81:4f:99:56: 57:89:c1:b3:39:92:aa:f1:f2:df:d2:10:99:3f:da:11:d0:e9: 96:73:52:e3:f8:37:59:bd:3a:e8:4b:de:83:31:9a:91:8d:ba: 62:82:f0:b6:24:fb:6b:00:37:ab:d2:b5:cd:20:9e:64:96:f6: 9a:db:f8:96:c7:75:3b:88:26:35:d9:c3:8e:c4:9b:d5:f2:2d: 09:6f:17:97:78:c2:05:e9:38:50:a6:d7:44:cf:7a:56:a6:9d: 98:3f:ab:50:5a:24:1d:ee:3a:d9:85:f4:9d:d6:57:eb:4d:45: b1:e8:b4:7b:7f:4b:bc:76:d6:c4:ce:66:ff:37:c9:df:eb:06: 52:7f:73:cc:29:1d:9f:db:5f:6a:84:4d:04:fd:dd:f7:7b:60: 9e:a5:9c:f9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmsKqTDobOig4kiH4sIKYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjMzdhOTAyNmU0NWI2OGZlNDczNWE0NjliNzU2MzYxMzBh ZDEyNWMwHhcNMjUxMjA2MDMwMDQyWhcNMjUxMjA3MDMwMDQyWjAzMTEwLwYDVQQD EygxYTk1MWQ1ZGZkMmFjOGY3MzExNWVkNDM4YWI0ZjA4OGRhYjAzZTUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyNWF8dGwO3GGWdAd6kgTugsG7JJI PNBykWqemxBKLrZ20pZecHP3vOuBxZCNxg9exDyGgetmWDrv5UH0R8MemYkIjgOs tNLcgkbet33levGuF+8mdMvWoxij5pFS4vZkAlibTQXg7kzeDFKFaDXBGvw8fgti oDw/TqcLAIkzN6pxZJ6m3tdCPYMdRIvOwSU15mI5ny/f7ZgB4jkp9yOk2XWcuE+Y NeRMAmYdsMM3r4jQBcY7cuJ9d0BHx6GGSzCgeFCPMvCzM4AfQox6cw2mKURFh+5x uGbzNpqqHIGxQ1x3nERLyct6ofdA8Vy4S2ieEUGrfIFyrizUBIChGVN1SwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBqVHV39Ksj3MRXtQ4q08IjasD5QMB8GA1UdIwQY MBaAFBw3qQJuRbaP5HNaRpt1Y2EwrRJcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSERlcEFtNUZ0b19rYzFwR20zVmpZVEN0RWx3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NS8yYmI2MDMtZjQ3OS00MGNiLTgyZDQt NDhkNjcyOTczYjEzLzEvSERlcEFtNUZ0b19rYzFwR20zVmpZVEN0RWx3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NS8yYmI2MDMtZjQ3OS00MGNiLTgyZDQtNDhkNjcyOTczYjEz LzEvSERlcEFtNUZ0b19rYzFwR20zVmpZVEN0RWx3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA3leF/9OV Zldt/Rht0wIhIOo4hfo+liW29CDyzKxF/YPZZnVrnUu1GiCX8jS0hQpsWxbspVxe 11/20QqPA1CgSCGdVdb7o1uy3j3scKjCRJ2nVdl54+HjODhZxtreoMUBl3VIR0Yq iliBT5lWV4nBszmSqvHy39IQmT/aEdDplnNS4/g3Wb066EvegzGakY26YoLwtiT7 awA3q9K1zSCeZJb2mtv4lsd1O4gmNdnDjsSb1fItCW8Xl3jCBek4UKbXRM96Vqad mD+rUFokHe462YX0ndZX601Fsei0e39LvHbWxM5m/zfJ3+sGUn9zzCkdn9tfaoRN BP3d93tgnqWc+Q== -----END CERTIFICATE-----Generated at Sat Dec 6 09:21:41 2025 by rpki-client