This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/HDepAm5Fto_kc1pGm3VjYTCtElw.mft File: HDepAm5Fto_kc1pGm3VjYTCtElw.mft (raw, json) Hash identifier: lg21vSX1PtOEyUxrc4ZIqsKNdunW+JP9EQC90n2QMcM= Subject key identifier: 18:6C:8F:1F:92:3C:6C:0D:B4:F8:9A:A2:CB:DC:3A:FB:0E:71:43:51 Authority key identifier: 1C:37:A9:02:6E:45:B6:8F:E4:73:5A:46:9B:75:63:61:30:AD:12:5C Certificate issuer: /CN=1c37a9026e45b68fe4735a469b75636130ad125c Certificate serial: 019B2F6719394BE7915EA3B74D5131E9EFDD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HDepAm5Fto_kc1pGm3VjYTCtElw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/HDepAm5Fto_kc1pGm3VjYTCtElw.mft Manifest number: 0ABA Signing time: Thu 18 Dec 2025 03:00:44 +0000 Manifest this update: Thu 18 Dec 2025 03:00:44 +0000 Manifest next update: Fri 19 Dec 2025 03:00:44 +0000 Files and hashes: 1: HDepAm5Fto_kc1pGm3VjYTCtElw.crl (hash: yOFlM9Q++oR4zAC5oWI5zFBjR8cpKkSspabc4Mq1G9Q=) 2: uaDvodSl9Qqt6SU3QvEP4PKpm0c.roa (hash: KfFNiihZ95ffen8bkT+elj9FXLgX4E04ZxK55q4T9Kw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/HDepAm5Fto_kc1pGm3VjYTCtElw.crl rsync://rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/HDepAm5Fto_kc1pGm3VjYTCtElw.mft rsync://rpki.ripe.net/repository/DEFAULT/HDepAm5Fto_kc1pGm3VjYTCtElw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 03:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2f:67:19:39:4b:e7:91:5e:a3:b7:4d:51:31:e9:ef:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c37a9026e45b68fe4735a469b75636130ad125c Validity Not Before: Dec 18 03:00:44 2025 GMT Not After : Dec 19 03:00:44 2025 GMT Subject: CN=186c8f1f923c6c0db4f89aa2cbdc3afb0e714351 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:01:4b:10:32:9d:3c:65:ce:4b:d9:d9:87:cb: 43:f6:35:b6:ea:a1:75:ca:87:49:db:54:a5:6e:00: 26:03:41:ea:82:9e:5b:46:f0:2c:74:e7:d8:ab:c3: 1c:24:8d:20:06:c1:52:4c:4f:1e:3d:0b:08:95:90: c4:3d:ef:b2:3a:01:0e:5f:75:c5:03:05:62:18:4b: 32:47:ac:ef:71:66:b2:77:0d:ba:67:9f:18:83:28: bd:cc:c8:eb:4a:3a:59:a8:47:cb:24:62:74:b5:56: f6:6f:5e:2b:fe:87:90:65:28:b9:0a:31:c1:0c:20: 7f:4a:2d:0b:68:1b:2a:9d:4c:4f:92:ff:b5:dc:1e: 41:9d:72:43:76:d1:b4:6a:5f:ab:b9:0d:32:ac:a1: 3e:ea:e5:fd:4e:ba:34:b6:8c:e8:11:27:8e:87:45: ee:06:96:5c:26:26:2e:47:7f:55:10:6b:be:60:41: 34:1d:1c:8c:fb:67:a1:a6:9f:87:70:31:1b:07:f5: 90:dd:1a:b0:29:53:03:e4:de:aa:f5:14:f7:16:eb: 9f:ec:af:a9:42:10:d6:80:a0:a2:4f:f4:67:bd:12: 3d:3f:c3:ef:f3:cb:81:41:c4:39:42:7f:96:47:ea: 0b:26:52:bb:ad:2f:bc:7b:34:23:a1:da:3f:12:3d: 05:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:6C:8F:1F:92:3C:6C:0D:B4:F8:9A:A2:CB:DC:3A:FB:0E:71:43:51 X509v3 Authority Key Identifier: keyid:1C:37:A9:02:6E:45:B6:8F:E4:73:5A:46:9B:75:63:61:30:AD:12:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HDepAm5Fto_kc1pGm3VjYTCtElw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/HDepAm5Fto_kc1pGm3VjYTCtElw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/95/2bb603-f479-40cb-82d4-48d672973b13/1/HDepAm5Fto_kc1pGm3VjYTCtElw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 34:24:cd:63:ce:44:e7:65:22:49:04:89:b6:79:34:56:0b:c8: 9b:5e:bf:2d:e4:0f:e2:c8:47:e8:56:5e:29:8d:1c:32:39:c8: b1:0b:65:7b:01:a8:54:06:24:2a:a9:76:ef:8e:04:c5:9c:a4: ed:e4:a1:f6:29:48:20:bc:93:81:ef:16:93:a3:64:46:4c:22: a4:cd:4c:e4:1b:bc:64:da:ca:19:81:8f:ad:63:e4:8c:ea:cd: bf:fb:44:78:af:da:f4:00:66:59:08:ee:53:37:b9:1f:89:d9: 48:51:ba:ae:17:8f:21:78:6f:9c:59:b9:d8:94:15:32:7a:25: 7b:37:f8:3b:38:05:4c:5c:bc:09:3e:cc:c8:95:57:08:99:b3: 13:b4:54:e2:bb:83:73:df:88:a3:f3:6d:3b:70:fa:62:1f:17: 2b:f4:3e:2d:4a:4e:7f:7e:d2:da:99:0e:e3:93:8d:55:b9:a9: 16:e5:4c:bf:08:fb:16:17:93:c9:94:e8:3e:83:73:05:ad:3d: 3f:31:90:50:ed:6d:ee:1a:26:56:6a:7d:16:57:bd:56:67:41: 5c:b1:9a:5f:02:dd:53:30:2e:a9:d3:dd:46:b5:68:ae:46:1e: 9b:7f:94:a5:5a:65:0c:87:8f:12:18:9f:55:2a:e9:15:b1:0b: 5a:f1:46:18 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsvZxk5S+eRXqO3TVEx6e/dMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjMzdhOTAyNmU0NWI2OGZlNDczNWE0NjliNzU2MzYxMzBh ZDEyNWMwHhcNMjUxMjE4MDMwMDQ0WhcNMjUxMjE5MDMwMDQ0WjAzMTEwLwYDVQQD EygxODZjOGYxZjkyM2M2YzBkYjRmODlhYTJjYmRjM2FmYjBlNzE0MzUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsgFLEDKdPGXOS9nZh8tD9jW26qF1 yodJ21SlbgAmA0Hqgp5bRvAsdOfYq8McJI0gBsFSTE8ePQsIlZDEPe+yOgEOX3XF AwViGEsyR6zvcWaydw26Z58Ygyi9zMjrSjpZqEfLJGJ0tVb2b14r/oeQZSi5CjHB DCB/Si0LaBsqnUxPkv+13B5BnXJDdtG0al+ruQ0yrKE+6uX9Tro0tozoESeOh0Xu BpZcJiYuR39VEGu+YEE0HRyM+2ehpp+HcDEbB/WQ3RqwKVMD5N6q9RT3Fuuf7K+p QhDWgKCiT/RnvRI9P8Pv88uBQcQ5Qn+WR+oLJlK7rS+8ezQjodo/Ej0F9QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBhsjx+SPGwNtPiaosvcOvsOcUNRMB8GA1UdIwQY MBaAFBw3qQJuRbaP5HNaRpt1Y2EwrRJcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSERlcEFtNUZ0b19rYzFwR20zVmpZVEN0RWx3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NS8yYmI2MDMtZjQ3OS00MGNiLTgyZDQt NDhkNjcyOTczYjEzLzEvSERlcEFtNUZ0b19rYzFwR20zVmpZVEN0RWx3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NS8yYmI2MDMtZjQ3OS00MGNiLTgyZDQtNDhkNjcyOTczYjEz LzEvSERlcEFtNUZ0b19rYzFwR20zVmpZVEN0RWx3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANCTNY85E 52UiSQSJtnk0VgvIm16/LeQP4shH6FZeKY0cMjnIsQtlewGoVAYkKql2744ExZyk 7eSh9ilIILyTge8Wk6NkRkwipM1M5Bu8ZNrKGYGPrWPkjOrNv/tEeK/a9ABmWQju Uze5H4nZSFG6rhePIXhvnFm52JQVMnolezf4OzgFTFy8CT7MyJVXCJmzE7RU4ruD c9+Io/NtO3D6Yh8XK/Q+LUpOf37S2pkO45ONVbmpFuVMvwj7FheTyZToPoNzBa09 PzGQUO1t7homVmp9Fle9VmdBXLGaXwLdUzAuqdPdRrVorkYem3+UpVplDIePEhif VSrpFbELWvFGGA== -----END CERTIFICATE-----Generated at Thu Dec 18 11:28:03 2025 by rpki-client