This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/6cfc2b-9be8-4fe0-a424-196cc167113e/1/HIivL0NlSz9FLVx07QdHElcNH94.mft File: HIivL0NlSz9FLVx07QdHElcNH94.mft (raw, json) Hash identifier: QDBNkhQi8obkT9VBmB3VYvKmHs+V+XItsluPeYoQfRI= Subject key identifier: 4A:5E:C3:1C:A5:E2:26:CA:59:A2:A3:38:73:FA:DA:41:53:5C:7E:DA Authority key identifier: 1C:88:AF:2F:43:65:4B:3F:45:2D:5C:74:ED:07:47:12:57:0D:1F:DE Certificate issuer: /CN=1c88af2f43654b3f452d5c74ed074712570d1fde Certificate serial: 019AF23F62224044EF80369CA6F5CD92733B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HIivL0NlSz9FLVx07QdHElcNH94.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/6cfc2b-9be8-4fe0-a424-196cc167113e/1/HIivL0NlSz9FLVx07QdHElcNH94.mft Manifest number: 1765 Signing time: Sat 06 Dec 2025 06:00:31 +0000 Manifest this update: Sat 06 Dec 2025 06:00:31 +0000 Manifest next update: Sun 07 Dec 2025 06:00:31 +0000 Files and hashes: 1: CCupZ2Z50lEeozRfCFyqGlk11BE.roa (hash: u0mXYzOevuF7/VUH3KREJcVDAaOJuSJnSH+Q3fKIqwg=) 2: HIivL0NlSz9FLVx07QdHElcNH94.crl (hash: 5S7iKpwUUWcDUsS1asg05aJXFH8SDNqs4BeVuolCNE0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/6cfc2b-9be8-4fe0-a424-196cc167113e/1/HIivL0NlSz9FLVx07QdHElcNH94.crl rsync://rpki.ripe.net/repository/DEFAULT/95/6cfc2b-9be8-4fe0-a424-196cc167113e/1/HIivL0NlSz9FLVx07QdHElcNH94.mft rsync://rpki.ripe.net/repository/DEFAULT/HIivL0NlSz9FLVx07QdHElcNH94.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:62:22:40:44:ef:80:36:9c:a6:f5:cd:92:73:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c88af2f43654b3f452d5c74ed074712570d1fde Validity Not Before: Dec 6 06:00:31 2025 GMT Not After : Dec 7 06:00:31 2025 GMT Subject: CN=4a5ec31ca5e226ca59a2a33873fada41535c7eda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:b4:3d:4b:74:6d:88:6d:3f:e5:b4:ef:28:5e: d5:d7:12:ad:b1:f2:60:70:e9:fd:4b:b3:23:94:9b: 2d:5e:08:67:63:8f:42:f7:99:5e:d1:76:37:05:74: ee:18:0d:8c:a7:70:ff:17:f5:c9:b3:80:b8:20:be: 36:3b:b2:19:65:70:b9:63:1c:de:30:67:ce:26:75: ea:3c:bb:9d:a9:1e:92:15:d7:50:9f:6b:6e:e8:8a: 3d:80:d4:9d:00:e1:7f:22:d2:a9:7c:45:af:b5:a4: 03:dc:7c:de:3b:39:b8:b0:37:86:02:e4:10:11:ed: bc:ab:b9:19:f2:b5:c1:af:48:e1:15:fd:51:55:fc: 17:5b:a5:66:9d:e1:c5:6b:c3:0b:22:ef:60:09:e9: 8b:eb:55:ef:e2:4d:d4:82:ed:36:b0:63:7f:32:e2: 5f:9f:04:b0:b1:52:6c:09:a4:b3:df:2a:f1:3d:f5: 6c:a2:33:0e:8f:2e:18:1d:b6:cb:e0:95:f1:b8:2a: ab:7d:7b:a6:79:a7:98:28:09:fa:5a:08:f8:74:1e: 32:b5:84:7a:7b:9f:11:e6:fc:78:01:42:d3:b3:59: 28:2c:8c:89:63:03:19:9a:c0:c2:b9:d8:7a:4c:cd: 11:6a:e5:a6:14:e5:3f:0c:86:a0:d8:66:8a:af:91: b6:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:5E:C3:1C:A5:E2:26:CA:59:A2:A3:38:73:FA:DA:41:53:5C:7E:DA X509v3 Authority Key Identifier: keyid:1C:88:AF:2F:43:65:4B:3F:45:2D:5C:74:ED:07:47:12:57:0D:1F:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HIivL0NlSz9FLVx07QdHElcNH94.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/6cfc2b-9be8-4fe0-a424-196cc167113e/1/HIivL0NlSz9FLVx07QdHElcNH94.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/95/6cfc2b-9be8-4fe0-a424-196cc167113e/1/HIivL0NlSz9FLVx07QdHElcNH94.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 06:32:51:ba:9d:13:34:2c:a5:ca:b6:0f:e8:b1:b7:fe:79:7a: d8:cf:74:c0:53:cb:ad:6e:ba:3c:9c:d0:d3:c8:47:02:5e:d6: e5:23:e8:15:7f:26:1b:ae:2f:65:4d:a4:6d:ff:75:f1:a7:56: db:99:85:44:4e:ce:2d:18:ac:19:2b:fa:98:24:64:7d:78:b3: 4b:5c:9d:88:38:ef:c7:1f:be:2d:0e:c2:fa:41:ab:ea:87:63: 28:2f:d2:e4:0d:e7:89:76:65:3a:89:6a:b7:2a:92:e0:8c:32: 7b:65:42:77:7b:77:ff:5f:f0:eb:cb:71:2e:b8:7d:7b:9f:d3: 4e:93:ad:b0:32:69:e4:27:fc:09:9a:aa:b0:fd:3d:c7:2e:4b: 74:a0:05:fa:0d:c3:fd:8f:e5:cd:9f:10:6b:a1:8f:e7:d5:7f: 60:f6:ed:dd:f4:4e:76:14:42:26:e8:10:f7:71:e1:33:d4:6a: ac:1b:a6:63:59:c7:87:03:fd:83:46:e7:57:de:0c:fc:4d:a4: 60:ea:9e:8e:88:a4:95:17:1b:5a:b4:cc:92:e7:6f:1a:5b:bd: ed:62:46:7d:ff:e8:d2:f5:d1:ad:a3:94:9f:a8:7f:ba:d8:f8: 31:87:8e:05:d0:e9:d3:51:4a:88:a2:41:3d:5c:4e:da:78:42: db:c6:ff:2f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP2IiQETvgDacpvXNknM7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjODhhZjJmNDM2NTRiM2Y0NTJkNWM3NGVkMDc0NzEyNTcw ZDFmZGUwHhcNMjUxMjA2MDYwMDMxWhcNMjUxMjA3MDYwMDMxWjAzMTEwLwYDVQQD Eyg0YTVlYzMxY2E1ZTIyNmNhNTlhMmEzMzg3M2ZhZGE0MTUzNWM3ZWRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7LQ9S3RtiG0/5bTvKF7V1xKtsfJg cOn9S7MjlJstXghnY49C95le0XY3BXTuGA2Mp3D/F/XJs4C4IL42O7IZZXC5Yxze MGfOJnXqPLudqR6SFddQn2tu6Io9gNSdAOF/ItKpfEWvtaQD3HzeOzm4sDeGAuQQ Ee28q7kZ8rXBr0jhFf1RVfwXW6VmneHFa8MLIu9gCemL61Xv4k3Ugu02sGN/MuJf nwSwsVJsCaSz3yrxPfVsojMOjy4YHbbL4JXxuCqrfXumeaeYKAn6Wgj4dB4ytYR6 e58R5vx4AULTs1koLIyJYwMZmsDCudh6TM0RauWmFOU/DIag2GaKr5G2DQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEpewxyl4ibKWaKjOHP62kFTXH7aMB8GA1UdIwQY MBaAFByIry9DZUs/RS1cdO0HRxJXDR/eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSElpdkwwTmxTejlGTFZ4MDdRZEhFbGNOSDk0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NS82Y2ZjMmItOWJlOC00ZmUwLWE0MjQt MTk2Y2MxNjcxMTNlLzEvSElpdkwwTmxTejlGTFZ4MDdRZEhFbGNOSDk0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NS82Y2ZjMmItOWJlOC00ZmUwLWE0MjQtMTk2Y2MxNjcxMTNl LzEvSElpdkwwTmxTejlGTFZ4MDdRZEhFbGNOSDk0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABjJRup0T NCylyrYP6LG3/nl62M90wFPLrW66PJzQ08hHAl7W5SPoFX8mG64vZU2kbf918adW 25mFRE7OLRisGSv6mCRkfXizS1ydiDjvxx++LQ7C+kGr6odjKC/S5A3niXZlOolq tyqS4Iwye2VCd3t3/1/w68txLrh9e5/TTpOtsDJp5Cf8CZqqsP09xy5LdKAF+g3D /Y/lzZ8Qa6GP59V/YPbt3fROdhRCJugQ93HhM9RqrBumY1nHhwP9g0bnV94M/E2k YOqejoiklRcbWrTMkudvGlu97WJGff/o0vXRraOUn6h/utj4MYeOBdDp01FKiKJB PVxO2nhC28b/Lw== -----END CERTIFICATE-----Generated at Sat Dec 6 10:43:00 2025 by rpki-client