This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/3ed37b-b80a-4b10-914b-57c92431d3d3/1/HvNtbboJfqbUsq2k52PoTss9gXo.mft File: HvNtbboJfqbUsq2k52PoTss9gXo.mft (raw, json) Hash identifier: 0k0uWR0Ot8xbPgaeQWMp0lizDbLC8YnFM+kvFvQgcaQ= Subject key identifier: 7C:E5:DC:89:49:B8:C4:B6:41:9E:75:E5:61:01:F7:90:CA:7D:9F:8F Authority key identifier: 1E:F3:6D:6D:BA:09:7E:A6:D4:B2:AD:A4:E7:63:E8:4E:CB:3D:81:7A Certificate issuer: /CN=1ef36d6dba097ea6d4b2ada4e763e84ecb3d817a Certificate serial: 019AF3C0ABEBBE44ACFB254DC83DC59499F0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HvNtbboJfqbUsq2k52PoTss9gXo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/3ed37b-b80a-4b10-914b-57c92431d3d3/1/HvNtbboJfqbUsq2k52PoTss9gXo.mft Manifest number: 064D Signing time: Sat 06 Dec 2025 13:01:21 +0000 Manifest this update: Sat 06 Dec 2025 13:01:21 +0000 Manifest next update: Sun 07 Dec 2025 13:01:21 +0000 Files and hashes: 1: 1-fDLqnKfMZzfosw8Gra-kuHRukQ.roa (hash: 91Wi2oW4Wdmr3Kf24VCGVEfXWacp6jcVuiTMlTsIcZQ=) 2: HvNtbboJfqbUsq2k52PoTss9gXo.crl (hash: Gzn3zYHdO+eHU3G2excdDSXtDo33uLacEy5gz7RyQvM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/3ed37b-b80a-4b10-914b-57c92431d3d3/1/HvNtbboJfqbUsq2k52PoTss9gXo.crl rsync://rpki.ripe.net/repository/DEFAULT/9e/3ed37b-b80a-4b10-914b-57c92431d3d3/1/HvNtbboJfqbUsq2k52PoTss9gXo.mft rsync://rpki.ripe.net/repository/DEFAULT/HvNtbboJfqbUsq2k52PoTss9gXo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:c0:ab:eb:be:44:ac:fb:25:4d:c8:3d:c5:94:99:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1ef36d6dba097ea6d4b2ada4e763e84ecb3d817a Validity Not Before: Dec 6 13:01:21 2025 GMT Not After : Dec 7 13:01:21 2025 GMT Subject: CN=7ce5dc8949b8c4b6419e75e56101f790ca7d9f8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:69:30:8f:6b:4f:9e:95:e0:54:e7:c5:d1:73: 2e:16:fb:be:6f:22:c7:4f:7e:26:19:ca:ba:2f:d2: 10:ba:8f:c3:57:cf:f1:a2:df:54:f2:5f:4c:ee:93: c0:8c:25:22:9a:64:f7:8d:b8:91:0d:4f:e3:9e:8a: ff:24:49:6a:05:c2:af:22:0e:70:c5:ce:24:c8:cd: cc:0f:e4:4e:ca:71:36:ef:88:53:d4:61:ff:37:dc: ac:e9:75:25:30:31:e2:0c:51:2a:85:3c:53:e5:80: c5:b6:51:aa:26:68:46:f2:d4:3d:8f:82:41:7d:f8: 29:70:c4:42:50:5b:23:a5:e5:bb:f1:3a:aa:59:38: e8:88:b4:37:80:0c:9e:99:3b:9b:d5:e0:78:fa:45: 10:28:ce:68:23:0e:4c:75:54:59:41:6f:d3:06:18: 04:80:4a:89:08:26:b6:03:29:c2:2a:0d:a2:b0:71: 45:59:42:dc:40:a7:f3:a2:a3:6e:e2:1d:e1:78:78: fd:a2:87:df:5f:91:48:aa:5a:6f:12:ab:76:6f:de: 89:24:1d:fb:bd:c0:75:29:85:35:0e:b1:30:40:c6: fc:16:b6:2c:15:ff:0c:a8:92:54:9d:2b:9b:6d:32: 3e:06:6a:82:d7:ff:c2:e7:16:78:60:1a:e4:d7:c5: 9e:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:E5:DC:89:49:B8:C4:B6:41:9E:75:E5:61:01:F7:90:CA:7D:9F:8F X509v3 Authority Key Identifier: keyid:1E:F3:6D:6D:BA:09:7E:A6:D4:B2:AD:A4:E7:63:E8:4E:CB:3D:81:7A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HvNtbboJfqbUsq2k52PoTss9gXo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/3ed37b-b80a-4b10-914b-57c92431d3d3/1/HvNtbboJfqbUsq2k52PoTss9gXo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/3ed37b-b80a-4b10-914b-57c92431d3d3/1/HvNtbboJfqbUsq2k52PoTss9gXo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 94:1c:de:55:71:c7:16:4a:ed:e4:ce:7e:78:73:16:79:e8:a3: 2c:b4:31:22:3c:90:b1:ce:b6:d2:44:a6:ca:ab:77:9a:68:e7: 3b:99:db:7b:33:c6:e6:43:7c:bb:4b:dd:a1:4a:b1:cd:bd:8e: 24:b3:33:ca:34:9e:1f:2f:50:3d:5b:ec:f6:0a:61:43:f9:e4: 6b:be:f5:8b:b0:7b:60:7d:a1:d2:e6:10:35:2c:34:6f:a8:00: 76:77:f4:d8:56:7a:91:bf:ec:46:1b:13:c6:78:28:df:38:2e: bf:d5:f1:75:33:ed:90:9b:7d:73:28:a4:b9:90:4e:34:48:23: 23:a7:c3:26:e4:66:4f:db:a7:02:72:7b:6c:20:65:b9:7d:e8: e1:91:97:24:c8:cb:b7:ee:ba:fb:aa:00:54:ae:93:41:af:65: 30:42:6d:9b:f4:af:8c:a8:26:61:22:c6:e6:1c:af:90:ae:28: e6:12:19:59:6e:54:45:94:b6:47:7c:04:4b:62:9a:00:54:01: 3f:e4:78:5f:90:79:e8:fa:3a:cb:e9:f0:a9:64:58:5d:7c:e4: 3b:c7:b9:35:71:c1:db:88:e4:3e:ec:88:5b:12:b0:01:c5:eb: ba:ac:c8:91:ee:95:8c:ef:09:3c:ae:0c:dc:8c:f1:58:fa:99: 20:2b:7a:91 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzwKvrvkSs+yVNyD3FlJnwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlZjM2ZDZkYmEwOTdlYTZkNGIyYWRhNGU3NjNlODRlY2Iz ZDgxN2EwHhcNMjUxMjA2MTMwMTIxWhcNMjUxMjA3MTMwMTIxWjAzMTEwLwYDVQQD Eyg3Y2U1ZGM4OTQ5YjhjNGI2NDE5ZTc1ZTU2MTAxZjc5MGNhN2Q5ZjhmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu2kwj2tPnpXgVOfF0XMuFvu+byLH T34mGcq6L9IQuo/DV8/xot9U8l9M7pPAjCUimmT3jbiRDU/jnor/JElqBcKvIg5w xc4kyM3MD+ROynE274hT1GH/N9ys6XUlMDHiDFEqhTxT5YDFtlGqJmhG8tQ9j4JB ffgpcMRCUFsjpeW78TqqWTjoiLQ3gAyemTub1eB4+kUQKM5oIw5MdVRZQW/TBhgE gEqJCCa2AynCKg2isHFFWULcQKfzoqNu4h3heHj9ooffX5FIqlpvEqt2b96JJB37 vcB1KYU1DrEwQMb8FrYsFf8MqJJUnSubbTI+BmqC1//C5xZ4YBrk18WeqQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHzl3IlJuMS2QZ515WEB95DKfZ+PMB8GA1UdIwQY MBaAFB7zbW26CX6m1LKtpOdj6E7LPYF6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSHZOdGJib0pmcWJVc3EyazUyUG9Uc3M5Z1hvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZS8zZWQzN2ItYjgwYS00YjEwLTkxNGIt NTdjOTI0MzFkM2QzLzEvSHZOdGJib0pmcWJVc3EyazUyUG9Uc3M5Z1hvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85ZS8zZWQzN2ItYjgwYS00YjEwLTkxNGItNTdjOTI0MzFkM2Qz LzEvSHZOdGJib0pmcWJVc3EyazUyUG9Uc3M5Z1hvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlBzeVXHH Fkrt5M5+eHMWeeijLLQxIjyQsc620kSmyqt3mmjnO5nbezPG5kN8u0vdoUqxzb2O JLMzyjSeHy9QPVvs9gphQ/nka771i7B7YH2h0uYQNSw0b6gAdnf02FZ6kb/sRhsT xngo3zguv9XxdTPtkJt9cyikuZBONEgjI6fDJuRmT9unAnJ7bCBluX3o4ZGXJMjL t+66+6oAVK6TQa9lMEJtm/SvjKgmYSLG5hyvkK4o5hIZWW5URZS2R3wES2KaAFQB P+R4X5B56Po6y+nwqWRYXXzkO8e5NXHB24jkPuyIWxKwAcXruqzIke6VjO8JPK4M 3IzxWPqZICt6kQ== -----END CERTIFICATE-----Generated at Sat Dec 6 21:35:00 2025 by rpki-client