This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.mft File: H0rytHmBXwfNgun4K6sv6hP7IbE.mft (raw, json) Hash identifier: YDvPCA+0+9DCYBCqsaGg2IXKcsZ4aK3j20qrMyfxU1E= Subject key identifier: 12:80:44:A9:FC:3E:07:49:6E:1B:47:D6:0A:93:B4:9D:FC:E9:2F:CC Authority key identifier: 1F:4A:F2:B4:79:81:5F:07:CD:82:E9:F8:2B:AB:2F:EA:13:FB:21:B1 Certificate issuer: /CN=1f4af2b479815f07cd82e9f82bab2fea13fb21b1 Certificate serial: 019AF1641D52472077B8286BC3D44ED6B51E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0rytHmBXwfNgun4K6sv6hP7IbE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.mft Manifest number: 101B Signing time: Sat 06 Dec 2025 02:01:01 +0000 Manifest this update: Sat 06 Dec 2025 02:01:01 +0000 Manifest next update: Sun 07 Dec 2025 02:01:01 +0000 Files and hashes: 1: H0rytHmBXwfNgun4K6sv6hP7IbE.crl (hash: KS47Go17nJlsZMVQh6E6ZeOn9U3Y/hPmr9VoLlr2ZKE=) 2: vNstzceOXGplN-vBnPrAujnN1Ks.roa (hash: A1jnUd+2zoPrt/m5wPvY6xxOOy1gAscK2t40BFmGG10=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.mft rsync://rpki.ripe.net/repository/DEFAULT/H0rytHmBXwfNgun4K6sv6hP7IbE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:64:1d:52:47:20:77:b8:28:6b:c3:d4:4e:d6:b5:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1f4af2b479815f07cd82e9f82bab2fea13fb21b1 Validity Not Before: Dec 6 02:01:01 2025 GMT Not After : Dec 7 02:01:01 2025 GMT Subject: CN=128044a9fc3e07496e1b47d60a93b49dfce92fcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:4c:26:90:4f:03:01:ed:b7:15:ba:fc:ba:3f: df:b8:d4:17:b8:bf:8c:22:a2:4a:70:4e:8c:fc:89: 46:0f:2b:be:ab:59:22:64:87:61:e8:d1:3f:d5:15: dc:a3:b6:db:6e:10:a8:ca:f4:14:e2:e8:6d:8c:db: 0c:5f:d0:48:c9:05:8d:9f:ed:6e:42:ac:93:95:a6: 9f:99:69:8f:08:63:5c:98:c7:28:3d:84:b8:26:af: 0b:b1:b0:02:51:b7:80:3d:d9:8a:71:ae:dc:d1:23: 18:95:41:61:51:39:eb:24:e4:35:c9:6e:07:f6:c4: db:5b:ba:f1:ef:ff:a8:08:5e:7c:39:f6:f0:31:7f: 2b:0e:fe:ae:7a:11:da:f8:6a:3d:5d:64:4c:cc:b7: 8e:07:36:33:6f:91:d8:2f:e9:36:bd:4a:0e:aa:45: 83:f3:bd:db:27:a4:2e:52:c9:b1:ae:5a:5c:6c:52: 26:87:88:c1:e0:bd:fc:53:e3:85:cb:67:89:a9:80: c7:bf:83:7b:94:56:9a:84:98:04:02:78:58:11:5e: cc:67:dd:fe:b2:27:86:12:e4:d9:16:93:06:39:25: 3e:33:55:12:9d:0a:56:d3:bc:6d:d1:9b:bb:c5:d1: ef:75:fb:58:bf:7a:23:d6:3a:24:ad:01:21:c1:41: 83:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:80:44:A9:FC:3E:07:49:6E:1B:47:D6:0A:93:B4:9D:FC:E9:2F:CC X509v3 Authority Key Identifier: keyid:1F:4A:F2:B4:79:81:5F:07:CD:82:E9:F8:2B:AB:2F:EA:13:FB:21:B1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0rytHmBXwfNgun4K6sv6hP7IbE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:19:3e:69:c5:69:c2:f0:fa:a2:74:8e:16:46:b1:52:6c:88: 1a:5d:c8:0e:01:bd:db:cd:0f:76:91:c4:d7:a5:45:9d:47:9d: 23:5d:a4:d3:2e:52:8e:1d:3b:46:dc:ef:d2:7a:a1:94:05:87: c8:76:05:22:2e:1c:07:f4:af:b5:28:dd:ea:ed:32:ad:03:01: f6:7b:1e:9e:66:95:ae:7a:e6:f9:99:2a:51:bb:d2:eb:7f:59: 98:31:13:0d:d0:75:a1:f7:6f:34:e5:e1:6f:ad:14:b2:15:13: 2b:68:46:cc:bb:1c:33:bd:57:5a:ba:69:86:21:11:4f:42:89: 0c:4b:34:0e:db:61:55:b7:ca:8b:bb:2e:67:51:62:85:a6:af: 23:6c:c4:50:66:a3:ff:d7:df:60:b3:31:d0:45:55:dd:33:e3: 89:84:ed:a2:7c:51:ae:4c:0b:16:0e:e8:7a:ad:4f:ce:01:52: 22:45:35:e1:66:b5:9a:86:5b:f7:5f:21:84:31:08:bf:b9:f2: 5a:f9:83:4a:af:ec:b7:88:cf:2d:02:4e:6f:28:69:ec:a7:88: 9b:80:0a:e1:e1:15:cc:99:b3:a2:f0:fa:15:3f:69:33:31:3d: 4c:01:0c:0e:e6:75:e6:8b:82:9c:14:cb:f3:07:ea:be:cb:a9: 8f:8f:0c:8b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxZB1SRyB3uChrw9RO1rUeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFmNGFmMmI0Nzk4MTVmMDdjZDgyZTlmODJiYWIyZmVhMTNm YjIxYjEwHhcNMjUxMjA2MDIwMTAxWhcNMjUxMjA3MDIwMTAxWjAzMTEwLwYDVQQD EygxMjgwNDRhOWZjM2UwNzQ5NmUxYjQ3ZDYwYTkzYjQ5ZGZjZTkyZmNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAokwmkE8DAe23Fbr8uj/fuNQXuL+M IqJKcE6M/IlGDyu+q1kiZIdh6NE/1RXco7bbbhCoyvQU4uhtjNsMX9BIyQWNn+1u QqyTlaafmWmPCGNcmMcoPYS4Jq8LsbACUbeAPdmKca7c0SMYlUFhUTnrJOQ1yW4H 9sTbW7rx7/+oCF58OfbwMX8rDv6uehHa+Go9XWRMzLeOBzYzb5HYL+k2vUoOqkWD 873bJ6QuUsmxrlpcbFImh4jB4L38U+OFy2eJqYDHv4N7lFaahJgEAnhYEV7MZ93+ sieGEuTZFpMGOSU+M1USnQpW07xt0Zu7xdHvdftYv3oj1jokrQEhwUGDAQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBKARKn8PgdJbhtH1gqTtJ386S/MMB8GA1UdIwQY MBaAFB9K8rR5gV8HzYLp+CurL+oT+yGxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSDByeXRIbUJYd2ZOZ3VuNEs2c3Y2aFA3SWJFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy8wZjI1YjctNGY4MS00ZjQxLWExNjIt MDg2YzE2ZjczNmIxLzEvSDByeXRIbUJYd2ZOZ3VuNEs2c3Y2aFA3SWJFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy8wZjI1YjctNGY4MS00ZjQxLWExNjItMDg2YzE2ZjczNmIx LzEvSDByeXRIbUJYd2ZOZ3VuNEs2c3Y2aFA3SWJFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhhk+acVp wvD6onSOFkaxUmyIGl3IDgG9280PdpHE16VFnUedI12k0y5Sjh07Rtzv0nqhlAWH yHYFIi4cB/SvtSjd6u0yrQMB9nsenmaVrnrm+ZkqUbvS639ZmDETDdB1ofdvNOXh b60UshUTK2hGzLscM71XWrpphiERT0KJDEs0DtthVbfKi7suZ1FihaavI2zEUGaj /9ffYLMx0EVV3TPjiYTtonxRrkwLFg7oeq1PzgFSIkU14Wa1moZb918hhDEIv7ny WvmDSq/st4jPLQJObyhp7KeIm4AK4eEVzJmzovD6FT9pMzE9TAEMDuZ15ouCnBTL 8wfqvsupj48Miw== -----END CERTIFICATE-----Generated at Sat Dec 6 06:58:00 2025 by rpki-client