This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.mft File: hpqzMEaGKrWEBeXpJ930EnLfxxQ.mft (raw, json) Hash identifier: 3HLgpr+g9P9oWp82+YvvWIMA28pjQHWUOvjK+z942nQ= Subject key identifier: 43:A9:3B:23:37:EF:E8:1F:7F:33:B3:F6:9E:CC:69:68:E8:05:16:E2 Authority key identifier: 86:9A:B3:30:46:86:2A:B5:84:05:E5:E9:27:DD:F4:12:72:DF:C7:14 Certificate issuer: /CN=869ab33046862ab58405e5e927ddf41272dfc714 Certificate serial: 019AF12D1A4B924C11FFD939F03F0467FEF0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hpqzMEaGKrWEBeXpJ930EnLfxxQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.mft Manifest number: 0552 Signing time: Sat 06 Dec 2025 01:00:56 +0000 Manifest this update: Sat 06 Dec 2025 01:00:56 +0000 Manifest next update: Sun 07 Dec 2025 01:00:56 +0000 Files and hashes: 1: hpqzMEaGKrWEBeXpJ930EnLfxxQ.crl (hash: eYP/nCPNs24ouYrYx/ekmGImRcQvcFWqb9N7BkBX2HE=) 2: p8T_kCS-MYJ8fc4C7hUc5E1T1qg.roa (hash: CHS1S8lMOJ2pkxab6trVxWbo2qQA5JXICjYrqXb1IdY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.mft rsync://rpki.ripe.net/repository/DEFAULT/hpqzMEaGKrWEBeXpJ930EnLfxxQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:1a:4b:92:4c:11:ff:d9:39:f0:3f:04:67:fe:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=869ab33046862ab58405e5e927ddf41272dfc714 Validity Not Before: Dec 6 01:00:56 2025 GMT Not After : Dec 7 01:00:56 2025 GMT Subject: CN=43a93b2337efe81f7f33b3f69ecc6968e80516e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:05:c0:64:2c:19:d5:70:2f:e3:ea:7d:20:91: c6:ef:37:37:7c:3e:3a:54:b1:ab:60:2b:32:c7:fd: da:a3:b0:46:6d:80:5c:b4:d0:83:16:d4:3c:5e:0d: 86:b5:3f:a1:ea:72:d7:b0:1f:c7:b7:49:22:98:24: f3:90:d6:4d:38:f1:47:0d:5d:82:98:62:76:2b:08: 19:d1:3e:93:73:68:4a:22:a4:28:3b:36:be:03:ea: d0:b0:62:8e:29:26:cd:55:ba:43:38:e5:83:26:01: 7c:76:5e:93:83:0c:d1:a2:ab:75:2d:26:71:68:c4: 8d:71:6a:bc:52:90:0a:ba:d9:1f:58:71:38:e1:28: f6:d9:c0:2d:45:7b:8a:f5:e2:f6:70:74:90:0d:fc: 38:57:68:f2:34:47:fa:3c:cd:52:d3:3a:a2:09:06: 59:11:4f:07:dd:22:45:fc:44:0f:b2:70:a8:15:a1: 42:80:6d:62:60:24:d7:8f:65:b3:de:a8:8e:74:fb: 2a:73:42:1f:ed:ad:fb:36:ba:d1:11:86:0f:29:0e: e3:6e:17:c3:a2:0c:40:5a:a3:ea:43:20:0b:1b:51: d7:b5:83:ca:e5:6a:c5:7a:a3:18:21:7b:31:26:db: 72:fa:df:99:06:a9:16:56:56:ec:8b:7d:29:15:80: 73:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:A9:3B:23:37:EF:E8:1F:7F:33:B3:F6:9E:CC:69:68:E8:05:16:E2 X509v3 Authority Key Identifier: keyid:86:9A:B3:30:46:86:2A:B5:84:05:E5:E9:27:DD:F4:12:72:DF:C7:14 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hpqzMEaGKrWEBeXpJ930EnLfxxQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/f8e8e5-692b-40a9-b32f-394c47ff45ae/1/hpqzMEaGKrWEBeXpJ930EnLfxxQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 38:94:7b:35:0e:a2:73:d2:fa:10:0b:67:56:35:45:71:37:79: 3a:7d:f6:59:0e:77:8f:2d:88:fe:4a:fe:22:f7:83:bb:d3:b7: a9:ef:b4:25:fa:7d:83:b5:db:56:38:53:27:60:30:93:fe:b2: d4:6c:be:8e:00:8d:76:06:49:ab:c4:6f:cd:fd:2e:7f:13:4a: 1b:f2:b7:5b:3e:dd:fa:9a:28:9f:94:d4:5b:a2:b3:6e:42:93: e0:2b:05:c6:f8:51:3c:75:5d:fa:e5:c4:07:bf:e2:20:95:18: 73:95:75:c6:2f:78:95:c6:30:79:97:76:0b:00:5e:01:5a:8b: 79:d5:85:0c:b3:b4:6a:68:82:06:a5:c5:aa:23:81:0e:a7:b2: 71:e0:82:d2:ec:cc:36:c8:1b:ad:1f:02:f3:dd:10:e0:6a:5a: 84:0c:de:04:44:50:e0:51:bb:b6:d8:8e:a9:98:a7:58:ef:0b: 7e:63:fe:18:11:b9:97:67:ff:40:e8:ce:20:f2:6b:b7:eb:63: 1a:f9:4b:6c:ec:58:b1:2c:ce:de:54:12:0f:96:30:72:19:e8: 05:88:2e:67:e0:27:76:87:b7:24:1f:b8:11:2b:86:a8:df:53: 11:d4:79:8a:82:e7:ed:24:45:40:20:6b:29:b4:04:cf:28:41: 6a:5d:e8:82 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLRpLkkwR/9k58D8EZ/7wMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2OWFiMzMwNDY4NjJhYjU4NDA1ZTVlOTI3ZGRmNDEyNzJk ZmM3MTQwHhcNMjUxMjA2MDEwMDU2WhcNMjUxMjA3MDEwMDU2WjAzMTEwLwYDVQQD Eyg0M2E5M2IyMzM3ZWZlODFmN2YzM2IzZjY5ZWNjNjk2OGU4MDUxNmUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqwXAZCwZ1XAv4+p9IJHG7zc3fD46 VLGrYCsyx/3ao7BGbYBctNCDFtQ8Xg2GtT+h6nLXsB/Ht0kimCTzkNZNOPFHDV2C mGJ2KwgZ0T6Tc2hKIqQoOza+A+rQsGKOKSbNVbpDOOWDJgF8dl6TgwzRoqt1LSZx aMSNcWq8UpAKutkfWHE44Sj22cAtRXuK9eL2cHSQDfw4V2jyNEf6PM1S0zqiCQZZ EU8H3SJF/EQPsnCoFaFCgG1iYCTXj2Wz3qiOdPsqc0If7a37NrrREYYPKQ7jbhfD ogxAWqPqQyALG1HXtYPK5WrFeqMYIXsxJtty+t+ZBqkWVlbsi30pFYBzjwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEOpOyM37+gffzOz9p7MaWjoBRbiMB8GA1UdIwQY MBaAFIaaszBGhiq1hAXl6Sfd9BJy38cUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHBxek1FYUdLcldFQmVYcEo5MzBFbkxmeHhRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy9mOGU4ZTUtNjkyYi00MGE5LWIzMmYt Mzk0YzQ3ZmY0NWFlLzEvaHBxek1FYUdLcldFQmVYcEo5MzBFbkxmeHhRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy9mOGU4ZTUtNjkyYi00MGE5LWIzMmYtMzk0YzQ3ZmY0NWFl LzEvaHBxek1FYUdLcldFQmVYcEo5MzBFbkxmeHhRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOJR7NQ6i c9L6EAtnVjVFcTd5On32WQ53jy2I/kr+IveDu9O3qe+0Jfp9g7XbVjhTJ2Awk/6y 1Gy+jgCNdgZJq8Rvzf0ufxNKG/K3Wz7d+poon5TUW6KzbkKT4CsFxvhRPHVd+uXE B7/iIJUYc5V1xi94lcYweZd2CwBeAVqLedWFDLO0amiCBqXFqiOBDqeyceCC0uzM NsgbrR8C890Q4GpahAzeBERQ4FG7ttiOqZinWO8LfmP+GBG5l2f/QOjOIPJrt+tj GvlLbOxYsSzO3lQSD5YwchnoBYguZ+Andoe3JB+4ESuGqN9TEdR5ioLn7SRFQCBr KbQEzyhBal3ogg== -----END CERTIFICATE-----Generated at Sat Dec 6 06:58:11 2025 by rpki-client