This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.mft File: HbLi5zWagBYypm0QuWHk8uxt_E8.mft (raw, json) Hash identifier: D4M1fZaxQDVIq463hpuoAAso5ad0nime+PCjyo5I0ms= Subject key identifier: 09:F0:4E:4C:58:9F:F7:AB:AF:D3:F3:A2:D2:F3:24:8E:79:9B:42:47 Authority key identifier: 1D:B2:E2:E7:35:9A:80:16:32:A6:6D:10:B9:61:E4:F2:EC:6D:FC:4F Certificate issuer: /CN=1db2e2e7359a801632a66d10b961e4f2ec6dfc4f Certificate serial: 019B23D16FF8627FD590F7F193B8CFAC2BE7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HbLi5zWagBYypm0QuWHk8uxt_E8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.mft Manifest number: 1779 Signing time: Mon 15 Dec 2025 21:01:26 +0000 Manifest this update: Mon 15 Dec 2025 21:01:26 +0000 Manifest next update: Tue 16 Dec 2025 21:01:26 +0000 Files and hashes: 1: HbLi5zWagBYypm0QuWHk8uxt_E8.crl (hash: UC5IMcVfeXQd1tW1CnBjimWI69ZHGN7rW0ccgNnc/sQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.crl rsync://rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.mft rsync://rpki.ripe.net/repository/DEFAULT/HbLi5zWagBYypm0QuWHk8uxt_E8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 21:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:23:d1:6f:f8:62:7f:d5:90:f7:f1:93:b8:cf:ac:2b:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1db2e2e7359a801632a66d10b961e4f2ec6dfc4f Validity Not Before: Dec 15 21:01:26 2025 GMT Not After : Dec 16 21:01:26 2025 GMT Subject: CN=09f04e4c589ff7abafd3f3a2d2f3248e799b4247 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:90:81:53:13:91:05:e2:78:c1:3a:79:da:cb: 94:31:0d:22:9a:3c:a3:52:28:17:e7:98:bc:67:0f: c7:68:d9:22:2f:c5:4c:ab:41:77:5b:36:fb:33:df: 18:97:fe:76:f1:45:24:5d:95:d3:4b:20:51:17:6b: a8:23:56:86:db:da:8b:1b:5e:68:76:f4:71:d0:98: 07:6b:a1:98:0a:a7:eb:ae:43:be:e1:fa:9e:1a:e7: 2d:07:42:d7:a3:36:cd:ab:89:79:e8:27:c5:0c:69: 7a:d7:75:d0:44:55:0f:00:d3:8d:c1:72:ad:60:a3: 33:9f:c9:29:48:2d:a0:c8:73:dd:1c:27:55:e2:9c: a3:a3:cd:0b:6b:9d:7f:fb:e6:2b:e5:bd:2b:b6:22: f1:78:f2:ec:4e:da:ba:80:75:ef:55:c7:ad:8a:ae: 42:64:83:9b:d4:ff:bf:02:0a:97:15:c9:32:71:2f: 2f:c5:de:dd:be:a2:d2:68:8f:f8:87:44:4a:eb:e6: 02:6d:87:6d:8a:87:4b:fd:e6:3d:36:f0:c1:e8:6a: e4:15:10:95:92:45:50:e0:d8:38:2c:0b:6d:f6:f9: 60:29:e7:6d:91:7d:9f:34:9f:70:6f:56:4c:1d:cf: 47:01:0e:5f:f0:92:11:7b:6d:2a:24:be:3d:e4:75: ab:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:F0:4E:4C:58:9F:F7:AB:AF:D3:F3:A2:D2:F3:24:8E:79:9B:42:47 X509v3 Authority Key Identifier: keyid:1D:B2:E2:E7:35:9A:80:16:32:A6:6D:10:B9:61:E4:F2:EC:6D:FC:4F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HbLi5zWagBYypm0QuWHk8uxt_E8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:cb:4f:1c:e4:8d:a6:e1:b2:78:36:5d:5d:5a:b9:03:34:9a: 71:8f:b8:dd:87:99:05:bd:1d:e9:6f:85:2d:5e:93:4d:46:e2: 80:34:71:d5:9e:98:90:bd:57:89:ea:24:f6:f3:69:a2:92:13: e5:ef:1c:65:1d:1f:da:3b:35:50:64:d9:29:59:44:ee:41:9c: 77:50:39:01:0f:80:4b:22:85:da:4a:0e:58:d6:a9:dc:65:f9: a1:2a:87:f8:40:65:2f:0b:72:e9:64:8c:3b:9d:79:c6:c4:3c: 2b:20:0e:26:20:c0:0d:26:13:dd:18:ab:ef:60:5b:9b:b1:96: 73:b7:cf:d0:d8:89:82:19:63:96:5a:f7:d3:33:b5:b7:e7:8e: d7:e5:a5:cf:f4:c4:2b:16:4b:00:e9:cb:96:b2:24:17:9d:b3: 71:df:f5:52:4e:74:4c:a3:68:37:51:84:b9:a4:e7:57:39:47: d2:cf:cd:02:95:1c:de:fb:1e:e2:5b:4d:a1:37:a8:43:67:10: 86:31:a6:0d:22:26:b7:b2:0e:e2:7e:8b:49:3e:3e:dc:ae:b0: 4b:9e:45:a8:be:4c:db:e5:7a:3a:0e:1d:8e:6e:38:62:21:b0: 1a:16:20:79:22:95:71:bb:b5:f5:28:61:b6:88:ce:0d:25:bd: a1:79:d4:37 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsj0W/4Yn/VkPfxk7jPrCvnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkYjJlMmU3MzU5YTgwMTYzMmE2NmQxMGI5NjFlNGYyZWM2 ZGZjNGYwHhcNMjUxMjE1MjEwMTI2WhcNMjUxMjE2MjEwMTI2WjAzMTEwLwYDVQQD EygwOWYwNGU0YzU4OWZmN2FiYWZkM2YzYTJkMmYzMjQ4ZTc5OWI0MjQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmJCBUxORBeJ4wTp52suUMQ0imjyj UigX55i8Zw/HaNkiL8VMq0F3Wzb7M98Yl/528UUkXZXTSyBRF2uoI1aG29qLG15o dvRx0JgHa6GYCqfrrkO+4fqeGuctB0LXozbNq4l56CfFDGl613XQRFUPANONwXKt YKMzn8kpSC2gyHPdHCdV4pyjo80La51/++Yr5b0rtiLxePLsTtq6gHXvVcetiq5C ZIOb1P+/AgqXFckycS8vxd7dvqLSaI/4h0RK6+YCbYdtiodL/eY9NvDB6GrkFRCV kkVQ4Ng4LAtt9vlgKedtkX2fNJ9wb1ZMHc9HAQ5f8JIRe20qJL495HWrsQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAnwTkxYn/err9PzotLzJI55m0JHMB8GA1UdIwQY MBaAFB2y4uc1moAWMqZtELlh5PLsbfxPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSGJMaTV6V2FnQll5cG0wUXVXSGs4dXh0X0U4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi82ZmQ5YmUtOTY5NC00NjM5LTkwYzUt OTBlYmQ3NmU5MWY5LzEvSGJMaTV6V2FnQll5cG0wUXVXSGs4dXh0X0U4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNi82ZmQ5YmUtOTY5NC00NjM5LTkwYzUtOTBlYmQ3NmU5MWY5 LzEvSGJMaTV6V2FnQll5cG0wUXVXSGs4dXh0X0U4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAf8tPHOSN puGyeDZdXVq5AzSacY+43YeZBb0d6W+FLV6TTUbigDRx1Z6YkL1Xieok9vNpopIT 5e8cZR0f2js1UGTZKVlE7kGcd1A5AQ+ASyKF2koOWNap3GX5oSqH+EBlLwty6WSM O515xsQ8KyAOJiDADSYT3Rir72Bbm7GWc7fP0NiJghljllr30zO1t+eO1+Wlz/TE KxZLAOnLlrIkF52zcd/1Uk50TKNoN1GEuaTnVzlH0s/NApUc3vse4ltNoTeoQ2cQ hjGmDSImt7IO4n6LST4+3K6wS55FqL5M2+V6Og4djm44YiGwGhYgeSKVcbu19Shh tojODSW9oXnUNw== -----END CERTIFICATE-----Generated at Tue Dec 16 07:01:20 2025 by rpki-client