This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.mft File: HbLi5zWagBYypm0QuWHk8uxt_E8.mft (raw, json) Hash identifier: o6uwGHeVM5nBoXVa6l4KG4cVtdkECGGbYpiiNpWFzds= Subject key identifier: 0C:0A:A4:C5:46:E2:AC:5F:27:BA:00:A4:C0:35:4C:74:6B:58:B5:6B Authority key identifier: 1D:B2:E2:E7:35:9A:80:16:32:A6:6D:10:B9:61:E4:F2:EC:6D:FC:4F Certificate issuer: /CN=1db2e2e7359a801632a66d10b961e4f2ec6dfc4f Certificate serial: 019AF389842FADC26718F0A17AF6F2FE9DC3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HbLi5zWagBYypm0QuWHk8uxt_E8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.mft Manifest number: 1760 Signing time: Sat 06 Dec 2025 12:01:07 +0000 Manifest this update: Sat 06 Dec 2025 12:01:07 +0000 Manifest next update: Sun 07 Dec 2025 12:01:07 +0000 Files and hashes: 1: HbLi5zWagBYypm0QuWHk8uxt_E8.crl (hash: mUct1v96asHXahaC4KulB1CMY8+V4xSc3cjrzVOszKM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.crl rsync://rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.mft rsync://rpki.ripe.net/repository/DEFAULT/HbLi5zWagBYypm0QuWHk8uxt_E8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:89:84:2f:ad:c2:67:18:f0:a1:7a:f6:f2:fe:9d:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1db2e2e7359a801632a66d10b961e4f2ec6dfc4f Validity Not Before: Dec 6 12:01:07 2025 GMT Not After : Dec 7 12:01:07 2025 GMT Subject: CN=0c0aa4c546e2ac5f27ba00a4c0354c746b58b56b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:8b:c5:48:c8:b7:48:c3:8b:32:5f:8e:c7:47: ce:5c:81:c6:32:06:2d:c4:2f:1a:7b:2c:b1:28:28: 36:e1:d7:81:a9:c8:30:8d:a9:54:62:1a:6f:74:69: 1c:ca:62:86:1d:41:61:29:16:88:0e:b6:f9:0a:f7: c0:c1:4c:13:8c:d8:f2:42:46:33:bd:13:86:20:99: ed:13:52:3a:67:62:bb:23:d0:91:15:6b:c2:9d:ed: 8b:e7:ff:2c:60:ec:7c:28:bb:57:bc:a4:a3:5a:93: d5:83:a9:37:5e:97:d5:2d:d7:ea:48:d2:dc:a3:88: 35:32:80:c1:18:ed:4a:aa:bf:0e:2e:86:61:98:6a: 7e:f8:de:4c:8c:48:ea:f7:7a:4f:78:fc:20:f4:35: 22:03:eb:d2:0c:bc:2c:53:a7:dc:ea:ae:96:01:41: 9f:3c:f6:12:cb:39:1d:11:32:b0:d9:04:6f:1c:7e: c6:a1:43:6e:74:63:3e:aa:c3:ab:6a:32:b5:d9:a8: 5a:d0:f1:5b:78:c8:54:01:a0:a3:e2:7a:09:a5:04: c2:c0:4f:74:df:5e:26:e7:7f:33:66:12:08:60:cd: f7:b0:7f:51:d3:9f:a9:29:2a:96:82:b1:69:41:bd: af:a1:fd:e4:85:0d:66:63:47:00:10:fa:57:75:93: d8:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:0A:A4:C5:46:E2:AC:5F:27:BA:00:A4:C0:35:4C:74:6B:58:B5:6B X509v3 Authority Key Identifier: keyid:1D:B2:E2:E7:35:9A:80:16:32:A6:6D:10:B9:61:E4:F2:EC:6D:FC:4F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HbLi5zWagBYypm0QuWHk8uxt_E8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/6fd9be-9694-4639-90c5-90ebd76e91f9/1/HbLi5zWagBYypm0QuWHk8uxt_E8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6f:38:f5:2e:3a:b2:db:d2:13:b6:0d:d2:15:34:77:79:e9:32: ab:ec:a9:e0:6e:32:60:66:67:3f:12:84:09:c9:90:85:fe:f0: c3:d9:ff:d4:a1:34:28:61:bd:a7:8a:04:f6:9b:61:87:46:e9: b2:87:1d:3b:70:d2:ce:2e:c8:27:d8:64:f6:cb:bd:ca:f8:e0: ea:3a:fa:ba:6e:53:11:9c:da:8e:43:56:6b:d8:8b:50:74:2a: 78:4d:c8:72:4f:a2:f7:ce:4d:96:a3:05:23:49:9c:7d:cc:c5: 0c:c5:2e:6c:34:74:41:64:90:be:d7:23:8e:f0:40:e9:a1:3f: 6e:1e:c7:c9:53:71:38:77:e1:d1:6a:90:3f:26:cc:ea:88:4e: 99:8f:a9:e2:c0:10:5a:31:d0:bf:cf:71:8d:1a:bd:a1:4b:9b: 8f:14:3d:9b:c5:f6:fa:db:6b:70:4e:6e:5b:11:33:61:71:d0: 61:bd:cc:7d:b3:a1:49:27:18:39:a0:df:13:85:0c:c4:f2:54: ce:f9:8c:5d:e9:56:c5:8a:4c:3f:27:2a:94:37:00:a7:5c:2c: 2d:af:a2:51:f7:9c:64:2b:d4:11:2c:17:bf:76:34:cf:0c:83: a6:e9:46:ca:65:aa:09:88:91:90:6b:e7:25:3a:13:4c:9a:97: 33:ff:ac:6a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrziYQvrcJnGPChevby/p3DMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkYjJlMmU3MzU5YTgwMTYzMmE2NmQxMGI5NjFlNGYyZWM2 ZGZjNGYwHhcNMjUxMjA2MTIwMTA3WhcNMjUxMjA3MTIwMTA3WjAzMTEwLwYDVQQD EygwYzBhYTRjNTQ2ZTJhYzVmMjdiYTAwYTRjMDM1NGM3NDZiNThiNTZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxIvFSMi3SMOLMl+Ox0fOXIHGMgYt xC8aeyyxKCg24deBqcgwjalUYhpvdGkcymKGHUFhKRaIDrb5CvfAwUwTjNjyQkYz vROGIJntE1I6Z2K7I9CRFWvCne2L5/8sYOx8KLtXvKSjWpPVg6k3XpfVLdfqSNLc o4g1MoDBGO1Kqr8OLoZhmGp++N5MjEjq93pPePwg9DUiA+vSDLwsU6fc6q6WAUGf PPYSyzkdETKw2QRvHH7GoUNudGM+qsOrajK12aha0PFbeMhUAaCj4noJpQTCwE90 314m538zZhIIYM33sH9R05+pKSqWgrFpQb2vof3khQ1mY0cAEPpXdZPY8QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAwKpMVG4qxfJ7oApMA1THRrWLVrMB8GA1UdIwQY MBaAFB2y4uc1moAWMqZtELlh5PLsbfxPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSGJMaTV6V2FnQll5cG0wUXVXSGs4dXh0X0U4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi82ZmQ5YmUtOTY5NC00NjM5LTkwYzUt OTBlYmQ3NmU5MWY5LzEvSGJMaTV6V2FnQll5cG0wUXVXSGs4dXh0X0U4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNi82ZmQ5YmUtOTY5NC00NjM5LTkwYzUtOTBlYmQ3NmU5MWY5 LzEvSGJMaTV6V2FnQll5cG0wUXVXSGs4dXh0X0U4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbzj1Ljqy 29ITtg3SFTR3eekyq+yp4G4yYGZnPxKECcmQhf7ww9n/1KE0KGG9p4oE9pthh0bp socdO3DSzi7IJ9hk9su9yvjg6jr6um5TEZzajkNWa9iLUHQqeE3Ick+i985NlqMF I0mcfczFDMUubDR0QWSQvtcjjvBA6aE/bh7HyVNxOHfh0WqQPybM6ohOmY+p4sAQ WjHQv89xjRq9oUubjxQ9m8X2+ttrcE5uWxEzYXHQYb3MfbOhSScYOaDfE4UMxPJU zvmMXelWxYpMPycqlDcAp1wsLa+iUfecZCvUESwXv3Y0zwyDpulGymWqCYiRkGvn JToTTJqXM/+sag== -----END CERTIFICATE-----Generated at Sat Dec 6 14:59:25 2025 by rpki-client