This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft File: HqtOAMDZLLUBu7IjrPA54nCR204.mft (raw, json) Hash identifier: Ms/EHGCKJGYM95fSPazZEh2/C0TBekDmdsZ/5LDAFQo= Subject key identifier: 87:4B:ED:68:25:24:91:02:7C:97:29:22:99:00:ED:89:4A:C2:A3:27 Authority key identifier: 1E:AB:4E:00:C0:D9:2C:B5:01:BB:B2:23:AC:F0:39:E2:70:91:DB:4E Certificate issuer: /CN=1eab4e00c0d92cb501bbb223acf039e27091db4e Certificate serial: 019AF12CE6A24359C62D8D815EB04337C7DB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft Manifest number: 162C Signing time: Sat 06 Dec 2025 01:00:42 +0000 Manifest this update: Sat 06 Dec 2025 01:00:42 +0000 Manifest next update: Sun 07 Dec 2025 01:00:42 +0000 Files and hashes: 1: HqtOAMDZLLUBu7IjrPA54nCR204.crl (hash: SVZai5Xg632ccbBfXgSA3GeX1n/6v9zfox4kddCz/Bw=) 2: TRIkg-QwPxodaMNyhJudZJsULfg.roa (hash: ufMh2ZHdT1rvdo6TTuMqjAAVY8O4a0cCsUjxcMvHh8A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.crl rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2c:e6:a2:43:59:c6:2d:8d:81:5e:b0:43:37:c7:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1eab4e00c0d92cb501bbb223acf039e27091db4e Validity Not Before: Dec 6 01:00:42 2025 GMT Not After : Dec 7 01:00:42 2025 GMT Subject: CN=874bed68252491027c9729229900ed894ac2a327 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:5d:63:12:e6:7f:0a:f7:ea:f6:a5:f9:eb:1c: f8:c4:bc:70:28:53:65:e1:ca:c0:cd:d8:b0:ac:dc: 2a:06:02:f3:ca:cb:75:62:a7:02:5a:a3:f7:ff:e6: 48:43:88:9c:2f:f5:d1:5b:a3:bb:f6:d7:f7:e3:18: f7:2c:cb:dd:80:76:e3:75:03:e3:3a:48:8d:a9:47: ca:3b:21:65:f6:46:cd:d4:4f:32:19:88:18:e8:df: be:79:91:96:0c:2d:22:15:0c:cc:e1:b1:17:c8:05: df:3e:43:87:d6:24:ed:16:d5:c8:f9:0d:6b:a1:a8: 78:46:bc:04:81:50:66:33:88:86:b7:d1:74:1d:ef: 77:35:8c:d4:d0:2d:bb:1a:cd:69:f8:c1:7d:a0:bc: 91:5a:80:e4:1e:1e:3f:80:dd:fd:c3:b0:d1:05:80: 47:2f:7c:1e:dd:75:f5:5d:90:c1:06:33:46:02:a7: ac:34:29:34:8c:07:e9:35:c1:99:ee:81:36:97:54: bb:99:2d:05:f9:d3:95:7a:15:4e:5a:b2:7a:d6:01: 60:f3:fc:2d:57:af:ea:7e:a1:fa:83:6e:27:45:01: c9:b7:55:2a:64:c7:04:cf:94:63:ec:66:fc:36:9d: 25:9a:bd:48:34:89:b2:52:19:56:e8:5e:95:71:2d: ed:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:4B:ED:68:25:24:91:02:7C:97:29:22:99:00:ED:89:4A:C2:A3:27 X509v3 Authority Key Identifier: keyid:1E:AB:4E:00:C0:D9:2C:B5:01:BB:B2:23:AC:F0:39:E2:70:91:DB:4E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqtOAMDZLLUBu7IjrPA54nCR204.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a9a6ba-d748-40c7-8503-19ba84d84af0/1/HqtOAMDZLLUBu7IjrPA54nCR204.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3c:bf:ed:39:76:d4:b1:ee:be:1c:bf:f4:8d:4c:06:5d:f0:e8: 81:27:e3:2b:55:75:86:91:8a:67:a2:99:88:b0:94:f3:45:1f: 29:0b:77:12:fe:a6:28:23:d9:96:40:7a:04:20:f9:83:63:ba: 77:e8:d7:77:32:d3:97:fa:74:87:28:7e:38:94:87:8e:59:32: 84:25:84:4d:9a:e0:ca:3a:e5:cd:30:67:78:0f:4d:ab:3a:98: 48:1b:7a:d5:51:38:ee:f3:b4:15:e0:02:15:26:11:b8:d6:a1: 64:6b:a4:ce:08:eb:43:95:6d:5f:b5:19:db:7a:2b:82:48:20: 26:8f:22:25:3a:13:ff:c7:5e:cf:51:3d:7d:bd:d4:46:a1:41: 88:2c:68:e4:e7:30:f5:1c:65:5a:5e:d4:22:5e:1b:f3:57:ac: 98:fb:5f:a2:f2:d1:98:13:9e:43:d1:ce:5f:a2:e0:56:42:1b: f4:21:31:96:3f:64:e0:eb:69:58:af:c3:7d:41:6c:14:40:f9: 45:81:35:79:93:8a:48:a3:ee:b3:85:22:31:a6:3a:4b:3d:85: d4:a2:98:7a:61:13:e5:67:d6:e0:9d:74:0f:ad:5a:91:cf:84: 71:45:c8:91:1f:52:a9:a2:d4:18:a0:d4:39:44:09:a0:f2:07: d6:e2:6b:a2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLOaiQ1nGLY2BXrBDN8fbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlYWI0ZTAwYzBkOTJjYjUwMWJiYjIyM2FjZjAzOWUyNzA5 MWRiNGUwHhcNMjUxMjA2MDEwMDQyWhcNMjUxMjA3MDEwMDQyWjAzMTEwLwYDVQQD Eyg4NzRiZWQ2ODI1MjQ5MTAyN2M5NzI5MjI5OTAwZWQ4OTRhYzJhMzI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtl1jEuZ/Cvfq9qX56xz4xLxwKFNl 4crAzdiwrNwqBgLzyst1YqcCWqP3/+ZIQ4icL/XRW6O79tf34xj3LMvdgHbjdQPj OkiNqUfKOyFl9kbN1E8yGYgY6N++eZGWDC0iFQzM4bEXyAXfPkOH1iTtFtXI+Q1r oah4RrwEgVBmM4iGt9F0He93NYzU0C27Gs1p+MF9oLyRWoDkHh4/gN39w7DRBYBH L3we3XX1XZDBBjNGAqesNCk0jAfpNcGZ7oE2l1S7mS0F+dOVehVOWrJ61gFg8/wt V6/qfqH6g24nRQHJt1UqZMcEz5Rj7Gb8Np0lmr1INImyUhlW6F6VcS3t/QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIdL7WglJJECfJcpIpkA7YlKwqMnMB8GA1UdIwQY MBaAFB6rTgDA2Sy1AbuyI6zwOeJwkdtOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSHF0T0FNRFpMTFVCdTdJanJQQTU0bkNSMjA0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy9hOWE2YmEtZDc0OC00MGM3LTg1MDMt MTliYTg0ZDg0YWYwLzEvSHF0T0FNRFpMTFVCdTdJanJQQTU0bkNSMjA0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNy9hOWE2YmEtZDc0OC00MGM3LTg1MDMtMTliYTg0ZDg0YWYw LzEvSHF0T0FNRFpMTFVCdTdJanJQQTU0bkNSMjA0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPL/tOXbU se6+HL/0jUwGXfDogSfjK1V1hpGKZ6KZiLCU80UfKQt3Ev6mKCPZlkB6BCD5g2O6 d+jXdzLTl/p0hyh+OJSHjlkyhCWETZrgyjrlzTBneA9NqzqYSBt61VE47vO0FeAC FSYRuNahZGukzgjrQ5VtX7UZ23orgkggJo8iJToT/8dez1E9fb3URqFBiCxo5Ocw 9RxlWl7UIl4b81esmPtfovLRmBOeQ9HOX6LgVkIb9CExlj9k4OtpWK/DfUFsFED5 RYE1eZOKSKPus4UiMaY6Sz2F1KKYemET5WfW4J10D61akc+EcUXIkR9SqaLUGKDU OUQJoPIH1uJrog== -----END CERTIFICATE-----Generated at Sat Dec 6 08:27:33 2025 by rpki-client