This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/f7f17c-c27d-408f-99c1-c4736ca5c25a/1/hhiwVNIN_cnFSTxSyGI0d0kEvnc.mft File: hhiwVNIN_cnFSTxSyGI0d0kEvnc.mft (raw, json) Hash identifier: zhOreXR4mxBwLQ+ERhebgE6y9XasEWAlSOMgAAd/GVU= Subject key identifier: 96:DF:1E:7E:6F:2E:9D:D0:38:18:AD:92:61:9B:8A:F5:8F:1D:BD:14 Authority key identifier: 86:18:B0:54:D2:0D:FD:C9:C5:49:3C:52:C8:62:34:77:49:04:BE:77 Certificate issuer: /CN=8618b054d20dfdc9c5493c52c86234774904be77 Certificate serial: 019AF6F8CA2866899152876F3D18F05AFFBD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hhiwVNIN_cnFSTxSyGI0d0kEvnc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/f7f17c-c27d-408f-99c1-c4736ca5c25a/1/hhiwVNIN_cnFSTxSyGI0d0kEvnc.mft Manifest number: 1761 Signing time: Sun 07 Dec 2025 04:01:31 +0000 Manifest this update: Sun 07 Dec 2025 04:01:31 +0000 Manifest next update: Mon 08 Dec 2025 04:01:31 +0000 Files and hashes: 1: hhiwVNIN_cnFSTxSyGI0d0kEvnc.crl (hash: v3zWBOIzHe0SKILnPvXfFCSI+GcAnTF0VYw/tVhY3jw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/f7f17c-c27d-408f-99c1-c4736ca5c25a/1/hhiwVNIN_cnFSTxSyGI0d0kEvnc.crl rsync://rpki.ripe.net/repository/DEFAULT/cd/f7f17c-c27d-408f-99c1-c4736ca5c25a/1/hhiwVNIN_cnFSTxSyGI0d0kEvnc.mft rsync://rpki.ripe.net/repository/DEFAULT/hhiwVNIN_cnFSTxSyGI0d0kEvnc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f6:f8:ca:28:66:89:91:52:87:6f:3d:18:f0:5a:ff:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8618b054d20dfdc9c5493c52c86234774904be77 Validity Not Before: Dec 7 04:01:31 2025 GMT Not After : Dec 8 04:01:31 2025 GMT Subject: CN=96df1e7e6f2e9dd03818ad92619b8af58f1dbd14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:71:16:6b:cf:ca:ac:c9:69:1c:5a:c0:d7:1e: ae:d3:df:b7:b4:b4:a5:39:b5:7d:1d:8f:45:2b:38: ac:b3:fa:89:5e:8a:ff:7b:da:a9:98:1d:0a:36:91: 21:37:03:e3:0b:87:c6:5d:2b:40:79:90:95:26:d5: df:8b:e8:93:ae:49:0a:29:3d:64:4d:66:ad:53:35: 17:71:4a:c9:02:cb:3b:48:cb:be:1b:80:f4:a9:21: a6:d9:8d:46:f5:ac:8d:08:c8:c8:ec:59:10:9a:d1: e5:eb:23:79:a2:47:6b:73:21:96:c1:fc:c5:dd:46: 8d:d2:6d:f3:b4:c9:df:c2:67:76:14:4e:56:3e:a8: eb:31:df:9d:9b:67:3d:67:03:64:eb:2f:94:7e:1e: 0c:02:9e:f9:58:c1:9b:a0:82:af:86:17:27:8f:da: af:0c:cc:10:5b:77:89:72:1b:fd:80:94:de:f7:29: 08:f8:5b:36:59:4e:43:31:cf:1a:a6:70:eb:f9:96: 2f:db:80:7c:2b:16:0b:fd:c0:78:de:14:05:0c:2d: 94:90:a8:ae:b6:7d:1f:49:f7:13:c9:61:f2:4e:33: 5c:59:c4:4b:3b:20:94:d4:38:22:80:d2:7e:d6:63: 43:90:fb:c9:2d:d6:10:bb:11:22:28:62:bf:16:73: 8d:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:DF:1E:7E:6F:2E:9D:D0:38:18:AD:92:61:9B:8A:F5:8F:1D:BD:14 X509v3 Authority Key Identifier: keyid:86:18:B0:54:D2:0D:FD:C9:C5:49:3C:52:C8:62:34:77:49:04:BE:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hhiwVNIN_cnFSTxSyGI0d0kEvnc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/f7f17c-c27d-408f-99c1-c4736ca5c25a/1/hhiwVNIN_cnFSTxSyGI0d0kEvnc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/f7f17c-c27d-408f-99c1-c4736ca5c25a/1/hhiwVNIN_cnFSTxSyGI0d0kEvnc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:06:79:20:7f:6c:71:2f:14:5f:bb:45:b2:ee:ce:38:06:42: e0:c3:1d:3f:5e:18:e5:8d:f7:0c:ed:ad:98:aa:c6:c4:12:b3: fc:c1:21:d6:2e:a4:7b:df:5c:62:0c:70:29:b6:87:77:9f:d8: 53:0d:fc:e9:83:72:04:c3:36:fb:3f:33:29:f1:d8:e3:29:14: ca:73:7b:1a:cd:c7:e1:e9:5a:21:62:26:80:4c:7b:43:82:6a: 16:a9:89:1a:40:7b:43:aa:c4:81:38:50:c8:45:2c:88:0f:52: 8c:eb:5a:3c:ba:ca:82:89:70:07:4e:0f:69:76:68:e5:ea:ae: 74:ae:46:9b:17:23:05:5f:33:f9:91:76:1a:a6:1d:03:d4:5e: 6c:24:67:77:f3:09:50:bb:ad:bf:2a:88:cf:88:3d:a8:1a:f8: c0:f0:7c:e2:d0:c4:dc:f6:9e:05:db:15:61:0b:60:0f:c7:a7: 87:ad:29:01:7f:8b:05:91:17:a9:b9:ea:94:b6:5c:27:23:39: c7:7f:1f:3f:1e:09:21:27:20:4f:7e:3e:8c:16:04:2e:79:0b: 62:00:0e:2c:4c:c4:ed:10:5a:e9:76:1e:cc:4a:78:1c:20:8a: c2:d5:6c:dc:47:02:aa:d6:59:af:6d:c7:4c:ab:ed:4c:8b:26: d0:c6:b4:76 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr2+MooZomRUodvPRjwWv+9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2MThiMDU0ZDIwZGZkYzljNTQ5M2M1MmM4NjIzNDc3NDkw NGJlNzcwHhcNMjUxMjA3MDQwMTMxWhcNMjUxMjA4MDQwMTMxWjAzMTEwLwYDVQQD Eyg5NmRmMWU3ZTZmMmU5ZGQwMzgxOGFkOTI2MTliOGFmNThmMWRiZDE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo3EWa8/KrMlpHFrA1x6u09+3tLSl ObV9HY9FKziss/qJXor/e9qpmB0KNpEhNwPjC4fGXStAeZCVJtXfi+iTrkkKKT1k TWatUzUXcUrJAss7SMu+G4D0qSGm2Y1G9ayNCMjI7FkQmtHl6yN5okdrcyGWwfzF 3UaN0m3ztMnfwmd2FE5WPqjrMd+dm2c9ZwNk6y+Ufh4MAp75WMGboIKvhhcnj9qv DMwQW3eJchv9gJTe9ykI+Fs2WU5DMc8apnDr+ZYv24B8KxYL/cB43hQFDC2UkKiu tn0fSfcTyWHyTjNcWcRLOyCU1DgigNJ+1mNDkPvJLdYQuxEiKGK/FnONSQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJbfHn5vLp3QOBitkmGbivWPHb0UMB8GA1UdIwQY MBaAFIYYsFTSDf3JxUk8UshiNHdJBL53MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGhpd1ZOSU5fY25GU1R4U3lHSTBkMGtFdm5jLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC9mN2YxN2MtYzI3ZC00MDhmLTk5YzEt YzQ3MzZjYTVjMjVhLzEvaGhpd1ZOSU5fY25GU1R4U3lHSTBkMGtFdm5jLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZC9mN2YxN2MtYzI3ZC00MDhmLTk5YzEtYzQ3MzZjYTVjMjVh LzEvaGhpd1ZOSU5fY25GU1R4U3lHSTBkMGtFdm5jLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfQZ5IH9s cS8UX7tFsu7OOAZC4MMdP14Y5Y33DO2tmKrGxBKz/MEh1i6ke99cYgxwKbaHd5/Y Uw386YNyBMM2+z8zKfHY4ykUynN7Gs3H4elaIWImgEx7Q4JqFqmJGkB7Q6rEgThQ yEUsiA9SjOtaPLrKgolwB04PaXZo5equdK5GmxcjBV8z+ZF2GqYdA9RebCRnd/MJ ULutvyqIz4g9qBr4wPB84tDE3PaeBdsVYQtgD8enh60pAX+LBZEXqbnqlLZcJyM5 x38fPx4JIScgT34+jBYELnkLYgAOLEzE7RBa6XYezEp4HCCKwtVs3EcCqtZZr23H TKvtTIsm0Ma0dg== -----END CERTIFICATE-----Generated at Sun Dec 7 07:22:55 2025 by rpki-client