This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/4e6a3b-ff31-47c9-97b1-beaa73710a65/1/an0UIH91yLFYDbJ_defD_bH_hgw.mft File: an0UIH91yLFYDbJ_defD_bH_hgw.mft (raw, json) Hash identifier: y6ZWNDpj0YQoPhrfRJs9Geep56B9lxuJJ/+W6iIiO8s= Subject key identifier: 83:39:74:A9:E3:63:37:EC:48:35:91:7A:F8:A7:F2:E6:9C:B9:53:2B Authority key identifier: 6A:7D:14:20:7F:75:C8:B1:58:0D:B2:7F:75:E7:C3:FD:B1:FF:86:0C Certificate issuer: /CN=6a7d14207f75c8b1580db27f75e7c3fdb1ff860c Certificate serial: 019AF1D1C5D02709BB0093791AD49EB80334 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/an0UIH91yLFYDbJ_defD_bH_hgw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/4e6a3b-ff31-47c9-97b1-beaa73710a65/1/an0UIH91yLFYDbJ_defD_bH_hgw.mft Manifest number: 09F0 Signing time: Sat 06 Dec 2025 04:00:47 +0000 Manifest this update: Sat 06 Dec 2025 04:00:47 +0000 Manifest next update: Sun 07 Dec 2025 04:00:47 +0000 Files and hashes: 1: an0UIH91yLFYDbJ_defD_bH_hgw.crl (hash: ZDsXe6ELgexWXyETneLhtqBWQFFbt3XB21eJgPH7jSU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/4e6a3b-ff31-47c9-97b1-beaa73710a65/1/an0UIH91yLFYDbJ_defD_bH_hgw.crl rsync://rpki.ripe.net/repository/DEFAULT/d4/4e6a3b-ff31-47c9-97b1-beaa73710a65/1/an0UIH91yLFYDbJ_defD_bH_hgw.mft rsync://rpki.ripe.net/repository/DEFAULT/an0UIH91yLFYDbJ_defD_bH_hgw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 04:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d1:c5:d0:27:09:bb:00:93:79:1a:d4:9e:b8:03:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6a7d14207f75c8b1580db27f75e7c3fdb1ff860c Validity Not Before: Dec 6 04:00:47 2025 GMT Not After : Dec 7 04:00:47 2025 GMT Subject: CN=833974a9e36337ec4835917af8a7f2e69cb9532b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:04:84:87:5d:3e:da:42:23:da:ce:76:94:04: da:00:e0:c8:11:9f:b2:7d:0b:a9:84:00:c7:93:e3: 7e:f4:76:34:ab:a5:98:6b:77:24:1a:59:a1:ee:b6: e8:19:f1:96:96:9e:4a:26:27:51:c2:30:90:71:11: be:67:87:20:38:1d:f9:db:0c:ee:06:8e:11:fc:d5: 9d:49:72:9a:44:2a:c7:25:32:f6:ab:16:07:dc:47: 77:9d:74:c9:66:84:02:55:24:b1:b4:7c:af:81:5d: c5:3c:89:06:05:fa:37:f8:67:82:de:2d:b9:ae:d3: a6:07:a7:3d:e0:19:fb:24:e9:01:9b:cf:8c:8f:97: 4a:ff:82:7a:78:d5:2f:77:e9:de:10:ef:ab:e3:45: 72:2c:22:1f:95:cc:d0:ed:21:ef:0b:f7:61:8c:09: 3b:89:f8:a1:fa:d7:32:05:13:78:8a:db:2f:9f:2d: 9b:44:97:6b:b1:66:3f:74:be:66:4e:4c:9b:7d:af: 8e:b7:16:57:da:74:34:eb:0e:d1:47:da:d2:55:6b: 22:1f:c9:e7:3d:6b:00:07:ad:c3:60:f7:a9:b0:ff: a2:4d:a1:64:d9:3c:84:85:1e:d5:7f:d6:3a:a4:6b: c7:6c:6b:bc:03:89:24:f0:f0:d6:6c:19:f9:b1:2d: 3a:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:39:74:A9:E3:63:37:EC:48:35:91:7A:F8:A7:F2:E6:9C:B9:53:2B X509v3 Authority Key Identifier: keyid:6A:7D:14:20:7F:75:C8:B1:58:0D:B2:7F:75:E7:C3:FD:B1:FF:86:0C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/an0UIH91yLFYDbJ_defD_bH_hgw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/4e6a3b-ff31-47c9-97b1-beaa73710a65/1/an0UIH91yLFYDbJ_defD_bH_hgw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/4e6a3b-ff31-47c9-97b1-beaa73710a65/1/an0UIH91yLFYDbJ_defD_bH_hgw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 79:a2:a3:6a:6a:42:3c:e3:c1:f6:df:f8:c9:64:6e:a6:30:64: 9d:24:71:db:df:e4:cb:af:13:54:5f:95:0a:87:31:58:fb:c9: 10:fa:3f:10:8c:e6:d9:11:52:2f:31:b4:e8:3e:da:0d:54:d8: 4c:5a:5d:3f:a4:b9:7a:76:b9:71:1f:cf:1d:96:d0:3b:e6:20: 3e:fa:92:fc:43:00:2c:bd:e1:a9:8c:d0:ac:d5:24:f2:6d:ec: 7f:f8:55:bf:76:b4:21:c7:86:aa:fc:4c:3e:57:25:d2:47:0c: 98:ad:74:e4:34:2d:c7:61:37:8f:b9:0b:ae:d6:fd:c4:4c:c7: c9:0c:89:12:2c:7c:5d:f8:7e:58:3f:bf:e3:7f:29:f6:a1:c4: 01:a8:c5:be:4e:69:c8:0e:a5:60:8a:95:c9:40:45:86:2b:1a: 11:3e:42:5e:f8:eb:ff:b5:8e:51:4b:51:19:d0:ca:35:f1:ee: 7e:5c:fb:d5:e8:cf:de:89:92:22:f8:66:ae:bf:22:9a:d8:de: cb:37:b2:37:03:24:e0:6a:59:30:bc:a8:88:60:78:aa:ef:dd: 85:22:91:ef:fc:58:c4:35:b1:7e:f9:5f:ac:8e:5d:2d:43:c7: 04:34:17:97:62:34:0b:36:c5:00:c0:fd:1e:bc:03:94:08:09: a7:c3:57:70 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0cXQJwm7AJN5GtSeuAM0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZhN2QxNDIwN2Y3NWM4YjE1ODBkYjI3Zjc1ZTdjM2ZkYjFm Zjg2MGMwHhcNMjUxMjA2MDQwMDQ3WhcNMjUxMjA3MDQwMDQ3WjAzMTEwLwYDVQQD Eyg4MzM5NzRhOWUzNjMzN2VjNDgzNTkxN2FmOGE3ZjJlNjljYjk1MzJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5gSEh10+2kIj2s52lATaAODIEZ+y fQuphADHk+N+9HY0q6WYa3ckGlmh7rboGfGWlp5KJidRwjCQcRG+Z4cgOB352wzu Bo4R/NWdSXKaRCrHJTL2qxYH3Ed3nXTJZoQCVSSxtHyvgV3FPIkGBfo3+GeC3i25 rtOmB6c94Bn7JOkBm8+Mj5dK/4J6eNUvd+neEO+r40VyLCIflczQ7SHvC/dhjAk7 ifih+tcyBRN4itsvny2bRJdrsWY/dL5mTkybfa+OtxZX2nQ06w7RR9rSVWsiH8nn PWsAB63DYPepsP+iTaFk2TyEhR7Vf9Y6pGvHbGu8A4kk8PDWbBn5sS062wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIM5dKnjYzfsSDWRevin8uacuVMrMB8GA1UdIwQY MBaAFGp9FCB/dcixWA2yf3Xnw/2x/4YMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYW4wVUlIOTF5TEZZRGJKX2RlZkRfYkhfaGd3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC80ZTZhM2ItZmYzMS00N2M5LTk3YjEt YmVhYTczNzEwYTY1LzEvYW4wVUlIOTF5TEZZRGJKX2RlZkRfYkhfaGd3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNC80ZTZhM2ItZmYzMS00N2M5LTk3YjEtYmVhYTczNzEwYTY1 LzEvYW4wVUlIOTF5TEZZRGJKX2RlZkRfYkhfaGd3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeaKjampC POPB9t/4yWRupjBknSRx29/ky68TVF+VCocxWPvJEPo/EIzm2RFSLzG06D7aDVTY TFpdP6S5ena5cR/PHZbQO+YgPvqS/EMALL3hqYzQrNUk8m3sf/hVv3a0IceGqvxM Plcl0kcMmK105DQtx2E3j7kLrtb9xEzHyQyJEix8Xfh+WD+/438p9qHEAajFvk5p yA6lYIqVyUBFhisaET5CXvjr/7WOUUtRGdDKNfHuflz71ejP3omSIvhmrr8imtje yzeyNwMk4GpZMLyoiGB4qu/dhSKR7/xYxDWxfvlfrI5dLUPHBDQXl2I0CzbFAMD9 HrwDlAgJp8NXcA== -----END CERTIFICATE-----Generated at Sat Dec 6 11:00:52 2025 by rpki-client