This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/6a5d42-717b-4fbb-a4d0-add2ba82c276/1/HYFeKwc-sEV2vLJN3k341Ot8nwg.mft File: HYFeKwc-sEV2vLJN3k341Ot8nwg.mft (raw, json) Hash identifier: CPtsJpSMLW4Sb0wRQmt+QPhMgPRiVqiC53MxuzMtOG4= Subject key identifier: F4:21:E1:68:81:8F:9E:67:98:82:A1:C2:04:A8:60:7C:9E:A7:AF:18 Authority key identifier: 1D:81:5E:2B:07:3E:B0:45:76:BC:B2:4D:DE:4D:F8:D4:EB:7C:9F:08 Certificate issuer: /CN=1d815e2b073eb04576bcb24dde4df8d4eb7c9f08 Certificate serial: 019AF19B2D391F15F4B268D18ABD76113C68 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HYFeKwc-sEV2vLJN3k341Ot8nwg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/6a5d42-717b-4fbb-a4d0-add2ba82c276/1/HYFeKwc-sEV2vLJN3k341Ot8nwg.mft Manifest number: 0C48 Signing time: Sat 06 Dec 2025 03:01:09 +0000 Manifest this update: Sat 06 Dec 2025 03:01:09 +0000 Manifest next update: Sun 07 Dec 2025 03:01:09 +0000 Files and hashes: 1: HYFeKwc-sEV2vLJN3k341Ot8nwg.crl (hash: QEyzVsDZC4Wlq0GytBL+2G294i53zjs/kXzxkdTQToU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/6a5d42-717b-4fbb-a4d0-add2ba82c276/1/HYFeKwc-sEV2vLJN3k341Ot8nwg.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/6a5d42-717b-4fbb-a4d0-add2ba82c276/1/HYFeKwc-sEV2vLJN3k341Ot8nwg.mft rsync://rpki.ripe.net/repository/DEFAULT/HYFeKwc-sEV2vLJN3k341Ot8nwg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 03:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:2d:39:1f:15:f4:b2:68:d1:8a:bd:76:11:3c:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1d815e2b073eb04576bcb24dde4df8d4eb7c9f08 Validity Not Before: Dec 6 03:01:09 2025 GMT Not After : Dec 7 03:01:09 2025 GMT Subject: CN=f421e168818f9e679882a1c204a8607c9ea7af18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:3c:d9:a5:8f:39:28:bc:1f:e1:b2:56:95:67: ec:1d:aa:ea:0e:05:8b:a5:2b:7a:03:7a:4e:b8:a5: d1:82:01:b9:95:70:81:88:e7:b9:d4:41:40:96:c2: 6c:65:e2:5d:b1:f8:e8:b2:04:35:0d:a1:74:c1:05: 69:a7:a9:d6:1b:49:f0:3f:80:2d:10:8c:7b:85:4a: 92:19:ee:f1:ef:9e:81:44:8e:5a:e6:d1:53:00:1d: 9a:40:0e:09:8b:03:be:40:20:93:d5:1e:e0:99:1d: 85:a4:1d:94:e3:f8:3c:be:14:b5:fc:94:93:c3:1b: 7b:8c:f0:c4:34:47:3b:a1:d5:69:57:b0:81:97:9a: 64:ba:44:d9:f0:36:0a:18:2a:2e:ce:d7:c7:bd:30: c2:60:bd:46:e0:a7:00:2a:ae:e3:d4:b6:ff:4e:af: fc:91:a8:b9:f7:23:04:eb:c5:7e:be:5c:11:e8:ca: 75:0c:24:76:04:c6:b2:0a:20:73:98:ff:0e:d7:3a: 88:c4:04:00:c6:84:83:aa:ec:e6:7a:c5:91:a1:7e: 91:d6:cd:8e:8e:58:33:1a:98:6e:73:9b:4b:7d:b8: b2:36:46:d4:a6:7b:b8:04:0b:71:b0:48:4a:6f:ba: 5e:bb:6b:31:29:fe:24:60:6b:75:09:b1:6f:7b:f8: 22:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:21:E1:68:81:8F:9E:67:98:82:A1:C2:04:A8:60:7C:9E:A7:AF:18 X509v3 Authority Key Identifier: keyid:1D:81:5E:2B:07:3E:B0:45:76:BC:B2:4D:DE:4D:F8:D4:EB:7C:9F:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HYFeKwc-sEV2vLJN3k341Ot8nwg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6a5d42-717b-4fbb-a4d0-add2ba82c276/1/HYFeKwc-sEV2vLJN3k341Ot8nwg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6a5d42-717b-4fbb-a4d0-add2ba82c276/1/HYFeKwc-sEV2vLJN3k341Ot8nwg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7a:4d:26:e7:a1:5b:94:7c:04:9c:db:f6:4f:aa:0f:71:da:b9: 83:7f:8d:12:4f:c1:c9:1d:17:62:25:7c:a3:67:5d:0e:c8:5a: dd:40:b3:5f:b7:ea:c4:48:36:62:3b:e5:f2:7a:cd:9b:b7:16: 3f:96:3e:f1:a1:92:65:89:44:83:ec:c5:03:68:bd:6c:87:1f: bb:ca:d8:7d:76:86:af:e6:ba:4a:57:83:b9:87:7b:23:78:94: 60:67:23:60:2d:8e:fc:b8:cf:49:7a:89:e0:9e:c9:a2:46:71: c7:af:51:d5:b6:6d:3f:fc:68:1b:52:1c:66:2d:f0:ac:35:b6: 2a:e3:27:af:04:d6:8c:43:04:e1:8c:39:b9:be:17:68:c3:22: 09:9c:e3:61:4c:8a:2e:7e:e2:02:14:5b:06:d0:85:65:15:08: 08:6b:f5:a2:d4:5a:3b:97:61:c7:3e:de:36:3c:64:f7:be:10: 92:db:a7:ec:59:c1:da:ec:76:9d:42:c6:4f:a3:51:ca:26:77: f3:86:e7:27:06:11:9d:23:78:e0:fb:0e:ab:1d:33:43:54:b7: d4:a9:25:af:a4:cf:d3:8f:5c:75:33:87:cc:8f:72:2c:03:8b: bd:e0:f8:11:c6:61:25:0b:aa:db:46:7d:19:c4:a9:60:21:02: 74:ae:69:bb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmy05HxX0smjRir12ETxoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkODE1ZTJiMDczZWIwNDU3NmJjYjI0ZGRlNGRmOGQ0ZWI3 YzlmMDgwHhcNMjUxMjA2MDMwMTA5WhcNMjUxMjA3MDMwMTA5WjAzMTEwLwYDVQQD EyhmNDIxZTE2ODgxOGY5ZTY3OTg4MmExYzIwNGE4NjA3YzllYTdhZjE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtDzZpY85KLwf4bJWlWfsHarqDgWL pSt6A3pOuKXRggG5lXCBiOe51EFAlsJsZeJdsfjosgQ1DaF0wQVpp6nWG0nwP4At EIx7hUqSGe7x756BRI5a5tFTAB2aQA4JiwO+QCCT1R7gmR2FpB2U4/g8vhS1/JST wxt7jPDENEc7odVpV7CBl5pkukTZ8DYKGCouztfHvTDCYL1G4KcAKq7j1Lb/Tq/8 kai59yME68V+vlwR6Mp1DCR2BMayCiBzmP8O1zqIxAQAxoSDquzmesWRoX6R1s2O jlgzGphuc5tLfbiyNkbUpnu4BAtxsEhKb7peu2sxKf4kYGt1CbFve/gi3QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPQh4WiBj55nmIKhwgSoYHyep68YMB8GA1UdIwQY MBaAFB2BXisHPrBFdryyTd5N+NTrfJ8IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSFlGZUt3Yy1zRVYydkxKTjNrMzQxT3Q4bndnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy82YTVkNDItNzE3Yi00ZmJiLWE0ZDAt YWRkMmJhODJjMjc2LzEvSFlGZUt3Yy1zRVYydkxKTjNrMzQxT3Q4bndnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy82YTVkNDItNzE3Yi00ZmJiLWE0ZDAtYWRkMmJhODJjMjc2 LzEvSFlGZUt3Yy1zRVYydkxKTjNrMzQxT3Q4bndnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAek0m56Fb lHwEnNv2T6oPcdq5g3+NEk/ByR0XYiV8o2ddDsha3UCzX7fqxEg2Yjvl8nrNm7cW P5Y+8aGSZYlEg+zFA2i9bIcfu8rYfXaGr+a6SleDuYd7I3iUYGcjYC2O/LjPSXqJ 4J7JokZxx69R1bZtP/xoG1IcZi3wrDW2KuMnrwTWjEME4Yw5ub4XaMMiCZzjYUyK Ln7iAhRbBtCFZRUICGv1otRaO5dhxz7eNjxk974Qktun7FnB2ux2nULGT6NRyiZ3 84bnJwYRnSN44PsOqx0zQ1S31Kklr6TP049cdTOHzI9yLAOLveD4EcZhJQuq20Z9 GcSpYCECdK5puw== -----END CERTIFICATE-----Generated at Sat Dec 6 12:04:48 2025 by rpki-client