This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.mft File: HLRkugOLwLu-5ADz6QjfUUgsUbs.mft (raw, json) Hash identifier: y/athLlcJtRVXRnK0idD1/SMMZiiTy3C5Uj6js1mXlY= Subject key identifier: D5:6D:A6:F2:6A:55:FB:0E:88:65:E0:F8:67:FE:43:9D:7D:F7:F0:C7 Authority key identifier: 1C:B4:64:BA:03:8B:C0:BB:BE:E4:00:F3:E9:08:DF:51:48:2C:51:BB Certificate issuer: /CN=1cb464ba038bc0bbbee400f3e908df51482c51bb Certificate serial: 019AF50BDAD3196C0CEC4AFF6E8FEE71D4C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HLRkugOLwLu-5ADz6QjfUUgsUbs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.mft Manifest number: 1653 Signing time: Sat 06 Dec 2025 19:03:05 +0000 Manifest this update: Sat 06 Dec 2025 19:03:05 +0000 Manifest next update: Sun 07 Dec 2025 19:03:05 +0000 Files and hashes: 1: HLRkugOLwLu-5ADz6QjfUUgsUbs.crl (hash: LmEk8z1j9SF+pLxb1QdWqJGOYYsr6i7Zyoe1HoTF4/A=) 2: W-OtDTrcD4enIHqlL53Q8gJVqVg.roa (hash: MIoWyZfzBnM9tbFHcQ1uCgLljDFhySK8a9b/Bqx5jVg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.crl rsync://rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.mft rsync://rpki.ripe.net/repository/DEFAULT/HLRkugOLwLu-5ADz6QjfUUgsUbs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 19:03:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:0b:da:d3:19:6c:0c:ec:4a:ff:6e:8f:ee:71:d4:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1cb464ba038bc0bbbee400f3e908df51482c51bb Validity Not Before: Dec 6 19:03:05 2025 GMT Not After : Dec 7 19:03:05 2025 GMT Subject: CN=d56da6f26a55fb0e8865e0f867fe439d7df7f0c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:f3:1a:fe:22:42:44:e5:01:a8:a5:d9:da:9f: 9a:f5:43:14:21:21:c2:82:43:ea:1e:73:e5:50:16: e1:b0:ca:4d:f5:e0:96:a4:62:84:d9:9d:be:5c:82: e1:60:37:93:a7:0c:50:3c:db:ba:f2:c4:3c:c1:eb: 5b:63:3e:55:f2:79:75:98:8b:66:cd:94:33:b8:0c: f9:55:31:63:c7:c7:62:e1:29:99:4e:6c:f0:b9:f7: bf:89:1b:37:ab:96:6c:82:96:3d:a7:ff:c1:34:28: 46:a9:7d:49:1c:47:6d:06:90:dc:a4:4b:a5:81:52: 8c:2c:bf:58:c9:79:ea:a8:40:18:d3:c4:9f:26:7f: 17:b1:67:b9:64:9d:db:36:b6:e6:4f:cd:83:ee:d9: c0:9f:71:1f:01:88:f7:79:09:4e:cf:2d:48:a8:da: 3a:c1:9a:97:0d:16:d7:49:3e:d4:8e:13:a3:10:75: c8:21:1d:09:ca:8e:f0:99:d1:68:c8:ae:55:f7:7a: 6a:24:7e:01:dc:81:55:97:51:de:1d:96:02:44:66: 86:37:44:38:32:6a:97:56:c9:b0:b9:8b:d1:b5:37: 46:d4:0a:43:9b:6f:14:9a:1e:18:f8:db:ca:cd:9f: 58:6a:bd:27:5f:f0:a8:61:ff:5a:a8:da:ec:62:60: e3:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:6D:A6:F2:6A:55:FB:0E:88:65:E0:F8:67:FE:43:9D:7D:F7:F0:C7 X509v3 Authority Key Identifier: keyid:1C:B4:64:BA:03:8B:C0:BB:BE:E4:00:F3:E9:08:DF:51:48:2C:51:BB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HLRkugOLwLu-5ADz6QjfUUgsUbs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:b6:50:4c:ef:8c:3e:1c:d6:a0:0d:59:ce:d2:67:96:2d:68: cf:03:68:be:a5:d1:38:6f:cc:87:d3:15:79:3e:a6:b8:cd:f0: c3:a3:b6:d7:17:4d:d6:67:f4:97:9a:cc:ef:c4:f0:86:1c:6d: 33:0b:84:f4:f1:fc:53:02:d3:c8:db:50:04:ba:52:5b:d3:ed: 69:39:aa:d1:1d:de:7e:76:95:49:bb:00:56:84:a0:8f:68:03: 33:69:ee:66:42:7d:5c:78:f9:06:64:59:fb:d5:50:d7:d4:7a: 65:61:f2:af:ff:f6:27:c9:a6:7f:a4:5d:29:91:3c:9a:d2:59: e6:64:b6:c4:66:e2:f4:c4:1f:99:d0:ab:87:0f:cd:e7:98:8b: d2:00:ac:28:ab:f3:ff:07:08:0d:de:5d:22:12:63:b7:66:d2: d5:17:52:de:12:cd:45:b4:72:6b:f4:89:af:6f:c7:10:fe:3a: da:a0:ca:02:2d:66:89:f1:ac:29:de:55:9e:41:79:e0:89:b1: 01:f7:fb:f7:00:78:9b:1d:35:c0:bf:c1:18:bd:87:47:3e:78: 43:38:bf:fa:6d:c0:43:08:eb:63:4d:16:17:29:2a:36:bb:47: f8:df:a3:ee:97:fb:54:3d:ce:51:db:bc:35:ea:cb:6e:e1:9b: 38:fa:9e:4b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1C9rTGWwM7Er/bo/ucdTAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjYjQ2NGJhMDM4YmMwYmJiZWU0MDBmM2U5MDhkZjUxNDgy YzUxYmIwHhcNMjUxMjA2MTkwMzA1WhcNMjUxMjA3MTkwMzA1WjAzMTEwLwYDVQQD EyhkNTZkYTZmMjZhNTVmYjBlODg2NWUwZjg2N2ZlNDM5ZDdkZjdmMGM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoPMa/iJCROUBqKXZ2p+a9UMUISHC gkPqHnPlUBbhsMpN9eCWpGKE2Z2+XILhYDeTpwxQPNu68sQ8wetbYz5V8nl1mItm zZQzuAz5VTFjx8di4SmZTmzwufe/iRs3q5ZsgpY9p//BNChGqX1JHEdtBpDcpEul gVKMLL9YyXnqqEAY08SfJn8XsWe5ZJ3bNrbmT82D7tnAn3EfAYj3eQlOzy1IqNo6 wZqXDRbXST7UjhOjEHXIIR0Jyo7wmdFoyK5V93pqJH4B3IFVl1HeHZYCRGaGN0Q4 MmqXVsmwuYvRtTdG1ApDm28Umh4Y+NvKzZ9Yar0nX/CoYf9aqNrsYmDjaQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNVtpvJqVfsOiGXg+Gf+Q5199/DHMB8GA1UdIwQY MBaAFBy0ZLoDi8C7vuQA8+kI31FILFG7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSExSa3VnT0x3THUtNUFEejZRamZVVWdzVWJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS8wODcyOWYtNzlhNi00OGQwLWIyZTEt YmIyNjE0M2M1ZWRjLzEvSExSa3VnT0x3THUtNUFEejZRamZVVWdzVWJzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYS8wODcyOWYtNzlhNi00OGQwLWIyZTEtYmIyNjE0M2M1ZWRj LzEvSExSa3VnT0x3THUtNUFEejZRamZVVWdzVWJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV7ZQTO+M PhzWoA1ZztJnli1ozwNovqXROG/Mh9MVeT6muM3ww6O21xdN1mf0l5rM78Twhhxt MwuE9PH8UwLTyNtQBLpSW9PtaTmq0R3efnaVSbsAVoSgj2gDM2nuZkJ9XHj5BmRZ +9VQ19R6ZWHyr//2J8mmf6RdKZE8mtJZ5mS2xGbi9MQfmdCrhw/N55iL0gCsKKvz /wcIDd5dIhJjt2bS1RdS3hLNRbRya/SJr2/HEP462qDKAi1mifGsKd5VnkF54Imx Aff79wB4mx01wL/BGL2HRz54Qzi/+m3AQwjrY00WFykqNrtH+N+j7pf7VD3OUdu8 NerLbuGbOPqeSw== -----END CERTIFICATE-----Generated at Sun Dec 7 01:52:51 2025 by rpki-client