This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.mft File: H9CHXNAFHQwJJaygQQNOeECmdws.mft (raw, json) Hash identifier: RgygAoZLKbWfj3PAoxFcf6ClvoEzP0a2Tda9MSmLdP0= Subject key identifier: 9A:7E:4A:64:27:41:19:AD:7F:7C:2E:E0:97:09:D2:38:69:E1:0B:1D Authority key identifier: 1F:D0:87:5C:D0:05:1D:0C:09:25:AC:A0:41:03:4E:78:40:A6:77:0B Certificate issuer: /CN=1fd0875cd0051d0c0925aca041034e7840a6770b Certificate serial: 019AF0F5EBCBD3BEB5E34F422C3C2A6B8B1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H9CHXNAFHQwJJaygQQNOeECmdws.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.mft Manifest number: 072E Signing time: Sat 06 Dec 2025 00:00:39 +0000 Manifest this update: Sat 06 Dec 2025 00:00:39 +0000 Manifest next update: Sun 07 Dec 2025 00:00:39 +0000 Files and hashes: 1: H9CHXNAFHQwJJaygQQNOeECmdws.crl (hash: Bvg7mOrc5SQ5eflnArUfl0Qwphb0+5nFSFE2vjA789s=) 2: NfUK1WerAdsfJiTM68i5Lnvkb2w.roa (hash: ZGezIXFkpMHBb+7ell8DWUCsKtD9DU2fEiI/6174M+w=) 3: x35TZBfjRzydIntP1wj4bzkffVI.roa (hash: m3lAcV9738Nh7P2x7upDgBTiTVZP/HAse993nyHmPOw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.crl rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.mft rsync://rpki.ripe.net/repository/DEFAULT/H9CHXNAFHQwJJaygQQNOeECmdws.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 00:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:f5:eb:cb:d3:be:b5:e3:4f:42:2c:3c:2a:6b:8b:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1fd0875cd0051d0c0925aca041034e7840a6770b Validity Not Before: Dec 6 00:00:39 2025 GMT Not After : Dec 7 00:00:39 2025 GMT Subject: CN=9a7e4a64274119ad7f7c2ee09709d23869e10b1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:13:a0:5c:16:25:22:b9:12:f0:d2:95:42:c9: a8:eb:f4:67:12:bb:26:93:04:06:d8:57:a8:10:57: a6:83:29:d4:94:b2:6b:58:25:d7:03:dc:d8:4a:fd: 73:08:79:2e:e6:18:ea:06:7e:14:9a:6d:f6:dd:ed: 0d:15:7b:ce:d8:b5:19:f6:cc:43:8f:eb:c3:3d:3f: ae:c4:23:95:ee:3a:db:13:5f:db:55:59:95:e2:50: 5e:a6:c2:96:32:9c:ca:3d:45:ac:a8:fb:f2:b9:84: 15:6a:81:36:b1:54:2f:b2:a3:7f:e9:59:e9:a6:ba: b2:09:89:ef:6b:19:ca:f7:9b:f4:7a:2a:44:40:fa: 38:91:ca:51:59:aa:73:fd:06:81:05:41:b7:ea:cc: e0:1d:ff:8d:a3:59:e0:ca:c3:f6:3d:b7:98:af:94: d8:ee:15:ae:80:36:e5:67:f3:aa:1a:e5:3f:9e:48: f7:ab:21:81:8f:a6:1f:04:7b:0f:01:dc:1e:66:f2: 76:5f:eb:f8:ca:35:49:8c:e9:4a:4c:69:15:6f:c0: 77:91:49:c2:ee:a3:ba:b6:83:b6:7d:e9:2f:1b:7b: 3e:c9:80:66:bc:86:ff:67:fc:0a:db:47:8a:1a:7c: d5:bb:40:03:80:f6:ec:51:19:f5:6c:c8:f4:2c:b8: 9e:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:7E:4A:64:27:41:19:AD:7F:7C:2E:E0:97:09:D2:38:69:E1:0B:1D X509v3 Authority Key Identifier: keyid:1F:D0:87:5C:D0:05:1D:0C:09:25:AC:A0:41:03:4E:78:40:A6:77:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H9CHXNAFHQwJJaygQQNOeECmdws.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3e:21:25:2e:b0:76:77:4d:d2:02:4b:1b:7f:d3:e1:2e:70:07: 45:6d:a6:6c:70:ef:d5:36:8d:a8:f5:38:1c:ac:b1:1d:c9:74: 75:94:4e:a5:f9:ff:c1:0c:b4:14:4a:62:75:0a:fb:65:98:f3: 6a:c7:27:42:c3:09:ec:9d:c6:ee:e7:ae:80:42:a8:45:cb:8b: ca:62:27:4c:b0:17:65:1c:5d:60:eb:29:15:36:91:62:41:58: 6f:5e:a2:cb:8d:86:6b:eb:1c:a2:dc:a8:99:84:85:37:22:69: 86:bf:ab:b8:62:53:d3:05:a7:e0:36:aa:b8:9b:ef:00:b3:2a: 36:87:85:b9:3e:61:18:30:39:4e:ac:fd:8a:36:e6:35:8a:f8: e8:37:e0:07:79:e5:27:19:b7:11:a5:d2:31:ec:dc:5a:82:ae: b1:71:05:86:38:83:b7:8e:8f:08:b3:45:2d:50:43:5c:0e:1e: 57:ef:ec:33:20:96:e2:f6:84:14:15:5d:48:60:52:19:c7:48: ba:9f:08:e5:45:30:30:25:14:8b:33:5b:e4:c7:64:8c:6d:1c: cf:c7:05:42:3d:4b:a7:9e:18:8c:cf:48:e8:b3:3d:2f:86:8a: bb:94:c3:0a:39:f1:d8:34:d7:80:4a:21:46:1b:5e:e7:62:c6: ce:24:01:97 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrw9evL0761409CLDwqa4sbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFmZDA4NzVjZDAwNTFkMGMwOTI1YWNhMDQxMDM0ZTc4NDBh Njc3MGIwHhcNMjUxMjA2MDAwMDM5WhcNMjUxMjA3MDAwMDM5WjAzMTEwLwYDVQQD Eyg5YTdlNGE2NDI3NDExOWFkN2Y3YzJlZTA5NzA5ZDIzODY5ZTEwYjFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqBOgXBYlIrkS8NKVQsmo6/RnErsm kwQG2FeoEFemgynUlLJrWCXXA9zYSv1zCHku5hjqBn4Umm323e0NFXvO2LUZ9sxD j+vDPT+uxCOV7jrbE1/bVVmV4lBepsKWMpzKPUWsqPvyuYQVaoE2sVQvsqN/6Vnp prqyCYnvaxnK95v0eipEQPo4kcpRWapz/QaBBUG36szgHf+No1ngysP2PbeYr5TY 7hWugDblZ/OqGuU/nkj3qyGBj6YfBHsPAdweZvJ2X+v4yjVJjOlKTGkVb8B3kUnC 7qO6toO2fekvG3s+yYBmvIb/Z/wK20eKGnzVu0ADgPbsURn1bMj0LLielwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJp+SmQnQRmtf3wu4JcJ0jhp4QsdMB8GA1UdIwQY MBaAFB/Qh1zQBR0MCSWsoEEDTnhApncLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSDlDSFhOQUZIUXdKSmF5Z1FRTk9lRUNtZHdzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC8yMjEwNDgtM2JhZC00NjljLWI5MzMt ZTA4MDJmNDc0NDQ0LzEvSDlDSFhOQUZIUXdKSmF5Z1FRTk9lRUNtZHdzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNC8yMjEwNDgtM2JhZC00NjljLWI5MzMtZTA4MDJmNDc0NDQ0 LzEvSDlDSFhOQUZIUXdKSmF5Z1FRTk9lRUNtZHdzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPiElLrB2 d03SAksbf9PhLnAHRW2mbHDv1TaNqPU4HKyxHcl0dZROpfn/wQy0FEpidQr7ZZjz ascnQsMJ7J3G7ueugEKoRcuLymInTLAXZRxdYOspFTaRYkFYb16iy42Ga+scotyo mYSFNyJphr+ruGJT0wWn4DaquJvvALMqNoeFuT5hGDA5Tqz9ijbmNYr46DfgB3nl Jxm3EaXSMezcWoKusXEFhjiDt46PCLNFLVBDXA4eV+/sMyCW4vaEFBVdSGBSGcdI up8I5UUwMCUUizNb5MdkjG0cz8cFQj1Lp54YjM9I6LM9L4aKu5TDCjnx2DTXgEoh Rhte52LGziQBlw== -----END CERTIFICATE-----Generated at Sat Dec 6 10:26:14 2025 by rpki-client