This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.mft File: hn3QWtctwi--owKfzukOb7BjiQQ.mft (raw, json) Hash identifier: 8q4ZbkOHNFX77YitzCS6YQOv7/IEgteyfkQs2RAEQB0= Subject key identifier: 08:C8:9C:7D:F9:37:9F:23:AE:6E:7A:63:EF:07:51:39:9B:85:0E:43 Authority key identifier: 86:7D:D0:5A:D7:2D:C2:2F:BE:A3:02:9F:CE:E9:0E:6F:B0:63:89:04 Certificate issuer: /CN=867dd05ad72dc22fbea3029fcee90e6fb0638904 Certificate serial: 019AF50A1EE97D83BC89B80B8990436788E7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hn3QWtctwi--owKfzukOb7BjiQQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.mft Manifest number: 1762 Signing time: Sat 06 Dec 2025 19:01:12 +0000 Manifest this update: Sat 06 Dec 2025 19:01:12 +0000 Manifest next update: Sun 07 Dec 2025 19:01:12 +0000 Files and hashes: 1: 1hbevT8gwbMVGXnU3oslqDok4xQ.roa (hash: PvOSpkQG3GMAcOSv9DP0juXGFg1PxvMowO3npVuSH5E=) 2: hn3QWtctwi--owKfzukOb7BjiQQ.crl (hash: o6Om131Zrei4gDwJQdngJn/LEHtaoSabBLRA9mkqrDc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.crl rsync://rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.mft rsync://rpki.ripe.net/repository/DEFAULT/hn3QWtctwi--owKfzukOb7BjiQQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:0a:1e:e9:7d:83:bc:89:b8:0b:89:90:43:67:88:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=867dd05ad72dc22fbea3029fcee90e6fb0638904 Validity Not Before: Dec 6 19:01:12 2025 GMT Not After : Dec 7 19:01:12 2025 GMT Subject: CN=08c89c7df9379f23ae6e7a63ef0751399b850e43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:61:e4:84:6c:13:10:88:d2:3a:91:b9:80:2f: 19:39:0e:eb:c8:57:6e:ed:ad:d2:57:54:64:b7:79: 4c:fc:b7:9d:23:44:47:91:3f:04:c8:87:b1:ec:f4: 56:17:cd:d9:9f:50:00:84:b1:bc:c8:c2:db:8e:f6: 0a:27:1e:9b:38:7b:bf:19:83:3d:ff:a9:39:11:2b: 6c:ae:37:51:98:87:80:0d:53:55:a1:b5:5a:9e:54: 9b:06:61:8e:5b:9c:99:6b:55:40:55:c4:04:bf:d2: 7f:c4:d6:5d:3c:60:1d:52:e8:0f:38:49:2f:40:58: 22:23:47:41:90:30:f2:b6:13:e0:94:a0:07:40:08: f3:2c:fe:46:65:bf:5a:46:9d:5b:2f:15:79:af:3a: 3a:f9:6a:0c:c5:57:aa:cb:9a:c6:10:a7:f2:7d:5e: 93:36:93:29:f7:14:81:21:ca:b3:f0:54:f4:96:49: 87:14:07:13:27:b3:42:58:37:78:88:0c:0b:2e:45: 83:91:87:97:93:fb:21:b5:fd:e4:58:58:0e:f2:fb: ae:ed:6b:68:e6:8e:65:10:86:34:76:ee:98:77:34: 1b:16:62:01:2e:ce:a4:ee:26:9d:56:31:e4:d1:f6: c7:99:9a:44:29:fa:49:b7:08:7b:06:5b:f2:cc:e9: 5a:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:C8:9C:7D:F9:37:9F:23:AE:6E:7A:63:EF:07:51:39:9B:85:0E:43 X509v3 Authority Key Identifier: keyid:86:7D:D0:5A:D7:2D:C2:2F:BE:A3:02:9F:CE:E9:0E:6F:B0:63:89:04 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hn3QWtctwi--owKfzukOb7BjiQQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/1e76ee-31bb-4299-814f-239e5abfcc6a/1/hn3QWtctwi--owKfzukOb7BjiQQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:90:01:9e:f7:77:7d:66:3e:39:ee:5a:ed:f7:28:cb:ed:16: 7e:ad:6b:b0:9a:1c:b1:fe:1b:46:6f:78:85:71:cb:45:ed:d1: ff:21:1a:b6:b6:0a:47:81:0b:da:2d:51:16:9c:7a:e2:78:88: d6:c5:76:21:9f:0a:37:f3:ee:b7:47:79:95:b3:7b:88:4b:a6: dd:fe:5a:1b:a9:92:e0:dc:27:e1:d0:07:64:14:0f:58:3f:b3: 8d:06:34:86:1f:a3:66:dd:56:c6:22:7b:5d:0f:6a:ef:20:ac: 65:d2:35:2e:ad:fe:9b:16:29:4b:fb:da:01:56:3b:ca:85:60: a3:e6:0b:37:e2:4a:a1:d6:25:0f:55:68:b6:c5:4d:bd:bc:f8: fe:92:d1:70:a7:fc:11:56:53:50:32:27:c6:1e:5f:7c:c1:60: c9:e7:91:23:10:48:1d:51:b7:92:2f:88:82:ec:df:1b:de:2b: e1:bd:76:1e:c5:4c:ea:65:32:1f:00:6f:81:18:01:a5:3d:a6: 5c:15:a5:da:cc:88:95:39:ee:d6:db:82:24:c1:74:9f:d7:3a: 71:3f:88:5e:a8:f8:46:78:c6:71:9a:45:81:c8:6e:0c:37:2b: 37:ed:70:2f:2b:e1:20:2c:ee:e9:ab:14:23:de:d2:26:56:9d: 60:f7:c5:4c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1Ch7pfYO8ibgLiZBDZ4jnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2N2RkMDVhZDcyZGMyMmZiZWEzMDI5ZmNlZTkwZTZmYjA2 Mzg5MDQwHhcNMjUxMjA2MTkwMTEyWhcNMjUxMjA3MTkwMTEyWjAzMTEwLwYDVQQD EygwOGM4OWM3ZGY5Mzc5ZjIzYWU2ZTdhNjNlZjA3NTEzOTliODUwZTQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvWHkhGwTEIjSOpG5gC8ZOQ7ryFdu 7a3SV1Rkt3lM/LedI0RHkT8EyIex7PRWF83Zn1AAhLG8yMLbjvYKJx6bOHu/GYM9 /6k5EStsrjdRmIeADVNVobVanlSbBmGOW5yZa1VAVcQEv9J/xNZdPGAdUugPOEkv QFgiI0dBkDDythPglKAHQAjzLP5GZb9aRp1bLxV5rzo6+WoMxVeqy5rGEKfyfV6T NpMp9xSBIcqz8FT0lkmHFAcTJ7NCWDd4iAwLLkWDkYeXk/shtf3kWFgO8vuu7Wto 5o5lEIY0du6YdzQbFmIBLs6k7iadVjHk0fbHmZpEKfpJtwh7BlvyzOla8wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAjInH35N58jrm56Y+8HUTmbhQ5DMB8GA1UdIwQY MBaAFIZ90FrXLcIvvqMCn87pDm+wY4kEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaG4zUVd0Y3R3aS0tb3dLZnp1a09iN0JqaVFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi8xZTc2ZWUtMzFiYi00Mjk5LTgxNGYt MjM5ZTVhYmZjYzZhLzEvaG4zUVd0Y3R3aS0tb3dLZnp1a09iN0JqaVFRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNi8xZTc2ZWUtMzFiYi00Mjk5LTgxNGYtMjM5ZTVhYmZjYzZh LzEvaG4zUVd0Y3R3aS0tb3dLZnp1a09iN0JqaVFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQZABnvd3 fWY+Oe5a7fcoy+0Wfq1rsJocsf4bRm94hXHLRe3R/yEatrYKR4EL2i1RFpx64niI 1sV2IZ8KN/Put0d5lbN7iEum3f5aG6mS4Nwn4dAHZBQPWD+zjQY0hh+jZt1WxiJ7 XQ9q7yCsZdI1Lq3+mxYpS/vaAVY7yoVgo+YLN+JKodYlD1VotsVNvbz4/pLRcKf8 EVZTUDInxh5ffMFgyeeRIxBIHVG3ki+IguzfG94r4b12HsVM6mUyHwBvgRgBpT2m XBWl2syIlTnu1tuCJMF0n9c6cT+IXqj4RnjGcZpFgchuDDcrN+1wLyvhICzu6asU I97SJladYPfFTA== -----END CERTIFICATE-----Generated at Sat Dec 6 22:24:34 2025 by rpki-client