This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/687f10-1744-49df-bd7e-4d12fd25d978/1/h16pmc28YATHGlRwyg7HrnOCCPo.mft File: h16pmc28YATHGlRwyg7HrnOCCPo.mft (raw, json) Hash identifier: TZ45L2v81F2y5mm867RYKGa1hkUHpT6Fjjm9sf/xu3o= Subject key identifier: 61:9A:C8:8C:46:C1:9B:93:63:C8:D3:F7:C4:C6:68:BA:F8:2C:18:FF Authority key identifier: 87:5E:A9:99:CD:BC:60:04:C7:1A:54:70:CA:0E:C7:AE:73:82:08:FA Certificate issuer: /CN=875ea999cdbc6004c71a5470ca0ec7ae738208fa Certificate serial: 019AF19BE02337A0EE24A9BC704CDCFB5501 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h16pmc28YATHGlRwyg7HrnOCCPo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/687f10-1744-49df-bd7e-4d12fd25d978/1/h16pmc28YATHGlRwyg7HrnOCCPo.mft Manifest number: 06C2 Signing time: Sat 06 Dec 2025 03:01:55 +0000 Manifest this update: Sat 06 Dec 2025 03:01:55 +0000 Manifest next update: Sun 07 Dec 2025 03:01:55 +0000 Files and hashes: 1: h16pmc28YATHGlRwyg7HrnOCCPo.crl (hash: W3fSe+gA23L2JX8BFiGriYukP+h3+oRKVFhA2QMia/s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/687f10-1744-49df-bd7e-4d12fd25d978/1/h16pmc28YATHGlRwyg7HrnOCCPo.crl rsync://rpki.ripe.net/repository/DEFAULT/ee/687f10-1744-49df-bd7e-4d12fd25d978/1/h16pmc28YATHGlRwyg7HrnOCCPo.mft rsync://rpki.ripe.net/repository/DEFAULT/h16pmc28YATHGlRwyg7HrnOCCPo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 03:01:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:e0:23:37:a0:ee:24:a9:bc:70:4c:dc:fb:55:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=875ea999cdbc6004c71a5470ca0ec7ae738208fa Validity Not Before: Dec 6 03:01:55 2025 GMT Not After : Dec 7 03:01:55 2025 GMT Subject: CN=619ac88c46c19b9363c8d3f7c4c668baf82c18ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:4d:02:c0:72:ad:97:7b:90:e4:d3:7d:a5:8c: 20:fb:11:87:78:4a:fa:db:2d:41:8c:86:1c:d8:3f: 45:b3:3a:4d:75:dd:10:a6:6b:eb:8b:32:9c:63:32: c0:f8:45:20:96:e0:26:14:f2:99:8e:85:0d:c8:b2: 3f:ae:c4:bc:fd:02:ab:3f:57:ab:37:7d:9c:12:6d: 53:e0:15:39:8f:74:db:37:f1:b6:c9:3b:a2:36:2c: 09:c5:d8:bf:3c:01:7f:a5:f4:e5:47:9a:72:25:d8: b5:f5:07:3a:82:ee:20:ff:37:f3:90:11:19:b8:c5: 93:46:2a:57:01:ff:08:b1:05:4e:0a:86:a0:75:da: 6c:70:1d:61:ef:a5:7b:86:40:6b:1f:a1:24:c7:97: 94:39:0f:00:4f:e8:ae:c8:21:93:fc:e2:63:3a:a8: 54:c5:60:85:9e:71:e8:57:af:5e:9d:67:7e:1b:cb: 6f:7f:40:45:ed:4d:0e:ad:23:e4:91:76:86:a8:26: 59:a7:48:9d:46:ef:38:2b:f3:9b:9e:14:33:55:8b: 8c:4d:65:8c:77:48:a0:cc:2c:33:e0:de:9f:57:fb: a9:72:d5:36:be:f1:f6:c1:ca:bd:0c:29:6b:4a:0c: c8:15:ac:0f:34:b4:fc:41:81:26:4e:98:6f:a0:0a: d4:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:9A:C8:8C:46:C1:9B:93:63:C8:D3:F7:C4:C6:68:BA:F8:2C:18:FF X509v3 Authority Key Identifier: keyid:87:5E:A9:99:CD:BC:60:04:C7:1A:54:70:CA:0E:C7:AE:73:82:08:FA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h16pmc28YATHGlRwyg7HrnOCCPo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/687f10-1744-49df-bd7e-4d12fd25d978/1/h16pmc28YATHGlRwyg7HrnOCCPo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/687f10-1744-49df-bd7e-4d12fd25d978/1/h16pmc28YATHGlRwyg7HrnOCCPo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a9:17:38:10:6e:a8:bd:44:8b:e8:8f:d5:ef:2e:c5:0e:13:93: 69:c1:e3:c7:37:a6:91:b6:52:d0:48:f0:87:9a:42:3c:ec:c9: f9:9f:95:03:79:b1:86:6f:d6:9d:ab:98:4a:e0:30:c0:61:94: 52:1c:a6:bc:fe:49:4f:80:ca:83:eb:fd:b7:1a:fe:0e:a2:11: d8:f2:ef:ae:66:b7:c0:8c:e2:4a:95:41:9a:d6:e7:05:f8:2d: c6:27:7b:cb:dc:7e:05:e3:18:80:17:27:89:b1:3d:de:3e:00: a0:02:69:2f:7d:f7:93:c8:4c:27:3f:33:56:6e:1b:cc:be:f5: af:7c:d8:25:30:e8:80:43:53:f5:74:f9:28:21:58:a4:e4:cd: b3:75:9e:cc:54:d7:43:4f:73:88:f4:27:63:5a:89:67:34:2c: cb:74:22:b9:24:03:0e:61:eb:a4:03:5d:75:bd:ad:4b:9f:63: 9b:ed:85:58:e1:49:71:4f:2b:4f:cf:98:9e:86:25:fb:2e:9b: 99:22:88:ab:14:6c:a1:95:dd:43:8f:84:0b:0c:03:33:01:6c: e2:c7:0b:88:4f:51:b4:a0:28:15:3f:93:b5:ec:74:cd:6d:ad: cc:7c:90:0a:40:0f:13:62:c2:31:a2:34:dc:b3:f3:85:5b:31: b6:07:b6:c2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm+AjN6DuJKm8cEzc+1UBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3NWVhOTk5Y2RiYzYwMDRjNzFhNTQ3MGNhMGVjN2FlNzM4 MjA4ZmEwHhcNMjUxMjA2MDMwMTU1WhcNMjUxMjA3MDMwMTU1WjAzMTEwLwYDVQQD Eyg2MTlhYzg4YzQ2YzE5YjkzNjNjOGQzZjdjNGM2NjhiYWY4MmMxOGZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqE0CwHKtl3uQ5NN9pYwg+xGHeEr6 2y1BjIYc2D9FszpNdd0QpmvrizKcYzLA+EUgluAmFPKZjoUNyLI/rsS8/QKrP1er N32cEm1T4BU5j3TbN/G2yTuiNiwJxdi/PAF/pfTlR5pyJdi19Qc6gu4g/zfzkBEZ uMWTRipXAf8IsQVOCoagddpscB1h76V7hkBrH6Ekx5eUOQ8AT+iuyCGT/OJjOqhU xWCFnnHoV69enWd+G8tvf0BF7U0OrSPkkXaGqCZZp0idRu84K/ObnhQzVYuMTWWM d0igzCwz4N6fV/upctU2vvH2wcq9DClrSgzIFawPNLT8QYEmTphvoArUJQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGGayIxGwZuTY8jT98TGaLr4LBj/MB8GA1UdIwQY MBaAFIdeqZnNvGAExxpUcMoOx65zggj6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaDE2cG1jMjhZQVRIR2xSd3lnN0hybk9DQ1BvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZS82ODdmMTAtMTc0NC00OWRmLWJkN2Ut NGQxMmZkMjVkOTc4LzEvaDE2cG1jMjhZQVRIR2xSd3lnN0hybk9DQ1BvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZS82ODdmMTAtMTc0NC00OWRmLWJkN2UtNGQxMmZkMjVkOTc4 LzEvaDE2cG1jMjhZQVRIR2xSd3lnN0hybk9DQ1BvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqRc4EG6o vUSL6I/V7y7FDhOTacHjxzemkbZS0Ejwh5pCPOzJ+Z+VA3mxhm/WnauYSuAwwGGU UhymvP5JT4DKg+v9txr+DqIR2PLvrma3wIziSpVBmtbnBfgtxid7y9x+BeMYgBcn ibE93j4AoAJpL333k8hMJz8zVm4bzL71r3zYJTDogENT9XT5KCFYpOTNs3WezFTX Q09ziPQnY1qJZzQsy3QiuSQDDmHrpANddb2tS59jm+2FWOFJcU8rT8+YnoYl+y6b mSKIqxRsoZXdQ4+ECwwDMwFs4scLiE9RtKAoFT+Ttex0zW2tzHyQCkAPE2LCMaI0 3LPzhVsxtge2wg== -----END CERTIFICATE-----Generated at Sat Dec 6 13:54:20 2025 by rpki-client