This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.mft File: HCN7aINpeRKVf40zc3AryQbSZEU.mft (raw, json) Hash identifier: UhPPWu4MEsx1Rl2OHSrcGG59I2phgMuM8Lb/jpzlrp0= Subject key identifier: FE:A6:AD:93:08:AF:23:61:07:B9:63:D7:0E:69:49:38:C3:AA:C8:34 Authority key identifier: 1C:23:7B:68:83:69:79:12:95:7F:8D:33:73:70:2B:C9:06:D2:64:45 Certificate issuer: /CN=1c237b6883697912957f8d3373702bc906d26445 Certificate serial: 019AF19B4F611EF1CC555686601CC6CD1F6E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HCN7aINpeRKVf40zc3AryQbSZEU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.mft Manifest number: 1378 Signing time: Sat 06 Dec 2025 03:01:18 +0000 Manifest this update: Sat 06 Dec 2025 03:01:18 +0000 Manifest next update: Sun 07 Dec 2025 03:01:18 +0000 Files and hashes: 1: HCN7aINpeRKVf40zc3AryQbSZEU.crl (hash: jkLZ2k9qLVsoPw5DHDs9NkAAtJdAOuXa7WUInGui+RQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.crl rsync://rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.mft rsync://rpki.ripe.net/repository/DEFAULT/HCN7aINpeRKVf40zc3AryQbSZEU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 03:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:4f:61:1e:f1:cc:55:56:86:60:1c:c6:cd:1f:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c237b6883697912957f8d3373702bc906d26445 Validity Not Before: Dec 6 03:01:18 2025 GMT Not After : Dec 7 03:01:18 2025 GMT Subject: CN=fea6ad9308af236107b963d70e694938c3aac834 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:eb:b6:48:22:e0:2f:a8:46:88:1e:db:cd:17: 08:d9:7f:f4:21:21:db:e0:27:f3:28:eb:61:d0:be: 07:a8:35:7c:c0:49:08:9a:13:77:9e:8f:4d:d6:0c: f1:98:9c:dd:d3:47:8c:2e:da:9a:9e:24:1c:2c:95: b5:9d:5e:55:89:e9:1a:c9:46:f4:3a:35:9c:c6:14: 06:ae:3c:1b:ca:45:9d:1f:34:1e:e8:23:d9:0a:30: b7:f5:96:f0:7c:e9:da:95:bb:e2:83:87:e1:73:15: 69:6d:33:6a:8c:6b:de:a0:ee:ac:a4:3a:cc:43:df: d0:b1:6e:ae:37:79:bd:9e:29:86:a5:ad:d1:be:8d: 4b:45:3a:2c:b7:1e:4e:47:59:09:a1:99:c7:68:2f: 0f:e3:87:8c:1b:d5:c8:91:07:ec:28:e8:1c:f0:63: 54:85:c5:12:37:0c:93:0e:cb:5f:f8:e9:56:7e:52: 31:b7:a2:32:dd:82:de:4d:ee:7e:26:33:7b:e4:67: 01:ec:d0:08:6d:f5:ae:15:51:36:82:6a:5b:a5:0a: 2d:81:19:8d:4c:1b:c9:b0:2b:3d:48:5b:46:4f:6e: d0:a4:d8:09:d1:4d:9d:67:d9:a1:98:53:3b:7c:d5: e7:15:5b:14:32:cf:a0:af:a7:33:71:bb:c9:0d:88: de:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:A6:AD:93:08:AF:23:61:07:B9:63:D7:0E:69:49:38:C3:AA:C8:34 X509v3 Authority Key Identifier: keyid:1C:23:7B:68:83:69:79:12:95:7F:8D:33:73:70:2B:C9:06:D2:64:45 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HCN7aINpeRKVf40zc3AryQbSZEU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/d7be5e-8546-4aca-8b6e-a33e8eb5a538/1/HCN7aINpeRKVf40zc3AryQbSZEU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0d:94:fe:8d:21:25:c3:ae:a5:29:62:50:f4:f1:ed:90:16:58: 98:d7:81:27:c8:39:b7:9a:43:54:29:3f:e9:1a:2e:0c:e3:26: 8b:ac:cb:a5:a0:0d:a8:08:f3:38:fc:85:9f:15:5f:08:77:1e: 54:a8:c8:5b:64:32:a5:9d:30:7c:aa:c2:10:5c:a8:a2:69:a8: 54:92:bb:81:96:55:21:94:ba:8a:70:5f:8b:b7:2b:b9:e0:77: 95:6d:b9:56:fe:68:21:1a:0f:9c:a1:6d:e0:09:38:38:aa:70: 1a:83:b3:24:56:28:f8:f5:5c:0d:52:3d:5a:5d:4b:9c:35:ca: 26:26:8d:b2:66:2c:55:9e:bd:56:29:30:f4:35:b7:17:a4:68: 8a:34:58:c0:fa:41:55:2b:c6:74:27:2e:49:44:a9:a4:40:f2: 3e:e6:e4:d1:a4:ef:50:2a:47:db:b8:3b:8a:7b:5a:c9:38:b5: fd:31:93:ce:a0:1e:68:d9:2d:1d:14:41:8b:4d:b0:88:a6:d9: bb:dd:28:e2:97:ed:c3:6c:5e:da:d5:64:5e:64:4c:c3:6a:ed: 65:94:98:31:ed:12:48:c6:25:5c:b2:3b:ef:e2:ee:bd:7a:21: bc:b3:7c:c9:ac:57:9a:fe:28:90:71:ef:aa:e8:a6:e9:67:67: 21:ef:fc:ea -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm09hHvHMVVaGYBzGzR9uMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjMjM3YjY4ODM2OTc5MTI5NTdmOGQzMzczNzAyYmM5MDZk MjY0NDUwHhcNMjUxMjA2MDMwMTE4WhcNMjUxMjA3MDMwMTE4WjAzMTEwLwYDVQQD EyhmZWE2YWQ5MzA4YWYyMzYxMDdiOTYzZDcwZTY5NDkzOGMzYWFjODM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxOu2SCLgL6hGiB7bzRcI2X/0ISHb 4CfzKOth0L4HqDV8wEkImhN3no9N1gzxmJzd00eMLtqaniQcLJW1nV5ViekayUb0 OjWcxhQGrjwbykWdHzQe6CPZCjC39ZbwfOnalbvig4fhcxVpbTNqjGveoO6spDrM Q9/QsW6uN3m9nimGpa3Rvo1LRTostx5OR1kJoZnHaC8P44eMG9XIkQfsKOgc8GNU hcUSNwyTDstf+OlWflIxt6Iy3YLeTe5+JjN75GcB7NAIbfWuFVE2gmpbpQotgRmN TBvJsCs9SFtGT27QpNgJ0U2dZ9mhmFM7fNXnFVsUMs+gr6czcbvJDYjeOwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP6mrZMIryNhB7lj1w5pSTjDqsg0MB8GA1UdIwQY MBaAFBwje2iDaXkSlX+NM3NwK8kG0mRFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSENON2FJTnBlUktWZjQwemMzQXJ5UWJTWkVVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi9kN2JlNWUtODU0Ni00YWNhLThiNmUt YTMzZThlYjVhNTM4LzEvSENON2FJTnBlUktWZjQwemMzQXJ5UWJTWkVVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZi9kN2JlNWUtODU0Ni00YWNhLThiNmUtYTMzZThlYjVhNTM4 LzEvSENON2FJTnBlUktWZjQwemMzQXJ5UWJTWkVVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADZT+jSEl w66lKWJQ9PHtkBZYmNeBJ8g5t5pDVCk/6RouDOMmi6zLpaANqAjzOPyFnxVfCHce VKjIW2QypZ0wfKrCEFyoommoVJK7gZZVIZS6inBfi7crueB3lW25Vv5oIRoPnKFt 4Ak4OKpwGoOzJFYo+PVcDVI9Wl1LnDXKJiaNsmYsVZ69Vikw9DW3F6RoijRYwPpB VSvGdCcuSUSppEDyPubk0aTvUCpH27g7intayTi1/TGTzqAeaNktHRRBi02wiKbZ u90o4pftw2xe2tVkXmRMw2rtZZSYMe0SSMYlXLI77+LuvXohvLN8yaxXmv4okHHv quim6WdnIe/86g== -----END CERTIFICATE-----Generated at Sat Dec 6 11:48:50 2025 by rpki-client