This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/421e9e-5243-4d20-b447-95045586802e/1/HDP7O3JSC4FpopKNU4LknWda0GA.mft File: HDP7O3JSC4FpopKNU4LknWda0GA.mft (raw, json) Hash identifier: t3urOclRP8AjTClyWebZl8JB947/SANm6jOjFsY/H2s= Subject key identifier: 65:E1:69:8C:E2:CE:90:54:A5:DE:F4:A1:1F:FF:8C:A9:28:3F:08:47 Authority key identifier: 1C:33:FB:3B:72:52:0B:81:69:A2:92:8D:53:82:E4:9D:67:5A:D0:60 Certificate issuer: /CN=1c33fb3b72520b8169a2928d5382e49d675ad060 Certificate serial: 019AF12CB5D920E0DA90AA9FE009FBAFB1D2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HDP7O3JSC4FpopKNU4LknWda0GA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/421e9e-5243-4d20-b447-95045586802e/1/HDP7O3JSC4FpopKNU4LknWda0GA.mft Manifest number: 150E Signing time: Sat 06 Dec 2025 01:00:30 +0000 Manifest this update: Sat 06 Dec 2025 01:00:30 +0000 Manifest next update: Sun 07 Dec 2025 01:00:30 +0000 Files and hashes: 1: HDP7O3JSC4FpopKNU4LknWda0GA.crl (hash: qD59AiggEnRTY3oVJYarDid2scNmkOuXIu2iiasglKo=) 2: jHj1kA03qC8i8hguuEC8ASnj4XQ.roa (hash: 6J5ezyoc/LI46xWXhW/cUUltYyOZg4CBJG0jaVAl1nQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/421e9e-5243-4d20-b447-95045586802e/1/HDP7O3JSC4FpopKNU4LknWda0GA.crl rsync://rpki.ripe.net/repository/DEFAULT/f9/421e9e-5243-4d20-b447-95045586802e/1/HDP7O3JSC4FpopKNU4LknWda0GA.mft rsync://rpki.ripe.net/repository/DEFAULT/HDP7O3JSC4FpopKNU4LknWda0GA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2c:b5:d9:20:e0:da:90:aa:9f:e0:09:fb:af:b1:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c33fb3b72520b8169a2928d5382e49d675ad060 Validity Not Before: Dec 6 01:00:30 2025 GMT Not After : Dec 7 01:00:30 2025 GMT Subject: CN=65e1698ce2ce9054a5def4a11fff8ca9283f0847 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:03:1d:30:1b:ed:d3:43:0a:70:50:32:ec:51: c4:69:19:39:5b:b5:60:8b:bb:84:96:22:46:aa:33: b3:7c:cc:c7:5f:70:a6:2c:6b:7e:db:a7:8d:0a:fe: 63:74:3f:46:d7:b6:9a:b8:70:6d:97:8c:d1:62:b1: d0:8d:38:d3:50:b8:6f:c0:8d:c6:9f:d2:3a:d1:be: 0a:d6:21:74:6d:48:bf:73:b2:89:80:9c:c7:80:d9: 15:21:24:e8:b6:96:8a:5b:55:95:34:89:9b:86:56: eb:eb:7f:6a:b7:aa:34:f1:a5:5a:eb:86:c1:79:cb: f7:4d:ca:d0:6c:1f:a2:e2:76:4c:70:7f:ea:c8:7a: 1e:6f:e1:32:b1:e5:48:a0:19:9b:a2:31:fe:bf:fd: 9c:06:00:39:6b:b4:36:86:c6:5d:a7:4d:91:f5:2f: 16:9a:ff:0d:04:ff:51:62:da:42:81:27:67:70:7a: 96:3f:e2:1e:8e:a9:f8:3b:e4:8b:d4:6e:18:75:99: 3d:e6:79:f3:1d:63:77:9a:09:52:b0:8e:df:ca:a2: c5:ed:68:33:c1:8b:45:c9:a0:92:6e:14:19:b4:e4: 5a:91:46:12:54:7f:09:c3:6e:1a:20:84:84:a1:b4: 8c:14:57:88:b4:76:f5:e9:4c:65:cd:06:7e:f9:15: 3e:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:E1:69:8C:E2:CE:90:54:A5:DE:F4:A1:1F:FF:8C:A9:28:3F:08:47 X509v3 Authority Key Identifier: keyid:1C:33:FB:3B:72:52:0B:81:69:A2:92:8D:53:82:E4:9D:67:5A:D0:60 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HDP7O3JSC4FpopKNU4LknWda0GA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/421e9e-5243-4d20-b447-95045586802e/1/HDP7O3JSC4FpopKNU4LknWda0GA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/421e9e-5243-4d20-b447-95045586802e/1/HDP7O3JSC4FpopKNU4LknWda0GA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1b:5b:3a:aa:aa:c2:b0:a2:64:50:f2:39:01:11:4d:5c:e8:23: 95:16:46:34:ae:6b:dc:79:ff:76:8a:10:8e:33:c0:e0:9d:de: f2:08:44:a9:4e:8b:f6:d2:3c:8e:15:6b:47:67:62:01:8f:a7: 78:0a:a8:f7:e6:61:6f:37:26:8e:0d:0d:b4:41:a4:de:23:6b: 6c:cb:48:e9:7d:50:60:66:e5:53:1e:da:c0:35:9c:7a:6c:6f: cd:d4:c8:25:d8:03:3a:d5:11:3d:4c:90:6b:1e:24:79:81:ba: 10:ae:84:84:54:66:41:2f:8c:7b:af:b8:3e:31:be:97:45:01: a1:7f:9a:95:68:20:5a:00:21:4b:d7:48:b8:7e:9d:54:60:30: 5b:d0:fd:2d:2f:f6:c3:b2:6f:a8:5e:ca:4a:15:45:ed:21:91: 70:69:9c:4b:3b:01:61:61:f7:a2:ae:36:62:83:0d:97:bf:52: b4:ca:75:c0:ac:c2:55:64:d4:c9:43:1a:b5:91:52:c0:f9:5b: 09:a9:06:e8:57:d3:20:21:05:52:86:f2:34:e9:28:d6:e0:a4: 1f:9e:aa:ef:3f:7b:3e:7d:11:fe:68:18:1f:45:97:a5:98:21: 44:c2:a8:ed:7c:ac:ba:28:c3:1c:8e:86:bd:4e:4b:9f:65:8f: 1c:7f:00:a3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLLXZIODakKqf4An7r7HSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjMzNmYjNiNzI1MjBiODE2OWEyOTI4ZDUzODJlNDlkNjc1 YWQwNjAwHhcNMjUxMjA2MDEwMDMwWhcNMjUxMjA3MDEwMDMwWjAzMTEwLwYDVQQD Eyg2NWUxNjk4Y2UyY2U5MDU0YTVkZWY0YTExZmZmOGNhOTI4M2YwODQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApQMdMBvt00MKcFAy7FHEaRk5W7Vg i7uEliJGqjOzfMzHX3CmLGt+26eNCv5jdD9G17aauHBtl4zRYrHQjTjTULhvwI3G n9I60b4K1iF0bUi/c7KJgJzHgNkVISTotpaKW1WVNImbhlbr639qt6o08aVa64bB ecv3TcrQbB+i4nZMcH/qyHoeb+EyseVIoBmbojH+v/2cBgA5a7Q2hsZdp02R9S8W mv8NBP9RYtpCgSdncHqWP+Iejqn4O+SL1G4YdZk95nnzHWN3mglSsI7fyqLF7Wgz wYtFyaCSbhQZtORakUYSVH8Jw24aIISEobSMFFeItHb16UxlzQZ++RU+xQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGXhaYzizpBUpd70oR//jKkoPwhHMB8GA1UdIwQY MBaAFBwz+ztyUguBaaKSjVOC5J1nWtBgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSERQN08zSlNDNEZwb3BLTlU0TGtuV2RhMEdBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS80MjFlOWUtNTI0My00ZDIwLWI0NDct OTUwNDU1ODY4MDJlLzEvSERQN08zSlNDNEZwb3BLTlU0TGtuV2RhMEdBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOS80MjFlOWUtNTI0My00ZDIwLWI0NDctOTUwNDU1ODY4MDJl LzEvSERQN08zSlNDNEZwb3BLTlU0TGtuV2RhMEdBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAG1s6qqrC sKJkUPI5ARFNXOgjlRZGNK5r3Hn/dooQjjPA4J3e8ghEqU6L9tI8jhVrR2diAY+n eAqo9+Zhbzcmjg0NtEGk3iNrbMtI6X1QYGblUx7awDWcemxvzdTIJdgDOtURPUyQ ax4keYG6EK6EhFRmQS+Me6+4PjG+l0UBoX+alWggWgAhS9dIuH6dVGAwW9D9LS/2 w7JvqF7KShVF7SGRcGmcSzsBYWH3oq42YoMNl79StMp1wKzCVWTUyUMatZFSwPlb CakG6FfTICEFUobyNOko1uCkH56q7z97Pn0R/mgYH0WXpZghRMKo7XysuijDHI6G vU5Ln2WPHH8Aow== -----END CERTIFICATE-----Generated at Sat Dec 6 08:37:18 2025 by rpki-client