This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.mft File: HlqvPQaD3IoNWMZDgm4WbTwozKk.mft (raw, json) Hash identifier: U3zaLiDyD4Eik4l71sKDpxlenuwDWajp7H69f/iwVcE= Subject key identifier: E6:9A:D6:88:0B:46:59:C1:73:8B:FC:03:92:7A:D7:1D:15:6E:77:2B Authority key identifier: 1E:5A:AF:3D:06:83:DC:8A:0D:58:C6:43:82:6E:16:6D:3C:28:CC:A9 Certificate issuer: /CN=1e5aaf3d0683dc8a0d58c643826e166d3c28cca9 Certificate serial: 019B296513099C09CFBDD1A783ECAE073777 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlqvPQaD3IoNWMZDgm4WbTwozKk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.mft Manifest number: 1788 Signing time: Tue 16 Dec 2025 23:00:48 +0000 Manifest this update: Tue 16 Dec 2025 23:00:48 +0000 Manifest next update: Wed 17 Dec 2025 23:00:48 +0000 Files and hashes: 1: HlqvPQaD3IoNWMZDgm4WbTwozKk.crl (hash: anIENGmfjU6CyXcqXaJy4R7VwB1LcUEEve9lbnA/FRg=) 2: RKyzB9bUwZYi5TsxSj7CGxt394k.roa (hash: Hh9WM4Bb/ik/WwsavUvg8LAp8Fn8QkXbUV4e4PeWt3s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.crl rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.mft rsync://rpki.ripe.net/repository/DEFAULT/HlqvPQaD3IoNWMZDgm4WbTwozKk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 19:20:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:29:65:13:09:9c:09:cf:bd:d1:a7:83:ec:ae:07:37:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1e5aaf3d0683dc8a0d58c643826e166d3c28cca9 Validity Not Before: Dec 16 23:00:48 2025 GMT Not After : Dec 17 23:00:48 2025 GMT Subject: CN=e69ad6880b4659c1738bfc03927ad71d156e772b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:33:e3:09:41:fc:8e:d5:42:0a:52:9a:88:73: e0:1b:d7:29:38:5b:17:41:11:13:d2:cb:24:8f:94: 7e:94:d0:cd:29:04:9f:36:1a:a6:c3:9b:0e:21:b8: c4:ba:d8:e0:75:2d:5c:89:09:56:63:3a:dd:21:77: 5e:d3:78:e2:08:93:77:e2:d9:67:e2:75:5b:4d:12: 63:8e:61:16:01:32:6b:09:99:77:8b:9d:2f:6f:16: e9:5a:51:f9:ed:b0:62:65:a1:c3:57:72:fe:5b:22: 9f:24:c3:a0:1d:f2:ef:62:d7:ae:63:91:6d:78:79: 55:28:b2:d6:4a:93:01:80:43:84:de:ec:f3:6f:fb: c2:11:7c:43:6f:4a:99:a5:6e:28:ca:75:8c:22:96: 41:e7:66:e4:44:ae:f2:d5:6b:3b:e0:7f:87:01:ce: f2:61:a8:ba:b5:da:94:d2:22:e4:19:a8:44:9a:f5: 68:72:4c:12:85:80:17:58:b8:04:6f:9f:38:f4:4f: d8:b2:be:f8:73:9d:67:cf:14:61:38:30:0f:0d:fd: 01:6f:75:8d:32:ba:29:5b:66:6c:ae:82:1a:90:e1: f3:d5:83:d1:5a:83:f1:29:2a:d8:90:81:fd:af:a9: a5:44:3f:e7:2c:1a:0c:e9:53:96:01:e1:4a:d2:e4: ed:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:9A:D6:88:0B:46:59:C1:73:8B:FC:03:92:7A:D7:1D:15:6E:77:2B X509v3 Authority Key Identifier: keyid:1E:5A:AF:3D:06:83:DC:8A:0D:58:C6:43:82:6E:16:6D:3C:28:CC:A9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlqvPQaD3IoNWMZDgm4WbTwozKk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/06/83df5b-d153-4cb6-baf3-4cd38b758d5c/1/HlqvPQaD3IoNWMZDgm4WbTwozKk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 19:39:9e:a0:27:58:01:71:f4:a9:55:31:fe:09:d6:cf:53:26: e0:3e:11:9b:60:69:ff:1b:ee:e2:f3:7d:a5:7f:66:70:42:cd: ac:16:24:49:05:50:2a:84:53:b6:fa:f8:65:7d:b6:2c:03:44: 68:3e:b9:54:13:e6:8d:e3:7d:db:96:52:e5:a6:f8:a3:ed:9f: d4:cc:bf:1e:d5:5e:07:65:64:d7:14:d9:6e:17:9b:63:49:ae: b1:1d:01:73:45:13:ac:40:d4:5d:6d:9c:e5:3e:65:61:c3:b1: fe:bb:7e:4f:9a:01:e9:02:52:25:60:a2:b1:ce:b9:45:c4:f7: ce:d7:5e:2b:40:df:b0:d4:42:49:45:57:89:df:51:b4:d7:ef: 22:45:c2:a1:fe:e1:72:96:e5:cb:d0:11:2e:b7:e0:10:60:a0: 29:c5:34:03:d1:b1:5f:f0:32:37:c3:3b:f9:10:26:4f:1f:84: 3c:66:4f:2b:2a:7c:09:f3:f7:64:44:18:e5:fd:28:e7:c1:8a: 83:1b:ba:eb:84:5a:91:a6:11:b4:15:f9:2b:a5:ed:01:fc:2a: 61:00:34:48:7a:f9:eb:43:12:03:f9:93:71:31:74:b0:7c:63: de:92:da:05:ca:36:e3:f3:b4:bf:92:41:c2:38:6d:93:fb:ad: 4a:cc:fe:f3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZspZRMJnAnPvdGng+yuBzd3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlNWFhZjNkMDY4M2RjOGEwZDU4YzY0MzgyNmUxNjZkM2My OGNjYTkwHhcNMjUxMjE2MjMwMDQ4WhcNMjUxMjE3MjMwMDQ4WjAzMTEwLwYDVQQD EyhlNjlhZDY4ODBiNDY1OWMxNzM4YmZjMDM5MjdhZDcxZDE1NmU3NzJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6zPjCUH8jtVCClKaiHPgG9cpOFsX QRET0sskj5R+lNDNKQSfNhqmw5sOIbjEutjgdS1ciQlWYzrdIXde03jiCJN34tln 4nVbTRJjjmEWATJrCZl3i50vbxbpWlH57bBiZaHDV3L+WyKfJMOgHfLvYteuY5Ft eHlVKLLWSpMBgEOE3uzzb/vCEXxDb0qZpW4oynWMIpZB52bkRK7y1Ws74H+HAc7y Yai6tdqU0iLkGahEmvVockwShYAXWLgEb5849E/Ysr74c51nzxRhODAPDf0Bb3WN MropW2ZsroIakOHz1YPRWoPxKSrYkIH9r6mlRD/nLBoM6VOWAeFK0uTtXQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOaa1ogLRlnBc4v8A5J61x0VbncrMB8GA1UdIwQY MBaAFB5arz0Gg9yKDVjGQ4JuFm08KMypMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSGxxdlBRYUQzSW9OV01aRGdtNFdiVHdvektrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi84M2RmNWItZDE1My00Y2I2LWJhZjMt NGNkMzhiNzU4ZDVjLzEvSGxxdlBRYUQzSW9OV01aRGdtNFdiVHdvektrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNi84M2RmNWItZDE1My00Y2I2LWJhZjMtNGNkMzhiNzU4ZDVj LzEvSGxxdlBRYUQzSW9OV01aRGdtNFdiVHdvektrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGTmeoCdY AXH0qVUx/gnWz1Mm4D4Rm2Bp/xvu4vN9pX9mcELNrBYkSQVQKoRTtvr4ZX22LANE aD65VBPmjeN925ZS5ab4o+2f1My/HtVeB2Vk1xTZbhebY0musR0Bc0UTrEDUXW2c 5T5lYcOx/rt+T5oB6QJSJWCisc65RcT3ztdeK0DfsNRCSUVXid9RtNfvIkXCof7h cpbly9ARLrfgEGCgKcU0A9GxX/AyN8M7+RAmTx+EPGZPKyp8CfP3ZEQY5f0o58GK gxu664RakaYRtBX5K6XtAfwqYQA0SHr560MSA/mTcTF0sHxj3pLaBco24/O0v5JB wjhtk/utSsz+8w== -----END CERTIFICATE-----Generated at Wed Dec 17 03:44:27 2025 by rpki-client