This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/H2GqXRvv16D-Pk3-Oqjac-_PujQ.mft File: H2GqXRvv16D-Pk3-Oqjac-_PujQ.mft (raw, json) Hash identifier: Dw1HbiZTfMs/NP6FTqqmw1F8nWy1FbRW3PdPHMJ2LT0= Subject key identifier: BC:5F:72:01:67:DA:F8:9F:CB:4B:DA:CB:7A:78:F8:8B:22:D2:E2:A9 Authority key identifier: 1F:61:AA:5D:1B:EF:D7:A0:FE:3E:4D:FE:3A:A8:DA:73:EF:CF:BA:34 Certificate issuer: /CN=1f61aa5d1befd7a0fe3e4dfe3aa8da73efcfba34 Certificate serial: 019B416DA9FDA3F7D4A6775BC20EBB165A6F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H2GqXRvv16D-Pk3-Oqjac-_PujQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/H2GqXRvv16D-Pk3-Oqjac-_PujQ.mft Manifest number: 17A3 Signing time: Sun 21 Dec 2025 15:01:04 +0000 Manifest this update: Sun 21 Dec 2025 15:01:04 +0000 Manifest next update: Mon 22 Dec 2025 15:01:04 +0000 Files and hashes: 1: BSSjKlHFChUEI7UNPGcgVGQIMGQ.roa (hash: gAyHnonUZ3YhlZs8Bw/b4nOc3ZBRTxJbg4YBiYurlLc=) 2: Du67LuSR--FTZRs33JDJ1Yh_Yqc.roa (hash: Uq3e+EYwHhZpPWXp5ry3+fcpGqjbo+HY9H6K+cMEsOA=) 3: H2GqXRvv16D-Pk3-Oqjac-_PujQ.crl (hash: Ux0TMX03ODKBQ84Ur0P8X8etFqH0fCf2N1DmcfFf1JE=) 4: KKoRgXzLVxX8M0ge-PzEa-7tJn8.roa (hash: ZB5HW8dKxDtda/UB5dE3fN6v3EtscnOQiCRsaguyfYs=) 5: vPm_UYg8wre_NolD1hu0Cx9JGzE.roa (hash: Rws+EnLA4ahX/aasRkr6vitQH/K/D1I71mx2gpcNmkI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/H2GqXRvv16D-Pk3-Oqjac-_PujQ.crl rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/H2GqXRvv16D-Pk3-Oqjac-_PujQ.mft rsync://rpki.ripe.net/repository/DEFAULT/H2GqXRvv16D-Pk3-Oqjac-_PujQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 13:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:41:6d:a9:fd:a3:f7:d4:a6:77:5b:c2:0e:bb:16:5a:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1f61aa5d1befd7a0fe3e4dfe3aa8da73efcfba34 Validity Not Before: Dec 21 15:01:04 2025 GMT Not After : Dec 22 15:01:04 2025 GMT Subject: CN=bc5f720167daf89fcb4bdacb7a78f88b22d2e2a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a2:76:fe:bf:60:53:f8:9f:e5:b5:7f:29:dd: 33:96:2d:bf:02:b3:63:9a:e1:00:c9:32:42:51:24: 87:1a:21:ec:ec:c1:f0:94:ea:52:39:17:19:84:06: 7a:08:64:c2:e9:e9:83:4a:9a:75:e9:e3:7f:58:1d: 96:33:51:62:8a:fe:c2:4a:21:d5:f6:17:31:51:75: 51:7a:88:03:cd:c0:3b:b5:8d:97:38:72:fb:fe:9f: 4f:7f:45:27:41:51:c2:aa:18:3f:d3:ca:5d:2b:a3: a2:cb:ae:07:7a:20:5b:95:00:2f:ef:48:9f:36:55: 01:9f:0e:1a:51:47:92:01:84:9a:25:07:8e:bc:fe: 3d:7b:af:86:24:26:8f:08:75:72:2d:a8:b9:96:30: b3:29:0b:77:03:f8:9b:4c:c8:41:1c:45:e5:e5:9a: 09:13:bd:28:7f:65:4a:af:7f:a2:1b:2e:b3:59:04: fd:85:d6:2c:36:c4:e2:29:e4:c7:12:38:6d:7c:d5: 45:71:46:14:e5:da:76:bc:6a:b4:1b:7d:d9:ef:2a: 98:3a:28:26:c1:5e:ea:87:eb:ce:07:2e:0d:cc:31: 0d:c8:15:02:3e:a5:db:24:14:76:4c:3b:fe:21:f2: fb:d1:9e:8e:87:1a:4e:df:36:e4:0a:43:a8:cb:be: 9f:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:5F:72:01:67:DA:F8:9F:CB:4B:DA:CB:7A:78:F8:8B:22:D2:E2:A9 X509v3 Authority Key Identifier: keyid:1F:61:AA:5D:1B:EF:D7:A0:FE:3E:4D:FE:3A:A8:DA:73:EF:CF:BA:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H2GqXRvv16D-Pk3-Oqjac-_PujQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/H2GqXRvv16D-Pk3-Oqjac-_PujQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/H2GqXRvv16D-Pk3-Oqjac-_PujQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 55:5d:49:ac:da:8e:aa:b2:2d:8a:e8:de:fb:66:bc:0d:73:a1: 3f:79:c0:25:46:8e:5d:c0:41:1b:d0:d5:bb:07:c1:1d:ef:f4: 17:a8:63:e0:64:7e:7b:8c:a0:23:70:f3:2e:78:35:51:e6:d7: b2:f0:fa:4a:41:42:cc:dc:6e:9f:c0:3d:3b:3b:c9:8b:07:09: 12:35:ba:fa:65:6a:1b:e9:7e:a7:f8:a4:f7:b1:cd:00:20:44: d1:ef:00:e5:37:9a:f4:2e:6e:12:91:0d:ed:4a:e5:40:9d:52: 24:cf:79:7a:62:cc:3a:2a:b2:44:f6:09:a6:a8:84:1a:ee:1c: f6:2c:50:1a:65:25:f7:37:37:2e:bc:8f:5b:99:3a:01:c1:a2: ee:22:72:f5:97:60:b7:33:19:0a:fa:3d:3d:71:32:40:92:c3: bb:75:46:b3:47:fa:9a:fb:71:c4:df:6f:d9:c7:11:10:9c:0e: 54:43:c7:f6:dd:7f:fb:81:56:63:db:86:1c:52:59:de:44:19: 2e:24:ea:4e:e6:94:d4:32:8e:10:1f:0c:bb:c1:bd:a6:27:20: 71:af:f1:9c:45:63:a1:bb:78:98:a5:67:4b:c2:e6:a4:28:dc: f0:ed:eb:07:d4:ef:88:6c:c9:d4:2a:82:3d:89:f5:fb:9d:f3: 91:1a:48:2a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtBban9o/fUpndbwg67FlpvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFmNjFhYTVkMWJlZmQ3YTBmZTNlNGRmZTNhYThkYTczZWZj ZmJhMzQwHhcNMjUxMjIxMTUwMTA0WhcNMjUxMjIyMTUwMTA0WjAzMTEwLwYDVQQD EyhiYzVmNzIwMTY3ZGFmODlmY2I0YmRhY2I3YTc4Zjg4YjIyZDJlMmE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtKJ2/r9gU/if5bV/Kd0zli2/ArNj muEAyTJCUSSHGiHs7MHwlOpSORcZhAZ6CGTC6emDSpp16eN/WB2WM1Fiiv7CSiHV 9hcxUXVReogDzcA7tY2XOHL7/p9Pf0UnQVHCqhg/08pdK6Oiy64HeiBblQAv70if NlUBnw4aUUeSAYSaJQeOvP49e6+GJCaPCHVyLai5ljCzKQt3A/ibTMhBHEXl5ZoJ E70of2VKr3+iGy6zWQT9hdYsNsTiKeTHEjhtfNVFcUYU5dp2vGq0G33Z7yqYOigm wV7qh+vOBy4NzDENyBUCPqXbJBR2TDv+IfL70Z6OhxpO3zbkCkOoy76fgwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLxfcgFn2vify0vay3p4+Isi0uKpMB8GA1UdIwQY MBaAFB9hql0b79eg/j5N/jqo2nPvz7o0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSDJHcVhSdnYxNkQtUGszLU9xamFjLV9QdWpRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy8wYWQ0MTQtM2RmMS00YjM4LTg2OWUt YzYyMWU4ZGY5NWZmLzEvSDJHcVhSdnYxNkQtUGszLU9xamFjLV9QdWpRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNy8wYWQ0MTQtM2RmMS00YjM4LTg2OWUtYzYyMWU4ZGY5NWZm LzEvSDJHcVhSdnYxNkQtUGszLU9xamFjLV9QdWpRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVV1JrNqO qrItiuje+2a8DXOhP3nAJUaOXcBBG9DVuwfBHe/0F6hj4GR+e4ygI3DzLng1UebX svD6SkFCzNxun8A9OzvJiwcJEjW6+mVqG+l+p/ik97HNACBE0e8A5Tea9C5uEpEN 7UrlQJ1SJM95emLMOiqyRPYJpqiEGu4c9ixQGmUl9zc3LryPW5k6AcGi7iJy9Zdg tzMZCvo9PXEyQJLDu3VGs0f6mvtxxN9v2ccREJwOVEPH9t1/+4FWY9uGHFJZ3kQZ LiTqTuaU1DKOEB8Mu8G9picgca/xnEVjobt4mKVnS8LmpCjc8O3rB9TviGzJ1CqC PYn1+53zkRpIKg== -----END CERTIFICATE-----Generated at Sun Dec 21 22:51:34 2025 by rpki-client