This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/865eeb-d60b-4e00-811f-51d1646023f0/1/hJJsR6Ngf1GjnhyR54l_hfR-NHw.mft File: hJJsR6Ngf1GjnhyR54l_hfR-NHw.mft (raw, json) Hash identifier: a7U2CkNHjieUTH2A8VPTEtP3t9c57uZ4AXP9lNMShSA= Subject key identifier: 75:30:64:07:33:E3:15:1C:D4:61:F3:D4:63:1D:3B:D4:4B:3D:54:A3 Authority key identifier: 84:92:6C:47:A3:60:7F:51:A3:9E:1C:91:E7:89:7F:85:F4:7E:34:7C Certificate issuer: /CN=84926c47a3607f51a39e1c91e7897f85f47e347c Certificate serial: 019B35D71A8BB98217B8F4041CE95B19CF10 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hJJsR6Ngf1GjnhyR54l_hfR-NHw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/865eeb-d60b-4e00-811f-51d1646023f0/1/hJJsR6Ngf1GjnhyR54l_hfR-NHw.mft Manifest number: 0AE3 Signing time: Fri 19 Dec 2025 09:00:48 +0000 Manifest this update: Fri 19 Dec 2025 09:00:48 +0000 Manifest next update: Sat 20 Dec 2025 09:00:48 +0000 Files and hashes: 1: hJJsR6Ngf1GjnhyR54l_hfR-NHw.crl (hash: WLESYAp/+NXyyIOCHk1ReUSKtz5JNyVI0jMTOl0QhT4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/865eeb-d60b-4e00-811f-51d1646023f0/1/hJJsR6Ngf1GjnhyR54l_hfR-NHw.crl rsync://rpki.ripe.net/repository/DEFAULT/18/865eeb-d60b-4e00-811f-51d1646023f0/1/hJJsR6Ngf1GjnhyR54l_hfR-NHw.mft rsync://rpki.ripe.net/repository/DEFAULT/hJJsR6Ngf1GjnhyR54l_hfR-NHw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 07:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:35:d7:1a:8b:b9:82:17:b8:f4:04:1c:e9:5b:19:cf:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84926c47a3607f51a39e1c91e7897f85f47e347c Validity Not Before: Dec 19 09:00:48 2025 GMT Not After : Dec 20 09:00:48 2025 GMT Subject: CN=7530640733e3151cd461f3d4631d3bd44b3d54a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:8d:dd:f6:bd:b3:1a:2a:54:21:31:8b:93:72: 06:8c:2a:c5:77:e5:46:75:df:27:a8:1d:00:1a:70: 98:83:45:5b:c9:39:a1:ce:65:26:86:ac:a2:f6:4b: cd:c6:59:e4:d2:06:b7:74:12:08:0f:00:29:66:75: 12:6e:6e:86:f2:ec:35:ad:8e:88:73:d4:08:b1:c8: 0d:bb:0d:ca:84:1f:d0:0a:8b:fc:d2:02:8b:2a:d2: bb:ce:6f:39:52:8f:cb:92:be:dd:92:25:16:54:64: 67:32:b3:9e:68:89:67:a8:c7:60:9b:3a:bb:ea:e1: 67:96:75:7e:8b:ef:47:c8:66:99:0e:f7:72:b7:b4: 0d:96:4e:81:90:80:22:80:82:f2:b3:b2:d3:42:2d: 33:03:d9:f0:8c:03:a2:dd:7a:b6:c4:42:7e:ab:1a: 19:86:ee:97:30:dd:48:7d:0c:9c:38:79:7c:8f:2b: 66:fe:8d:13:76:cd:96:aa:42:37:51:ac:02:fc:8f: 0d:a0:e6:e2:31:29:90:ec:b2:76:9d:2d:53:2f:d3: eb:64:74:65:06:b2:75:63:a6:19:eb:ef:b4:d4:c0: b9:ba:60:42:05:9f:2d:ca:17:49:ee:7f:5f:74:8d: f6:39:a0:6b:d3:6c:13:52:f7:75:15:b0:f3:0f:f7: bf:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:30:64:07:33:E3:15:1C:D4:61:F3:D4:63:1D:3B:D4:4B:3D:54:A3 X509v3 Authority Key Identifier: keyid:84:92:6C:47:A3:60:7F:51:A3:9E:1C:91:E7:89:7F:85:F4:7E:34:7C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hJJsR6Ngf1GjnhyR54l_hfR-NHw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/865eeb-d60b-4e00-811f-51d1646023f0/1/hJJsR6Ngf1GjnhyR54l_hfR-NHw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/18/865eeb-d60b-4e00-811f-51d1646023f0/1/hJJsR6Ngf1GjnhyR54l_hfR-NHw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 03:cc:1c:69:7e:4d:28:53:1f:df:ba:ef:7b:01:64:3e:61:e5: be:25:e2:d7:25:4b:84:4c:84:54:1f:5c:72:d2:0b:d5:a3:75: 9a:12:34:fa:5a:a9:12:f1:cc:d1:4f:e5:eb:ca:44:09:18:ff: ba:57:d7:1a:a7:38:47:8d:e8:92:4c:a9:4e:d2:c7:b9:42:2e: 3e:ec:d4:e4:c9:e4:79:18:c5:32:5d:83:9b:91:4d:aa:e9:20: ff:5e:f6:9a:96:82:2a:fb:cc:f7:eb:00:a5:24:f7:42:bb:8d: b5:5a:38:74:67:80:3b:79:2c:f1:bf:63:48:cd:94:11:aa:1d: fa:91:20:49:62:c8:ac:61:7f:1b:ea:c6:20:d1:de:f2:75:f6: 5e:d5:ef:b9:81:d6:90:d0:78:d2:8e:52:3f:ef:02:82:5c:68: 05:9c:3c:2d:e0:92:c7:48:f6:0a:e5:94:7f:ef:7b:ad:5d:6b: d3:62:27:48:c1:93:4e:74:db:37:25:cb:89:35:b6:f5:d3:1c: 89:11:aa:2e:00:7d:ed:46:c5:d5:ea:de:e3:a2:e1:51:c5:91: 2a:04:4e:7c:51:9b:19:93:fe:11:70:e1:fa:9b:5b:44:75:2a: 85:fa:68:57:51:38:63:c9:43:b6:ff:54:21:5e:61:c4:44:19: 2d:c6:00:3d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs11xqLuYIXuPQEHOlbGc8QMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0OTI2YzQ3YTM2MDdmNTFhMzllMWM5MWU3ODk3Zjg1ZjQ3 ZTM0N2MwHhcNMjUxMjE5MDkwMDQ4WhcNMjUxMjIwMDkwMDQ4WjAzMTEwLwYDVQQD Eyg3NTMwNjQwNzMzZTMxNTFjZDQ2MWYzZDQ2MzFkM2JkNDRiM2Q1NGEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnI3d9r2zGipUITGLk3IGjCrFd+VG dd8nqB0AGnCYg0VbyTmhzmUmhqyi9kvNxlnk0ga3dBIIDwApZnUSbm6G8uw1rY6I c9QIscgNuw3KhB/QCov80gKLKtK7zm85Uo/Lkr7dkiUWVGRnMrOeaIlnqMdgmzq7 6uFnlnV+i+9HyGaZDvdyt7QNlk6BkIAigILys7LTQi0zA9nwjAOi3Xq2xEJ+qxoZ hu6XMN1IfQycOHl8jytm/o0Tds2WqkI3UawC/I8NoObiMSmQ7LJ2nS1TL9PrZHRl BrJ1Y6YZ6++01MC5umBCBZ8tyhdJ7n9fdI32OaBr02wTUvd1FbDzD/e/FQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHUwZAcz4xUc1GHz1GMdO9RLPVSjMB8GA1UdIwQY MBaAFISSbEejYH9Ro54ckeeJf4X0fjR8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaEpKc1I2TmdmMUdqbmh5UjU0bF9oZlItTkh3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC84NjVlZWItZDYwYi00ZTAwLTgxMWYt NTFkMTY0NjAyM2YwLzEvaEpKc1I2TmdmMUdqbmh5UjU0bF9oZlItTkh3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOC84NjVlZWItZDYwYi00ZTAwLTgxMWYtNTFkMTY0NjAyM2Yw LzEvaEpKc1I2TmdmMUdqbmh5UjU0bF9oZlItTkh3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAA8wcaX5N KFMf37rvewFkPmHlviXi1yVLhEyEVB9cctIL1aN1mhI0+lqpEvHM0U/l68pECRj/ ulfXGqc4R43okkypTtLHuUIuPuzU5MnkeRjFMl2Dm5FNqukg/172mpaCKvvM9+sA pST3QruNtVo4dGeAO3ks8b9jSM2UEaod+pEgSWLIrGF/G+rGINHe8nX2XtXvuYHW kNB40o5SP+8CglxoBZw8LeCSx0j2CuWUf+97rV1r02InSMGTTnTbNyXLiTW29dMc iRGqLgB97UbF1ere46LhUcWRKgROfFGbGZP+EXDh+ptbRHUqhfpoV1E4Y8lDtv9U IV5hxEQZLcYAPQ== -----END CERTIFICATE-----Generated at Fri Dec 19 16:51:48 2025 by rpki-client