This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/3f5e3c-ac7b-4f0f-a874-26971599a554/1/HxKTy74vaSVA08xaboI2YElMQGM.mft File: HxKTy74vaSVA08xaboI2YElMQGM.mft (raw, json) Hash identifier: fiv0ejeJfpQl2LxPvbFhv0hS9CBOThG7PzqsJQYu7pU= Subject key identifier: D0:FE:D8:57:02:F2:36:04:58:27:ED:76:5F:A9:8D:F5:B6:0B:19:64 Authority key identifier: 1F:12:93:CB:BE:2F:69:25:40:D3:CC:5A:6E:82:36:60:49:4C:40:63 Certificate issuer: /CN=1f1293cbbe2f692540d3cc5a6e823660494c4063 Certificate serial: 019B5A1A5F0F7EADE01E08E97CB49062D5C5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HxKTy74vaSVA08xaboI2YElMQGM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/3f5e3c-ac7b-4f0f-a874-26971599a554/1/HxKTy74vaSVA08xaboI2YElMQGM.mft Manifest number: 0F1A Signing time: Fri 26 Dec 2025 10:00:36 +0000 Manifest this update: Fri 26 Dec 2025 10:00:36 +0000 Manifest next update: Sat 27 Dec 2025 10:00:36 +0000 Files and hashes: 1: HxKTy74vaSVA08xaboI2YElMQGM.crl (hash: nwemHm7YdNGWJwCshhfBo92kodPAK5Sqvp3PfjtpnQE=) 2: qBbXPlomssD9zrP_xFljqdR0LbI.roa (hash: Gow+NF8w68xqHQfvdIHVUtAvsOi+ZzLSZN8/SeU/9ok=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/3f5e3c-ac7b-4f0f-a874-26971599a554/1/HxKTy74vaSVA08xaboI2YElMQGM.crl rsync://rpki.ripe.net/repository/DEFAULT/1a/3f5e3c-ac7b-4f0f-a874-26971599a554/1/HxKTy74vaSVA08xaboI2YElMQGM.mft rsync://rpki.ripe.net/repository/DEFAULT/HxKTy74vaSVA08xaboI2YElMQGM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:1a:5f:0f:7e:ad:e0:1e:08:e9:7c:b4:90:62:d5:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1f1293cbbe2f692540d3cc5a6e823660494c4063 Validity Not Before: Dec 26 10:00:36 2025 GMT Not After : Dec 27 10:00:36 2025 GMT Subject: CN=d0fed85702f236045827ed765fa98df5b60b1964 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:b5:d3:d6:9f:76:24:8d:79:58:80:d3:52:fe: 90:e9:13:48:26:27:4b:24:64:51:cf:e2:40:96:63: c8:b5:bd:60:f7:0c:f8:29:cf:6d:2b:09:2f:cb:2c: c2:17:2c:31:d8:2a:7b:1f:04:41:b0:5a:15:5d:95: 6d:e2:91:01:1a:c8:2e:f0:2d:fb:5c:4b:1f:7d:27: 4e:44:9b:7d:86:ba:87:f0:81:96:82:7f:80:2b:dd: a1:0a:91:92:92:75:90:39:45:1c:3d:0d:43:1d:f5: 13:e9:8b:98:f6:32:b8:81:a0:7d:14:4b:f3:bc:e4: 94:d4:2e:82:fd:fa:b0:15:d7:c4:88:62:16:7b:28: ad:1b:af:5a:d1:a7:be:46:77:15:29:20:89:68:41: 24:a1:b3:01:e6:27:43:21:2d:e6:e0:0f:00:6b:2e: 1b:09:ba:cb:5c:3e:44:84:01:55:8d:34:61:80:68: 1b:71:7b:d7:8e:52:4a:e9:a5:79:6f:7f:2e:38:2b: d6:ad:a0:78:dc:f5:f8:18:5c:76:1d:54:72:3a:e9: 29:4a:32:ff:2d:85:fb:90:9a:61:cc:90:95:f9:70: 04:d6:6a:a8:7c:f9:a8:e4:b0:26:39:38:db:69:65: 0f:f5:29:df:73:25:e5:d6:77:da:f8:4e:6f:e4:72: 5a:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:FE:D8:57:02:F2:36:04:58:27:ED:76:5F:A9:8D:F5:B6:0B:19:64 X509v3 Authority Key Identifier: keyid:1F:12:93:CB:BE:2F:69:25:40:D3:CC:5A:6E:82:36:60:49:4C:40:63 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HxKTy74vaSVA08xaboI2YElMQGM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/3f5e3c-ac7b-4f0f-a874-26971599a554/1/HxKTy74vaSVA08xaboI2YElMQGM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/3f5e3c-ac7b-4f0f-a874-26971599a554/1/HxKTy74vaSVA08xaboI2YElMQGM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1f:32:37:d1:ef:8e:4d:a6:c9:67:e9:8e:51:23:c1:b3:6f:ba: 92:0a:b4:33:97:c5:f6:1c:87:0a:8d:83:4b:c3:e8:18:7d:94: fc:c6:58:1a:4f:ac:03:bb:d7:cb:93:b8:37:ff:a9:53:c0:9a: 5c:a4:29:09:33:cf:2c:0d:15:e2:7e:74:c3:ba:6c:b5:67:5a: 28:d1:d6:7f:2a:89:86:d0:20:1d:75:7d:1b:d3:35:bf:66:c5: 53:ec:66:95:d5:5b:f2:8c:84:80:de:25:15:e9:80:c7:6c:62: d3:a2:2a:2f:48:21:f7:35:61:9d:82:78:8b:98:dc:dc:86:63: 8c:e8:7a:38:0d:57:dc:8e:c7:bf:e9:fc:a5:7a:3f:32:ea:19: 35:32:26:7b:8c:7f:be:0f:67:6d:e0:76:85:65:16:ad:50:54: 90:d4:d9:06:c7:b1:73:dd:5b:fd:75:9f:df:4f:4c:90:a3:24: b7:d9:02:f5:20:59:ab:22:d0:6b:48:5c:20:d0:c9:5e:2b:bb: 72:32:a1:5c:d0:a4:cb:a1:b9:c4:f9:88:10:d7:64:2b:60:26: 67:13:01:e8:f8:4f:98:6a:16:70:20:66:72:bc:f9:d4:78:d4: de:4a:84:09:6e:ac:4d:18:f0:ec:e0:98:23:92:4e:45:75:45: ab:f9:1c:15 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtaGl8Pfq3gHgjpfLSQYtXFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFmMTI5M2NiYmUyZjY5MjU0MGQzY2M1YTZlODIzNjYwNDk0 YzQwNjMwHhcNMjUxMjI2MTAwMDM2WhcNMjUxMjI3MTAwMDM2WjAzMTEwLwYDVQQD EyhkMGZlZDg1NzAyZjIzNjA0NTgyN2VkNzY1ZmE5OGRmNWI2MGIxOTY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyrXT1p92JI15WIDTUv6Q6RNIJidL JGRRz+JAlmPItb1g9wz4Kc9tKwkvyyzCFywx2Cp7HwRBsFoVXZVt4pEBGsgu8C37 XEsffSdORJt9hrqH8IGWgn+AK92hCpGSknWQOUUcPQ1DHfUT6YuY9jK4gaB9FEvz vOSU1C6C/fqwFdfEiGIWeyitG69a0ae+RncVKSCJaEEkobMB5idDIS3m4A8Aay4b CbrLXD5EhAFVjTRhgGgbcXvXjlJK6aV5b38uOCvWraB43PX4GFx2HVRyOukpSjL/ LYX7kJphzJCV+XAE1mqofPmo5LAmOTjbaWUP9SnfcyXl1nfa+E5v5HJaRwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFND+2FcC8jYEWCftdl+pjfW2CxlkMB8GA1UdIwQY MBaAFB8Sk8u+L2klQNPMWm6CNmBJTEBjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSHhLVHk3NHZhU1ZBMDh4YWJvSTJZRWxNUUdNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS8zZjVlM2MtYWM3Yi00ZjBmLWE4NzQt MjY5NzE1OTlhNTU0LzEvSHhLVHk3NHZhU1ZBMDh4YWJvSTJZRWxNUUdNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYS8zZjVlM2MtYWM3Yi00ZjBmLWE4NzQtMjY5NzE1OTlhNTU0 LzEvSHhLVHk3NHZhU1ZBMDh4YWJvSTJZRWxNUUdNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHzI30e+O TabJZ+mOUSPBs2+6kgq0M5fF9hyHCo2DS8PoGH2U/MZYGk+sA7vXy5O4N/+pU8Ca XKQpCTPPLA0V4n50w7pstWdaKNHWfyqJhtAgHXV9G9M1v2bFU+xmldVb8oyEgN4l FemAx2xi06IqL0gh9zVhnYJ4i5jc3IZjjOh6OA1X3I7Hv+n8pXo/MuoZNTIme4x/ vg9nbeB2hWUWrVBUkNTZBsexc91b/XWf309MkKMkt9kC9SBZqyLQa0hcINDJXiu7 cjKhXNCky6G5xPmIENdkK2AmZxMB6PhPmGoWcCBmcrz51HjU3kqECW6sTRjw7OCY I5JORXVFq/kcFQ== -----END CERTIFICATE-----Generated at Fri Dec 26 14:18:25 2025 by rpki-client