This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft File: HlcDhG16g2S-wwMDTbkay_9C2gw.mft (raw, json) Hash identifier: wc9Um2heZ/uw1sa6mQj0JUqOdBmBYdCNXvfRnVSfVGs= Subject key identifier: D0:CF:87:A1:CA:25:B1:EA:94:DB:87:EB:1F:95:6B:45:9C:51:DE:F9 Authority key identifier: 1E:57:03:84:6D:7A:83:64:BE:C3:03:03:4D:B9:1A:CB:FF:42:DA:0C Certificate issuer: /CN=1e5703846d7a8364bec303034db91acbff42da0c Certificate serial: 019AF051BA0F2D4021D71637317B51C7F800 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft Manifest number: 0B21 Signing time: Fri 05 Dec 2025 21:01:19 +0000 Manifest this update: Fri 05 Dec 2025 21:01:19 +0000 Manifest next update: Sat 06 Dec 2025 21:01:19 +0000 Files and hashes: 1: 4PNlkOPWAaPkvxKKyZ24ywHUUNs.roa (hash: eaQPOrhXnd6IgLBTpKSTCgVJBcG3spHBZu3BsMLZw3g=) 2: HlcDhG16g2S-wwMDTbkay_9C2gw.crl (hash: GdUwVemI14A78W5RS0ZYTg0fOTf7pnOR9Q8JzQsd2io=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.crl rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 17:27:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:51:ba:0f:2d:40:21:d7:16:37:31:7b:51:c7:f8:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1e5703846d7a8364bec303034db91acbff42da0c Validity Not Before: Dec 5 21:01:19 2025 GMT Not After : Dec 6 21:01:19 2025 GMT Subject: CN=d0cf87a1ca25b1ea94db87eb1f956b459c51def9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b1:de:ff:de:f1:04:11:3d:b9:88:5a:10:da: b2:c7:b9:4f:ab:55:dc:39:73:d6:4c:5c:b8:0a:82: 4c:28:4f:ba:ef:c9:8e:9a:7f:5c:63:19:8d:52:63: 9b:49:81:98:a0:68:25:35:c0:3f:81:d7:2b:f5:54: 03:69:ff:1a:cf:a4:bb:f1:aa:1f:ef:22:da:bb:39: 72:a7:16:c8:1f:f8:4b:55:0f:98:2e:0a:2c:5d:d2: d6:37:d7:b4:44:92:09:f2:3d:2e:8f:2b:92:86:aa: 6e:9d:ff:c2:44:f9:39:1a:64:5b:c6:8e:39:de:f2: 93:9a:6f:4b:25:f2:9b:18:7a:5e:ef:f4:20:ed:27: b4:20:86:65:74:2d:93:2c:0c:de:16:da:41:d8:c5: 06:04:9b:6f:96:b4:c0:56:cf:2b:b9:a6:92:a5:5d: 85:7d:87:a1:3b:71:25:4e:c0:ec:6c:71:74:a2:16: 0c:93:e2:9a:03:88:07:9a:73:df:2b:1b:4d:a9:27: 75:56:aa:4f:c1:39:3e:d9:ba:ef:f3:7c:16:31:19: 9f:1c:e9:62:d1:18:cb:92:64:e3:cf:3e:08:f3:52: d7:06:c6:1f:03:30:f7:1b:49:2e:5b:12:b5:b0:89: 0f:d6:c2:81:6d:11:75:7e:90:26:38:12:54:8d:6b: 78:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:CF:87:A1:CA:25:B1:EA:94:DB:87:EB:1F:95:6B:45:9C:51:DE:F9 X509v3 Authority Key Identifier: keyid:1E:57:03:84:6D:7A:83:64:BE:C3:03:03:4D:B9:1A:CB:FF:42:DA:0C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 77:62:a8:26:ba:a7:e5:c5:41:32:a8:6e:4d:05:72:eb:b7:8b: c9:4d:07:c2:da:21:18:ac:a4:23:0d:4b:b3:51:6a:4e:ae:26: f5:19:a4:97:91:d8:7e:e9:4b:12:f8:e0:47:2f:de:4d:8a:56: 89:9f:6a:5e:c7:b2:0b:4f:4d:6d:16:3d:0f:b9:3b:c1:d3:44: 87:9f:6e:02:1e:d1:dd:6a:55:9f:81:bd:e4:15:f2:ee:d4:d2: 0c:54:ac:2e:6e:b8:ce:6d:60:8f:a5:b3:c3:8c:1c:92:3b:83: 2d:39:07:7e:90:e4:4e:38:58:5c:7d:21:cd:94:b4:2b:e0:11: 91:81:fa:c8:4a:0f:ff:24:2e:75:71:f8:02:21:43:2e:f6:7f: e5:0c:7c:ff:f5:65:1d:80:fa:3c:d5:73:76:21:3c:7c:bf:f5: 7d:36:90:8b:ea:fe:80:c2:00:68:26:bc:0f:88:94:03:86:46: 60:2c:4b:42:16:00:b7:fa:d9:04:16:de:3f:5d:47:eb:ba:ad: 97:4d:c7:9f:46:00:fa:c5:dc:61:51:1f:da:56:78:49:a2:bf: 5c:0d:82:ab:51:fe:b0:82:f3:21:8c:f6:6d:8d:21:f3:3c:43: 5d:be:7d:02:3c:31:56:c1:ff:7a:0c:b5:71:3d:b6:37:b8:a4: eb:ac:4a:6c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwUboPLUAh1xY3MXtRx/gAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlNTcwMzg0NmQ3YTgzNjRiZWMzMDMwMzRkYjkxYWNiZmY0 MmRhMGMwHhcNMjUxMjA1MjEwMTE5WhcNMjUxMjA2MjEwMTE5WjAzMTEwLwYDVQQD EyhkMGNmODdhMWNhMjViMWVhOTRkYjg3ZWIxZjk1NmI0NTljNTFkZWY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwLHe/97xBBE9uYhaENqyx7lPq1Xc OXPWTFy4CoJMKE+678mOmn9cYxmNUmObSYGYoGglNcA/gdcr9VQDaf8az6S78aof 7yLauzlypxbIH/hLVQ+YLgosXdLWN9e0RJIJ8j0ujyuShqpunf/CRPk5GmRbxo45 3vKTmm9LJfKbGHpe7/Qg7Se0IIZldC2TLAzeFtpB2MUGBJtvlrTAVs8ruaaSpV2F fYehO3ElTsDsbHF0ohYMk+KaA4gHmnPfKxtNqSd1VqpPwTk+2brv83wWMRmfHOli 0RjLkmTjzz4I81LXBsYfAzD3G0kuWxK1sIkP1sKBbRF1fpAmOBJUjWt4bwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNDPh6HKJbHqlNuH6x+Va0WcUd75MB8GA1UdIwQY MBaAFB5XA4RteoNkvsMDA025Gsv/QtoMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSGxjRGhHMTZnMlMtd3dNRFRia2F5XzlDMmd3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC9iYzY1OGYtYTUyOC00MzYwLWI1OGMt MDdiMDllNDY1MTE5LzEvSGxjRGhHMTZnMlMtd3dNRFRia2F5XzlDMmd3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNC9iYzY1OGYtYTUyOC00MzYwLWI1OGMtMDdiMDllNDY1MTE5 LzEvSGxjRGhHMTZnMlMtd3dNRFRia2F5XzlDMmd3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAd2KoJrqn 5cVBMqhuTQVy67eLyU0HwtohGKykIw1Ls1FqTq4m9Rmkl5HYfulLEvjgRy/eTYpW iZ9qXseyC09NbRY9D7k7wdNEh59uAh7R3WpVn4G95BXy7tTSDFSsLm64zm1gj6Wz w4wckjuDLTkHfpDkTjhYXH0hzZS0K+ARkYH6yEoP/yQudXH4AiFDLvZ/5Qx8//Vl HYD6PNVzdiE8fL/1fTaQi+r+gMIAaCa8D4iUA4ZGYCxLQhYAt/rZBBbeP11H67qt l03Hn0YA+sXcYVEf2lZ4SaK/XA2Cq1H+sILzIYz2bY0h8zxDXb59AjwxVsH/egy1 cT22N7ik66xKbA== -----END CERTIFICATE-----Generated at Sat Dec 6 02:45:37 2025 by rpki-client