This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/d3856f-029c-446a-ae7d-d7c5da7c1676/1/HDnVeTbdLRUhRD5o2t2dCUnN4z8.mft File: HDnVeTbdLRUhRD5o2t2dCUnN4z8.mft (raw, json) Hash identifier: 5WtcTfwYAV/9SbWXDUSEjCw7iII5nynNaoU69NdOgQU= Subject key identifier: 13:CD:F6:E1:05:E6:27:5E:A6:4B:F1:F8:C0:36:4C:02:AC:7D:67:BB Authority key identifier: 1C:39:D5:79:36:DD:2D:15:21:44:3E:68:DA:DD:9D:09:49:CD:E3:3F Certificate issuer: /CN=1c39d57936dd2d1521443e68dadd9d0949cde33f Certificate serial: 019B180368447301E6B077700691848C8C5E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HDnVeTbdLRUhRD5o2t2dCUnN4z8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/d3856f-029c-446a-ae7d-d7c5da7c1676/1/HDnVeTbdLRUhRD5o2t2dCUnN4z8.mft Manifest number: 1778 Signing time: Sat 13 Dec 2025 14:00:35 +0000 Manifest this update: Sat 13 Dec 2025 14:00:35 +0000 Manifest next update: Sun 14 Dec 2025 14:00:35 +0000 Files and hashes: 1: HDnVeTbdLRUhRD5o2t2dCUnN4z8.crl (hash: dPZTaOo+MIv7+ikHM1+jmaqw94eTCNL/EHEatYeXcv4=) 2: S8E-qbm1BXEqIdetmmA1nZNgj7U.roa (hash: 3uwA4cyu+agvPaXd967UOebPOsNVk53AsWpnmfz8XsE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/d3856f-029c-446a-ae7d-d7c5da7c1676/1/HDnVeTbdLRUhRD5o2t2dCUnN4z8.crl rsync://rpki.ripe.net/repository/DEFAULT/27/d3856f-029c-446a-ae7d-d7c5da7c1676/1/HDnVeTbdLRUhRD5o2t2dCUnN4z8.mft rsync://rpki.ripe.net/repository/DEFAULT/HDnVeTbdLRUhRD5o2t2dCUnN4z8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 14:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:18:03:68:44:73:01:e6:b0:77:70:06:91:84:8c:8c:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c39d57936dd2d1521443e68dadd9d0949cde33f Validity Not Before: Dec 13 14:00:35 2025 GMT Not After : Dec 14 14:00:35 2025 GMT Subject: CN=13cdf6e105e6275ea64bf1f8c0364c02ac7d67bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:dd:43:d6:d0:3e:b0:da:7d:a5:13:d4:fd:53: e0:09:86:32:c9:84:1b:f5:c0:56:2f:53:d1:ca:7f: 63:8a:57:ff:44:52:59:01:6c:d5:7e:d2:a3:87:1d: de:e8:33:d7:8e:c6:69:a2:0e:35:40:15:a1:58:97: 29:55:a3:69:9a:55:43:d1:38:00:99:1b:2e:81:09: af:a7:7c:12:65:5d:18:fc:26:e7:f8:cd:7f:12:4d: 4f:bf:34:22:55:32:62:97:53:45:c6:13:1d:c3:9a: 32:a5:f0:72:34:44:e7:ef:20:55:95:77:2d:70:a3: 38:50:e4:fc:4a:a3:82:f1:18:e2:ac:c8:b1:11:92: 9c:14:16:64:df:a5:17:98:26:6c:50:8d:c1:f7:c2: c9:73:f0:9c:24:82:e9:9d:2a:ba:f4:0b:d1:38:9f: 8f:b2:35:57:06:2f:e3:8b:8c:9e:2f:2b:7e:a5:42: 53:6a:40:61:c9:45:fb:73:16:66:04:74:e0:65:cd: 35:8d:44:79:b8:42:2a:d5:70:26:fe:ff:b9:b2:77: 02:49:2e:48:5b:c9:71:c6:c5:13:95:da:23:06:3f: e8:a0:db:4b:d9:72:3a:8a:54:46:91:92:03:3b:2e: fe:76:75:97:7f:0f:c0:62:25:5e:54:71:ab:83:b2: c0:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:CD:F6:E1:05:E6:27:5E:A6:4B:F1:F8:C0:36:4C:02:AC:7D:67:BB X509v3 Authority Key Identifier: keyid:1C:39:D5:79:36:DD:2D:15:21:44:3E:68:DA:DD:9D:09:49:CD:E3:3F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HDnVeTbdLRUhRD5o2t2dCUnN4z8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/d3856f-029c-446a-ae7d-d7c5da7c1676/1/HDnVeTbdLRUhRD5o2t2dCUnN4z8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/27/d3856f-029c-446a-ae7d-d7c5da7c1676/1/HDnVeTbdLRUhRD5o2t2dCUnN4z8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption cd:7c:76:14:bb:50:53:53:06:35:71:a8:7c:ec:9a:f1:70:41: 5c:a7:1c:2e:48:c6:e7:6a:38:d0:50:42:d2:b0:1b:7c:6d:49: 4a:fd:91:d9:c3:d5:04:3a:a0:5e:99:78:cd:d6:f9:16:bb:52: 8c:aa:30:7d:56:4a:c6:58:9d:bc:9b:a3:2c:0d:5c:8d:ed:13: d2:e9:a7:87:ad:02:7e:10:fb:5f:a7:4c:f8:67:45:20:bc:da: 8b:d6:29:c7:2d:73:f1:93:79:17:fc:14:f8:24:95:96:1a:55: 22:64:9e:54:75:e3:d2:2b:12:4b:d2:29:ab:f6:e4:84:29:05: 39:51:34:f2:33:82:7f:f3:db:92:68:92:c0:5e:ca:6d:cb:9e: 09:b0:87:94:89:2c:75:14:6b:a3:b6:47:51:83:ec:c7:b6:5b: d9:7c:a5:7c:b9:18:45:10:cc:9d:85:2a:02:52:4e:80:f5:68: 15:83:8c:96:75:bc:8a:ac:ea:14:82:7d:3b:8c:4a:b9:6c:9c: 0e:d4:9c:db:e9:3e:ef:21:3c:11:1d:59:d5:c0:84:32:18:b4: 05:8a:58:9f:2f:8d:ee:20:a3:03:b6:25:b2:da:91:30:61:1c: 9b:ee:d0:83:9f:0f:f4:71:df:08:7a:cf:e5:3e:80:b5:df:8d: 81:0f:22:63 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsYA2hEcwHmsHdwBpGEjIxeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjMzlkNTc5MzZkZDJkMTUyMTQ0M2U2OGRhZGQ5ZDA5NDlj ZGUzM2YwHhcNMjUxMjEzMTQwMDM1WhcNMjUxMjE0MTQwMDM1WjAzMTEwLwYDVQQD EygxM2NkZjZlMTA1ZTYyNzVlYTY0YmYxZjhjMDM2NGMwMmFjN2Q2N2JiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlt1D1tA+sNp9pRPU/VPgCYYyyYQb 9cBWL1PRyn9jilf/RFJZAWzVftKjhx3e6DPXjsZpog41QBWhWJcpVaNpmlVD0TgA mRsugQmvp3wSZV0Y/Cbn+M1/Ek1PvzQiVTJil1NFxhMdw5oypfByNETn7yBVlXct cKM4UOT8SqOC8RjirMixEZKcFBZk36UXmCZsUI3B98LJc/CcJILpnSq69AvROJ+P sjVXBi/ji4yeLyt+pUJTakBhyUX7cxZmBHTgZc01jUR5uEIq1XAm/v+5sncCSS5I W8lxxsUTldojBj/ooNtL2XI6ilRGkZIDOy7+dnWXfw/AYiVeVHGrg7LATwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBPN9uEF5idepkvx+MA2TAKsfWe7MB8GA1UdIwQY MBaAFBw51Xk23S0VIUQ+aNrdnQlJzeM/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSERuVmVUYmRMUlVoUkQ1bzJ0MmRDVW5ONHo4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy9kMzg1NmYtMDI5Yy00NDZhLWFlN2Qt ZDdjNWRhN2MxNjc2LzEvSERuVmVUYmRMUlVoUkQ1bzJ0MmRDVW5ONHo4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNy9kMzg1NmYtMDI5Yy00NDZhLWFlN2QtZDdjNWRhN2MxNjc2 LzEvSERuVmVUYmRMUlVoUkQ1bzJ0MmRDVW5ONHo4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAzXx2FLtQ U1MGNXGofOya8XBBXKccLkjG52o40FBC0rAbfG1JSv2R2cPVBDqgXpl4zdb5FrtS jKowfVZKxlidvJujLA1cje0T0umnh60CfhD7X6dM+GdFILzai9Ypxy1z8ZN5F/wU +CSVlhpVImSeVHXj0isSS9Ipq/bkhCkFOVE08jOCf/PbkmiSwF7KbcueCbCHlIks dRRro7ZHUYPsx7Zb2XylfLkYRRDMnYUqAlJOgPVoFYOMlnW8iqzqFIJ9O4xKuWyc DtSc2+k+7yE8ER1Z1cCEMhi0BYpYny+N7iCjA7YlstqRMGEcm+7Qg58P9HHfCHrP 5T6Atd+NgQ8iYw== -----END CERTIFICATE-----Generated at Sun Dec 14 00:01:46 2025 by rpki-client