This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.mft File: H0guXkEsHeu3dt7fr0XDMXTnZC4.mft (raw, json) Hash identifier: 6SQCZ310zC1XfPW6E6oMJCB+byKhkqWUABhjIsFzJM8= Subject key identifier: F5:72:F3:DB:56:CB:54:79:47:6F:AC:9C:C6:BA:4B:4A:79:BF:6B:4F Authority key identifier: 1F:48:2E:5E:41:2C:1D:EB:B7:76:DE:DF:AF:45:C3:31:74:E7:64:2E Certificate issuer: /CN=1f482e5e412c1debb776dedfaf45c33174e7642e Certificate serial: 019B37579385CEF37DDDA4D1F7FFDE498097 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0guXkEsHeu3dt7fr0XDMXTnZC4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.mft Manifest number: 05D0 Signing time: Fri 19 Dec 2025 16:00:44 +0000 Manifest this update: Fri 19 Dec 2025 16:00:44 +0000 Manifest next update: Sat 20 Dec 2025 16:00:44 +0000 Files and hashes: 1: H0guXkEsHeu3dt7fr0XDMXTnZC4.crl (hash: 5sHeMkBDEqPd41WBTHwuneo7Y7HTq6My4Mzpk07jv5Q=) 2: StsIBWXPkUmDPSa1M3nyv0UDUR4.roa (hash: rqGYqeTGV9tyOvnudhslVeQEEchE0GwN6rysMNZqs1k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.crl rsync://rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.mft rsync://rpki.ripe.net/repository/DEFAULT/H0guXkEsHeu3dt7fr0XDMXTnZC4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:37:57:93:85:ce:f3:7d:dd:a4:d1:f7:ff:de:49:80:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1f482e5e412c1debb776dedfaf45c33174e7642e Validity Not Before: Dec 19 16:00:44 2025 GMT Not After : Dec 20 16:00:44 2025 GMT Subject: CN=f572f3db56cb5479476fac9cc6ba4b4a79bf6b4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:57:e3:94:e8:13:97:df:92:2f:c2:cd:f2:82: fd:65:35:93:5b:2b:57:8c:db:a7:59:2f:5e:69:2f: 47:70:6d:4a:11:86:ec:f1:f0:8a:06:ea:85:28:8d: 9c:a9:30:f6:d2:26:67:61:4c:a7:bb:c4:e4:fb:77: 9f:22:e0:96:d1:4d:43:2b:3d:b6:34:5d:6a:3a:90: c5:be:7e:9e:7d:9b:25:22:47:65:42:9c:f5:25:6e: 74:fd:9c:5f:d7:20:a0:7f:5b:c5:e2:bc:08:16:fd: 64:9e:47:c5:78:6f:0b:ff:52:55:70:a4:2a:d9:9f: ea:97:76:f8:00:9c:72:17:e4:aa:36:93:8e:5e:0c: c9:3b:b8:26:9a:45:e7:a4:f1:2b:9d:b4:b6:ed:4b: 34:d8:39:22:06:80:63:24:4e:ef:20:60:d9:b5:43: ac:44:2f:9b:af:db:66:e7:f0:c6:cf:73:ec:af:e6: 54:30:b9:f7:00:d1:3a:da:f8:64:de:72:2b:36:95: 79:c0:c9:b6:6f:2f:8a:49:32:0b:4f:47:29:16:95: 22:5d:91:26:13:48:16:e6:bd:0e:40:58:a5:b4:61: d6:80:10:18:e6:ec:b1:13:a5:b4:e4:72:89:f2:5e: f8:98:3d:ca:63:ff:0a:7f:8c:57:54:28:03:43:60: f2:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:72:F3:DB:56:CB:54:79:47:6F:AC:9C:C6:BA:4B:4A:79:BF:6B:4F X509v3 Authority Key Identifier: keyid:1F:48:2E:5E:41:2C:1D:EB:B7:76:DE:DF:AF:45:C3:31:74:E7:64:2E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0guXkEsHeu3dt7fr0XDMXTnZC4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7dde96-10dd-4323-81d2-d2e3372ac29c/1/H0guXkEsHeu3dt7fr0XDMXTnZC4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:25:08:a2:4d:06:b6:a5:f4:36:62:5b:c9:37:9b:a1:b9:c2: 27:89:1e:30:c1:49:82:f2:b6:a8:87:c5:3d:32:ea:ed:9e:ef: ba:4c:25:d8:be:10:47:66:48:87:28:67:71:9b:02:67:5a:9e: ea:06:b9:c6:12:3e:16:db:7b:43:2e:49:f3:e7:2f:9a:44:dc: 19:1d:73:7a:6d:46:bb:ce:66:f8:e0:d0:10:8f:db:d8:86:df: dd:e4:34:21:a8:cc:cc:ed:5e:e5:c2:dd:4f:26:0e:2b:c2:f2: 79:1e:9d:14:2b:24:6e:5d:b1:32:f0:5d:d0:17:ea:d0:9b:9a: 1b:93:d8:47:19:b6:96:c9:c9:db:48:d2:87:5f:f1:b8:22:00: 37:63:6e:45:95:55:46:4e:20:98:75:91:a1:74:39:09:da:98: 41:b6:1d:9f:a9:eb:f0:99:00:2e:9b:d4:3e:0c:f9:a4:0f:ac: 99:1b:02:2d:51:13:8d:36:26:8a:81:eb:ae:a7:db:de:d9:c0: 86:54:cb:b1:d3:b9:4d:ce:0c:fb:c6:fa:f0:40:62:3d:34:5c: 3a:b2:e2:a1:5a:69:bc:51:e2:54:ad:42:fb:1a:42:c2:4b:95: 7f:fb:cb:ee:3f:f0:dd:c1:d0:f8:fe:9b:1d:24:cc:fa:89:6c: 79:f0:d6:e4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs3V5OFzvN93aTR9//eSYCXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFmNDgyZTVlNDEyYzFkZWJiNzc2ZGVkZmFmNDVjMzMxNzRl NzY0MmUwHhcNMjUxMjE5MTYwMDQ0WhcNMjUxMjIwMTYwMDQ0WjAzMTEwLwYDVQQD EyhmNTcyZjNkYjU2Y2I1NDc5NDc2ZmFjOWNjNmJhNGI0YTc5YmY2YjRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuFfjlOgTl9+SL8LN8oL9ZTWTWytX jNunWS9eaS9HcG1KEYbs8fCKBuqFKI2cqTD20iZnYUynu8Tk+3efIuCW0U1DKz22 NF1qOpDFvn6efZslIkdlQpz1JW50/Zxf1yCgf1vF4rwIFv1knkfFeG8L/1JVcKQq 2Z/ql3b4AJxyF+SqNpOOXgzJO7gmmkXnpPErnbS27Us02DkiBoBjJE7vIGDZtUOs RC+br9tm5/DGz3Psr+ZUMLn3ANE62vhk3nIrNpV5wMm2by+KSTILT0cpFpUiXZEm E0gW5r0OQFiltGHWgBAY5uyxE6W05HKJ8l74mD3KY/8Kf4xXVCgDQ2DyWQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPVy89tWy1R5R2+snMa6S0p5v2tPMB8GA1UdIwQY MBaAFB9ILl5BLB3rt3be369FwzF052QuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSDBndVhrRXNIZXUzZHQ3ZnIwWERNWFRuWkM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS83ZGRlOTYtMTBkZC00MzIzLTgxZDIt ZDJlMzM3MmFjMjljLzEvSDBndVhrRXNIZXUzZHQ3ZnIwWERNWFRuWkM0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS83ZGRlOTYtMTBkZC00MzIzLTgxZDItZDJlMzM3MmFjMjlj LzEvSDBndVhrRXNIZXUzZHQ3ZnIwWERNWFRuWkM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHSUIok0G tqX0NmJbyTebobnCJ4keMMFJgvK2qIfFPTLq7Z7vukwl2L4QR2ZIhyhncZsCZ1qe 6ga5xhI+Ftt7Qy5J8+cvmkTcGR1zem1Gu85m+ODQEI/b2Ibf3eQ0IajMzO1e5cLd TyYOK8LyeR6dFCskbl2xMvBd0Bfq0JuaG5PYRxm2lsnJ20jSh1/xuCIAN2NuRZVV Rk4gmHWRoXQ5CdqYQbYdn6nr8JkALpvUPgz5pA+smRsCLVETjTYmioHrrqfb3tnA hlTLsdO5Tc4M+8b68EBiPTRcOrLioVppvFHiVK1C+xpCwkuVf/vL7j/w3cHQ+P6b HSTM+olsefDW5A== -----END CERTIFICATE-----Generated at Sat Dec 20 02:02:02 2025 by rpki-client