This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.mft File: HvpZajEmrOApxtcNUpJX4Hs4ugY.mft (raw, json) Hash identifier: xiy0A/J+Sfod3n5tWtV44YIBNZxg1kSg3w+fAkloXPI= Subject key identifier: A8:EA:1E:05:61:55:A8:08:C0:EB:47:D9:CF:A1:A1:72:89:A0:A1:0C Authority key identifier: 1E:FA:59:6A:31:26:AC:E0:29:C6:D7:0D:52:92:57:E0:7B:38:BA:06 Certificate issuer: /CN=1efa596a3126ace029c6d70d529257e07b38ba06 Certificate serial: 019B126FDC3153959E8183E4204C6DB8BA75 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HvpZajEmrOApxtcNUpJX4Hs4ugY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.mft Manifest number: 1777 Signing time: Fri 12 Dec 2025 12:01:19 +0000 Manifest this update: Fri 12 Dec 2025 12:01:19 +0000 Manifest next update: Sat 13 Dec 2025 12:01:19 +0000 Files and hashes: 1: 3rLuW8QzyohR5G8GlpoQPu-Q6-s.roa (hash: F/8n4kYq76m4ZS+34MKi7W7c5dmdl0PtvWuG8cLJRrQ=) 2: 5ExX7PElDwhZvsqUirscS-kfnho.roa (hash: bqRW9TpS9PZv6OIHrk3qUk9RHaZcJhV08bnl4u3kvQE=) 3: HvpZajEmrOApxtcNUpJX4Hs4ugY.crl (hash: tfl6hhc3VXGLnrlDiAxCV/rTQXuMFNlJ8TcaWbZ1y8M=) 4: SUGGbjb1_Jk1qcT2JM8WcjQsO3o.roa (hash: oGVNqEXP6azb1lMS8LZZ+mpr73t/MEzsv974PdYYkYc=) 5: Z1aPPPc81U2W2p-hUbb2wEiLSrc.roa (hash: 2YYRPX4gY5ODPttZebzHcbGfP4UENAWKSJvWHEPrLO0=) 6: n-W5m8Lx-i-ynu-cgERA98e1TOA.roa (hash: 4MuuW1m/TV8O5IZ0i/ayNAC7gzR7V1teSLC1JE5/iDs=) 7: pMSZccnz2cyq4EAmIRmDcUPtCn0.roa (hash: rRJO86ohCtFwFSEvJg481KQrtUgLqQRd6A69YZTm2Ng=) 8: ySmmDjcV5o8HMr8fci-zFbiYdNg.roa (hash: QRYJ/tIaqmXv+2YeufSiFwnuiLCPfX4BPxDANJPYOl0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.mft rsync://rpki.ripe.net/repository/DEFAULT/HvpZajEmrOApxtcNUpJX4Hs4ugY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Dec 2025 08:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:12:6f:dc:31:53:95:9e:81:83:e4:20:4c:6d:b8:ba:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1efa596a3126ace029c6d70d529257e07b38ba06 Validity Not Before: Dec 12 12:01:19 2025 GMT Not After : Dec 13 12:01:19 2025 GMT Subject: CN=a8ea1e056155a808c0eb47d9cfa1a17289a0a10c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:df:37:3c:f0:3b:00:bc:93:be:39:33:65:a2: e0:32:21:2e:b4:4e:d6:6b:06:11:f0:ad:9d:a8:ac: 61:25:35:78:97:0d:6b:39:04:19:dd:d8:74:38:2d: 3b:46:ad:b0:fd:d9:ee:9d:d4:b1:8f:15:7e:7f:64: 41:b5:ca:b7:a3:a4:03:b1:33:bf:69:f9:71:84:26: 6c:49:44:12:18:80:60:e8:c8:aa:c6:ae:1f:7e:3f: fd:c7:11:8a:e9:af:75:70:e9:dc:cc:48:7f:d1:74: 21:81:46:85:64:cc:15:a8:9b:3f:b0:6a:2b:cd:ff: 15:e7:d9:5d:d6:b1:30:7f:f4:ee:36:8f:04:5f:2b: c8:33:f5:b8:49:20:f2:70:5a:4b:85:5c:21:a1:d5: 82:27:b8:17:37:cc:ee:8d:45:49:6a:36:cc:78:65: 78:27:cb:62:ba:b4:33:3e:ef:42:23:9d:a3:67:0b: 40:68:0a:77:ab:12:ed:3e:ac:5d:0c:23:24:81:76: b0:5e:95:dd:6b:cc:fb:ba:f9:7d:98:e5:e1:6f:22: 58:f7:62:bf:17:a7:10:a2:e9:d8:65:0b:72:a3:a8: 0a:4c:a9:d9:e7:c0:c7:64:81:40:b6:57:8b:6f:eb: 49:4b:ef:b3:c9:3f:9e:de:4e:be:34:50:ef:4b:7b: 84:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:EA:1E:05:61:55:A8:08:C0:EB:47:D9:CF:A1:A1:72:89:A0:A1:0C X509v3 Authority Key Identifier: keyid:1E:FA:59:6A:31:26:AC:E0:29:C6:D7:0D:52:92:57:E0:7B:38:BA:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HvpZajEmrOApxtcNUpJX4Hs4ugY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:5d:ac:4b:4d:79:84:ad:8d:b7:a5:75:59:fe:78:c8:be:d4: 84:21:89:eb:16:ee:9d:38:b1:8f:73:78:1e:b1:8b:f7:83:4d: 28:6f:06:a5:60:45:bf:88:a5:65:70:cc:fa:40:c4:73:49:ed: f4:bd:27:48:6d:fb:b6:42:b6:0f:64:80:49:e1:c7:1b:e4:a1: ed:3a:b5:c7:46:cc:38:17:ab:93:07:4b:b7:2b:9f:54:90:8a: 9c:69:e8:13:dd:82:35:1d:4e:fc:24:ab:a9:ea:03:b9:d8:30: 82:86:83:c0:2c:54:3e:83:75:42:40:b9:c1:17:04:98:ee:94: 0a:cf:b6:a7:b9:c6:8e:8f:3c:47:1e:d5:10:da:70:4e:7e:92: 68:49:f2:2c:c7:c7:10:7f:e7:84:19:dc:27:f3:f1:21:85:5f: 57:58:06:5e:16:46:da:87:55:50:c5:1a:b8:22:fc:01:ce:eb: 05:db:af:f7:b6:b3:2f:e2:4b:09:97:1a:98:f9:4a:36:a5:09: 1a:56:18:69:a6:86:c9:3d:85:2b:a5:a6:5d:d3:17:d3:e3:5b: 78:fa:94:1f:10:e3:94:aa:c6:b8:bf:28:0d:6d:f2:86:9f:b3: 35:74:d4:51:73:36:ff:7d:cc:c4:21:28:07:66:91:ce:80:e3: 7a:f9:4e:28 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsSb9wxU5WegYPkIExtuLp1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlZmE1OTZhMzEyNmFjZTAyOWM2ZDcwZDUyOTI1N2UwN2Iz OGJhMDYwHhcNMjUxMjEyMTIwMTE5WhcNMjUxMjEzMTIwMTE5WjAzMTEwLwYDVQQD EyhhOGVhMWUwNTYxNTVhODA4YzBlYjQ3ZDljZmExYTE3Mjg5YTBhMTBjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApd83PPA7ALyTvjkzZaLgMiEutE7W awYR8K2dqKxhJTV4lw1rOQQZ3dh0OC07Rq2w/dnundSxjxV+f2RBtcq3o6QDsTO/ aflxhCZsSUQSGIBg6Miqxq4ffj/9xxGK6a91cOnczEh/0XQhgUaFZMwVqJs/sGor zf8V59ld1rEwf/TuNo8EXyvIM/W4SSDycFpLhVwhodWCJ7gXN8zujUVJajbMeGV4 J8tiurQzPu9CI52jZwtAaAp3qxLtPqxdDCMkgXawXpXda8z7uvl9mOXhbyJY92K/ F6cQounYZQtyo6gKTKnZ58DHZIFAtleLb+tJS++zyT+e3k6+NFDvS3uExwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKjqHgVhVagIwOtH2c+hoXKJoKEMMB8GA1UdIwQY MBaAFB76WWoxJqzgKcbXDVKSV+B7OLoGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSHZwWmFqRW1yT0FweHRjTlVwSlg0SHM0dWdZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS8zY2M3OGEtOGZiNS00NzVhLTg4ODIt OWQwYzYyMDczNWYxLzEvSHZwWmFqRW1yT0FweHRjTlVwSlg0SHM0dWdZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS8zY2M3OGEtOGZiNS00NzVhLTg4ODItOWQwYzYyMDczNWYx LzEvSHZwWmFqRW1yT0FweHRjTlVwSlg0SHM0dWdZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJV2sS015 hK2Nt6V1Wf54yL7UhCGJ6xbunTixj3N4HrGL94NNKG8GpWBFv4ilZXDM+kDEc0nt 9L0nSG37tkK2D2SASeHHG+Sh7Tq1x0bMOBerkwdLtyufVJCKnGnoE92CNR1O/CSr qeoDudgwgoaDwCxUPoN1QkC5wRcEmO6UCs+2p7nGjo88Rx7VENpwTn6SaEnyLMfH EH/nhBncJ/PxIYVfV1gGXhZG2odVUMUauCL8Ac7rBduv97azL+JLCZcamPlKNqUJ GlYYaaaGyT2FK6WmXdMX0+NbePqUHxDjlKrGuL8oDW3yhp+zNXTUUXM2/33MxCEo B2aRzoDjevlOKA== -----END CERTIFICATE-----Generated at Fri Dec 12 15:46:31 2025 by rpki-client