This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.mft File: HVywmM9vf7aKGBrs2o6jjmTFrJ0.mft (raw, json) Hash identifier: DO3BgXBz9SAeKylpfV4cIazxBA2GewtH6Sk+0Kqf4cE= Subject key identifier: 36:E1:49:7A:C6:D0:14:29:0B:3A:DF:8F:89:66:6A:F4:1A:34:47:84 Authority key identifier: 1D:5C:B0:98:CF:6F:7F:B6:8A:18:1A:EC:DA:8E:A3:8E:64:C5:AC:9D Certificate issuer: /CN=1d5cb098cf6f7fb68a181aecda8ea38e64c5ac9d Certificate serial: 019B058FA9BA5C9C010654E5FF81CB04090F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HVywmM9vf7aKGBrs2o6jjmTFrJ0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.mft Manifest number: 02ED Signing time: Wed 10 Dec 2025 00:00:59 +0000 Manifest this update: Wed 10 Dec 2025 00:00:59 +0000 Manifest next update: Thu 11 Dec 2025 00:00:59 +0000 Files and hashes: 1: GPBnMrccvHfLRUetSr0V2OhSV78.roa (hash: bMjAfl7v9vzL7TDoDm3Lu45G9wMjJfK+MiFqNCPT/Us=) 2: HVywmM9vf7aKGBrs2o6jjmTFrJ0.crl (hash: pQduFOgkXtSrWx8qQj4ZnxYvh+JXrjIXexcOf+J6v38=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.crl rsync://rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.mft rsync://rpki.ripe.net/repository/DEFAULT/HVywmM9vf7aKGBrs2o6jjmTFrJ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 11 Dec 2025 00:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:05:8f:a9:ba:5c:9c:01:06:54:e5:ff:81:cb:04:09:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1d5cb098cf6f7fb68a181aecda8ea38e64c5ac9d Validity Not Before: Dec 10 00:00:59 2025 GMT Not After : Dec 11 00:00:59 2025 GMT Subject: CN=36e1497ac6d014290b3adf8f89666af41a344784 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:dd:2e:9c:52:8c:9d:5f:d5:aa:b2:cd:88:30: 0f:88:92:31:0e:d0:d8:c7:07:aa:72:d5:b6:2b:d3: c9:86:34:a0:85:f0:34:f8:22:65:6d:b2:bc:e4:0d: 55:aa:51:c3:c8:02:c0:9c:e9:d6:5d:19:13:b7:7a: fc:62:5d:2c:37:19:74:a8:87:70:b8:05:34:46:c3: 88:84:b8:6b:3d:72:28:f8:76:82:2c:76:f0:ad:2b: 70:d0:82:68:c5:71:41:b7:ab:d5:9f:ca:7d:32:cf: cf:ea:82:d1:15:a5:b7:98:b6:65:20:0f:52:7d:9e: eb:fb:cd:2d:08:b8:d7:13:df:87:82:a0:e7:88:17: 70:9e:7a:26:b8:73:37:a5:72:64:75:d4:00:17:09: 22:b3:32:7a:34:d3:5d:64:d2:a5:b8:11:f0:d9:15: 1a:c7:0a:7f:b1:0b:6b:87:67:69:90:13:b9:c5:f5: cc:7b:9d:7a:d5:57:f5:bf:cd:b4:a5:2b:e2:a4:ed: 89:ce:c0:f6:92:0d:6c:fa:16:33:cf:9b:86:4c:11: f5:56:f2:0a:41:7b:d1:e2:d0:0d:6b:1a:48:54:4d: f2:3d:d5:22:45:d7:3a:47:b6:0c:ec:eb:35:08:15: cd:27:77:e1:29:1e:fd:67:c1:ac:d5:77:6a:be:96: e4:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:E1:49:7A:C6:D0:14:29:0B:3A:DF:8F:89:66:6A:F4:1A:34:47:84 X509v3 Authority Key Identifier: keyid:1D:5C:B0:98:CF:6F:7F:B6:8A:18:1A:EC:DA:8E:A3:8E:64:C5:AC:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HVywmM9vf7aKGBrs2o6jjmTFrJ0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/3d8127-44de-407b-9499-d6a43319aa21/1/HVywmM9vf7aKGBrs2o6jjmTFrJ0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a1:e1:4d:55:27:12:d2:76:ea:a1:cf:cf:8e:85:94:2d:41:4d: f3:69:17:5c:f3:93:b4:bf:0c:b3:09:e3:61:cc:df:9e:58:9a: c0:d2:20:10:96:5b:5f:6b:99:27:16:bd:16:2b:75:10:2d:65: 45:4b:0b:e6:d4:d0:18:ce:30:80:19:1d:99:83:5d:1c:8d:11: 69:8d:6f:a8:fa:ce:44:48:92:9d:2f:25:2f:15:3f:9d:26:f9: 01:9e:7b:f7:4f:8a:79:10:2b:22:0e:3f:60:4a:c7:91:1e:5b: 35:5a:ca:c2:25:b2:d2:4c:7e:19:72:a2:0e:e7:82:be:bf:87: 31:b1:6f:4b:d4:cc:a2:12:a2:8f:f7:17:1a:34:eb:c6:ce:2b: 0e:d8:a2:59:bf:4e:bb:6b:10:a5:a4:25:73:f8:d7:80:60:8e: 9e:3e:25:99:05:88:9d:54:57:ce:2b:61:40:27:a1:d2:92:f0: fd:eb:3f:63:f2:76:99:30:72:1a:dc:b1:2b:c2:2f:5a:49:b5: 28:5e:d1:66:05:e5:af:6c:89:14:30:13:ed:f5:f0:cc:ee:37: 1e:74:61:8b:96:73:41:ab:e3:38:7a:f3:cb:3d:22:f5:d9:cc: b5:ab:46:a2:e9:76:2a:90:cd:20:65:2b:00:e4:62:11:0b:ac: b7:96:1a:bc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsFj6m6XJwBBlTl/4HLBAkPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkNWNiMDk4Y2Y2ZjdmYjY4YTE4MWFlY2RhOGVhMzhlNjRj NWFjOWQwHhcNMjUxMjEwMDAwMDU5WhcNMjUxMjExMDAwMDU5WjAzMTEwLwYDVQQD EygzNmUxNDk3YWM2ZDAxNDI5MGIzYWRmOGY4OTY2NmFmNDFhMzQ0Nzg0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu90unFKMnV/VqrLNiDAPiJIxDtDY xweqctW2K9PJhjSghfA0+CJlbbK85A1VqlHDyALAnOnWXRkTt3r8Yl0sNxl0qIdw uAU0RsOIhLhrPXIo+HaCLHbwrStw0IJoxXFBt6vVn8p9Ms/P6oLRFaW3mLZlIA9S fZ7r+80tCLjXE9+HgqDniBdwnnomuHM3pXJkddQAFwkiszJ6NNNdZNKluBHw2RUa xwp/sQtrh2dpkBO5xfXMe5161Vf1v820pSvipO2JzsD2kg1s+hYzz5uGTBH1VvIK QXvR4tANaxpIVE3yPdUiRdc6R7YM7Os1CBXNJ3fhKR79Z8Gs1XdqvpbkNQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDbhSXrG0BQpCzrfj4lmavQaNEeEMB8GA1UdIwQY MBaAFB1csJjPb3+2ihga7NqOo45kxaydMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSFZ5d21NOXZmN2FLR0JyczJvNmpqbVRGckowLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYy8zZDgxMjctNDRkZS00MDdiLTk0OTkt ZDZhNDMzMTlhYTIxLzEvSFZ5d21NOXZmN2FLR0JyczJvNmpqbVRGckowLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYy8zZDgxMjctNDRkZS00MDdiLTk0OTktZDZhNDMzMTlhYTIx LzEvSFZ5d21NOXZmN2FLR0JyczJvNmpqbVRGckowLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoeFNVScS 0nbqoc/PjoWULUFN82kXXPOTtL8MswnjYczfnliawNIgEJZbX2uZJxa9Fit1EC1l RUsL5tTQGM4wgBkdmYNdHI0RaY1vqPrOREiSnS8lLxU/nSb5AZ5790+KeRArIg4/ YErHkR5bNVrKwiWy0kx+GXKiDueCvr+HMbFvS9TMohKij/cXGjTrxs4rDtiiWb9O u2sQpaQlc/jXgGCOnj4lmQWInVRXzithQCeh0pLw/es/Y/J2mTByGtyxK8IvWkm1 KF7RZgXlr2yJFDAT7fXwzO43HnRhi5ZzQavjOHrzyz0i9dnMtatGoul2KpDNIGUr AORiEQust5YavA== -----END CERTIFICATE-----Generated at Wed Dec 10 09:04:41 2025 by rpki-client