This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.mft File: I_Hgnw5u2JGtF9bOSjxzKNdZtMg.mft (raw, json) Hash identifier: Qijp6tNgpkK2n7GBv0aSl3sHddkjOCequS1DpStpsZc= Subject key identifier: 4A:D0:B0:1D:EE:8F:55:19:AE:EC:66:38:6C:79:04:C0:83:33:5B:AF Authority key identifier: 23:F1:E0:9F:0E:6E:D8:91:AD:17:D6:CE:4A:3C:73:28:D7:59:B4:C8 Certificate issuer: /CN=23f1e09f0e6ed891ad17d6ce4a3c7328d759b4c8 Certificate serial: 019B341F76EB8759929717E82C7C9E993A61 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.mft Manifest number: 1784 Signing time: Fri 19 Dec 2025 01:00:35 +0000 Manifest this update: Fri 19 Dec 2025 01:00:35 +0000 Manifest next update: Sat 20 Dec 2025 01:00:35 +0000 Files and hashes: 1: I_Hgnw5u2JGtF9bOSjxzKNdZtMg.crl (hash: +MvHE9vja74fk4lfp+BuEVdWEz25zU9vBI48/VIFP5s=) 2: Tp4BAItGYlXYP71Yl1jvkjdBkns.roa (hash: BUC2R1hzU4lwEDEogKCUTPLUZZa/Hz8pj9j9ce25uwk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.crl rsync://rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.mft rsync://rpki.ripe.net/repository/DEFAULT/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 01:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:34:1f:76:eb:87:59:92:97:17:e8:2c:7c:9e:99:3a:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23f1e09f0e6ed891ad17d6ce4a3c7328d759b4c8 Validity Not Before: Dec 19 01:00:35 2025 GMT Not After : Dec 20 01:00:35 2025 GMT Subject: CN=4ad0b01dee8f5519aeec66386c7904c083335baf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:8c:ab:f6:47:f6:ac:ea:a3:e0:d7:5e:21:e0: 83:59:cd:ab:57:be:18:05:c8:96:88:3d:cd:e4:2c: 7c:a1:f8:7e:ca:02:fa:20:41:5d:a8:cf:c7:07:d7: 9f:3d:52:f6:b3:60:dd:44:c8:b9:6a:87:ed:57:03: e0:d4:03:33:b6:45:45:21:36:e0:c2:43:50:3b:04: bd:ba:47:c9:1b:9d:5f:02:a9:f0:bc:40:26:8a:9f: d0:b5:64:48:e1:06:4c:95:c9:36:63:41:33:65:18: ab:cc:b7:bd:5f:fc:b6:91:aa:2d:33:eb:4c:34:b8: 91:cf:08:05:23:5b:20:c0:90:c5:25:6c:4b:76:9c: 43:4e:1f:0a:2a:da:a2:46:2a:8d:bc:1f:a0:9c:cb: 9f:8a:4b:91:3c:95:45:44:d5:f2:0e:89:e5:e2:31: 6e:af:28:8a:8a:5a:4c:20:bf:cf:1c:8c:6d:e5:5e: f6:35:0c:1a:83:0c:c6:e6:9d:9f:8e:f4:06:85:ee: 37:c6:4f:95:b9:68:d5:48:6c:6a:84:98:61:22:f0: 16:4b:2e:78:97:c0:b4:bd:43:d4:b5:1e:79:ae:6f: 76:06:f1:cb:db:50:c4:43:d0:cf:c2:d6:aa:8b:1a: 7f:27:99:dc:f1:35:5f:5a:b6:1c:62:7e:a1:90:e4: 2b:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:D0:B0:1D:EE:8F:55:19:AE:EC:66:38:6C:79:04:C0:83:33:5B:AF X509v3 Authority Key Identifier: keyid:23:F1:E0:9F:0E:6E:D8:91:AD:17:D6:CE:4A:3C:73:28:D7:59:B4:C8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:04:63:cb:8d:9f:29:29:a8:9e:45:00:a8:83:6d:ac:5b:37: 8d:79:6a:9a:08:60:a9:65:33:61:e5:f3:38:f9:95:17:13:b8: e3:76:4a:96:06:f2:f7:4e:c2:66:ae:4b:38:86:fd:f8:aa:a2: de:3b:03:20:48:c4:d6:8f:4b:53:28:c1:38:e3:35:c2:78:30: b6:10:ee:ef:ad:cb:0a:f6:c5:00:9f:32:f0:a1:17:09:a5:a3: 32:c4:4a:ff:96:8a:11:c8:b5:54:6a:ab:db:b5:29:1d:3f:6f: b9:08:38:62:3b:51:ef:a5:37:e3:07:67:07:b3:c6:06:63:d3: fc:57:fc:5c:45:a5:df:68:f3:4a:08:6d:02:c0:07:a7:4e:c5: 21:00:d3:41:cd:f4:9c:bb:a5:94:f9:cf:2f:3c:6e:95:d1:ec: 1d:45:55:74:c0:70:02:8e:c6:c0:39:2a:e9:d1:b1:10:49:cd: 28:52:7c:c9:89:7b:3a:a3:ad:2e:d8:0e:e5:4f:48:6e:4a:9c: 33:3e:38:79:73:f8:e8:a4:9d:b5:c0:88:df:f9:a4:5e:c7:d7: e7:4b:51:89:21:93:68:ac:c6:48:58:4c:ee:5a:50:73:e3:37: d6:18:16:e9:26:57:ae:08:83:99:45:cf:64:4d:51:90:bd:4d: 8d:3f:29:35 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs0H3brh1mSlxfoLHyemTphMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzZjFlMDlmMGU2ZWQ4OTFhZDE3ZDZjZTRhM2M3MzI4ZDc1 OWI0YzgwHhcNMjUxMjE5MDEwMDM1WhcNMjUxMjIwMDEwMDM1WjAzMTEwLwYDVQQD Eyg0YWQwYjAxZGVlOGY1NTE5YWVlYzY2Mzg2Yzc5MDRjMDgzMzM1YmFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo4yr9kf2rOqj4NdeIeCDWc2rV74Y BciWiD3N5Cx8ofh+ygL6IEFdqM/HB9efPVL2s2DdRMi5aoftVwPg1AMztkVFITbg wkNQOwS9ukfJG51fAqnwvEAmip/QtWRI4QZMlck2Y0EzZRirzLe9X/y2kaotM+tM NLiRzwgFI1sgwJDFJWxLdpxDTh8KKtqiRiqNvB+gnMufikuRPJVFRNXyDonl4jFu ryiKilpMIL/PHIxt5V72NQwagwzG5p2fjvQGhe43xk+VuWjVSGxqhJhhIvAWSy54 l8C0vUPUtR55rm92BvHL21DEQ9DPwtaqixp/J5nc8TVfWrYcYn6hkOQrLQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFErQsB3uj1UZruxmOGx5BMCDM1uvMB8GA1UdIwQY MBaAFCPx4J8ObtiRrRfWzko8cyjXWbTIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSV9IZ253NXUySkd0RjliT1NqeHpLTmRadE1nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC85NTVlZDEtOGI0MC00MTg1LTg0YTkt MmRkY2Y1NmE3NjNlLzEvSV9IZ253NXUySkd0RjliT1NqeHpLTmRadE1nLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZC85NTVlZDEtOGI0MC00MTg1LTg0YTktMmRkY2Y1NmE3NjNl LzEvSV9IZ253NXUySkd0RjliT1NqeHpLTmRadE1nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMgRjy42f KSmonkUAqINtrFs3jXlqmghgqWUzYeXzOPmVFxO443ZKlgby907CZq5LOIb9+Kqi 3jsDIEjE1o9LUyjBOOM1wngwthDu763LCvbFAJ8y8KEXCaWjMsRK/5aKEci1VGqr 27UpHT9vuQg4YjtR76U34wdnB7PGBmPT/Ff8XEWl32jzSghtAsAHp07FIQDTQc30 nLullPnPLzxuldHsHUVVdMBwAo7GwDkq6dGxEEnNKFJ8yYl7OqOtLtgO5U9Ibkqc Mz44eXP46KSdtcCI3/mkXsfX50tRiSGTaKzGSFhM7lpQc+M31hgW6SZXrgiDmUXP ZE1RkL1NjT8pNQ== -----END CERTIFICATE-----Generated at Fri Dec 19 10:25:55 2025 by rpki-client