This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.mft File: I_Hgnw5u2JGtF9bOSjxzKNdZtMg.mft (raw, json) Hash identifier: ibGuT5hwLIYnIGUd6ZSDyh5uRwGGsRTBhMwSU9BzrpM= Subject key identifier: AD:76:5C:F7:D9:BC:E3:90:93:20:DD:5B:12:AC:8B:8B:15:01:07:E3 Authority key identifier: 23:F1:E0:9F:0E:6E:D8:91:AD:17:D6:CE:4A:3C:73:28:D7:59:B4:C8 Certificate issuer: /CN=23f1e09f0e6ed891ad17d6ce4a3c7328d759b4c8 Certificate serial: 019B43929139E401543DED8AC4C856EBC4CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.mft Manifest number: 178C Signing time: Mon 22 Dec 2025 01:00:37 +0000 Manifest this update: Mon 22 Dec 2025 01:00:37 +0000 Manifest next update: Tue 23 Dec 2025 01:00:37 +0000 Files and hashes: 1: I_Hgnw5u2JGtF9bOSjxzKNdZtMg.crl (hash: BMkumBgwM2wIO2oyZ+zzIm4jhrJLfoSVijPeq6ZZ5/c=) 2: Tp4BAItGYlXYP71Yl1jvkjdBkns.roa (hash: BUC2R1hzU4lwEDEogKCUTPLUZZa/Hz8pj9j9ce25uwk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.crl rsync://rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.mft rsync://rpki.ripe.net/repository/DEFAULT/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:43:92:91:39:e4:01:54:3d:ed:8a:c4:c8:56:eb:c4:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23f1e09f0e6ed891ad17d6ce4a3c7328d759b4c8 Validity Not Before: Dec 22 01:00:37 2025 GMT Not After : Dec 23 01:00:37 2025 GMT Subject: CN=ad765cf7d9bce3909320dd5b12ac8b8b150107e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:5d:34:f8:02:fb:f0:8d:29:17:0c:53:b3:d0: 24:2d:9f:85:17:77:42:de:f9:bd:5a:8d:56:e4:b5: 9a:06:ed:f3:42:e4:00:66:cc:d9:1b:6d:0f:c3:6d: 7f:eb:4f:be:39:a2:8a:ed:19:2f:97:66:24:43:f7: 18:1b:43:a3:1f:62:18:2b:3b:eb:06:a5:a0:5f:6f: 3f:29:67:be:0f:c3:dd:29:89:8d:ca:f7:6c:c9:54: 8d:0c:63:33:97:24:1c:f0:45:60:75:b3:30:d4:fe: d5:c7:65:cf:c1:83:0e:6c:3a:0e:a3:12:2a:d6:ff: 68:0b:0b:5a:ed:47:82:1d:1e:39:63:ca:94:11:f1: 6a:20:2a:29:d2:b7:cb:2e:64:2e:c0:8a:ca:e3:5c: 21:5b:67:f6:a5:f5:26:63:dc:a9:23:a3:93:f3:b1: 2d:1b:7b:58:4c:f2:52:b0:d1:95:a0:f8:14:02:d5: 0e:21:52:a2:ca:ef:db:a7:3b:48:ec:70:e8:9d:ea: 34:b3:92:ed:a1:d6:67:f5:47:98:0d:e1:f4:a8:01: fa:b1:e0:2c:aa:5e:9c:26:5b:82:a7:4e:42:4b:71: b4:56:1f:7a:4e:3b:04:fe:00:ad:f7:88:47:6a:13: 88:28:7a:c9:41:9e:fb:b4:31:3c:4f:c2:f8:2f:bc: ab:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:76:5C:F7:D9:BC:E3:90:93:20:DD:5B:12:AC:8B:8B:15:01:07:E3 X509v3 Authority Key Identifier: keyid:23:F1:E0:9F:0E:6E:D8:91:AD:17:D6:CE:4A:3C:73:28:D7:59:B4:C8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/955ed1-8b40-4185-84a9-2ddcf56a763e/1/I_Hgnw5u2JGtF9bOSjxzKNdZtMg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 38:37:81:b4:34:39:01:12:3d:ba:13:63:bd:fb:15:44:14:8d: 6e:64:b1:46:bf:74:81:ac:9a:7c:d5:a5:ad:53:43:5b:4c:50: b1:cd:8d:73:c9:6a:e5:97:06:dd:d2:3e:c6:5d:61:e1:5a:eb: f1:3a:e2:2c:bb:57:27:71:0a:ef:b1:b5:eb:ac:68:71:d2:20: 2e:fc:3a:50:29:3b:28:16:d1:56:54:d3:2e:fd:3e:92:f2:f5: 93:51:ff:a9:81:2f:f5:4d:8a:74:cf:14:c0:54:65:0a:00:1d: d8:a4:77:e8:3a:0a:06:8e:a9:90:6b:ca:13:fe:19:0c:cb:8b: c2:0f:1a:78:80:d8:ce:b0:06:2b:17:ab:0f:7e:b8:e0:84:31: 12:83:27:2f:3f:09:9d:69:19:02:54:e3:7b:cf:7a:84:5f:75: 52:66:d5:3f:ca:f0:a7:fe:ab:18:40:27:80:56:99:62:ec:17: b8:0d:0b:c2:c5:6e:0b:35:eb:96:f5:8a:88:39:a8:41:40:04: 34:3d:48:c6:64:0e:97:8d:99:42:9b:66:94:83:bb:5c:1b:e6: a5:0d:26:fd:94:8a:53:1c:0b:35:30:b3:ed:e8:9c:fc:67:c0: 25:4b:8e:9c:4f:19:71:97:fd:68:de:a0:c1:3f:07:3a:b7:94: af:e0:19:63 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtDkpE55AFUPe2KxMhW68TLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzZjFlMDlmMGU2ZWQ4OTFhZDE3ZDZjZTRhM2M3MzI4ZDc1 OWI0YzgwHhcNMjUxMjIyMDEwMDM3WhcNMjUxMjIzMDEwMDM3WjAzMTEwLwYDVQQD EyhhZDc2NWNmN2Q5YmNlMzkwOTMyMGRkNWIxMmFjOGI4YjE1MDEwN2UzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmV00+AL78I0pFwxTs9AkLZ+FF3dC 3vm9Wo1W5LWaBu3zQuQAZszZG20Pw21/60++OaKK7Rkvl2YkQ/cYG0OjH2IYKzvr BqWgX28/KWe+D8PdKYmNyvdsyVSNDGMzlyQc8EVgdbMw1P7Vx2XPwYMObDoOoxIq 1v9oCwta7UeCHR45Y8qUEfFqICop0rfLLmQuwIrK41whW2f2pfUmY9ypI6OT87Et G3tYTPJSsNGVoPgUAtUOIVKiyu/bpztI7HDoneo0s5LtodZn9UeYDeH0qAH6seAs ql6cJluCp05CS3G0Vh96TjsE/gCt94hHahOIKHrJQZ77tDE8T8L4L7yrKQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK12XPfZvOOQkyDdWxKsi4sVAQfjMB8GA1UdIwQY MBaAFCPx4J8ObtiRrRfWzko8cyjXWbTIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSV9IZ253NXUySkd0RjliT1NqeHpLTmRadE1nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC85NTVlZDEtOGI0MC00MTg1LTg0YTkt MmRkY2Y1NmE3NjNlLzEvSV9IZ253NXUySkd0RjliT1NqeHpLTmRadE1nLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZC85NTVlZDEtOGI0MC00MTg1LTg0YTktMmRkY2Y1NmE3NjNl LzEvSV9IZ253NXUySkd0RjliT1NqeHpLTmRadE1nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAODeBtDQ5 ARI9uhNjvfsVRBSNbmSxRr90gayafNWlrVNDW0xQsc2Nc8lq5ZcG3dI+xl1h4Vrr 8TriLLtXJ3EK77G166xocdIgLvw6UCk7KBbRVlTTLv0+kvL1k1H/qYEv9U2KdM8U wFRlCgAd2KR36DoKBo6pkGvKE/4ZDMuLwg8aeIDYzrAGKxerD3644IQxEoMnLz8J nWkZAlTje896hF91UmbVP8rwp/6rGEAngFaZYuwXuA0LwsVuCzXrlvWKiDmoQUAE ND1IxmQOl42ZQptmlIO7XBvmpQ0m/ZSKUxwLNTCz7eic/GfAJUuOnE8ZcZf9aN6g wT8HOreUr+AZYw== -----END CERTIFICATE-----Generated at Mon Dec 22 06:51:45 2025 by rpki-client