This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/b140ae-c047-4ff6-864f-3560356571a7/1/HpUuiDc295y9nFZHBL88NmIbjso.mft File: HpUuiDc295y9nFZHBL88NmIbjso.mft (raw, json) Hash identifier: rLQ04k9OEDAjl2CNYRxqjLn9Ar5Uvz4lPNs2aAKI8B0= Subject key identifier: E1:AC:47:BF:5B:0B:81:F8:61:22:56:F4:6E:4F:74:2B:24:CE:7F:A7 Authority key identifier: 1E:95:2E:88:37:36:F7:9C:BD:9C:56:47:04:BF:3C:36:62:1B:8E:CA Certificate issuer: /CN=1e952e883736f79cbd9c564704bf3c36621b8eca Certificate serial: 019B59ACDA10641CFB37854F8C54F4C23164 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HpUuiDc295y9nFZHBL88NmIbjso.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/b140ae-c047-4ff6-864f-3560356571a7/1/HpUuiDc295y9nFZHBL88NmIbjso.mft Manifest number: 179B Signing time: Fri 26 Dec 2025 08:00:58 +0000 Manifest this update: Fri 26 Dec 2025 08:00:58 +0000 Manifest next update: Sat 27 Dec 2025 08:00:58 +0000 Files and hashes: 1: HpUuiDc295y9nFZHBL88NmIbjso.crl (hash: gyFGJ2107He1qcUEQztFkKlzyPkrgf1NoifjEmImFlo=) 2: nfcB4W3-frcdsttLFxfqKvUAYPA.roa (hash: LSLZu1kedUT6p6v50vQ31LG0ikk6bjLybjbis0FT+ww=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/b140ae-c047-4ff6-864f-3560356571a7/1/HpUuiDc295y9nFZHBL88NmIbjso.crl rsync://rpki.ripe.net/repository/DEFAULT/2d/b140ae-c047-4ff6-864f-3560356571a7/1/HpUuiDc295y9nFZHBL88NmIbjso.mft rsync://rpki.ripe.net/repository/DEFAULT/HpUuiDc295y9nFZHBL88NmIbjso.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:ac:da:10:64:1c:fb:37:85:4f:8c:54:f4:c2:31:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1e952e883736f79cbd9c564704bf3c36621b8eca Validity Not Before: Dec 26 08:00:58 2025 GMT Not After : Dec 27 08:00:58 2025 GMT Subject: CN=e1ac47bf5b0b81f8612256f46e4f742b24ce7fa7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:d4:2f:a4:67:15:a4:66:33:02:04:f9:d0:34: 90:73:5d:e4:e3:46:81:28:a9:7a:d4:8c:5d:49:64: d0:8a:4c:4b:9a:2a:b7:fd:a4:f9:2b:19:85:1b:2b: 64:0b:86:ef:9f:1e:7f:d7:33:f9:7b:48:fb:d7:4f: 22:fb:75:45:b7:e2:f5:e4:38:b3:ef:42:31:12:14: d1:5d:81:99:c8:ee:3d:b3:ee:85:17:d0:dc:7b:7f: ef:14:65:0c:6a:64:96:8e:fb:9c:69:4c:49:6a:72: 9a:df:9f:9e:0b:bf:9d:e7:d4:17:35:50:67:db:b8: 60:dc:b4:6a:8f:ba:47:9b:11:f2:9a:30:9d:8c:3c: c7:45:52:bc:b4:4e:26:ef:ed:4c:4a:4b:72:c7:d4: 85:6b:72:fa:58:62:1a:6d:40:83:e2:7a:ed:b5:44: dd:ee:04:2e:71:27:d0:ed:a0:59:26:d8:77:4a:82: 43:ea:54:65:7c:55:50:e2:a4:b7:68:fe:4e:5e:83: ec:c2:11:aa:e5:c3:2b:11:4a:f9:b1:c2:74:ca:1b: ab:a1:03:f9:a1:50:d1:b0:86:dd:dd:83:58:ff:5a: 15:f3:19:eb:89:65:b5:0a:2b:41:05:f0:ae:26:bc: dc:be:81:7c:d3:97:b7:c4:36:18:cb:15:1c:39:e0: 10:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:AC:47:BF:5B:0B:81:F8:61:22:56:F4:6E:4F:74:2B:24:CE:7F:A7 X509v3 Authority Key Identifier: keyid:1E:95:2E:88:37:36:F7:9C:BD:9C:56:47:04:BF:3C:36:62:1B:8E:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HpUuiDc295y9nFZHBL88NmIbjso.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/b140ae-c047-4ff6-864f-3560356571a7/1/HpUuiDc295y9nFZHBL88NmIbjso.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/b140ae-c047-4ff6-864f-3560356571a7/1/HpUuiDc295y9nFZHBL88NmIbjso.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:8f:0e:c1:12:9e:a4:f4:d6:a9:f2:7a:8b:75:b5:c0:ca:e9: 99:d5:00:34:e8:4d:a0:39:ec:99:4e:fb:d8:ce:9f:1f:f7:7c: c8:07:83:53:cb:0d:da:e9:66:c7:07:c6:74:d3:66:1c:93:1b: 90:aa:c8:c4:9e:94:0d:7d:23:d0:3a:9c:7f:5d:a2:7b:ee:17: 22:89:a0:16:58:36:68:e3:20:e8:55:00:3a:a1:40:8d:2e:35: bc:c5:5d:9a:17:a3:41:c1:1b:4d:ec:67:c8:ff:23:0f:6c:d9: 54:cc:2b:2d:bb:ef:0e:03:a4:80:25:6c:ec:d4:d3:fa:17:af: 1a:a2:89:bc:35:2c:f7:3b:2d:8e:0d:43:29:03:da:e6:90:ec: 68:a4:9e:04:95:6d:38:2c:f9:fe:24:74:70:f8:fd:62:b3:57: 14:5d:b6:80:de:46:a9:ef:8f:21:56:15:b4:e9:5a:1f:4e:e8: b9:06:e7:04:e0:be:d1:83:a2:b3:2b:d1:26:90:45:b5:93:25: 45:b4:78:e4:40:18:2c:79:cb:88:16:f1:c5:4c:09:ad:c6:d2: 12:4c:74:0c:36:22:46:a3:b5:a5:0e:c5:17:d6:67:f3:b9:3a: bf:ef:be:3b:50:be:a5:1d:65:2e:87:4b:38:89:ed:d3:9c:27: 7a:27:db:be -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZrNoQZBz7N4VPjFT0wjFkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlOTUyZTg4MzczNmY3OWNiZDljNTY0NzA0YmYzYzM2NjIx YjhlY2EwHhcNMjUxMjI2MDgwMDU4WhcNMjUxMjI3MDgwMDU4WjAzMTEwLwYDVQQD EyhlMWFjNDdiZjViMGI4MWY4NjEyMjU2ZjQ2ZTRmNzQyYjI0Y2U3ZmE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn9QvpGcVpGYzAgT50DSQc13k40aB KKl61IxdSWTQikxLmiq3/aT5KxmFGytkC4bvnx5/1zP5e0j7108i+3VFt+L15Diz 70IxEhTRXYGZyO49s+6FF9Dce3/vFGUMamSWjvucaUxJanKa35+eC7+d59QXNVBn 27hg3LRqj7pHmxHymjCdjDzHRVK8tE4m7+1MSktyx9SFa3L6WGIabUCD4nrttUTd 7gQucSfQ7aBZJth3SoJD6lRlfFVQ4qS3aP5OXoPswhGq5cMrEUr5scJ0yhuroQP5 oVDRsIbd3YNY/1oV8xnriWW1CitBBfCuJrzcvoF805e3xDYYyxUcOeAQYQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOGsR79bC4H4YSJW9G5PdCskzn+nMB8GA1UdIwQY MBaAFB6VLog3NvecvZxWRwS/PDZiG47KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSHBVdWlEYzI5NXk5bkZaSEJMODhObUlianNvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC9iMTQwYWUtYzA0Ny00ZmY2LTg2NGYt MzU2MDM1NjU3MWE3LzEvSHBVdWlEYzI5NXk5bkZaSEJMODhObUlianNvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZC9iMTQwYWUtYzA0Ny00ZmY2LTg2NGYtMzU2MDM1NjU3MWE3 LzEvSHBVdWlEYzI5NXk5bkZaSEJMODhObUlianNvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW48OwRKe pPTWqfJ6i3W1wMrpmdUANOhNoDnsmU772M6fH/d8yAeDU8sN2ulmxwfGdNNmHJMb kKrIxJ6UDX0j0Dqcf12ie+4XIomgFlg2aOMg6FUAOqFAjS41vMVdmhejQcEbTexn yP8jD2zZVMwrLbvvDgOkgCVs7NTT+hevGqKJvDUs9zstjg1DKQPa5pDsaKSeBJVt OCz5/iR0cPj9YrNXFF22gN5Gqe+PIVYVtOlaH07ouQbnBOC+0YOisyvRJpBFtZMl RbR45EAYLHnLiBbxxUwJrcbSEkx0DDYiRqO1pQ7FF9Zn87k6v+++O1C+pR1lLodL OInt05wneifbvg== -----END CERTIFICATE-----Generated at Fri Dec 26 15:47:08 2025 by rpki-client