This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/afa106-6af8-4310-b4d4-e369d6602e6f/1/Hkfivzl0ch6vv7jDH8UnMDnVBfM.mft File: Hkfivzl0ch6vv7jDH8UnMDnVBfM.mft (raw, json) Hash identifier: UC1XHtrE+uARswER98FUB0ufKOh/5/BtDVY03O6cdq8= Subject key identifier: F5:A6:DD:AB:8B:EB:1C:41:76:69:8A:7B:70:95:99:99:C2:9F:98:4E Authority key identifier: 1E:47:E2:BF:39:74:72:1E:AF:BF:B8:C3:1F:C5:27:30:39:D5:05:F3 Certificate issuer: /CN=1e47e2bf3974721eafbfb8c31fc5273039d505f3 Certificate serial: 019B59E3DB37BBF8FC66272FF34D77253B28 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hkfivzl0ch6vv7jDH8UnMDnVBfM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/afa106-6af8-4310-b4d4-e369d6602e6f/1/Hkfivzl0ch6vv7jDH8UnMDnVBfM.mft Manifest number: 0DC5 Signing time: Fri 26 Dec 2025 09:01:03 +0000 Manifest this update: Fri 26 Dec 2025 09:01:03 +0000 Manifest next update: Sat 27 Dec 2025 09:01:03 +0000 Files and hashes: 1: Hkfivzl0ch6vv7jDH8UnMDnVBfM.crl (hash: w0I0lQw5khG62bLxjVtSvRi6xHxL6w+XYNEJeyXof0g=) 2: oaQkn5zr2sFy17og-aVMkuLXdds.roa (hash: VtZ3pTO5W1yzA+ps5HMSQhypm611YNtn0vckyLuCUAI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/afa106-6af8-4310-b4d4-e369d6602e6f/1/Hkfivzl0ch6vv7jDH8UnMDnVBfM.crl rsync://rpki.ripe.net/repository/DEFAULT/2f/afa106-6af8-4310-b4d4-e369d6602e6f/1/Hkfivzl0ch6vv7jDH8UnMDnVBfM.mft rsync://rpki.ripe.net/repository/DEFAULT/Hkfivzl0ch6vv7jDH8UnMDnVBfM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:e3:db:37:bb:f8:fc:66:27:2f:f3:4d:77:25:3b:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1e47e2bf3974721eafbfb8c31fc5273039d505f3 Validity Not Before: Dec 26 09:01:03 2025 GMT Not After : Dec 27 09:01:03 2025 GMT Subject: CN=f5a6ddab8beb1c4176698a7b70959999c29f984e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:38:95:2f:ea:af:14:c8:09:cd:52:3c:64:a1: 58:ba:75:9a:23:f7:21:26:33:ed:f7:b3:8c:75:d8: a9:1d:e5:4b:59:a8:1c:49:3f:f3:ed:bc:61:e7:0c: 73:c1:c3:d4:99:13:2d:83:11:2d:49:29:64:d1:c0: de:10:5b:12:27:ea:00:6d:31:1b:0f:7c:55:67:f2: 7c:9d:19:9d:cc:04:46:e5:60:3b:e8:b0:ed:50:7f: be:ff:31:57:8d:72:a6:4b:9f:26:c0:ee:31:8a:5f: c6:85:21:00:15:44:a7:c9:4b:1f:8d:5b:fd:f6:11: 19:db:f8:b9:8f:d7:df:c6:41:ca:1d:2e:a0:86:b0: fa:13:5c:7d:66:7d:2a:cf:54:aa:59:a1:7a:1a:b7: bb:e9:0d:da:79:ee:9d:33:5e:01:0b:ba:1f:14:1c: 91:ec:2e:15:54:fb:06:16:3c:8c:4b:97:62:24:f7: 93:2e:8b:91:ac:1d:1a:4f:e8:91:71:3e:fe:57:d4: 27:be:84:32:9b:c3:3f:b3:a1:21:00:b5:e4:41:03: a2:72:23:0f:8b:39:a7:a9:54:d2:e6:bf:8e:da:ea: f5:0c:cc:1b:d6:2e:9b:57:09:ad:e4:f0:96:b3:63: c7:8e:7d:c1:4a:20:7c:8d:a9:cd:a6:89:d6:ab:a4: 14:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:A6:DD:AB:8B:EB:1C:41:76:69:8A:7B:70:95:99:99:C2:9F:98:4E X509v3 Authority Key Identifier: keyid:1E:47:E2:BF:39:74:72:1E:AF:BF:B8:C3:1F:C5:27:30:39:D5:05:F3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hkfivzl0ch6vv7jDH8UnMDnVBfM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/afa106-6af8-4310-b4d4-e369d6602e6f/1/Hkfivzl0ch6vv7jDH8UnMDnVBfM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/afa106-6af8-4310-b4d4-e369d6602e6f/1/Hkfivzl0ch6vv7jDH8UnMDnVBfM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4f:1b:e5:f0:65:22:ce:70:d7:1e:f6:3c:d8:6f:b9:ae:08:1e: ce:c0:e2:0e:88:3c:6c:ab:62:ed:bf:f1:3d:04:d7:ce:23:33: d3:be:25:7a:7a:96:cd:b9:52:95:c4:51:f5:3f:02:41:7b:5b: f5:d9:3b:e9:18:8a:83:30:38:3a:fd:60:66:f2:77:f6:47:60: 65:2c:7a:9f:c2:ba:f4:24:0f:a6:92:da:a3:62:4a:7f:0c:32: e7:19:f3:4b:14:c2:8c:b3:56:d9:99:30:38:8c:c8:20:88:d4: bd:db:01:da:9c:36:2d:3a:35:9e:ad:3f:4d:b1:27:21:d7:84: ab:a0:6b:16:a4:1d:61:26:49:9e:d9:79:cb:3e:f7:cc:79:70: db:7b:40:c2:c0:a6:ef:28:9a:f5:0c:90:1c:2d:c2:70:1c:2e: 80:e1:c8:6c:13:33:78:32:50:5a:24:fe:79:99:38:0a:30:94: f1:dc:36:25:8e:00:32:ea:1c:4a:e3:4f:df:dd:01:f6:8a:b9: 67:d6:06:75:73:39:89:d9:b1:3d:12:bf:f8:c1:16:4b:7c:bd: a6:f9:ae:87:b6:e4:d5:48:00:b1:ac:69:02:34:a0:79:43:c6: e7:1e:b2:cc:8b:7e:00:98:23:a2:56:2c:b5:4b:6c:87:d8:6c: 27:b8:9e:a4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZ49s3u/j8Zicv8013JTsoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlNDdlMmJmMzk3NDcyMWVhZmJmYjhjMzFmYzUyNzMwMzlk NTA1ZjMwHhcNMjUxMjI2MDkwMTAzWhcNMjUxMjI3MDkwMTAzWjAzMTEwLwYDVQQD EyhmNWE2ZGRhYjhiZWIxYzQxNzY2OThhN2I3MDk1OTk5OWMyOWY5ODRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwziVL+qvFMgJzVI8ZKFYunWaI/ch JjPt97OMddipHeVLWagcST/z7bxh5wxzwcPUmRMtgxEtSSlk0cDeEFsSJ+oAbTEb D3xVZ/J8nRmdzARG5WA76LDtUH++/zFXjXKmS58mwO4xil/GhSEAFUSnyUsfjVv9 9hEZ2/i5j9ffxkHKHS6ghrD6E1x9Zn0qz1SqWaF6Gre76Q3aee6dM14BC7ofFByR 7C4VVPsGFjyMS5diJPeTLouRrB0aT+iRcT7+V9QnvoQym8M/s6EhALXkQQOiciMP izmnqVTS5r+O2ur1DMwb1i6bVwmt5PCWs2PHjn3BSiB8janNponWq6QUHwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPWm3auL6xxBdmmKe3CVmZnCn5hOMB8GA1UdIwQY MBaAFB5H4r85dHIer7+4wx/FJzA51QXzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSGtmaXZ6bDBjaDZ2djdqREg4VW5NRG5WQmZNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi9hZmExMDYtNmFmOC00MzEwLWI0ZDQt ZTM2OWQ2NjAyZTZmLzEvSGtmaXZ6bDBjaDZ2djdqREg4VW5NRG5WQmZNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZi9hZmExMDYtNmFmOC00MzEwLWI0ZDQtZTM2OWQ2NjAyZTZm LzEvSGtmaXZ6bDBjaDZ2djdqREg4VW5NRG5WQmZNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATxvl8GUi znDXHvY82G+5rggezsDiDog8bKti7b/xPQTXziMz074lenqWzblSlcRR9T8CQXtb 9dk76RiKgzA4Ov1gZvJ39kdgZSx6n8K69CQPppLao2JKfwwy5xnzSxTCjLNW2Zkw OIzIIIjUvdsB2pw2LTo1nq0/TbEnIdeEq6BrFqQdYSZJntl5yz73zHlw23tAwsCm 7yia9QyQHC3CcBwugOHIbBMzeDJQWiT+eZk4CjCU8dw2JY4AMuocSuNP390B9oq5 Z9YGdXM5idmxPRK/+MEWS3y9pvmuh7bk1UgAsaxpAjSgeUPG5x6yzIt+AJgjolYs tUtsh9hsJ7iepA== -----END CERTIFICATE-----Generated at Fri Dec 26 16:05:29 2025 by rpki-client