This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/557524-297d-4849-b4be-c52eb56bfa5b/1/HSXQyIRbeYhsGZNFuJD16KzVFtg.mft File: HSXQyIRbeYhsGZNFuJD16KzVFtg.mft (raw, json) Hash identifier: HmMQzko66a4NAHCe27Y/VMf0xgMjSMqrQuJ3Q34u6cw= Subject key identifier: 8D:51:B8:D1:23:A9:EE:0F:24:93:70:BC:4B:5B:55:97:2B:E4:0F:1F Authority key identifier: 1D:25:D0:C8:84:5B:79:88:6C:19:93:45:B8:90:F5:E8:AC:D5:16:D8 Certificate issuer: /CN=1d25d0c8845b79886c199345b890f5e8acd516d8 Certificate serial: 019B59E38B991E87BC8A219C98EDDF44CDB4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HSXQyIRbeYhsGZNFuJD16KzVFtg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/557524-297d-4849-b4be-c52eb56bfa5b/1/HSXQyIRbeYhsGZNFuJD16KzVFtg.mft Manifest number: 1791 Signing time: Fri 26 Dec 2025 09:00:43 +0000 Manifest this update: Fri 26 Dec 2025 09:00:43 +0000 Manifest next update: Sat 27 Dec 2025 09:00:43 +0000 Files and hashes: 1: HSXQyIRbeYhsGZNFuJD16KzVFtg.crl (hash: LidppzXh/vJIzPrxVdHnpT3pb0rXB2qb1mo9coyJyCs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/557524-297d-4849-b4be-c52eb56bfa5b/1/HSXQyIRbeYhsGZNFuJD16KzVFtg.crl rsync://rpki.ripe.net/repository/DEFAULT/37/557524-297d-4849-b4be-c52eb56bfa5b/1/HSXQyIRbeYhsGZNFuJD16KzVFtg.mft rsync://rpki.ripe.net/repository/DEFAULT/HSXQyIRbeYhsGZNFuJD16KzVFtg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:e3:8b:99:1e:87:bc:8a:21:9c:98:ed:df:44:cd:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1d25d0c8845b79886c199345b890f5e8acd516d8 Validity Not Before: Dec 26 09:00:43 2025 GMT Not After : Dec 27 09:00:43 2025 GMT Subject: CN=8d51b8d123a9ee0f249370bc4b5b55972be40f1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:90:75:7b:a3:19:72:08:a2:b8:50:4b:f0:ef: 6b:24:ef:50:1d:4f:0e:4f:3e:13:1f:95:a7:21:f7: cd:8e:6a:bd:92:b1:33:b9:ec:96:39:3c:7e:17:5b: 08:39:0b:99:6c:36:81:3c:30:42:78:ac:2f:f4:11: 3d:cb:88:79:e9:cf:5d:29:5b:9b:0e:60:96:6d:15: f9:49:15:59:be:68:9c:5a:1d:2c:33:0e:84:9d:6a: 20:e3:b0:ff:36:03:bb:03:d5:9e:b9:eb:6d:2d:b4: 87:81:f6:95:f5:d7:7b:e2:a1:e1:2c:4e:05:3b:06: 0b:5b:7f:d4:ed:a2:6b:3a:ba:5a:ea:12:d7:c1:84: a0:95:7e:44:c3:8a:80:e6:8e:80:ea:1e:84:86:d6: 6e:55:ac:13:34:cf:99:eb:a3:a0:65:44:4a:ff:45: 8c:98:1f:ad:c5:7a:a9:b0:8b:c5:af:ea:02:0d:a0: a3:bf:55:69:00:4c:af:f2:b3:ef:e3:b3:31:2b:0e: 8b:60:e1:d8:ec:7d:af:82:84:fb:5a:06:23:99:dd: f5:b7:fa:00:09:41:cd:26:67:1f:7b:d3:69:e5:bb: 15:0f:69:ca:b9:6e:ba:03:ac:ad:84:76:e9:5b:27: 07:41:21:3a:d4:26:bb:23:bd:b3:3b:51:dd:27:cf: a8:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:51:B8:D1:23:A9:EE:0F:24:93:70:BC:4B:5B:55:97:2B:E4:0F:1F X509v3 Authority Key Identifier: keyid:1D:25:D0:C8:84:5B:79:88:6C:19:93:45:B8:90:F5:E8:AC:D5:16:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HSXQyIRbeYhsGZNFuJD16KzVFtg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/557524-297d-4849-b4be-c52eb56bfa5b/1/HSXQyIRbeYhsGZNFuJD16KzVFtg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/37/557524-297d-4849-b4be-c52eb56bfa5b/1/HSXQyIRbeYhsGZNFuJD16KzVFtg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 78:3d:e3:6d:b1:07:c0:93:ae:47:26:82:fb:26:40:c9:17:c6: bc:49:da:f9:cc:89:60:36:76:4e:89:d8:58:08:aa:43:40:31: 7a:c0:0a:91:7a:0f:9a:b2:b6:ff:a0:d4:cd:c8:1a:d7:0a:d3: 3f:27:99:d5:bf:20:c9:6e:e7:9b:9d:03:1a:3d:75:18:91:a2: ac:e2:92:ca:a3:49:94:1f:47:5d:7a:43:9f:67:28:25:52:4c: 96:71:a7:7b:3a:e1:4b:43:1c:a4:99:18:85:0b:ee:02:d4:04: f4:26:e8:ca:83:c4:ab:90:a0:03:1f:21:1b:cd:02:ab:4b:5b: ed:ae:4f:af:1a:40:f9:ec:f0:7a:2b:0d:00:80:7e:43:54:ae: 97:3d:38:91:18:fb:d5:6b:0c:6b:05:db:23:6d:d9:16:4a:50: d9:c1:35:2e:0e:e9:e5:04:43:88:a1:90:de:34:65:b8:82:1a: 49:5b:74:24:b3:85:66:5d:be:9a:b3:f0:9e:22:d3:95:07:34: b6:81:75:b9:c7:e0:a3:d5:fa:fc:f8:02:f6:83:16:c0:b7:75: d3:29:00:6a:74:57:5e:8b:cf:e2:83:52:5c:89:f0:93:82:39: b2:70:1d:43:0a:69:92:b2:a6:3b:1e:1e:30:e0:b9:91:f5:68: be:94:a3:9c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZ44uZHoe8iiGcmO3fRM20MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkMjVkMGM4ODQ1Yjc5ODg2YzE5OTM0NWI4OTBmNWU4YWNk NTE2ZDgwHhcNMjUxMjI2MDkwMDQzWhcNMjUxMjI3MDkwMDQzWjAzMTEwLwYDVQQD Eyg4ZDUxYjhkMTIzYTllZTBmMjQ5MzcwYmM0YjViNTU5NzJiZTQwZjFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk5B1e6MZcgiiuFBL8O9rJO9QHU8O Tz4TH5WnIffNjmq9krEzueyWOTx+F1sIOQuZbDaBPDBCeKwv9BE9y4h56c9dKVub DmCWbRX5SRVZvmicWh0sMw6EnWog47D/NgO7A9WeuettLbSHgfaV9dd74qHhLE4F OwYLW3/U7aJrOrpa6hLXwYSglX5Ew4qA5o6A6h6EhtZuVawTNM+Z66OgZURK/0WM mB+txXqpsIvFr+oCDaCjv1VpAEyv8rPv47MxKw6LYOHY7H2vgoT7WgYjmd31t/oA CUHNJmcfe9Np5bsVD2nKuW66A6ythHbpWycHQSE61Ca7I72zO1HdJ8+oZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI1RuNEjqe4PJJNwvEtbVZcr5A8fMB8GA1UdIwQY MBaAFB0l0MiEW3mIbBmTRbiQ9eis1RbYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSFNYUXlJUmJlWWhzR1pORnVKRDE2S3pWRnRnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy81NTc1MjQtMjk3ZC00ODQ5LWI0YmUt YzUyZWI1NmJmYTViLzEvSFNYUXlJUmJlWWhzR1pORnVKRDE2S3pWRnRnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNy81NTc1MjQtMjk3ZC00ODQ5LWI0YmUtYzUyZWI1NmJmYTVi LzEvSFNYUXlJUmJlWWhzR1pORnVKRDE2S3pWRnRnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeD3jbbEH wJOuRyaC+yZAyRfGvEna+cyJYDZ2TonYWAiqQ0AxesAKkXoPmrK2/6DUzcga1wrT PyeZ1b8gyW7nm50DGj11GJGirOKSyqNJlB9HXXpDn2coJVJMlnGnezrhS0McpJkY hQvuAtQE9CboyoPEq5CgAx8hG80Cq0tb7a5PrxpA+ezweisNAIB+Q1Sulz04kRj7 1WsMawXbI23ZFkpQ2cE1Lg7p5QRDiKGQ3jRluIIaSVt0JLOFZl2+mrPwniLTlQc0 toF1ucfgo9X6/PgC9oMWwLd10ykAanRXXovP4oNSXInwk4I5snAdQwppkrKmOx4e MOC5kfVovpSjnA== -----END CERTIFICATE-----Generated at Fri Dec 26 15:57:03 2025 by rpki-client