This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft File: HTHgIH7TynaEoD6I-aHeKSLdRd4.mft (raw, json) Hash identifier: 7NrLH/9iPWT3rH0g+HxociFCq1FKrp0TMlRM71krcjs= Subject key identifier: DF:7D:08:57:5D:BD:ED:94:37:8D:2B:71:99:A7:05:82:7C:4E:2A:11 Authority key identifier: 1D:31:E0:20:7E:D3:CA:76:84:A0:3E:88:F9:A1:DE:29:22:DD:45:DE Certificate issuer: /CN=1d31e0207ed3ca7684a03e88f9a1de2922dd45de Certificate serial: 019B1D99622C303C861FFD461AA7D42853DB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft Manifest number: 0320 Signing time: Sun 14 Dec 2025 16:02:29 +0000 Manifest this update: Sun 14 Dec 2025 16:02:29 +0000 Manifest next update: Mon 15 Dec 2025 16:02:29 +0000 Files and hashes: 1: HTHgIH7TynaEoD6I-aHeKSLdRd4.crl (hash: y6M3g/0ta9zAvcs0WGNiR2GV/hMC3souDfOojKntF14=) 2: ZwHdEqulD1m_3ODalRm8KKpV4D8.roa (hash: AgKObURVZ2No/6B5xbYFDC7jFhFUnrv7+FottsPk3vg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.crl rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 14:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1d:99:62:2c:30:3c:86:1f:fd:46:1a:a7:d4:28:53:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1d31e0207ed3ca7684a03e88f9a1de2922dd45de Validity Not Before: Dec 14 16:02:29 2025 GMT Not After : Dec 15 16:02:29 2025 GMT Subject: CN=df7d08575dbded94378d2b7199a705827c4e2a11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:9b:7c:7b:f4:dd:a8:b7:b1:2a:3e:48:48:42: ea:9d:c7:41:05:8c:9b:ad:45:e9:e1:b2:55:f4:eb: 53:05:39:ae:09:6a:5e:dd:66:61:ba:ae:fc:05:13: 46:60:f5:a3:9f:9a:90:68:32:87:b6:f5:ff:f3:e0: 5a:b6:4f:c0:68:49:9c:57:25:d2:19:b7:e1:d2:93: 52:d5:80:2a:7d:e5:df:84:76:37:37:b5:99:50:2b: fc:d0:ae:89:20:55:5c:b1:de:56:80:46:6a:d3:e8: 54:66:e0:9c:a4:85:c2:90:0c:06:22:33:49:06:4d: e7:45:cb:03:c0:2d:5a:68:6c:fd:be:21:2a:53:34: 85:e4:9e:62:57:b5:d0:f9:98:fc:86:7c:56:0c:48: d8:e2:9c:29:a4:e0:b9:98:0f:1e:d4:f3:35:11:71: 2e:2f:8c:f8:ac:45:84:96:31:f2:72:38:06:7d:f6: 15:a2:ae:57:de:bd:fd:02:2b:1b:15:90:2d:a4:06: 60:65:d9:75:7c:17:17:bf:f6:a5:a5:0a:ae:cd:8f: 92:c0:05:2f:ed:11:82:8c:5f:7f:56:6b:39:54:bc: 1c:18:b8:aa:b3:4b:2a:f0:5b:2d:94:b4:ba:64:3f: 45:c7:fe:5a:e0:aa:55:75:4d:84:49:4a:d8:29:0f: 42:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:7D:08:57:5D:BD:ED:94:37:8D:2B:71:99:A7:05:82:7C:4E:2A:11 X509v3 Authority Key Identifier: keyid:1D:31:E0:20:7E:D3:CA:76:84:A0:3E:88:F9:A1:DE:29:22:DD:45:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:a6:88:b7:6b:db:89:d1:da:5e:51:96:af:30:be:70:2c:7b: 9e:fa:d3:78:21:8b:da:85:f5:39:7e:54:7f:8d:97:dd:a8:82: 10:2a:25:74:56:f1:c0:5d:4c:74:11:44:71:1e:04:36:39:1e: 88:99:d1:e8:8e:f1:b9:4a:51:84:cc:83:dd:08:6c:1d:cc:46: b7:94:90:4d:ca:b0:03:57:e7:d3:ac:d7:5c:7a:2e:1c:c1:e6: ed:4f:21:c8:13:43:8d:cf:7d:57:86:ec:2a:16:01:b4:5e:17: 07:49:e4:0f:58:99:4d:b6:da:50:34:94:f4:58:fc:05:51:ff: 98:54:79:12:97:9a:b6:e2:57:9b:0a:50:5d:a7:97:ca:9b:37: ac:45:b2:48:49:a8:26:4f:d6:06:9a:e7:d5:c8:56:46:7a:6b: ec:7d:d6:0c:60:a3:24:ae:5a:df:ed:dc:30:38:54:80:f7:ce: 84:1e:7b:8c:a6:85:e5:88:3e:13:29:67:1f:9b:69:e8:c9:60: 3d:9e:99:cb:88:66:75:15:ef:3f:00:df:b6:ee:4e:d8:75:c1: 61:8d:4f:63:30:83:7f:a8:15:92:9a:cf:a4:72:85:c2:c7:3f: 31:cf:e8:d0:98:78:64:d9:85:e8:c5:2e:c0:c6:87:55:fc:3a: 89:fd:36:1b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsdmWIsMDyGH/1GGqfUKFPbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkMzFlMDIwN2VkM2NhNzY4NGEwM2U4OGY5YTFkZTI5MjJk ZDQ1ZGUwHhcNMjUxMjE0MTYwMjI5WhcNMjUxMjE1MTYwMjI5WjAzMTEwLwYDVQQD EyhkZjdkMDg1NzVkYmRlZDk0Mzc4ZDJiNzE5OWE3MDU4MjdjNGUyYTExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAppt8e/TdqLexKj5ISELqncdBBYyb rUXp4bJV9OtTBTmuCWpe3WZhuq78BRNGYPWjn5qQaDKHtvX/8+Batk/AaEmcVyXS Gbfh0pNS1YAqfeXfhHY3N7WZUCv80K6JIFVcsd5WgEZq0+hUZuCcpIXCkAwGIjNJ Bk3nRcsDwC1aaGz9viEqUzSF5J5iV7XQ+Zj8hnxWDEjY4pwppOC5mA8e1PM1EXEu L4z4rEWEljHycjgGffYVoq5X3r39AisbFZAtpAZgZdl1fBcXv/alpQquzY+SwAUv 7RGCjF9/Vms5VLwcGLiqs0sq8FstlLS6ZD9Fx/5a4KpVdU2ESUrYKQ9CQQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN99CFddve2UN40rcZmnBYJ8TioRMB8GA1UdIwQY MBaAFB0x4CB+08p2hKA+iPmh3iki3UXeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSFRIZ0lIN1R5bmFFb0Q2SS1hSGVLU0xkUmQ0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My83MzBlMzgtZmY4OS00M2UxLTk0ZmUt YTFiNzc4ZjRkMDdkLzEvSFRIZ0lIN1R5bmFFb0Q2SS1hSGVLU0xkUmQ0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My83MzBlMzgtZmY4OS00M2UxLTk0ZmUtYTFiNzc4ZjRkMDdk LzEvSFRIZ0lIN1R5bmFFb0Q2SS1hSGVLU0xkUmQ0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL6aIt2vb idHaXlGWrzC+cCx7nvrTeCGL2oX1OX5Uf42X3aiCEColdFbxwF1MdBFEcR4ENjke iJnR6I7xuUpRhMyD3QhsHcxGt5SQTcqwA1fn06zXXHouHMHm7U8hyBNDjc99V4bs KhYBtF4XB0nkD1iZTbbaUDSU9Fj8BVH/mFR5EpeatuJXmwpQXaeXyps3rEWySEmo Jk/WBprn1chWRnpr7H3WDGCjJK5a3+3cMDhUgPfOhB57jKaF5Yg+EylnH5tp6Mlg PZ6Zy4hmdRXvPwDftu5O2HXBYY1PYzCDf6gVkprPpHKFwsc/Mc/o0Jh4ZNmF6MUu wMaHVfw6if02Gw== -----END CERTIFICATE-----Generated at Sun Dec 14 23:19:28 2025 by rpki-client