This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft File: HK37nPzahCYhLdfYhztf5ItBLyo.mft (raw, json) Hash identifier: TpJbrnKEqu6my3feqAZra4wwYzVVVYlU6LnFViBvW2A= Subject key identifier: A4:D9:EA:62:C6:AC:58:07:20:88:DB:9B:DE:BA:AE:9A:21:48:B2:F2 Authority key identifier: 1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A Certificate issuer: /CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a Certificate serial: 019B405B3C68B562147C070AEBF5CC9D372F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft Manifest number: 1289 Signing time: Sun 21 Dec 2025 10:01:19 +0000 Manifest this update: Sun 21 Dec 2025 10:01:19 +0000 Manifest next update: Mon 22 Dec 2025 10:01:19 +0000 Files and hashes: 1: HK37nPzahCYhLdfYhztf5ItBLyo.crl (hash: gYyjOov98J5ueIhTZq250vGalBoWAUBBwQDJ0mh3Ucg=) 2: qlhTst1KI05-IXjT0Jjp1aMzFfc.roa (hash: AXRjUWRMdXCLNCZlSVsLAGGspUQ5o0C4cdNp8OmuROM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 10:01:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:40:5b:3c:68:b5:62:14:7c:07:0a:eb:f5:cc:9d:37:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1cadfb9cfcda8426212dd7d8873b5fe48b412f2a Validity Not Before: Dec 21 10:01:19 2025 GMT Not After : Dec 22 10:01:19 2025 GMT Subject: CN=a4d9ea62c6ac58072088db9bdebaae9a2148b2f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ac:87:7f:b2:88:7e:75:5e:b9:ab:d6:44:48: 93:d1:d6:a9:14:5d:de:2b:36:69:0a:f8:d6:6f:93: 58:fa:5a:0e:af:a4:91:30:f4:c0:b5:3f:c3:eb:ab: 51:96:19:48:95:1b:d0:0f:ff:33:31:a7:f2:c2:de: f9:fb:37:ea:e0:b4:eb:e6:56:1c:d6:04:65:b5:be: 20:d9:25:2e:57:42:50:04:17:a8:3a:10:fe:3a:8f: 87:aa:fb:b4:1e:4d:56:b0:32:a7:00:e6:c5:ab:d3: b1:06:1c:65:b7:07:14:83:eb:55:b5:58:af:0c:47: 8f:96:5d:fa:0b:ae:d9:c3:8c:b4:95:31:8b:51:c2: 2d:43:5e:b6:7d:93:54:ed:10:1e:b2:7d:ed:8b:da: 89:49:f0:c7:9b:f0:d2:42:37:d9:1d:22:1d:5c:a6: 34:b6:e9:b5:a0:64:40:2e:3f:f9:fc:22:f9:db:42: 97:44:32:2e:1e:f7:56:94:7d:8b:b2:61:0a:f2:eb: 60:48:77:16:c8:99:36:33:8f:a2:14:17:52:98:01: af:eb:a1:af:5f:e0:ea:82:db:d4:bd:a9:1d:5a:1a: e3:84:90:7d:e9:6b:15:d3:51:77:d0:c8:1a:9a:82: e2:45:96:89:ee:bb:7a:53:5a:56:e7:d3:57:42:06: 19:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:D9:EA:62:C6:AC:58:07:20:88:DB:9B:DE:BA:AE:9A:21:48:B2:F2 X509v3 Authority Key Identifier: keyid:1C:AD:FB:9C:FC:DA:84:26:21:2D:D7:D8:87:3B:5F:E4:8B:41:2F:2A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HK37nPzahCYhLdfYhztf5ItBLyo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/c8406d-a564-4795-98b0-868160668382/1/HK37nPzahCYhLdfYhztf5ItBLyo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 60:88:99:f9:4c:79:07:f3:e6:8c:a5:f8:a8:5d:24:84:d6:bc: 4a:58:f3:a1:c3:d7:62:6d:39:9f:a5:d2:1e:78:a8:00:da:8a: e7:f0:5f:18:e6:82:b2:ee:df:fd:4d:dc:b9:de:be:82:3b:27: aa:46:7b:04:db:ef:e2:59:c6:9e:d2:cb:8e:c7:1c:b3:05:7a: 46:f9:d7:6d:3d:49:58:94:f8:cc:65:46:a6:cf:bd:67:59:14: 90:7f:ec:dc:ed:50:0e:82:23:f6:35:10:2e:e4:61:cc:89:ec: 2d:bf:0f:71:da:bc:8a:dd:60:41:c1:f9:49:b5:19:96:ce:e7: eb:2b:05:0d:65:73:ba:3e:a7:6f:76:21:ff:59:69:5d:86:dd: 1a:e9:73:df:c9:03:25:1c:03:4a:38:a1:3e:7a:cd:5b:51:85: d3:c0:43:cd:7a:bd:97:84:b0:96:bf:9a:2e:25:af:b0:c8:53: 28:3a:03:11:ea:07:65:c0:e9:24:e9:22:b5:fa:39:63:b3:81: 3d:ed:58:f5:41:c3:d0:dd:9a:02:61:10:08:f7:d3:ef:ea:c2: 8f:f8:df:75:ce:0a:1e:1e:5d:75:48:90:32:27:ac:70:dd:0a: a6:07:64:f1:2e:f3:57:55:18:42:39:b4:a1:78:05:65:2b:02: 4a:bb:c4:d9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtAWzxotWIUfAcK6/XMnTcvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjYWRmYjljZmNkYTg0MjYyMTJkZDdkODg3M2I1ZmU0OGI0 MTJmMmEwHhcNMjUxMjIxMTAwMTE5WhcNMjUxMjIyMTAwMTE5WjAzMTEwLwYDVQQD EyhhNGQ5ZWE2MmM2YWM1ODA3MjA4OGRiOWJkZWJhYWU5YTIxNDhiMmYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyKyHf7KIfnVeuavWREiT0dapFF3e KzZpCvjWb5NY+loOr6SRMPTAtT/D66tRlhlIlRvQD/8zMafywt75+zfq4LTr5lYc 1gRltb4g2SUuV0JQBBeoOhD+Oo+Hqvu0Hk1WsDKnAObFq9OxBhxltwcUg+tVtViv DEePll36C67Zw4y0lTGLUcItQ162fZNU7RAesn3ti9qJSfDHm/DSQjfZHSIdXKY0 tum1oGRALj/5/CL520KXRDIuHvdWlH2LsmEK8utgSHcWyJk2M4+iFBdSmAGv66Gv X+DqgtvUvakdWhrjhJB96WsV01F30MgamoLiRZaJ7rt6U1pW59NXQgYZcwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKTZ6mLGrFgHIIjbm966rpohSLLyMB8GA1UdIwQY MBaAFByt+5z82oQmIS3X2Ic7X+SLQS8qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEszN25QemFoQ1loTGRmWWh6dGY1SXRCTHlvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My9jODQwNmQtYTU2NC00Nzk1LTk4YjAt ODY4MTYwNjY4MzgyLzEvSEszN25QemFoQ1loTGRmWWh6dGY1SXRCTHlvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My9jODQwNmQtYTU2NC00Nzk1LTk4YjAtODY4MTYwNjY4Mzgy LzEvSEszN25QemFoQ1loTGRmWWh6dGY1SXRCTHlvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYIiZ+Ux5 B/PmjKX4qF0khNa8SljzocPXYm05n6XSHnioANqK5/BfGOaCsu7f/U3cud6+gjsn qkZ7BNvv4lnGntLLjsccswV6RvnXbT1JWJT4zGVGps+9Z1kUkH/s3O1QDoIj9jUQ LuRhzInsLb8Pcdq8it1gQcH5SbUZls7n6ysFDWVzuj6nb3Yh/1lpXYbdGulz38kD JRwDSjihPnrNW1GF08BDzXq9l4Swlr+aLiWvsMhTKDoDEeoHZcDpJOkitfo5Y7OB Pe1Y9UHD0N2aAmEQCPfT7+rCj/jfdc4KHh5ddUiQMiescN0Kpgdk8S7zV1UYQjm0 oXgFZSsCSrvE2Q== -----END CERTIFICATE-----Generated at Sun Dec 21 15:22:50 2025 by rpki-client