This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/a90dbf-86d6-48ce-8a6c-86aa00e13746/1/_HlIirThrA9L1GfStNNiHGsY7qA.mft File: _HlIirThrA9L1GfStNNiHGsY7qA.mft (raw, json) Hash identifier: fOtD0OilCGL0dlI+bVFhSsA8JFvonD3ihS2rE2cIPJM= Subject key identifier: 59:C0:C2:A0:F0:47:39:7C:79:57:43:BD:C3:9B:5E:84:98:1F:4C:35 Authority key identifier: FC:79:48:8A:B4:E1:AC:0F:4B:D4:67:D2:B4:D3:62:1C:6B:18:EE:A0 Certificate issuer: /CN=fc79488ab4e1ac0f4bd467d2b4d3621c6b18eea0 Certificate serial: 019B34FB8E981693D5BD43C65CEF09270BC8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_HlIirThrA9L1GfStNNiHGsY7qA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/a90dbf-86d6-48ce-8a6c-86aa00e13746/1/_HlIirThrA9L1GfStNNiHGsY7qA.mft Manifest number: 1782 Signing time: Fri 19 Dec 2025 05:00:59 +0000 Manifest this update: Fri 19 Dec 2025 05:00:59 +0000 Manifest next update: Sat 20 Dec 2025 05:00:59 +0000 Files and hashes: 1: Fxxp-LRkqvfLrMmhXHpze09Zypk.roa (hash: VeSras0PkAsQ1iWlGxVtQbCw1RAH/pLCo7L2bleBamo=) 2: _HlIirThrA9L1GfStNNiHGsY7qA.crl (hash: gQ1gmjuqTGVax+kcGtitmtWE8Xl1Sucxqc3jY2lUm+o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/a90dbf-86d6-48ce-8a6c-86aa00e13746/1/_HlIirThrA9L1GfStNNiHGsY7qA.crl rsync://rpki.ripe.net/repository/DEFAULT/69/a90dbf-86d6-48ce-8a6c-86aa00e13746/1/_HlIirThrA9L1GfStNNiHGsY7qA.mft rsync://rpki.ripe.net/repository/DEFAULT/_HlIirThrA9L1GfStNNiHGsY7qA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 05:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:34:fb:8e:98:16:93:d5:bd:43:c6:5c:ef:09:27:0b:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fc79488ab4e1ac0f4bd467d2b4d3621c6b18eea0 Validity Not Before: Dec 19 05:00:59 2025 GMT Not After : Dec 20 05:00:59 2025 GMT Subject: CN=59c0c2a0f047397c795743bdc39b5e84981f4c35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:b5:fd:77:58:63:46:59:cf:98:fb:7e:75:19: f3:12:21:53:66:76:05:22:83:f1:ff:e9:20:99:bb: 84:be:a4:8a:54:37:68:ea:20:51:78:35:de:df:ab: c1:cc:fd:74:56:f6:27:98:2d:95:b8:e1:f2:a2:60: 0a:5b:22:39:77:28:2e:13:82:e6:c7:ee:f0:d1:b8: e0:bc:e6:ba:5a:0d:38:3b:b8:22:e7:cb:6d:1a:ef: c1:c0:de:15:98:75:1b:c7:55:b1:36:fa:a9:84:67: 61:38:47:11:9d:0a:35:6a:e4:aa:f7:c9:26:a1:57: 32:71:82:04:f5:5b:7e:52:fb:f6:5a:e8:a9:55:94: c5:54:e7:78:ac:e8:41:56:c6:56:f1:7f:ab:74:f8: f3:3c:68:c3:8c:be:9b:b4:60:1b:03:85:89:82:fb: fe:df:7f:47:6f:6e:e5:f5:64:cb:e3:8c:10:e5:75: bd:dd:23:bc:00:d3:86:fc:72:70:4e:62:79:65:7a: 9c:85:a1:1d:0e:ec:22:48:44:7e:19:94:38:4d:13: 09:b9:5f:b9:38:18:1a:fa:8b:c1:8f:76:81:53:e0: 1a:1b:80:23:36:7d:05:3b:83:06:4d:7a:c1:5d:d4: 80:e8:a4:41:23:b8:b0:b8:2d:3e:c6:7d:af:cf:2b: 04:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:C0:C2:A0:F0:47:39:7C:79:57:43:BD:C3:9B:5E:84:98:1F:4C:35 X509v3 Authority Key Identifier: keyid:FC:79:48:8A:B4:E1:AC:0F:4B:D4:67:D2:B4:D3:62:1C:6B:18:EE:A0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_HlIirThrA9L1GfStNNiHGsY7qA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/a90dbf-86d6-48ce-8a6c-86aa00e13746/1/_HlIirThrA9L1GfStNNiHGsY7qA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/69/a90dbf-86d6-48ce-8a6c-86aa00e13746/1/_HlIirThrA9L1GfStNNiHGsY7qA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 63:c1:40:93:22:85:fb:1c:70:a7:e4:1d:47:e6:3b:f7:5a:df: 1e:0f:f7:ff:91:26:ac:68:18:24:49:0a:1e:2e:35:f0:af:6d: 52:04:59:65:b7:9d:84:b5:c2:49:f4:2d:7a:0d:5f:d1:42:7a: f2:be:d0:40:0c:39:fb:d3:5f:4b:cd:5f:55:fe:cf:b7:0b:7f: 5d:aa:f4:f8:bd:7c:47:a7:9f:fb:f3:f8:67:8c:d4:b0:04:46: 97:cf:be:78:fd:c7:59:13:14:f0:3c:2f:e8:31:92:3d:e5:01: 7d:64:9f:ac:77:02:62:21:49:b8:89:9d:b9:94:89:47:c1:b2: 0f:c9:d7:06:a6:b0:1a:0d:4a:d7:4e:41:70:58:fc:29:88:67: 8a:db:7e:cb:e4:15:a3:2b:ea:cb:a4:d8:21:4e:67:0b:4f:0a: 50:ca:f1:97:ba:3f:a1:2a:ac:bc:04:34:b1:c9:ec:9b:0d:06: ee:7d:dd:42:f4:2f:d5:38:0b:70:87:e2:13:53:e4:d4:54:f5: eb:a1:fb:3e:18:ed:96:4f:83:07:22:e5:b2:67:00:d9:6a:6e: eb:94:3e:6b:6f:dd:c5:7c:14:ab:5f:4b:6b:0f:40:21:b5:c2: 3e:e7:0c:ea:fc:f4:05:b5:e8:5a:1a:63:1a:2f:f3:9f:79:77: 31:ea:8c:f1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs0+46YFpPVvUPGXO8JJwvIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZjNzk0ODhhYjRlMWFjMGY0YmQ0NjdkMmI0ZDM2MjFjNmIx OGVlYTAwHhcNMjUxMjE5MDUwMDU5WhcNMjUxMjIwMDUwMDU5WjAzMTEwLwYDVQQD Eyg1OWMwYzJhMGYwNDczOTdjNzk1NzQzYmRjMzliNWU4NDk4MWY0YzM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsLX9d1hjRlnPmPt+dRnzEiFTZnYF IoPx/+kgmbuEvqSKVDdo6iBReDXe36vBzP10VvYnmC2VuOHyomAKWyI5dyguE4Lm x+7w0bjgvOa6Wg04O7gi58ttGu/BwN4VmHUbx1WxNvqphGdhOEcRnQo1auSq98km oVcycYIE9Vt+Uvv2WuipVZTFVOd4rOhBVsZW8X+rdPjzPGjDjL6btGAbA4WJgvv+ 339Hb27l9WTL44wQ5XW93SO8ANOG/HJwTmJ5ZXqchaEdDuwiSER+GZQ4TRMJuV+5 OBga+ovBj3aBU+AaG4AjNn0FO4MGTXrBXdSA6KRBI7iwuC0+xn2vzysE7QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFnAwqDwRzl8eVdDvcObXoSYH0w1MB8GA1UdIwQY MBaAFPx5SIq04awPS9Rn0rTTYhxrGO6gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX0hsSWlyVGhyQTlMMUdmU3ROTmlIR3NZN3FBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS9hOTBkYmYtODZkNi00OGNlLThhNmMt ODZhYTAwZTEzNzQ2LzEvX0hsSWlyVGhyQTlMMUdmU3ROTmlIR3NZN3FBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OS9hOTBkYmYtODZkNi00OGNlLThhNmMtODZhYTAwZTEzNzQ2 LzEvX0hsSWlyVGhyQTlMMUdmU3ROTmlIR3NZN3FBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY8FAkyKF +xxwp+QdR+Y791rfHg/3/5EmrGgYJEkKHi418K9tUgRZZbedhLXCSfQteg1f0UJ6 8r7QQAw5+9NfS81fVf7Ptwt/Xar0+L18R6ef+/P4Z4zUsARGl8++eP3HWRMU8Dwv 6DGSPeUBfWSfrHcCYiFJuImduZSJR8GyD8nXBqawGg1K105BcFj8KYhnitt+y+QV oyvqy6TYIU5nC08KUMrxl7o/oSqsvAQ0scnsmw0G7n3dQvQv1TgLcIfiE1Pk1FT1 66H7Phjtlk+DByLlsmcA2Wpu65Q+a2/dxXwUq19Law9AIbXCPucM6vz0BbXoWhpj Gi/zn3l3MeqM8Q== -----END CERTIFICATE-----Generated at Fri Dec 19 13:14:29 2025 by rpki-client