This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/a289eb-45ce-4618-857f-78189d015286/1/htljhE-CBdE2lDRTHJmGAMFXgaE.mft File: htljhE-CBdE2lDRTHJmGAMFXgaE.mft (raw, json) Hash identifier: ESfw0MqjohgI8iTI38/El86emSpw+LCsbL8KGjjTcB4= Subject key identifier: DF:BD:D2:83:39:EE:76:EF:32:E8:27:E8:C5:BE:E4:B8:CB:93:24:27 Authority key identifier: 86:D9:63:84:4F:82:05:D1:36:94:34:53:1C:99:86:00:C1:57:81:A1 Certificate issuer: /CN=86d963844f8205d1369434531c998600c15781a1 Certificate serial: 019B1BA9AC474000C521280C12F2DA551DF7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htljhE-CBdE2lDRTHJmGAMFXgaE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/a289eb-45ce-4618-857f-78189d015286/1/htljhE-CBdE2lDRTHJmGAMFXgaE.mft Manifest number: A0 Signing time: Sun 14 Dec 2025 07:01:02 +0000 Manifest this update: Sun 14 Dec 2025 07:01:02 +0000 Manifest next update: Mon 15 Dec 2025 07:01:02 +0000 Files and hashes: 1: 8jP_y3ejZgoctYO3RIyWsm1WwTY.roa (hash: ecd4E/hh4r+6kZxHuFwVi+mLNAKKO0mfpn1+ByWy+90=) 2: V7CEZgNPEwBOCZ32WoYA0V3PrJU.roa (hash: G4BvHWHZE9u8RSsaaH1AIK81oXqs5R5aGYeyG38uyOM=) 3: htljhE-CBdE2lDRTHJmGAMFXgaE.crl (hash: 5gue2T1spj3vJlEVq3upLRMn901y7zrv+pKOh1UKze4=) 4: kcL34WnZYMdN4SVhN2PeVdwWvgo.roa (hash: hEzKI9j+KADlA8KNZpHMbM3OEdQSPR+S9HcqTPPWTXE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/a289eb-45ce-4618-857f-78189d015286/1/htljhE-CBdE2lDRTHJmGAMFXgaE.crl rsync://rpki.ripe.net/repository/DEFAULT/87/a289eb-45ce-4618-857f-78189d015286/1/htljhE-CBdE2lDRTHJmGAMFXgaE.mft rsync://rpki.ripe.net/repository/DEFAULT/htljhE-CBdE2lDRTHJmGAMFXgaE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1b:a9:ac:47:40:00:c5:21:28:0c:12:f2:da:55:1d:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86d963844f8205d1369434531c998600c15781a1 Validity Not Before: Dec 14 07:01:02 2025 GMT Not After : Dec 15 07:01:02 2025 GMT Subject: CN=dfbdd28339ee76ef32e827e8c5bee4b8cb932427 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:5c:a2:e6:74:56:af:93:3c:b3:43:ee:b3:67: 0b:e5:19:7c:2a:73:76:86:f3:75:13:d9:0b:4f:c3: ac:95:9f:eb:55:95:c5:93:85:52:ae:2c:97:cc:79: 20:3d:47:e9:74:47:7b:c6:17:62:2d:67:c1:18:a0: a1:a9:38:9b:b8:c2:6a:2a:38:d6:63:08:a6:f2:67: 61:39:87:10:c5:3e:35:81:45:a5:39:eb:20:b4:6a: 19:32:2d:ea:58:17:cb:51:af:3f:68:ec:22:0e:78: 1d:c3:e8:a1:a7:72:3e:7d:e4:53:28:72:51:35:49: 78:9c:f2:b7:ae:4d:84:1c:cd:1b:d0:62:c3:c3:4f: ce:a1:41:83:1e:c6:5e:5c:c9:56:a0:22:45:65:40: 66:93:7c:06:47:a6:63:43:a9:51:95:e8:b6:96:7a: 21:99:10:15:ae:d0:17:db:da:77:d2:95:bc:d4:0d: c6:bd:d0:57:39:b3:f3:af:a6:6a:f1:89:00:7a:60: 96:49:f5:17:dc:e2:40:0d:77:04:4b:69:45:c7:a0: 64:94:a6:56:b1:2e:ae:ca:80:75:6c:ed:24:ec:b7: 07:7c:5a:31:7f:f9:9a:72:02:ce:a3:2c:a1:8d:2d: de:44:e5:ac:fb:27:f4:85:f2:a9:1b:d3:37:ab:d3: 87:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:BD:D2:83:39:EE:76:EF:32:E8:27:E8:C5:BE:E4:B8:CB:93:24:27 X509v3 Authority Key Identifier: keyid:86:D9:63:84:4F:82:05:D1:36:94:34:53:1C:99:86:00:C1:57:81:A1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htljhE-CBdE2lDRTHJmGAMFXgaE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/a289eb-45ce-4618-857f-78189d015286/1/htljhE-CBdE2lDRTHJmGAMFXgaE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/87/a289eb-45ce-4618-857f-78189d015286/1/htljhE-CBdE2lDRTHJmGAMFXgaE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 73:aa:41:3b:6f:c5:09:19:53:2b:a2:24:fe:ea:5c:47:e6:d9: 06:25:e5:ec:9f:67:8a:01:b2:2a:b5:5e:74:5a:44:5f:b8:7a: 1a:f4:2b:30:a7:4d:7c:ce:fe:12:27:cb:0e:75:f7:f5:11:f1: 33:ee:65:ac:12:f4:b4:a1:da:ef:67:b2:bd:5a:7f:f1:af:55: b5:59:6d:16:43:8d:5f:4a:4e:c3:b2:cc:f1:a5:35:60:30:00: 0a:d6:6c:f3:2c:6d:a4:6b:81:aa:e9:af:c9:0c:9b:4f:6d:0c: ea:2a:bb:7a:91:cf:47:5f:b9:8b:57:6e:bd:22:14:f8:49:ad: 57:44:ab:1b:93:96:73:bb:b3:a7:0c:16:9b:74:d5:83:a1:b1: ea:b5:d5:a3:1f:ed:e4:6e:a7:5a:04:a9:e9:16:93:98:64:9b: cb:f4:4d:9b:1e:6b:c0:af:51:8f:57:0c:54:53:e2:c1:df:86: 81:13:1c:d9:ff:7c:9e:49:a7:92:0f:f9:61:1e:d2:00:0a:7d: ac:a5:c0:b5:37:d4:48:84:24:95:ce:29:aa:f9:50:ab:8b:80: 74:45:9f:e5:f0:93:8b:f4:20:65:6e:5f:9b:f2:c2:2f:b7:a8: 8d:02:20:97:ff:38:e6:07:8f:a1:20:f0:b9:a3:8c:b0:f1:ca: c3:f6:fd:2f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsbqaxHQADFISgMEvLaVR33MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2ZDk2Mzg0NGY4MjA1ZDEzNjk0MzQ1MzFjOTk4NjAwYzE1 NzgxYTEwHhcNMjUxMjE0MDcwMTAyWhcNMjUxMjE1MDcwMTAyWjAzMTEwLwYDVQQD EyhkZmJkZDI4MzM5ZWU3NmVmMzJlODI3ZThjNWJlZTRiOGNiOTMyNDI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv1yi5nRWr5M8s0Pus2cL5Rl8KnN2 hvN1E9kLT8OslZ/rVZXFk4VSriyXzHkgPUfpdEd7xhdiLWfBGKChqTibuMJqKjjW Ywim8mdhOYcQxT41gUWlOesgtGoZMi3qWBfLUa8/aOwiDngdw+ihp3I+feRTKHJR NUl4nPK3rk2EHM0b0GLDw0/OoUGDHsZeXMlWoCJFZUBmk3wGR6ZjQ6lRlei2lnoh mRAVrtAX29p30pW81A3GvdBXObPzr6Zq8YkAemCWSfUX3OJADXcES2lFx6BklKZW sS6uyoB1bO0k7LcHfFoxf/macgLOoyyhjS3eROWs+yf0hfKpG9M3q9OHtQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN+90oM57nbvMugn6MW+5LjLkyQnMB8GA1UdIwQY MBaAFIbZY4RPggXRNpQ0UxyZhgDBV4GhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHRsamhFLUNCZEUybERSVEhKbUdBTUZYZ2FFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny9hMjg5ZWItNDVjZS00NjE4LTg1N2Yt NzgxODlkMDE1Mjg2LzEvaHRsamhFLUNCZEUybERSVEhKbUdBTUZYZ2FFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ny9hMjg5ZWItNDVjZS00NjE4LTg1N2YtNzgxODlkMDE1Mjg2 LzEvaHRsamhFLUNCZEUybERSVEhKbUdBTUZYZ2FFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAc6pBO2/F CRlTK6Ik/upcR+bZBiXl7J9nigGyKrVedFpEX7h6GvQrMKdNfM7+EifLDnX39RHx M+5lrBL0tKHa72eyvVp/8a9VtVltFkONX0pOw7LM8aU1YDAACtZs8yxtpGuBqumv yQybT20M6iq7epHPR1+5i1duvSIU+EmtV0SrG5OWc7uzpwwWm3TVg6Gx6rXVox/t 5G6nWgSp6RaTmGSby/RNmx5rwK9Rj1cMVFPiwd+GgRMc2f98nkmnkg/5YR7SAAp9 rKXAtTfUSIQklc4pqvlQq4uAdEWf5fCTi/QgZW5fm/LCL7eojQIgl/845gePoSDw uaOMsPHKw/b9Lw== -----END CERTIFICATE-----Generated at Sun Dec 14 15:24:24 2025 by rpki-client