This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/4c48bb-366c-41f5-9b2d-530440c4fa29/1/HkogILgtApTpCi1rLA8o0Rc7ZGU.mft File: HkogILgtApTpCi1rLA8o0Rc7ZGU.mft (raw, json) Hash identifier: 6LfqlEcKNileYRUl5qhFRTssb41BJJI+W7O0QwD2+H4= Subject key identifier: 4C:43:97:6C:38:1C:09:F5:60:CA:D7:9C:19:D1:3B:52:A5:DB:29:12 Authority key identifier: 1E:4A:20:20:B8:2D:02:94:E9:0A:2D:6B:2C:0F:28:D1:17:3B:64:65 Certificate issuer: /CN=1e4a2020b82d0294e90a2d6b2c0f28d1173b6465 Certificate serial: 019B0746C5EDBCC7CB6956606727108BA36E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HkogILgtApTpCi1rLA8o0Rc7ZGU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/4c48bb-366c-41f5-9b2d-530440c4fa29/1/HkogILgtApTpCi1rLA8o0Rc7ZGU.mft Manifest number: 176D Signing time: Wed 10 Dec 2025 08:00:37 +0000 Manifest this update: Wed 10 Dec 2025 08:00:37 +0000 Manifest next update: Thu 11 Dec 2025 08:00:37 +0000 Files and hashes: 1: 7wJbNCUcwtFlKnAHPgTuv8Sn0i4.roa (hash: Yg17vxRzYWiVt6fOmSwVpKWZGt89EQyeG3U2CWqSktI=) 2: HkogILgtApTpCi1rLA8o0Rc7ZGU.crl (hash: XcZJ6hj/v9T6dXQ94K8OLMWb/yms8e2ybZooUuydW00=) 3: I1sRKyvYdSWFdpxY3K3hgfpLh8c.roa (hash: EW9DVDBND5j7A8L4kBfb9CEdZ+sujph27uho+pUx/m0=) 4: IWHxNStdjrSROqwuZe7sT7LT4Nk.roa (hash: S/bzV1Gz+VxqpXjM3Pl83zzxF5vyuBSuFK0LxiEoibw=) 5: yFf2Zz0VjYagA0shVIplpiusWp4.roa (hash: Sonq+rZh7+zVQsS+x3AiHiTrq12H+Dw70vUAQVtyO0E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/4c48bb-366c-41f5-9b2d-530440c4fa29/1/HkogILgtApTpCi1rLA8o0Rc7ZGU.crl rsync://rpki.ripe.net/repository/DEFAULT/8c/4c48bb-366c-41f5-9b2d-530440c4fa29/1/HkogILgtApTpCi1rLA8o0Rc7ZGU.mft rsync://rpki.ripe.net/repository/DEFAULT/HkogILgtApTpCi1rLA8o0Rc7ZGU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 11 Dec 2025 01:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:07:46:c5:ed:bc:c7:cb:69:56:60:67:27:10:8b:a3:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1e4a2020b82d0294e90a2d6b2c0f28d1173b6465 Validity Not Before: Dec 10 08:00:37 2025 GMT Not After : Dec 11 08:00:37 2025 GMT Subject: CN=4c43976c381c09f560cad79c19d13b52a5db2912 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:1d:bd:54:7c:bb:52:c4:df:d2:7b:c2:1b:fa: 9b:a9:a3:80:77:ee:3f:44:55:d3:da:24:29:17:a3: 1e:e2:5d:02:af:81:e1:58:af:c5:52:da:3d:ea:e2: 41:38:8b:ff:2f:88:9a:53:a1:f0:3d:84:21:99:e1: 1a:a7:74:66:5b:b4:5a:73:d9:0b:1c:4f:0f:27:a7: 15:a7:40:3d:35:68:3e:f8:02:b4:1f:79:85:f2:01: e9:96:8b:8e:b9:87:39:f6:d9:4a:52:72:58:c7:9b: 41:4d:c9:6b:82:ec:a3:c4:fe:76:41:5d:57:d2:ca: de:c6:dd:26:f5:28:3e:39:e3:75:c1:6b:35:5c:43: 2c:6b:cc:02:7b:51:46:8f:ff:50:eb:7a:c4:ff:f9: f7:47:f0:b4:3d:c6:d1:2a:76:ca:7a:3c:bd:9e:6c: bb:11:4e:81:7d:9f:04:6e:aa:2d:61:4e:ca:cf:9d: 8a:22:f7:4a:fa:27:ad:1a:14:7e:79:61:25:5d:3d: 5e:80:ef:7a:52:cd:b4:1b:24:8d:15:e2:7e:ec:f9: 70:e2:06:91:73:68:c7:5c:c8:94:64:e7:97:e5:29: e5:61:70:27:d6:6e:e2:c5:3c:57:76:64:fd:c4:4e: 7c:27:6d:c5:42:10:75:ce:2f:26:50:a6:2a:63:2d: 82:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:43:97:6C:38:1C:09:F5:60:CA:D7:9C:19:D1:3B:52:A5:DB:29:12 X509v3 Authority Key Identifier: keyid:1E:4A:20:20:B8:2D:02:94:E9:0A:2D:6B:2C:0F:28:D1:17:3B:64:65 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HkogILgtApTpCi1rLA8o0Rc7ZGU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4c48bb-366c-41f5-9b2d-530440c4fa29/1/HkogILgtApTpCi1rLA8o0Rc7ZGU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/4c48bb-366c-41f5-9b2d-530440c4fa29/1/HkogILgtApTpCi1rLA8o0Rc7ZGU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 81:fd:da:7e:ee:ee:5c:69:a9:6d:0f:25:ae:33:97:38:67:b7: fb:c8:fa:6d:51:25:fd:eb:09:aa:92:24:da:96:73:fa:ca:63: 17:e2:1e:cb:ae:0d:8a:44:2c:81:c3:13:ac:5b:35:04:5c:b2: 7b:10:62:a3:98:98:20:fd:68:30:38:6a:40:39:48:b9:ef:1d: 91:ee:ea:6f:53:5c:1c:da:4d:fd:d6:3d:df:7c:78:16:5c:3c: 51:17:6f:fd:df:93:25:73:f1:fd:98:1e:10:28:6c:17:e6:71: 57:24:ff:1f:34:8d:53:66:2f:cd:4c:8c:e8:26:f3:5f:fc:57: 34:a6:ec:1d:0a:a8:8b:59:81:2c:b1:aa:bd:f7:84:17:51:71: 76:aa:a3:a1:4d:2b:f1:98:03:f4:fc:cd:43:8d:25:e1:ca:f4: 37:9e:00:e5:12:08:71:78:70:af:03:3e:90:06:47:61:34:e5: 99:3d:f2:67:4d:45:33:fd:dd:af:22:b7:e9:12:1e:e7:ca:5c: 66:e3:7b:e2:35:a6:af:83:32:8a:1e:89:01:1d:17:92:42:e6: 7b:d3:92:dc:4a:0d:e1:5c:08:45:b3:86:6e:e1:cd:f5:55:53: f2:44:f9:e9:37:58:7d:c3:98:9e:13:5f:97:d3:41:f7:d0:56: b5:e9:13:9c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsHRsXtvMfLaVZgZycQi6NuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlNGEyMDIwYjgyZDAyOTRlOTBhMmQ2YjJjMGYyOGQxMTcz YjY0NjUwHhcNMjUxMjEwMDgwMDM3WhcNMjUxMjExMDgwMDM3WjAzMTEwLwYDVQQD Eyg0YzQzOTc2YzM4MWMwOWY1NjBjYWQ3OWMxOWQxM2I1MmE1ZGIyOTEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1B29VHy7UsTf0nvCG/qbqaOAd+4/ RFXT2iQpF6Me4l0Cr4HhWK/FUto96uJBOIv/L4iaU6HwPYQhmeEap3RmW7Rac9kL HE8PJ6cVp0A9NWg++AK0H3mF8gHplouOuYc59tlKUnJYx5tBTclrguyjxP52QV1X 0srext0m9Sg+OeN1wWs1XEMsa8wCe1FGj/9Q63rE//n3R/C0PcbRKnbKejy9nmy7 EU6BfZ8EbqotYU7Kz52KIvdK+ietGhR+eWElXT1egO96Us20GySNFeJ+7Plw4gaR c2jHXMiUZOeX5SnlYXAn1m7ixTxXdmT9xE58J23FQhB1zi8mUKYqYy2CNwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFExDl2w4HAn1YMrXnBnRO1Kl2ykSMB8GA1UdIwQY MBaAFB5KICC4LQKU6QotaywPKNEXO2RlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSGtvZ0lMZ3RBcFRwQ2kxckxBOG8wUmM3WkdVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yy80YzQ4YmItMzY2Yy00MWY1LTliMmQt NTMwNDQwYzRmYTI5LzEvSGtvZ0lMZ3RBcFRwQ2kxckxBOG8wUmM3WkdVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Yy80YzQ4YmItMzY2Yy00MWY1LTliMmQtNTMwNDQwYzRmYTI5 LzEvSGtvZ0lMZ3RBcFRwQ2kxckxBOG8wUmM3WkdVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgf3afu7u XGmpbQ8lrjOXOGe3+8j6bVEl/esJqpIk2pZz+spjF+Iey64NikQsgcMTrFs1BFyy exBio5iYIP1oMDhqQDlIue8dke7qb1NcHNpN/dY933x4Flw8URdv/d+TJXPx/Zge EChsF+ZxVyT/HzSNU2YvzUyM6CbzX/xXNKbsHQqoi1mBLLGqvfeEF1FxdqqjoU0r 8ZgD9PzNQ40l4cr0N54A5RIIcXhwrwM+kAZHYTTlmT3yZ01FM/3dryK36RIe58pc ZuN74jWmr4Myih6JAR0XkkLme9OS3EoN4VwIRbOGbuHN9VVT8kT56TdYfcOYnhNf l9NB99BWtekTnA== -----END CERTIFICATE-----Generated at Wed Dec 10 10:07:22 2025 by rpki-client