This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/d9c3c0-2eaf-4326-8ee2-a7d80e600844/1/FHVOhj0RfOYhDylUYajGqgQ8bIA.mft File: FHVOhj0RfOYhDylUYajGqgQ8bIA.mft (raw, json) Hash identifier: X5bfqSJGb4S/ywvtIdAx17VSbGKT/rCx//mQBYs+t18= Subject key identifier: 1D:AC:3E:87:D0:55:7A:F7:0B:7C:7C:F0:91:6D:96:4B:50:33:D7:74 Authority key identifier: 14:75:4E:86:3D:11:7C:E6:21:0F:29:54:61:A8:C6:AA:04:3C:6C:80 Certificate issuer: /CN=14754e863d117ce6210f295461a8c6aa043c6c80 Certificate serial: 019B1A2983A2B02EE3296CFE93446C4C63F7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FHVOhj0RfOYhDylUYajGqgQ8bIA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/d9c3c0-2eaf-4326-8ee2-a7d80e600844/1/FHVOhj0RfOYhDylUYajGqgQ8bIA.mft Manifest number: 1772 Signing time: Sun 14 Dec 2025 00:01:26 +0000 Manifest this update: Sun 14 Dec 2025 00:01:26 +0000 Manifest next update: Mon 15 Dec 2025 00:01:26 +0000 Files and hashes: 1: FHVOhj0RfOYhDylUYajGqgQ8bIA.crl (hash: 7np7wysvEMTu/mtABir/uhuUy3XhpqIBnj2BcDY8ngE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/d9c3c0-2eaf-4326-8ee2-a7d80e600844/1/FHVOhj0RfOYhDylUYajGqgQ8bIA.crl rsync://rpki.ripe.net/repository/DEFAULT/98/d9c3c0-2eaf-4326-8ee2-a7d80e600844/1/FHVOhj0RfOYhDylUYajGqgQ8bIA.mft rsync://rpki.ripe.net/repository/DEFAULT/FHVOhj0RfOYhDylUYajGqgQ8bIA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 20:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1a:29:83:a2:b0:2e:e3:29:6c:fe:93:44:6c:4c:63:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=14754e863d117ce6210f295461a8c6aa043c6c80 Validity Not Before: Dec 14 00:01:26 2025 GMT Not After : Dec 15 00:01:26 2025 GMT Subject: CN=1dac3e87d0557af70b7c7cf0916d964b5033d774 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:98:c6:55:21:bc:41:0d:47:19:bb:d7:b4:6c: 08:c7:0c:21:5b:ad:16:cd:26:a6:69:c3:3e:d5:a7: e4:64:95:e2:a0:37:90:c6:25:ca:29:48:20:be:6e: 7c:0c:40:f1:c1:ea:00:74:48:f5:b0:a1:8b:81:07: 35:2f:2b:82:c8:4f:2d:d5:61:3a:90:aa:d0:24:cc: 55:d0:bc:d8:92:1d:80:5a:ec:63:4c:92:04:2c:80: 36:78:3a:99:ad:1e:65:1e:ef:e5:6f:fc:29:38:e2: c9:fa:45:e1:eb:91:a3:c0:23:a8:0e:63:f1:19:77: 58:08:1c:78:e4:20:00:f8:55:7d:6d:58:b0:37:c6: 57:f7:c0:0c:91:dd:16:95:2f:6f:09:a6:e5:f2:4b: 5b:32:ad:aa:86:b1:df:51:40:a5:c7:0c:a1:ca:a7: d0:fb:8f:95:89:fe:34:99:b8:f6:81:6d:5b:c9:6a: af:16:0b:af:d7:53:b6:fc:36:69:9b:66:15:0c:78: fc:36:8d:f7:07:7c:39:76:24:db:12:eb:9d:b8:2c: 35:83:87:2a:d5:7e:bc:e4:23:86:1a:68:31:c6:25: 7d:a3:6c:7b:4d:c5:13:ce:58:be:94:7e:0f:9f:22: ad:e6:7f:ec:4e:db:2c:45:51:63:25:dc:2c:31:07: b5:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:AC:3E:87:D0:55:7A:F7:0B:7C:7C:F0:91:6D:96:4B:50:33:D7:74 X509v3 Authority Key Identifier: keyid:14:75:4E:86:3D:11:7C:E6:21:0F:29:54:61:A8:C6:AA:04:3C:6C:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FHVOhj0RfOYhDylUYajGqgQ8bIA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/d9c3c0-2eaf-4326-8ee2-a7d80e600844/1/FHVOhj0RfOYhDylUYajGqgQ8bIA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/98/d9c3c0-2eaf-4326-8ee2-a7d80e600844/1/FHVOhj0RfOYhDylUYajGqgQ8bIA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 05:c9:3e:d7:de:12:60:dd:c4:5c:f6:9f:2a:fa:4c:32:52:5b: b8:06:58:59:d9:40:ac:b1:ab:ae:4f:c4:6b:95:d0:68:0d:af: 58:95:e1:56:ba:4e:e1:ab:fc:30:b2:b9:23:3d:c6:fc:ae:4c: 95:a3:ed:76:41:91:4f:40:c7:f9:af:2d:a6:92:c6:df:ea:24: ba:6e:8c:1a:b6:f9:70:62:82:55:26:c2:aa:42:df:67:35:35: 70:3f:b4:db:e8:0a:cf:cc:e1:38:be:ee:57:43:de:46:c5:bd: f3:78:04:c0:8c:6a:73:cd:be:72:97:77:43:39:79:0c:3d:33: 15:ee:a9:ac:13:a6:95:50:28:74:b5:bd:01:3f:59:ac:7e:76: d5:be:1f:a3:d3:8c:3f:b4:df:b7:ca:2b:98:88:dc:22:d2:9e: d5:80:74:f1:cb:71:27:c4:26:8f:91:f5:f8:3b:8c:12:3c:21: 00:4a:99:b9:e6:71:ca:ac:20:10:e0:70:52:ff:30:08:59:f1: 24:9a:78:41:ee:67:8f:2c:31:c7:b3:cf:4a:3e:77:1b:b0:5f: 06:0e:0a:5c:ff:0a:dd:96:6d:b9:6c:b7:44:2a:36:73:e2:96: 74:63:da:97:43:fe:bf:c9:c5:af:0f:85:15:06:74:46:fb:a8: a1:41:82:c3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsaKYOisC7jKWz+k0RsTGP3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE0NzU0ZTg2M2QxMTdjZTYyMTBmMjk1NDYxYThjNmFhMDQz YzZjODAwHhcNMjUxMjE0MDAwMTI2WhcNMjUxMjE1MDAwMTI2WjAzMTEwLwYDVQQD EygxZGFjM2U4N2QwNTU3YWY3MGI3YzdjZjA5MTZkOTY0YjUwMzNkNzc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0pjGVSG8QQ1HGbvXtGwIxwwhW60W zSamacM+1afkZJXioDeQxiXKKUggvm58DEDxweoAdEj1sKGLgQc1LyuCyE8t1WE6 kKrQJMxV0LzYkh2AWuxjTJIELIA2eDqZrR5lHu/lb/wpOOLJ+kXh65GjwCOoDmPx GXdYCBx45CAA+FV9bViwN8ZX98AMkd0WlS9vCabl8ktbMq2qhrHfUUClxwyhyqfQ +4+Vif40mbj2gW1byWqvFguv11O2/DZpm2YVDHj8No33B3w5diTbEuuduCw1g4cq 1X685COGGmgxxiV9o2x7TcUTzli+lH4PnyKt5n/sTtssRVFjJdwsMQe1UQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB2sPofQVXr3C3x88JFtlktQM9d0MB8GA1UdIwQY MBaAFBR1ToY9EXzmIQ8pVGGoxqoEPGyAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRkhWT2hqMFJmT1loRHlsVVlhakdxZ1E4YklBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC9kOWMzYzAtMmVhZi00MzI2LThlZTIt YTdkODBlNjAwODQ0LzEvRkhWT2hqMFJmT1loRHlsVVlhakdxZ1E4YklBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OC9kOWMzYzAtMmVhZi00MzI2LThlZTItYTdkODBlNjAwODQ0 LzEvRkhWT2hqMFJmT1loRHlsVVlhakdxZ1E4YklBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABck+194S YN3EXPafKvpMMlJbuAZYWdlArLGrrk/Ea5XQaA2vWJXhVrpO4av8MLK5Iz3G/K5M laPtdkGRT0DH+a8tppLG3+okum6MGrb5cGKCVSbCqkLfZzU1cD+02+gKz8zhOL7u V0PeRsW983gEwIxqc82+cpd3Qzl5DD0zFe6prBOmlVAodLW9AT9ZrH521b4fo9OM P7Tft8ormIjcItKe1YB08ctxJ8Qmj5H1+DuMEjwhAEqZueZxyqwgEOBwUv8wCFnx JJp4Qe5njywxx7PPSj53G7BfBg4KXP8K3ZZtuWy3RCo2c+KWdGPal0P+v8nFrw+F FQZ0RvuooUGCww== -----END CERTIFICATE-----Generated at Sun Dec 14 05:32:42 2025 by rpki-client