This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.mft File: H0rytHmBXwfNgun4K6sv6hP7IbE.mft (raw, json) Hash identifier: xZ+Ot63wFoiPyJMhRkIi6Pkjz4RzMQF5kIgiVbwu3Oc= Subject key identifier: 3B:9A:67:B1:17:F6:B5:DE:BB:23:40:87:6E:45:4B:E1:5E:F2:37:C8 Authority key identifier: 1F:4A:F2:B4:79:81:5F:07:CD:82:E9:F8:2B:AB:2F:EA:13:FB:21:B1 Certificate issuer: /CN=1f4af2b479815f07cd82e9f82bab2fea13fb21b1 Certificate serial: 019B104A74A29EBFFE212B3D058EB586DE89 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0rytHmBXwfNgun4K6sv6hP7IbE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.mft Manifest number: 102B Signing time: Fri 12 Dec 2025 02:01:13 +0000 Manifest this update: Fri 12 Dec 2025 02:01:13 +0000 Manifest next update: Sat 13 Dec 2025 02:01:13 +0000 Files and hashes: 1: H0rytHmBXwfNgun4K6sv6hP7IbE.crl (hash: PWOa7D0fmujzwnLNn0R/f3vLJdUzvgVbkAMnb+4zHlA=) 2: vNstzceOXGplN-vBnPrAujnN1Ks.roa (hash: A1jnUd+2zoPrt/m5wPvY6xxOOy1gAscK2t40BFmGG10=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.mft rsync://rpki.ripe.net/repository/DEFAULT/H0rytHmBXwfNgun4K6sv6hP7IbE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 19:27:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:10:4a:74:a2:9e:bf:fe:21:2b:3d:05:8e:b5:86:de:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1f4af2b479815f07cd82e9f82bab2fea13fb21b1 Validity Not Before: Dec 12 02:01:13 2025 GMT Not After : Dec 13 02:01:13 2025 GMT Subject: CN=3b9a67b117f6b5debb2340876e454be15ef237c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:25:e4:01:73:eb:c7:1f:67:c3:ab:fd:64:3f: fd:c5:74:15:d2:ae:87:1a:b4:b8:64:7f:9a:1d:e7: a7:81:5c:46:51:c4:cd:c1:03:40:07:66:3d:da:ad: 6d:b1:44:e4:49:bf:81:2c:d6:82:ef:17:b6:bb:f2: f7:b0:21:c2:b1:7b:40:47:b4:66:fa:68:84:da:28: d0:a7:f1:22:b4:e1:c1:83:dd:3f:0e:94:e9:80:b4: ca:68:a6:6c:e4:31:69:6a:a2:7c:2a:c1:56:76:1e: 7f:ce:7c:23:08:bd:4b:15:ac:ee:5b:de:f3:82:c1: e4:82:dc:28:d4:57:a3:90:8a:93:28:dc:20:60:ae: 35:5d:0c:14:82:f4:06:62:00:c5:a3:26:2b:53:d9: 17:bc:83:52:91:35:a2:d6:c6:51:f2:1a:3e:85:3e: 7f:42:dc:fc:80:72:d0:37:52:de:c9:cc:41:8f:a9: 7e:a8:a3:f7:ab:5e:e5:41:f9:67:73:c9:af:7f:16: 85:78:38:b1:fc:82:18:4e:cc:07:c2:45:91:73:42: d8:5e:af:99:e4:f1:ad:2a:d9:be:3b:7b:62:14:e2: a3:2a:e5:06:3f:a8:d3:a7:99:11:b1:f1:1a:1d:60: a1:4d:f2:8d:58:61:44:32:3a:50:ee:3b:95:9a:81: 0b:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:9A:67:B1:17:F6:B5:DE:BB:23:40:87:6E:45:4B:E1:5E:F2:37:C8 X509v3 Authority Key Identifier: keyid:1F:4A:F2:B4:79:81:5F:07:CD:82:E9:F8:2B:AB:2F:EA:13:FB:21:B1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0rytHmBXwfNgun4K6sv6hP7IbE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:d8:6f:13:2f:5d:79:9d:3a:67:99:73:c2:4f:13:14:6e:b6: e3:73:7d:f0:e2:b2:c6:e7:65:f8:98:dc:73:06:ab:76:0b:1c: 61:4e:1c:a3:9c:dc:ac:66:20:9d:40:60:5a:03:01:a8:ed:f7: e0:ba:e2:3d:47:a5:1a:e0:ba:2f:a1:82:6c:1e:23:89:a7:d1: fa:4e:b5:db:da:63:3d:24:23:c2:9c:9a:15:9f:78:dd:88:e4: 4a:4d:6b:12:98:57:c3:31:ed:d7:e1:91:83:72:06:35:04:4c: ea:d5:01:7a:34:36:3f:4b:99:27:65:0a:ef:73:be:04:7d:e1: 47:f8:63:9f:7d:0f:b0:6a:be:24:d2:e9:f4:c1:3a:a8:e8:07: 10:5d:9c:f6:70:5e:93:01:0d:e9:59:f3:be:7b:fa:62:d1:21: dd:9d:02:dd:e3:5b:8b:0b:fa:46:7f:55:1e:a3:a3:7d:71:7e: 08:9a:12:63:c6:55:bc:0d:df:84:be:88:93:4d:5d:95:3e:62: 39:07:f6:13:db:e5:7c:b7:86:4e:52:5d:8b:c0:6f:e9:48:68: 01:e6:5a:9f:fa:7f:26:91:a5:82:08:f5:18:52:40:46:d5:d6: 93:f4:a4:03:48:8c:2e:3e:cb:43:33:02:3b:9e:5c:fa:8b:55: 9e:12:6c:f0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsQSnSinr/+ISs9BY61ht6JMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFmNGFmMmI0Nzk4MTVmMDdjZDgyZTlmODJiYWIyZmVhMTNm YjIxYjEwHhcNMjUxMjEyMDIwMTEzWhcNMjUxMjEzMDIwMTEzWjAzMTEwLwYDVQQD EygzYjlhNjdiMTE3ZjZiNWRlYmIyMzQwODc2ZTQ1NGJlMTVlZjIzN2M4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyyXkAXPrxx9nw6v9ZD/9xXQV0q6H GrS4ZH+aHeengVxGUcTNwQNAB2Y92q1tsUTkSb+BLNaC7xe2u/L3sCHCsXtAR7Rm +miE2ijQp/EitOHBg90/DpTpgLTKaKZs5DFpaqJ8KsFWdh5/znwjCL1LFazuW97z gsHkgtwo1FejkIqTKNwgYK41XQwUgvQGYgDFoyYrU9kXvINSkTWi1sZR8ho+hT5/ Qtz8gHLQN1LeycxBj6l+qKP3q17lQflnc8mvfxaFeDix/IIYTswHwkWRc0LYXq+Z 5PGtKtm+O3tiFOKjKuUGP6jTp5kRsfEaHWChTfKNWGFEMjpQ7juVmoELhQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDuaZ7EX9rXeuyNAh25FS+Fe8jfIMB8GA1UdIwQY MBaAFB9K8rR5gV8HzYLp+CurL+oT+yGxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSDByeXRIbUJYd2ZOZ3VuNEs2c3Y2aFA3SWJFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy8wZjI1YjctNGY4MS00ZjQxLWExNjIt MDg2YzE2ZjczNmIxLzEvSDByeXRIbUJYd2ZOZ3VuNEs2c3Y2aFA3SWJFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy8wZjI1YjctNGY4MS00ZjQxLWExNjItMDg2YzE2ZjczNmIx LzEvSDByeXRIbUJYd2ZOZ3VuNEs2c3Y2aFA3SWJFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV9hvEy9d eZ06Z5lzwk8TFG6243N98OKyxudl+JjccwardgscYU4co5zcrGYgnUBgWgMBqO33 4LriPUelGuC6L6GCbB4jiafR+k6129pjPSQjwpyaFZ943YjkSk1rEphXwzHt1+GR g3IGNQRM6tUBejQ2P0uZJ2UK73O+BH3hR/hjn30PsGq+JNLp9ME6qOgHEF2c9nBe kwEN6Vnzvnv6YtEh3Z0C3eNbiwv6Rn9VHqOjfXF+CJoSY8ZVvA3fhL6Ik01dlT5i OQf2E9vlfLeGTlJdi8Bv6UhoAeZan/p/JpGlggj1GFJARtXWk/SkA0iMLj7LQzMC O55c+otVnhJs8A== -----END CERTIFICATE-----Generated at Fri Dec 12 04:01:59 2025 by rpki-client