This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.mft File: H0rytHmBXwfNgun4K6sv6hP7IbE.mft (raw, json) Hash identifier: QRGxi8BCwblb3FVlj26ltCVCPqBpgpbEdPYGhJa/UMw= Subject key identifier: 14:CA:23:48:28:77:70:3F:89:9C:BD:F5:FA:C0:49:A6:C0:05:8C:41 Authority key identifier: 1F:4A:F2:B4:79:81:5F:07:CD:82:E9:F8:2B:AB:2F:EA:13:FB:21:B1 Certificate issuer: /CN=1f4af2b479815f07cd82e9f82bab2fea13fb21b1 Certificate serial: 019B330D384F0A8ACE2E7514E2311D1501E1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0rytHmBXwfNgun4K6sv6hP7IbE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.mft Manifest number: 103D Signing time: Thu 18 Dec 2025 20:01:02 +0000 Manifest this update: Thu 18 Dec 2025 20:01:02 +0000 Manifest next update: Fri 19 Dec 2025 20:01:02 +0000 Files and hashes: 1: H0rytHmBXwfNgun4K6sv6hP7IbE.crl (hash: QwJ1eo5F2Upbt7H/AtApVYKWB2xfeqWsNmj+a0hzk0w=) 2: vNstzceOXGplN-vBnPrAujnN1Ks.roa (hash: A1jnUd+2zoPrt/m5wPvY6xxOOy1gAscK2t40BFmGG10=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.mft rsync://rpki.ripe.net/repository/DEFAULT/H0rytHmBXwfNgun4K6sv6hP7IbE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 20:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:33:0d:38:4f:0a:8a:ce:2e:75:14:e2:31:1d:15:01:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1f4af2b479815f07cd82e9f82bab2fea13fb21b1 Validity Not Before: Dec 18 20:01:02 2025 GMT Not After : Dec 19 20:01:02 2025 GMT Subject: CN=14ca23482877703f899cbdf5fac049a6c0058c41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:7c:59:4a:5e:62:65:ce:76:96:35:9c:e8:d0: 27:b2:08:d2:0e:14:2a:7b:c7:d2:f3:90:f6:a2:ff: b8:50:6f:c0:cf:62:f4:8f:ed:19:aa:b5:43:f0:43: 1a:05:ad:b9:64:fa:ce:6a:8e:35:a1:40:f4:0d:55: 07:14:00:90:e5:cc:bc:c6:7d:10:37:09:c3:fd:81: 17:e5:a3:36:08:4d:ac:14:fb:9f:c5:66:5d:e9:b2: 05:14:79:b7:4b:91:1d:8b:a2:9b:f1:82:3d:0f:27: b6:5a:3e:6c:ab:bd:53:ba:b6:14:16:1d:93:dc:ca: d1:7a:29:53:54:f3:6a:c8:07:83:fd:92:20:72:0f: 27:0f:fd:05:52:05:7c:69:6f:94:4b:f0:58:63:cc: f2:30:8a:48:13:36:49:c3:d9:85:ad:1b:42:df:64: 63:eb:b6:17:23:52:4e:62:73:af:05:25:0e:de:3f: 3c:78:5f:f8:60:94:96:91:a8:ce:81:44:5e:ad:17: f1:b9:93:89:ad:b4:31:58:3a:0f:4e:52:25:4f:67: b7:7c:4b:aa:ce:a9:be:b1:fa:f8:3e:a6:e6:8d:fb: 30:b4:45:c0:a2:00:c2:95:0a:37:98:96:f7:05:48: 54:ba:53:6b:cf:cc:2b:dc:6c:7d:6a:b0:77:59:79: 0d:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:CA:23:48:28:77:70:3F:89:9C:BD:F5:FA:C0:49:A6:C0:05:8C:41 X509v3 Authority Key Identifier: keyid:1F:4A:F2:B4:79:81:5F:07:CD:82:E9:F8:2B:AB:2F:EA:13:FB:21:B1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0rytHmBXwfNgun4K6sv6hP7IbE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/0f25b7-4f81-4f41-a162-086c16f736b1/1/H0rytHmBXwfNgun4K6sv6hP7IbE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 81:d9:0b:ea:d5:0f:19:ae:c5:71:91:a0:28:25:54:ec:4c:6c: 3e:54:36:29:f4:4c:0a:c4:f2:51:99:14:9f:36:7b:16:d0:84: 1f:d6:8a:f6:3a:30:96:3e:a6:30:71:f6:54:f3:de:04:e0:51: 20:15:1b:41:ec:3f:05:cc:59:6d:78:7a:47:39:31:02:d6:42: 45:6e:86:b2:fb:4e:9a:0a:a7:fc:55:7c:80:59:b1:cf:b9:89: 30:d7:d4:56:42:7b:37:e8:03:fd:2d:1b:ae:a9:9b:9e:4e:18: 71:ff:41:e5:f7:9e:05:7e:6b:03:7f:9a:02:f3:e4:42:62:5e: d8:cc:f9:7a:a8:a1:3a:2c:98:10:02:83:89:34:ef:ef:90:50: dd:56:d4:da:21:86:ad:ee:e7:09:35:6a:71:54:6d:3c:20:89: b9:6a:fb:7f:f1:2b:bc:21:02:c2:23:99:cd:77:ce:b3:ff:94: 0e:c4:64:02:f9:0a:6f:5d:0c:32:c6:f0:08:1f:c6:95:9b:69: 6c:3d:b4:bf:ab:14:e2:a7:0a:e5:c5:d1:a2:08:2c:5a:90:b0: 18:c4:41:e6:f7:f6:36:2a:e6:09:e1:69:1e:c8:de:ce:91:21: 7f:92:a6:b1:53:8c:c1:ec:81:16:8e:a5:d6:59:4f:95:de:cb: 3a:31:69:e3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZszDThPCorOLnUU4jEdFQHhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFmNGFmMmI0Nzk4MTVmMDdjZDgyZTlmODJiYWIyZmVhMTNm YjIxYjEwHhcNMjUxMjE4MjAwMTAyWhcNMjUxMjE5MjAwMTAyWjAzMTEwLwYDVQQD EygxNGNhMjM0ODI4Nzc3MDNmODk5Y2JkZjVmYWMwNDlhNmMwMDU4YzQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3XxZSl5iZc52ljWc6NAnsgjSDhQq e8fS85D2ov+4UG/Az2L0j+0ZqrVD8EMaBa25ZPrOao41oUD0DVUHFACQ5cy8xn0Q NwnD/YEX5aM2CE2sFPufxWZd6bIFFHm3S5Edi6Kb8YI9Dye2Wj5sq71TurYUFh2T 3MrReilTVPNqyAeD/ZIgcg8nD/0FUgV8aW+US/BYY8zyMIpIEzZJw9mFrRtC32Rj 67YXI1JOYnOvBSUO3j88eF/4YJSWkajOgURerRfxuZOJrbQxWDoPTlIlT2e3fEuq zqm+sfr4PqbmjfswtEXAogDClQo3mJb3BUhUulNrz8wr3Gx9arB3WXkN5QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBTKI0god3A/iZy99frASabABYxBMB8GA1UdIwQY MBaAFB9K8rR5gV8HzYLp+CurL+oT+yGxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSDByeXRIbUJYd2ZOZ3VuNEs2c3Y2aFA3SWJFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy8wZjI1YjctNGY4MS00ZjQxLWExNjIt MDg2YzE2ZjczNmIxLzEvSDByeXRIbUJYd2ZOZ3VuNEs2c3Y2aFA3SWJFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy8wZjI1YjctNGY4MS00ZjQxLWExNjItMDg2YzE2ZjczNmIx LzEvSDByeXRIbUJYd2ZOZ3VuNEs2c3Y2aFA3SWJFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgdkL6tUP Ga7FcZGgKCVU7ExsPlQ2KfRMCsTyUZkUnzZ7FtCEH9aK9jowlj6mMHH2VPPeBOBR IBUbQew/BcxZbXh6RzkxAtZCRW6GsvtOmgqn/FV8gFmxz7mJMNfUVkJ7N+gD/S0b rqmbnk4Ycf9B5feeBX5rA3+aAvPkQmJe2Mz5eqihOiyYEAKDiTTv75BQ3VbU2iGG re7nCTVqcVRtPCCJuWr7f/ErvCECwiOZzXfOs/+UDsRkAvkKb10MMsbwCB/GlZtp bD20v6sU4qcK5cXRoggsWpCwGMRB5vf2NirmCeFpHsjezpEhf5KmsVOMweyBFo6l 1llPld7LOjFp4w== -----END CERTIFICATE-----Generated at Fri Dec 19 01:56:44 2025 by rpki-client