This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/421158-f0c6-4619-afa5-8a94687dba6f/1/hw4qIH9pdyFKlXqOFI0fi1pc0II.mft File: hw4qIH9pdyFKlXqOFI0fi1pc0II.mft (raw, json) Hash identifier: FTBIlAsTWHfGxJwFBmzaJeC8bwF8PRop02OZ+Z4Mwjk= Subject key identifier: AA:0B:28:72:59:5C:21:C6:EF:4A:A5:BA:F7:A0:C9:EF:BE:7B:42:B4 Authority key identifier: 87:0E:2A:20:7F:69:77:21:4A:95:7A:8E:14:8D:1F:8B:5A:5C:D0:82 Certificate issuer: /CN=870e2a207f6977214a957a8e148d1f8b5a5cd082 Certificate serial: 019B1A28D855F4CE672FA0CB40BA4067CF3C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hw4qIH9pdyFKlXqOFI0fi1pc0II.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/421158-f0c6-4619-afa5-8a94687dba6f/1/hw4qIH9pdyFKlXqOFI0fi1pc0II.mft Manifest number: 0455 Signing time: Sun 14 Dec 2025 00:00:42 +0000 Manifest this update: Sun 14 Dec 2025 00:00:42 +0000 Manifest next update: Mon 15 Dec 2025 00:00:42 +0000 Files and hashes: 1: hw4qIH9pdyFKlXqOFI0fi1pc0II.crl (hash: MIjKVjfRX9ypovDdeHMPAFV4yuQfb9/ZNlUdZ201OPw=) 2: nKTvZPJPqdCXiSwzyA9j5IjgzXg.roa (hash: IlnUSzXgTeo7Aecj19DyZcjG2TpAU9jXATfOU6kk97U=) 3: zNxBSM9LhOTwYtAP52MRH2hzZ_o.roa (hash: 51C5X4gm2WkYmwXfFe/uw6oyIL71jLkdgjDOyTD+5rc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/421158-f0c6-4619-afa5-8a94687dba6f/1/hw4qIH9pdyFKlXqOFI0fi1pc0II.crl rsync://rpki.ripe.net/repository/DEFAULT/af/421158-f0c6-4619-afa5-8a94687dba6f/1/hw4qIH9pdyFKlXqOFI0fi1pc0II.mft rsync://rpki.ripe.net/repository/DEFAULT/hw4qIH9pdyFKlXqOFI0fi1pc0II.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 20:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1a:28:d8:55:f4:ce:67:2f:a0:cb:40:ba:40:67:cf:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=870e2a207f6977214a957a8e148d1f8b5a5cd082 Validity Not Before: Dec 14 00:00:42 2025 GMT Not After : Dec 15 00:00:42 2025 GMT Subject: CN=aa0b2872595c21c6ef4aa5baf7a0c9efbe7b42b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:0b:08:80:67:47:f0:24:15:ff:a0:21:89:4c: 4b:54:d3:5a:de:75:e8:4b:3c:28:a7:68:f1:25:24: 76:6b:f3:a1:bd:fb:3f:87:ac:c7:ec:49:5b:c7:22: 9b:b2:3c:85:06:9f:8c:f6:35:86:e4:65:a7:94:49: e5:df:9e:e0:c3:9c:c4:0b:ac:34:29:f5:7e:b0:62: da:e1:61:60:52:e8:1f:f0:15:b2:3e:70:28:9c:1f: 55:a5:0f:4e:57:91:3c:2c:cc:8e:3d:5d:83:68:32: 35:22:1d:14:99:76:d4:56:eb:48:83:c5:6b:30:e9: 47:38:9a:b8:8e:07:a8:2a:b8:ae:35:c1:c3:e4:3a: 20:af:b4:e2:09:90:f2:b3:91:a5:d9:1f:d2:33:0d: 75:9f:ce:c0:65:35:54:fe:20:37:08:ff:81:9c:79: 40:fa:fb:65:d4:a1:61:80:db:ee:7e:75:38:9a:8a: 5c:6a:a4:0d:c2:66:27:47:a5:04:f3:93:41:dc:e3: f5:53:9d:60:9b:d6:4c:98:73:ab:06:35:77:62:7a: 12:42:2d:1f:37:24:a6:55:1d:65:d0:a0:df:6e:d3: 74:77:55:38:c4:a3:77:ee:cb:07:46:f4:d8:3d:5a: 65:fe:84:e4:c3:ba:c4:f5:1d:76:ac:c0:0a:6b:4e: 88:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:0B:28:72:59:5C:21:C6:EF:4A:A5:BA:F7:A0:C9:EF:BE:7B:42:B4 X509v3 Authority Key Identifier: keyid:87:0E:2A:20:7F:69:77:21:4A:95:7A:8E:14:8D:1F:8B:5A:5C:D0:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hw4qIH9pdyFKlXqOFI0fi1pc0II.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/421158-f0c6-4619-afa5-8a94687dba6f/1/hw4qIH9pdyFKlXqOFI0fi1pc0II.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/421158-f0c6-4619-afa5-8a94687dba6f/1/hw4qIH9pdyFKlXqOFI0fi1pc0II.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 07:fc:56:41:02:7f:69:47:90:6f:77:df:25:fc:6b:82:57:2f: c7:97:2e:2a:9a:ac:e2:0f:e4:c2:b8:90:b8:7b:a5:83:79:30: 7f:43:08:5e:f6:5c:e3:c2:38:17:a7:2c:4f:3e:f0:ed:af:66: 0a:71:bd:bf:2f:cd:11:25:dc:23:bc:86:d2:9b:e8:56:d0:99: 22:7d:73:3a:db:50:2f:bf:74:b0:a3:13:63:b0:9b:6e:a7:1a: 1b:a7:29:b2:64:c4:31:ca:7e:30:83:37:46:56:e3:8a:d5:a3: 7b:f9:3c:19:08:d0:e4:4f:dd:98:7e:33:00:f9:17:e3:3f:c8: 8f:57:52:08:a2:ba:ad:4e:33:c1:7d:c7:65:cd:0e:d2:9b:76: 07:5d:6d:2b:94:f2:ac:df:cc:9a:25:d8:fe:b8:e0:6f:46:f2: a1:33:71:a2:b9:29:85:81:1a:4c:fe:ae:47:c2:cb:2c:25:be: 35:0c:04:8e:4f:2a:78:45:bf:89:c6:c6:79:ad:21:ee:b4:e7: 5c:96:c1:cd:d1:17:2a:a2:30:01:42:69:04:a0:1e:5b:fa:79: 02:be:18:44:89:92:e1:da:71:69:08:5f:bf:b2:bd:d4:10:2c: 49:94:9a:f0:fb:0d:04:c2:09:90:1e:1c:7c:3d:30:09:b7:64: 9d:f4:8e:5b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsaKNhV9M5nL6DLQLpAZ888MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3MGUyYTIwN2Y2OTc3MjE0YTk1N2E4ZTE0OGQxZjhiNWE1 Y2QwODIwHhcNMjUxMjE0MDAwMDQyWhcNMjUxMjE1MDAwMDQyWjAzMTEwLwYDVQQD EyhhYTBiMjg3MjU5NWMyMWM2ZWY0YWE1YmFmN2EwYzllZmJlN2I0MmI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5wsIgGdH8CQV/6AhiUxLVNNa3nXo Szwop2jxJSR2a/Ohvfs/h6zH7ElbxyKbsjyFBp+M9jWG5GWnlEnl357gw5zEC6w0 KfV+sGLa4WFgUugf8BWyPnAonB9VpQ9OV5E8LMyOPV2DaDI1Ih0UmXbUVutIg8Vr MOlHOJq4jgeoKriuNcHD5Dogr7TiCZDys5Gl2R/SMw11n87AZTVU/iA3CP+BnHlA +vtl1KFhgNvufnU4mopcaqQNwmYnR6UE85NB3OP1U51gm9ZMmHOrBjV3YnoSQi0f NySmVR1l0KDfbtN0d1U4xKN37ssHRvTYPVpl/oTkw7rE9R12rMAKa06IkwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKoLKHJZXCHG70qluvegye++e0K0MB8GA1UdIwQY MBaAFIcOKiB/aXchSpV6jhSNH4taXNCCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHc0cUlIOXBkeUZLbFhxT0ZJMGZpMXBjMElJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi80MjExNTgtZjBjNi00NjE5LWFmYTUt OGE5NDY4N2RiYTZmLzEvaHc0cUlIOXBkeUZLbFhxT0ZJMGZpMXBjMElJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi80MjExNTgtZjBjNi00NjE5LWFmYTUtOGE5NDY4N2RiYTZm LzEvaHc0cUlIOXBkeUZLbFhxT0ZJMGZpMXBjMElJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB/xWQQJ/ aUeQb3ffJfxrglcvx5cuKpqs4g/kwriQuHulg3kwf0MIXvZc48I4F6csTz7w7a9m CnG9vy/NESXcI7yG0pvoVtCZIn1zOttQL790sKMTY7CbbqcaG6cpsmTEMcp+MIM3 RlbjitWje/k8GQjQ5E/dmH4zAPkX4z/Ij1dSCKK6rU4zwX3HZc0O0pt2B11tK5Ty rN/MmiXY/rjgb0byoTNxorkphYEaTP6uR8LLLCW+NQwEjk8qeEW/icbGea0h7rTn XJbBzdEXKqIwAUJpBKAeW/p5Ar4YRImS4dpxaQhfv7K91BAsSZSa8PsNBMIJkB4c fD0wCbdknfSOWw== -----END CERTIFICATE-----Generated at Sun Dec 14 05:30:27 2025 by rpki-client