This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/0287cf-853b-4516-9f06-452ec3a9588b/1/_H1Kt3YauiTzPVtt-8J8q3OLte4.mft File: _H1Kt3YauiTzPVtt-8J8q3OLte4.mft (raw, json) Hash identifier: 5N2CypNsAH8cIBXpk/aj6F/J12ytVExNVy/iLjEGtvI= Subject key identifier: 4C:C9:8A:FB:67:3B:66:81:63:F6:44:E5:43:F9:1A:57:EE:1B:FF:3D Authority key identifier: FC:7D:4A:B7:76:1A:BA:24:F3:3D:5B:6D:FB:C2:7C:AB:73:8B:B5:EE Certificate issuer: /CN=fc7d4ab7761aba24f33d5b6dfbc27cab738bb5ee Certificate serial: 019B36452D108809BD47AE9488E75DFF8009 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_H1Kt3YauiTzPVtt-8J8q3OLte4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/0287cf-853b-4516-9f06-452ec3a9588b/1/_H1Kt3YauiTzPVtt-8J8q3OLte4.mft Manifest number: 1423 Signing time: Fri 19 Dec 2025 11:01:01 +0000 Manifest this update: Fri 19 Dec 2025 11:01:01 +0000 Manifest next update: Sat 20 Dec 2025 11:01:01 +0000 Files and hashes: 1: _H1Kt3YauiTzPVtt-8J8q3OLte4.crl (hash: bVFPJpdE2thyW0UnstDeTRqjRz9OVjehz25tfhJxVuQ=) 2: m1aho7A62fK7s2UNnicExFjE6us.roa (hash: ADQVW+bl8YrIssIav1fCxE/xWNAztKLL5kf78n8W9UA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/0287cf-853b-4516-9f06-452ec3a9588b/1/_H1Kt3YauiTzPVtt-8J8q3OLte4.crl rsync://rpki.ripe.net/repository/DEFAULT/b3/0287cf-853b-4516-9f06-452ec3a9588b/1/_H1Kt3YauiTzPVtt-8J8q3OLte4.mft rsync://rpki.ripe.net/repository/DEFAULT/_H1Kt3YauiTzPVtt-8J8q3OLte4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 07:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:36:45:2d:10:88:09:bd:47:ae:94:88:e7:5d:ff:80:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fc7d4ab7761aba24f33d5b6dfbc27cab738bb5ee Validity Not Before: Dec 19 11:01:01 2025 GMT Not After : Dec 20 11:01:01 2025 GMT Subject: CN=4cc98afb673b668163f644e543f91a57ee1bff3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:88:98:86:e0:d9:5a:07:3a:29:4c:b7:0e:70: 94:cd:2c:98:d3:00:18:60:8f:01:e3:45:b6:a7:f2: 45:6f:97:cf:36:81:eb:bc:50:d3:36:a1:d2:17:a4: f0:ce:a7:8e:a1:05:92:94:81:bf:af:c0:59:12:e2: d6:7e:70:3f:86:52:16:7e:30:a0:46:0d:d7:59:55: 64:be:8c:7f:bd:14:8b:94:6f:20:aa:cf:bc:e8:d2: 0c:f3:dc:d3:8a:28:8d:62:5b:a6:d8:dd:7f:50:85: fa:69:24:6c:ba:8b:90:52:52:b6:68:6f:5d:d2:1a: db:11:81:a0:47:8f:05:60:02:fb:d9:a8:0d:1f:8d: b6:c3:b6:85:af:83:d5:9d:8a:79:c8:6c:5f:f3:3b: 30:cb:53:1e:97:20:d1:f4:89:51:ec:45:ee:15:4a: c9:8f:9c:a1:5d:04:f0:66:de:9b:cd:9c:14:4b:7c: 3c:41:a9:f8:92:9a:48:61:95:02:37:49:b9:a9:3e: 76:26:6c:ab:86:b7:ab:8e:b7:5a:64:0d:f8:35:17: e1:bf:c8:52:cb:1a:d7:e7:08:36:e5:02:b5:a7:ab: 0a:c4:de:30:32:62:c5:a5:1f:70:01:30:d7:19:6f: 27:a7:06:34:f9:a6:13:1b:45:0d:41:c4:e4:af:34: c7:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:C9:8A:FB:67:3B:66:81:63:F6:44:E5:43:F9:1A:57:EE:1B:FF:3D X509v3 Authority Key Identifier: keyid:FC:7D:4A:B7:76:1A:BA:24:F3:3D:5B:6D:FB:C2:7C:AB:73:8B:B5:EE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_H1Kt3YauiTzPVtt-8J8q3OLte4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/0287cf-853b-4516-9f06-452ec3a9588b/1/_H1Kt3YauiTzPVtt-8J8q3OLte4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/0287cf-853b-4516-9f06-452ec3a9588b/1/_H1Kt3YauiTzPVtt-8J8q3OLte4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 36:57:5b:9a:2d:cf:af:5e:56:06:2a:9d:36:81:ed:52:86:e6: 40:4c:a8:55:82:a9:fe:31:a2:a9:14:e7:f2:0a:1f:d3:c4:2c: 65:ce:9f:d5:e4:c9:e0:c2:67:36:9b:ab:27:52:61:a6:5c:0b: ad:d2:af:47:80:08:8b:66:66:bb:a7:82:5b:4e:e6:fe:44:9e: 4e:17:38:a5:8e:39:2e:89:2a:23:1a:42:af:d4:e6:35:4c:c8: ff:fb:52:61:9f:28:b0:0c:14:3b:b7:ec:c8:90:ba:c4:55:a4: ff:a2:61:2f:03:33:e6:0d:ba:3f:c9:e0:37:a1:80:ce:4d:96: 56:56:82:bf:6a:41:bc:8f:d2:41:62:e0:3a:35:d3:87:69:93: 21:b4:52:95:a0:fb:cb:ba:b8:69:e4:40:ad:58:2a:30:da:50: 6e:4b:be:b4:3e:cb:bd:45:2f:22:4a:f2:38:92:e2:39:20:d1: e1:52:9a:d3:b3:5e:28:0a:b5:75:c1:ad:27:93:50:13:87:7d: 2c:13:7b:a5:33:16:35:d4:3a:25:08:b1:d1:2d:dd:03:85:4e: 90:01:36:92:cf:1e:a8:58:eb:a6:1a:3b:e7:83:52:f3:e4:af: 34:09:9d:61:7d:e8:54:18:32:a9:ba:75:08:01:64:ac:3f:d1: af:f1:14:4f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs2RS0QiAm9R66UiOdd/4AJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZjN2Q0YWI3NzYxYWJhMjRmMzNkNWI2ZGZiYzI3Y2FiNzM4 YmI1ZWUwHhcNMjUxMjE5MTEwMTAxWhcNMjUxMjIwMTEwMTAxWjAzMTEwLwYDVQQD Eyg0Y2M5OGFmYjY3M2I2NjgxNjNmNjQ0ZTU0M2Y5MWE1N2VlMWJmZjNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvoiYhuDZWgc6KUy3DnCUzSyY0wAY YI8B40W2p/JFb5fPNoHrvFDTNqHSF6TwzqeOoQWSlIG/r8BZEuLWfnA/hlIWfjCg Rg3XWVVkvox/vRSLlG8gqs+86NIM89zTiiiNYlum2N1/UIX6aSRsuouQUlK2aG9d 0hrbEYGgR48FYAL72agNH422w7aFr4PVnYp5yGxf8zswy1MelyDR9IlR7EXuFUrJ j5yhXQTwZt6bzZwUS3w8Qan4kppIYZUCN0m5qT52JmyrhrerjrdaZA34NRfhv8hS yxrX5wg25QK1p6sKxN4wMmLFpR9wATDXGW8npwY0+aYTG0UNQcTkrzTHVQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEzJivtnO2aBY/ZE5UP5GlfuG/89MB8GA1UdIwQY MBaAFPx9Srd2Grok8z1bbfvCfKtzi7XuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX0gxS3QzWWF1aVR6UFZ0dC04SjhxM09MdGU0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy8wMjg3Y2YtODUzYi00NTE2LTlmMDYt NDUyZWMzYTk1ODhiLzEvX0gxS3QzWWF1aVR6UFZ0dC04SjhxM09MdGU0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMy8wMjg3Y2YtODUzYi00NTE2LTlmMDYtNDUyZWMzYTk1ODhi LzEvX0gxS3QzWWF1aVR6UFZ0dC04SjhxM09MdGU0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANldbmi3P r15WBiqdNoHtUobmQEyoVYKp/jGiqRTn8gof08QsZc6f1eTJ4MJnNpurJ1JhplwL rdKvR4AIi2Zmu6eCW07m/kSeThc4pY45LokqIxpCr9TmNUzI//tSYZ8osAwUO7fs yJC6xFWk/6JhLwMz5g26P8ngN6GAzk2WVlaCv2pBvI/SQWLgOjXTh2mTIbRSlaD7 y7q4aeRArVgqMNpQbku+tD7LvUUvIkryOJLiOSDR4VKa07NeKAq1dcGtJ5NQE4d9 LBN7pTMWNdQ6JQix0S3dA4VOkAE2ks8eqFjrpho754NS8+SvNAmdYX3oVBgyqbp1 CAFkrD/Rr/EUTw== -----END CERTIFICATE-----Generated at Fri Dec 19 14:54:15 2025 by rpki-client