This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.mft File: MHTWUd_sSw03HgJQWx-Gk-0djgI.mft (raw, json) Hash identifier: WF+/nYkT3zF1rzqWM3GFKAwwM4LlreWOp+kubYSVuUI= Subject key identifier: DD:E3:68:40:A9:80:4A:4C:F3:1D:A3:F2:D8:92:06:E3:97:17:59:15 Authority key identifier: 30:74:D6:51:DF:EC:4B:0D:37:1E:02:50:5B:1F:86:93:ED:1D:8E:02 Certificate issuer: /CN=3074d651dfec4b0d371e02505b1f8693ed1d8e02 Certificate serial: 019B21076DE56CA141EA6C7DDEDE3A239D48 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MHTWUd_sSw03HgJQWx-Gk-0djgI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.mft Manifest number: 177B Signing time: Mon 15 Dec 2025 08:01:33 +0000 Manifest this update: Mon 15 Dec 2025 08:01:33 +0000 Manifest next update: Tue 16 Dec 2025 08:01:33 +0000 Files and hashes: 1: 1-eAJE_ZPw_LJuNlElXg0BRaL11g.roa (hash: YakZb3LMYAiCfML5t2kxegtBvI+8ocrvx+dTJt+Il2M=) 2: MHTWUd_sSw03HgJQWx-Gk-0djgI.crl (hash: kOgNFjZZsVya4/MqEnyI8IqFPQi0OLotwT3E9JauxHw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.mft rsync://rpki.ripe.net/repository/DEFAULT/MHTWUd_sSw03HgJQWx-Gk-0djgI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 08:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:21:07:6d:e5:6c:a1:41:ea:6c:7d:de:de:3a:23:9d:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3074d651dfec4b0d371e02505b1f8693ed1d8e02 Validity Not Before: Dec 15 08:01:33 2025 GMT Not After : Dec 16 08:01:33 2025 GMT Subject: CN=dde36840a9804a4cf31da3f2d89206e397175915 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:a9:a6:44:13:18:db:35:0b:90:20:7d:13:81: fe:2d:13:71:a6:33:3b:bb:15:b3:79:d0:db:b2:12: f8:ef:a7:c7:22:f3:09:60:03:cb:88:ee:f6:bf:aa: e2:53:b7:b0:5f:83:b0:60:ab:71:8b:9e:54:61:41: 31:a5:3d:95:40:bd:c8:17:8f:4d:e5:b6:b8:a1:54: d3:23:ea:0a:29:70:65:a8:6c:ba:bf:3c:17:a8:69: 69:12:50:80:45:70:c8:6c:ef:d4:11:db:8d:2f:c4: be:98:92:62:f8:54:8d:6c:29:90:18:65:4e:b2:55: d2:b0:b5:e2:c4:45:6c:c4:f5:49:de:78:0d:73:28: e9:d1:fe:9e:c9:7d:f0:ef:e9:c9:b6:7f:d5:7c:5c: fb:f6:b3:3f:2c:17:48:b3:91:6b:fa:c8:e6:5b:bc: 60:69:ce:da:f3:a6:92:07:d1:33:fb:f6:5d:44:ca: bf:c2:14:2c:db:a4:3c:2a:35:ed:e4:f9:cb:af:83: 60:7e:80:28:c0:40:4f:2b:4e:e0:70:06:e2:cd:6d: a3:d1:59:67:fc:2d:95:57:b0:54:0d:6f:cc:f8:d0: c3:50:35:43:d9:d9:c6:7f:9f:ec:3e:e3:79:91:b4: 5c:f5:50:fc:b0:22:78:ae:15:1d:30:39:a0:65:85: 9f:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:E3:68:40:A9:80:4A:4C:F3:1D:A3:F2:D8:92:06:E3:97:17:59:15 X509v3 Authority Key Identifier: keyid:30:74:D6:51:DF:EC:4B:0D:37:1E:02:50:5B:1F:86:93:ED:1D:8E:02 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MHTWUd_sSw03HgJQWx-Gk-0djgI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 43:5a:b8:19:08:55:53:85:c9:ed:25:c5:2e:21:9b:52:79:b9: 5c:33:bd:62:f4:96:a8:94:d4:18:88:d0:59:fc:ab:4d:74:0f: 8d:05:c8:4c:8a:fc:b1:e1:06:90:9b:fe:97:97:7f:44:aa:09: b7:c5:3e:93:e7:2b:d3:a8:8f:61:05:c1:13:b3:e2:6a:9f:08: 76:37:8f:2c:e2:c5:5c:52:25:e8:45:2c:41:f5:a6:97:b2:b7: a5:bf:5a:b4:29:9d:cc:62:63:b8:a4:cf:57:72:73:0f:97:35: a7:5c:73:34:0f:b7:73:e8:9e:db:77:86:bb:12:82:ef:5c:7c: 74:62:e1:76:dd:23:2b:29:29:74:db:17:b4:f5:f7:15:1d:1f: 82:27:a7:2d:79:01:55:c4:47:ad:3a:e1:eb:fb:fb:0b:7f:12: 81:a5:a4:98:b0:bb:30:93:17:2f:ca:61:74:7d:ea:fc:41:fd: 4d:ad:98:c8:a7:c1:b2:fc:0b:9d:59:d7:97:d7:f2:2d:d9:fa: a2:78:ed:54:21:07:5e:39:0e:57:3a:aa:fa:86:21:43:fa:c8: 12:af:22:4a:9c:25:db:86:44:1a:cd:64:e6:4e:53:66:23:4a: d7:90:ff:c0:25:df:15:10:a1:85:dc:ef:85:f3:14:14:10:86: 72:b3:5f:2e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZshB23lbKFB6mx93t46I51IMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMwNzRkNjUxZGZlYzRiMGQzNzFlMDI1MDViMWY4NjkzZWQx ZDhlMDIwHhcNMjUxMjE1MDgwMTMzWhcNMjUxMjE2MDgwMTMzWjAzMTEwLwYDVQQD EyhkZGUzNjg0MGE5ODA0YTRjZjMxZGEzZjJkODkyMDZlMzk3MTc1OTE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj6mmRBMY2zULkCB9E4H+LRNxpjM7 uxWzedDbshL476fHIvMJYAPLiO72v6riU7ewX4OwYKtxi55UYUExpT2VQL3IF49N 5ba4oVTTI+oKKXBlqGy6vzwXqGlpElCARXDIbO/UEduNL8S+mJJi+FSNbCmQGGVO slXSsLXixEVsxPVJ3ngNcyjp0f6eyX3w7+nJtn/VfFz79rM/LBdIs5Fr+sjmW7xg ac7a86aSB9Ez+/ZdRMq/whQs26Q8KjXt5PnLr4NgfoAowEBPK07gcAbizW2j0Vln /C2VV7BUDW/M+NDDUDVD2dnGf5/sPuN5kbRc9VD8sCJ4rhUdMDmgZYWfEQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN3jaECpgEpM8x2j8tiSBuOXF1kVMB8GA1UdIwQY MBaAFDB01lHf7EsNNx4CUFsfhpPtHY4CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTUhUV1VkX3NTdzAzSGdKUVd4LUdrLTBkamdJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi8yMTI4M2YtZjdhYS00YTY3LTk1NzAt OTJiYTJkNTA3N2MzLzEvTUhUV1VkX3NTdzAzSGdKUVd4LUdrLTBkamdJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi8yMTI4M2YtZjdhYS00YTY3LTk1NzAtOTJiYTJkNTA3N2Mz LzEvTUhUV1VkX3NTdzAzSGdKUVd4LUdrLTBkamdJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQ1q4GQhV U4XJ7SXFLiGbUnm5XDO9YvSWqJTUGIjQWfyrTXQPjQXITIr8seEGkJv+l5d/RKoJ t8U+k+cr06iPYQXBE7Piap8IdjePLOLFXFIl6EUsQfWml7K3pb9atCmdzGJjuKTP V3JzD5c1p1xzNA+3c+ie23eGuxKC71x8dGLhdt0jKykpdNsXtPX3FR0fgienLXkB VcRHrTrh6/v7C38SgaWkmLC7MJMXL8phdH3q/EH9Ta2YyKfBsvwLnVnXl9fyLdn6 onjtVCEHXjkOVzqq+oYhQ/rIEq8iSpwl24ZEGs1k5k5TZiNK15D/wCXfFRChhdzv hfMUFBCGcrNfLg== -----END CERTIFICATE-----Generated at Mon Dec 15 13:18:23 2025 by rpki-client