This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/f0b723-77f1-44c0-8fca-7c646795090b/1/HtkwhM7ESb7YpvwAi8fdmV6zcxw.mft File: HtkwhM7ESb7YpvwAi8fdmV6zcxw.mft (raw, json) Hash identifier: dyQ9LB1RfS5BeIhoUtTz4QvirVIq/h0RgLYvfjSJm8s= Subject key identifier: 46:FB:A1:95:53:62:7C:54:C4:98:CE:4E:49:DA:1D:02:BA:00:DB:3C Authority key identifier: 1E:D9:30:84:CE:C4:49:BE:D8:A6:FC:00:8B:C7:DD:99:5E:B3:73:1C Certificate issuer: /CN=1ed93084cec449bed8a6fc008bc7dd995eb3731c Certificate serial: 019B35333B80850D17BB9E686F4AAE0C5737 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HtkwhM7ESb7YpvwAi8fdmV6zcxw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/f0b723-77f1-44c0-8fca-7c646795090b/1/HtkwhM7ESb7YpvwAi8fdmV6zcxw.mft Manifest number: 14A8 Signing time: Fri 19 Dec 2025 06:01:48 +0000 Manifest this update: Fri 19 Dec 2025 06:01:48 +0000 Manifest next update: Sat 20 Dec 2025 06:01:48 +0000 Files and hashes: 1: HtkwhM7ESb7YpvwAi8fdmV6zcxw.crl (hash: +UYIB2ZwP4c6yD62svbXi5/G1LgIGFFatiOtY7Uv6AM=) 2: Vu2y-aZXZUUf1w0WU_d1LDGMCjI.roa (hash: FtyHvpwzr+fctqlndkuiTxqEdI3uy3i+5i35b5nlvso=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/f0b723-77f1-44c0-8fca-7c646795090b/1/HtkwhM7ESb7YpvwAi8fdmV6zcxw.crl rsync://rpki.ripe.net/repository/DEFAULT/ce/f0b723-77f1-44c0-8fca-7c646795090b/1/HtkwhM7ESb7YpvwAi8fdmV6zcxw.mft rsync://rpki.ripe.net/repository/DEFAULT/HtkwhM7ESb7YpvwAi8fdmV6zcxw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:35:33:3b:80:85:0d:17:bb:9e:68:6f:4a:ae:0c:57:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1ed93084cec449bed8a6fc008bc7dd995eb3731c Validity Not Before: Dec 19 06:01:48 2025 GMT Not After : Dec 20 06:01:48 2025 GMT Subject: CN=46fba19553627c54c498ce4e49da1d02ba00db3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:cf:f3:65:df:18:1f:1b:20:b5:e8:b0:de:30: 3e:3c:57:1f:e8:c1:14:14:48:37:58:61:ed:4e:99: c4:a1:37:1a:84:2c:f9:e9:ee:82:94:6f:40:df:dd: 4b:eb:e9:e3:f0:ff:7f:b2:1c:50:db:85:ac:14:1c: a6:66:c9:cd:e4:86:63:52:95:80:27:51:a6:37:f1: 46:aa:86:09:94:48:b0:5e:a5:0e:47:9f:95:6d:ad: ca:6b:9f:23:2f:ed:cb:9a:41:fe:95:af:15:2e:9c: ad:d5:f5:67:6e:dd:cf:ea:56:9c:69:c0:41:f7:7f: 86:6e:fb:31:b1:e9:a4:d2:b7:29:7b:53:82:a9:d8: 0c:86:bb:c1:68:d1:ee:07:6c:7c:ce:70:55:04:13: 69:95:b4:ab:9a:09:da:75:bc:fa:95:b6:4a:5a:f5: 00:83:86:61:9d:bf:0c:1b:e3:01:d8:6e:6d:e7:02: 4d:2c:29:f7:35:14:33:a6:e9:ab:92:71:d7:94:7b: a6:ec:13:92:d5:10:d7:a3:28:57:70:09:04:73:01: 73:a0:2c:82:41:a9:f1:71:76:ad:a4:fc:8f:e6:91: 78:6f:bd:17:58:67:fb:93:1c:74:59:73:13:77:6c: 3d:ab:a4:37:f3:00:20:76:c6:44:af:68:3d:d0:5c: 37:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:FB:A1:95:53:62:7C:54:C4:98:CE:4E:49:DA:1D:02:BA:00:DB:3C X509v3 Authority Key Identifier: keyid:1E:D9:30:84:CE:C4:49:BE:D8:A6:FC:00:8B:C7:DD:99:5E:B3:73:1C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HtkwhM7ESb7YpvwAi8fdmV6zcxw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/f0b723-77f1-44c0-8fca-7c646795090b/1/HtkwhM7ESb7YpvwAi8fdmV6zcxw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/f0b723-77f1-44c0-8fca-7c646795090b/1/HtkwhM7ESb7YpvwAi8fdmV6zcxw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 61:f4:46:98:62:09:1d:29:4f:f9:0b:64:5e:32:f3:ac:55:0d: 4b:a9:66:6d:12:d9:14:20:f5:b7:90:20:07:23:e3:ad:ad:63: 41:95:49:ca:bf:ce:d2:83:d1:95:7e:2f:90:a4:5d:68:9c:5a: 29:32:e3:d4:10:ea:f7:f4:6e:4f:2a:99:d0:6a:0a:33:86:30: 21:c6:5d:4c:14:2f:c0:85:f6:cd:76:c9:06:12:dc:c2:f0:25: 64:db:ac:39:bb:bb:b9:0b:a0:58:3a:b9:fe:f6:a9:4a:11:d0: 68:28:33:01:0e:c8:30:50:d7:83:2e:94:52:84:b4:bb:2d:d4: 44:e8:0c:b5:81:da:f5:4b:5b:30:30:54:28:af:0a:7d:d4:18: b1:02:f6:28:d5:ef:58:63:f7:cd:a9:1d:29:e4:6b:5b:63:4d: 7f:95:8e:82:de:89:03:05:b8:e2:87:c2:15:b4:b6:51:d0:3f: 0d:ec:e4:12:a2:06:96:92:fb:46:54:85:b4:1f:49:17:b1:e8: b6:bd:8d:82:70:b1:4a:aa:09:2d:89:0e:a4:d8:82:5d:e5:97: 98:ae:ba:8c:ef:08:cf:6c:92:66:58:8f:7a:b7:f8:6b:90:b0: 69:f5:bf:c5:56:89:ba:3a:d4:63:ec:10:dd:9d:a1:f8:2e:36: b8:83:c8:d9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs1MzuAhQ0Xu55ob0quDFc3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlZDkzMDg0Y2VjNDQ5YmVkOGE2ZmMwMDhiYzdkZDk5NWVi MzczMWMwHhcNMjUxMjE5MDYwMTQ4WhcNMjUxMjIwMDYwMTQ4WjAzMTEwLwYDVQQD Eyg0NmZiYTE5NTUzNjI3YzU0YzQ5OGNlNGU0OWRhMWQwMmJhMDBkYjNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5c/zZd8YHxsgteiw3jA+PFcf6MEU FEg3WGHtTpnEoTcahCz56e6ClG9A391L6+nj8P9/shxQ24WsFBymZsnN5IZjUpWA J1GmN/FGqoYJlEiwXqUOR5+Vba3Ka58jL+3LmkH+la8VLpyt1fVnbt3P6lacacBB 93+Gbvsxsemk0rcpe1OCqdgMhrvBaNHuB2x8znBVBBNplbSrmgnadbz6lbZKWvUA g4Zhnb8MG+MB2G5t5wJNLCn3NRQzpumrknHXlHum7BOS1RDXoyhXcAkEcwFzoCyC QanxcXatpPyP5pF4b70XWGf7kxx0WXMTd2w9q6Q38wAgdsZEr2g90Fw3LwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEb7oZVTYnxUxJjOTknaHQK6ANs8MB8GA1UdIwQY MBaAFB7ZMITOxEm+2Kb8AIvH3Zles3McMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSHRrd2hNN0VTYjdZcHZ3QWk4ZmRtVjZ6Y3h3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS9mMGI3MjMtNzdmMS00NGMwLThmY2Et N2M2NDY3OTUwOTBiLzEvSHRrd2hNN0VTYjdZcHZ3QWk4ZmRtVjZ6Y3h3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZS9mMGI3MjMtNzdmMS00NGMwLThmY2EtN2M2NDY3OTUwOTBi LzEvSHRrd2hNN0VTYjdZcHZ3QWk4ZmRtVjZ6Y3h3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYfRGmGIJ HSlP+QtkXjLzrFUNS6lmbRLZFCD1t5AgByPjra1jQZVJyr/O0oPRlX4vkKRdaJxa KTLj1BDq9/RuTyqZ0GoKM4YwIcZdTBQvwIX2zXbJBhLcwvAlZNusObu7uQugWDq5 /vapShHQaCgzAQ7IMFDXgy6UUoS0uy3UROgMtYHa9UtbMDBUKK8KfdQYsQL2KNXv WGP3zakdKeRrW2NNf5WOgt6JAwW44ofCFbS2UdA/DezkEqIGlpL7RlSFtB9JF7Ho tr2NgnCxSqoJLYkOpNiCXeWXmK66jO8Iz2ySZliPerf4a5CwafW/xVaJujrUY+wQ 3Z2h+C42uIPI2Q== -----END CERTIFICATE-----Generated at Fri Dec 19 07:51:44 2025 by rpki-client