This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft File: HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft (raw, json) Hash identifier: 4m2jGBBd3y5qyxGgYh0JTPzjnQ3KIxjntHES+3QhEas= Subject key identifier: 92:16:97:88:AC:22:8C:A3:16:D0:82:BF:CE:0E:62:9E:2F:C8:FA:D7 Authority key identifier: 1E:51:40:98:A5:A9:73:6C:DA:43:03:E0:49:5E:94:65:23:90:AA:91 Certificate issuer: /CN=1e514098a5a9736cda4303e0495e94652390aa91 Certificate serial: 019AF540F1402AB9C0BE5159F6749B1D6616 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlFAmKWpc2zaQwPgSV6UZSOQqpE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft Manifest number: 1768 Signing time: Sat 06 Dec 2025 20:01:05 +0000 Manifest this update: Sat 06 Dec 2025 20:01:05 +0000 Manifest next update: Sun 07 Dec 2025 20:01:05 +0000 Files and hashes: 1: HlFAmKWpc2zaQwPgSV6UZSOQqpE.crl (hash: Yinsisblfi7+EAqt3fv6ujJMlElM6RuboaCASnO6508=) 2: ZQ6sjy8La_IDIFosGkys-gjAGew.roa (hash: C7JF+gmCs+f4XDJ3+8WA8I9Otmb9ceFXsb6Dqw3hOq8=) 3: pdSwS3q_Aq9iIM8JVjDKkb9Kesw.roa (hash: Ci1NRJKdqWSbaDsRVp57BbXUB2naGLYnO5kSwluYKxo=) 4: ztoXV0czkggEzKpWeBIPpNx7Y00.roa (hash: MW72dY631rN8xBMa8x273b/yH8cBTnl1fp+7hzq29aE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft rsync://rpki.ripe.net/repository/DEFAULT/HlFAmKWpc2zaQwPgSV6UZSOQqpE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 20:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:40:f1:40:2a:b9:c0:be:51:59:f6:74:9b:1d:66:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1e514098a5a9736cda4303e0495e94652390aa91 Validity Not Before: Dec 6 20:01:05 2025 GMT Not After : Dec 7 20:01:05 2025 GMT Subject: CN=92169788ac228ca316d082bfce0e629e2fc8fad7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:c4:96:b9:b6:5c:08:35:1d:7e:1d:af:dc:0d: f8:e0:e7:20:7c:26:82:b9:36:e4:63:db:a5:38:81: fb:fe:47:eb:ed:a5:d4:f1:c8:23:b4:26:2c:ef:e8: 0a:94:d2:06:b3:30:4c:4a:6e:54:d3:f2:f6:86:c5: bd:d4:9a:97:1f:5c:30:d6:d4:27:85:be:ea:89:f9: 51:14:ac:56:d2:f4:18:f4:76:7d:8c:de:24:1c:e2: e0:14:8b:9b:95:a2:cc:26:56:01:38:30:73:9a:32: 70:cf:33:55:96:61:ba:4f:d7:0d:82:c8:ac:3f:b6: 4e:3e:0d:a1:30:ea:eb:63:62:32:01:d5:33:c6:5c: 43:d1:57:9c:c2:d2:41:9a:b1:ed:87:60:ae:ef:7a: 9d:7a:7d:ac:85:bb:5b:9d:a9:d9:4a:9a:9f:2f:22: 00:15:d0:93:08:87:87:b0:85:9c:ff:de:21:d8:12: be:e4:7a:02:26:c8:6a:e0:ce:90:d2:01:bd:32:b1: fe:5d:4f:be:c9:7b:ef:5f:85:db:3c:c8:6e:0e:3d: ee:df:d0:f4:8c:93:b6:0e:2a:f0:7b:b9:20:37:1b: 4e:de:32:a0:a8:73:dd:ba:cf:92:60:77:ad:3d:ff: b7:f9:a6:d9:f8:68:ad:03:00:f2:11:8e:ad:39:d6: cd:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:16:97:88:AC:22:8C:A3:16:D0:82:BF:CE:0E:62:9E:2F:C8:FA:D7 X509v3 Authority Key Identifier: keyid:1E:51:40:98:A5:A9:73:6C:DA:43:03:E0:49:5E:94:65:23:90:AA:91 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlFAmKWpc2zaQwPgSV6UZSOQqpE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 83:42:d5:b4:83:d6:e3:cd:4f:6b:6d:73:8c:5f:f4:a8:25:a9: 42:3c:3c:12:7b:75:09:1a:fe:5e:a3:ae:37:a1:bd:2a:54:35: 81:2c:ff:fb:6e:24:55:67:02:6d:22:a2:ae:72:a6:79:06:fe: 9e:ca:c5:6e:36:e3:e1:81:1f:c0:0e:ab:c0:d4:78:aa:51:ae: e5:8e:08:5c:76:b5:1a:6e:79:44:c9:96:7b:d6:4c:60:b4:28: 00:18:87:0f:fd:80:0b:28:d8:34:20:4d:00:90:dc:3c:bf:65: 66:61:d0:dc:33:19:7a:0b:35:cc:c2:ba:ac:5f:67:ec:e4:03: b6:7f:94:7e:9f:e3:cd:8a:f6:a0:e2:c7:29:be:8a:55:44:be: 26:56:03:48:2d:f8:99:de:97:e6:c4:a0:04:6d:31:8f:b1:e8: 45:75:1d:a9:7d:49:aa:ff:92:11:8e:98:ef:c9:48:29:84:ef: ae:16:32:38:c4:5f:5c:8c:75:eb:c2:de:77:06:d7:eb:73:d0: f1:d6:ed:11:9c:86:fb:f1:a8:cd:ca:86:c0:c5:a5:65:4c:d0: 87:06:ab:bf:8d:1e:ef:ac:5e:6d:2f:91:9b:7c:f7:fb:bf:db: cf:c5:05:85:b2:f5:31:80:ab:3f:92:0d:d1:8f:96:49:04:55: 20:27:f6:40 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1QPFAKrnAvlFZ9nSbHWYWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlNTE0MDk4YTVhOTczNmNkYTQzMDNlMDQ5NWU5NDY1MjM5 MGFhOTEwHhcNMjUxMjA2MjAwMTA1WhcNMjUxMjA3MjAwMTA1WjAzMTEwLwYDVQQD Eyg5MjE2OTc4OGFjMjI4Y2EzMTZkMDgyYmZjZTBlNjI5ZTJmYzhmYWQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo8SWubZcCDUdfh2v3A344OcgfCaC uTbkY9ulOIH7/kfr7aXU8cgjtCYs7+gKlNIGszBMSm5U0/L2hsW91JqXH1ww1tQn hb7qiflRFKxW0vQY9HZ9jN4kHOLgFIublaLMJlYBODBzmjJwzzNVlmG6T9cNgsis P7ZOPg2hMOrrY2IyAdUzxlxD0VecwtJBmrHth2Cu73qden2shbtbnanZSpqfLyIA FdCTCIeHsIWc/94h2BK+5HoCJshq4M6Q0gG9MrH+XU++yXvvX4XbPMhuDj3u39D0 jJO2Dirwe7kgNxtO3jKgqHPdus+SYHetPf+3+abZ+GitAwDyEY6tOdbNSQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJIWl4isIoyjFtCCv84OYp4vyPrXMB8GA1UdIwQY MBaAFB5RQJilqXNs2kMD4ElelGUjkKqRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSGxGQW1LV3BjMnphUXdQZ1NWNlVaU09RcXBFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy8zNWRmY2ItZDkyZC00OGZlLTlkYWQt ODU0MzgxNjg2YzdiLzEvSGxGQW1LV3BjMnphUXdQZ1NWNlVaU09RcXBFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy8zNWRmY2ItZDkyZC00OGZlLTlkYWQtODU0MzgxNjg2Yzdi LzEvSGxGQW1LV3BjMnphUXdQZ1NWNlVaU09RcXBFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAg0LVtIPW 481Pa21zjF/0qCWpQjw8Ent1CRr+XqOuN6G9KlQ1gSz/+24kVWcCbSKirnKmeQb+ nsrFbjbj4YEfwA6rwNR4qlGu5Y4IXHa1Gm55RMmWe9ZMYLQoABiHD/2ACyjYNCBN AJDcPL9lZmHQ3DMZegs1zMK6rF9n7OQDtn+Ufp/jzYr2oOLHKb6KVUS+JlYDSC34 md6X5sSgBG0xj7HoRXUdqX1Jqv+SEY6Y78lIKYTvrhYyOMRfXIx168LedwbX63PQ 8dbtEZyG+/GozcqGwMWlZUzQhwarv40e76xebS+Rm3z3+7/bz8UFhbL1MYCrP5IN 0Y+WSQRVICf2QA== -----END CERTIFICATE-----Generated at Sun Dec 7 02:54:32 2025 by rpki-client