This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/5911f7-2031-40bb-b441-7fcf015da0a0/1/hprNGeI6gWZEutDooSuG4SiK0zw.mft File: hprNGeI6gWZEutDooSuG4SiK0zw.mft (raw, json) Hash identifier: +G2vnLuEE+pOoSsYgFT1KOA9ZQagk4YfC9t7bpnf1ZQ= Subject key identifier: 52:F6:F3:53:72:10:77:33:08:4C:DB:CC:54:CF:26:ED:B6:2D:7F:8A Authority key identifier: 86:9A:CD:19:E2:3A:81:66:44:BA:D0:E8:A1:2B:86:E1:28:8A:D3:3C Certificate issuer: /CN=869acd19e23a816644bad0e8a12b86e1288ad33c Certificate serial: 019B5975BA47A92CE9BC511160C9EEB87A07 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hprNGeI6gWZEutDooSuG4SiK0zw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/5911f7-2031-40bb-b441-7fcf015da0a0/1/hprNGeI6gWZEutDooSuG4SiK0zw.mft Manifest number: 1180 Signing time: Fri 26 Dec 2025 07:00:46 +0000 Manifest this update: Fri 26 Dec 2025 07:00:46 +0000 Manifest next update: Sat 27 Dec 2025 07:00:46 +0000 Files and hashes: 1: hprNGeI6gWZEutDooSuG4SiK0zw.crl (hash: AxSriphbNACrjR0c6n0ViKHTRf0hYRYJmu+rKstAFmk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/5911f7-2031-40bb-b441-7fcf015da0a0/1/hprNGeI6gWZEutDooSuG4SiK0zw.crl rsync://rpki.ripe.net/repository/DEFAULT/d6/5911f7-2031-40bb-b441-7fcf015da0a0/1/hprNGeI6gWZEutDooSuG4SiK0zw.mft rsync://rpki.ripe.net/repository/DEFAULT/hprNGeI6gWZEutDooSuG4SiK0zw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:75:ba:47:a9:2c:e9:bc:51:11:60:c9:ee:b8:7a:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=869acd19e23a816644bad0e8a12b86e1288ad33c Validity Not Before: Dec 26 07:00:46 2025 GMT Not After : Dec 27 07:00:46 2025 GMT Subject: CN=52f6f35372107733084cdbcc54cf26edb62d7f8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b6:57:2b:2f:68:4a:3d:85:66:a9:8a:f1:c8: ff:6b:63:0c:ce:5b:3c:a3:26:c9:2c:14:18:09:3b: 53:1e:41:23:66:e6:a3:79:15:26:e7:72:14:a0:e8: c7:03:30:b1:54:28:06:d7:8b:c1:bf:d8:6e:f4:f8: e4:76:94:43:08:3b:a8:37:10:8f:9c:8f:74:11:ff: ce:5e:6e:9c:c2:c2:96:9b:81:1c:b8:0a:40:ad:bb: fb:c2:ec:f1:09:39:aa:08:ea:1b:3d:4f:4f:0d:6a: 62:a0:18:2e:d7:85:2d:fe:34:d8:5d:58:88:de:a2: 71:20:8f:b0:7d:d4:12:ec:3c:de:40:f6:f7:32:08: 82:a3:69:f7:c3:5c:0a:55:4d:42:b5:26:c5:cc:b6: 5e:f0:16:da:0f:f3:61:52:1f:d1:97:9e:5d:6c:6e: 74:fa:56:94:0f:25:11:fa:92:a4:68:c2:80:25:d2: 9d:92:d4:55:3e:e3:8f:89:4b:09:e0:fe:3d:a5:5b: 42:46:d4:5e:42:22:a8:f5:9e:c5:f6:75:a2:cc:e7: e2:a7:b0:a1:0a:64:fc:90:f3:c8:c6:9f:c5:25:f3: 1f:6e:0d:12:c3:58:35:33:a6:99:51:9d:0a:25:59: dc:78:0c:7b:64:17:e0:d4:c1:b5:f9:5c:f0:e6:e4: dd:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:F6:F3:53:72:10:77:33:08:4C:DB:CC:54:CF:26:ED:B6:2D:7F:8A X509v3 Authority Key Identifier: keyid:86:9A:CD:19:E2:3A:81:66:44:BA:D0:E8:A1:2B:86:E1:28:8A:D3:3C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hprNGeI6gWZEutDooSuG4SiK0zw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/5911f7-2031-40bb-b441-7fcf015da0a0/1/hprNGeI6gWZEutDooSuG4SiK0zw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/5911f7-2031-40bb-b441-7fcf015da0a0/1/hprNGeI6gWZEutDooSuG4SiK0zw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 66:40:60:e3:f9:eb:1c:1f:00:38:eb:84:e9:89:5a:94:12:25: 44:30:d7:4f:4d:f4:3f:54:29:81:8c:b7:05:cb:d5:12:8d:21: df:67:59:76:4d:a1:2f:37:cf:d7:1c:06:cf:74:09:69:62:36: 32:d2:dd:36:fd:bb:9b:c1:51:6e:2e:fc:e1:d1:e2:68:97:aa: 80:ac:77:a9:73:9b:6f:7b:bb:0b:fa:d7:1b:29:fd:7e:ce:67: 1c:1a:a2:c3:58:cb:f0:3b:15:fa:53:5f:89:28:c9:5d:ea:ae: a1:c9:1e:83:f4:75:66:e5:de:f6:e1:7d:fd:e5:bc:05:7c:4f: b1:b3:b7:1a:c5:1c:ff:f3:ef:a8:2f:84:77:49:7d:52:7e:42: 98:fd:27:56:c0:00:d0:2c:ac:e9:71:be:c0:a3:01:4f:a4:8c: 97:80:3f:73:9c:c6:59:48:e5:24:65:b7:d2:bd:dd:d4:6a:93: 51:80:ad:78:57:44:ca:9c:37:30:10:b5:73:ff:66:85:2d:cf: 3d:c5:e1:27:26:c9:4f:89:9e:1c:84:e6:44:27:79:64:9e:b6: 10:3f:1a:76:65:d5:b1:dd:bb:6d:f3:55:3d:95:b1:d4:c3:5a: 20:e1:bd:4a:0c:42:c7:40:e3:cd:70:b5:3c:9a:43:5b:14:e4: 96:4c:37:44 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZdbpHqSzpvFERYMnuuHoHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2OWFjZDE5ZTIzYTgxNjY0NGJhZDBlOGExMmI4NmUxMjg4 YWQzM2MwHhcNMjUxMjI2MDcwMDQ2WhcNMjUxMjI3MDcwMDQ2WjAzMTEwLwYDVQQD Eyg1MmY2ZjM1MzcyMTA3NzMzMDg0Y2RiY2M1NGNmMjZlZGI2MmQ3ZjhhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxbZXKy9oSj2FZqmK8cj/a2MMzls8 oybJLBQYCTtTHkEjZuajeRUm53IUoOjHAzCxVCgG14vBv9hu9PjkdpRDCDuoNxCP nI90Ef/OXm6cwsKWm4EcuApArbv7wuzxCTmqCOobPU9PDWpioBgu14Ut/jTYXViI 3qJxII+wfdQS7DzeQPb3MgiCo2n3w1wKVU1CtSbFzLZe8BbaD/NhUh/Rl55dbG50 +laUDyUR+pKkaMKAJdKdktRVPuOPiUsJ4P49pVtCRtReQiKo9Z7F9nWizOfip7Ch CmT8kPPIxp/FJfMfbg0Sw1g1M6aZUZ0KJVnceAx7ZBfg1MG1+Vzw5uTdbQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFL281NyEHczCEzbzFTPJu22LX+KMB8GA1UdIwQY MBaAFIaazRniOoFmRLrQ6KErhuEoitM8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHByTkdlSTZnV1pFdXREb29TdUc0U2lLMHp3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi81OTExZjctMjAzMS00MGJiLWI0NDEt N2ZjZjAxNWRhMGEwLzEvaHByTkdlSTZnV1pFdXREb29TdUc0U2lLMHp3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNi81OTExZjctMjAzMS00MGJiLWI0NDEtN2ZjZjAxNWRhMGEw LzEvaHByTkdlSTZnV1pFdXREb29TdUc0U2lLMHp3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZkBg4/nr HB8AOOuE6YlalBIlRDDXT030P1QpgYy3BcvVEo0h32dZdk2hLzfP1xwGz3QJaWI2 MtLdNv27m8FRbi784dHiaJeqgKx3qXObb3u7C/rXGyn9fs5nHBqiw1jL8DsV+lNf iSjJXequockeg/R1ZuXe9uF9/eW8BXxPsbO3GsUc//PvqC+Ed0l9Un5CmP0nVsAA 0Cys6XG+wKMBT6SMl4A/c5zGWUjlJGW30r3d1GqTUYCteFdEypw3MBC1c/9mhS3P PcXhJybJT4meHITmRCd5ZJ62ED8admXVsd27bfNVPZWx1MNaIOG9SgxCx0DjzXC1 PJpDWxTklkw3RA== -----END CERTIFICATE-----Generated at Fri Dec 26 14:17:29 2025 by rpki-client