This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/5914af-3ab8-4182-a8ab-c2c98d2b6a65/1/HUNFOVWEZ3O1JW5CeaA9WjsrWWM.mft File: HUNFOVWEZ3O1JW5CeaA9WjsrWWM.mft (raw, json) Hash identifier: iw0a3JbiUKYB711XrYxuDPJRmXdVn+iLFDOcFWBvMQk= Subject key identifier: 4B:3F:24:37:9A:8C:4B:D6:7C:49:C9:E3:20:E3:60:7E:16:44:34:5A Authority key identifier: 1D:43:45:39:55:84:67:73:B5:25:6E:42:79:A0:3D:5A:3B:2B:59:63 Certificate issuer: /CN=1d43453955846773b5256e4279a03d5a3b2b5963 Certificate serial: 019B1125BA6DE63A42A04D79157820778BFE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HUNFOVWEZ3O1JW5CeaA9WjsrWWM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/5914af-3ab8-4182-a8ab-c2c98d2b6a65/1/HUNFOVWEZ3O1JW5CeaA9WjsrWWM.mft Manifest number: 06A8 Signing time: Fri 12 Dec 2025 06:00:43 +0000 Manifest this update: Fri 12 Dec 2025 06:00:43 +0000 Manifest next update: Sat 13 Dec 2025 06:00:43 +0000 Files and hashes: 1: 0tTqxzM13bt2v1m4PYXXMoQ5LXU.roa (hash: IIfKmkqir49Glk7zmei/2auCaiHojz2YnRsKfNazlQI=) 2: HUNFOVWEZ3O1JW5CeaA9WjsrWWM.crl (hash: I67WBmfBzplpl5F8lB7cSPff/pzIDU15JtrJdhZfT/U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/5914af-3ab8-4182-a8ab-c2c98d2b6a65/1/HUNFOVWEZ3O1JW5CeaA9WjsrWWM.crl rsync://rpki.ripe.net/repository/DEFAULT/da/5914af-3ab8-4182-a8ab-c2c98d2b6a65/1/HUNFOVWEZ3O1JW5CeaA9WjsrWWM.mft rsync://rpki.ripe.net/repository/DEFAULT/HUNFOVWEZ3O1JW5CeaA9WjsrWWM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Dec 2025 06:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:11:25:ba:6d:e6:3a:42:a0:4d:79:15:78:20:77:8b:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1d43453955846773b5256e4279a03d5a3b2b5963 Validity Not Before: Dec 12 06:00:43 2025 GMT Not After : Dec 13 06:00:43 2025 GMT Subject: CN=4b3f24379a8c4bd67c49c9e320e3607e1644345a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e4:d0:f2:8c:05:c7:82:aa:c3:8a:fc:62:de: 62:bd:7e:c0:9b:b4:f2:74:36:58:03:c5:50:41:b2: e9:c2:6e:9e:66:18:f8:61:ac:bf:5a:b3:e6:85:c2: 93:8f:09:7d:e9:a5:c5:e4:fa:1f:9f:ec:fe:5a:85: f0:8c:46:83:94:a1:b4:c3:e4:14:23:b0:ca:8e:f8: f5:3f:0f:21:c9:9d:17:6a:c7:a1:ee:3b:2c:6e:15: 16:c1:92:5c:63:9e:ff:15:44:b4:51:f5:e5:62:0d: b4:f1:df:31:02:4f:d5:98:e4:12:e0:77:af:9f:82: 3c:c9:c1:1a:cc:cc:a8:6c:1d:8f:97:dd:61:33:41: f3:4f:a8:03:ac:25:0c:f4:24:d4:29:fa:16:95:2a: 66:1f:e0:7e:66:35:74:ba:b3:75:50:58:fe:04:1f: 29:8b:37:fb:f8:1b:26:e7:09:e5:ab:1b:01:a1:16: f9:60:da:6d:ae:54:e5:b0:77:69:cf:d1:54:69:4d: f9:b9:06:dd:81:09:7e:9d:08:61:a4:4e:3e:e2:3d: 7e:c2:a3:a1:0c:a3:37:f0:b4:ec:81:0c:3b:c7:2c: 35:bd:5a:24:5e:93:90:47:9e:0a:4a:c9:e9:0d:4f: 67:5f:26:5d:51:72:36:37:f6:67:27:32:16:15:66: 12:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:3F:24:37:9A:8C:4B:D6:7C:49:C9:E3:20:E3:60:7E:16:44:34:5A X509v3 Authority Key Identifier: keyid:1D:43:45:39:55:84:67:73:B5:25:6E:42:79:A0:3D:5A:3B:2B:59:63 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HUNFOVWEZ3O1JW5CeaA9WjsrWWM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/5914af-3ab8-4182-a8ab-c2c98d2b6a65/1/HUNFOVWEZ3O1JW5CeaA9WjsrWWM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/da/5914af-3ab8-4182-a8ab-c2c98d2b6a65/1/HUNFOVWEZ3O1JW5CeaA9WjsrWWM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2d:46:e9:0b:63:3c:31:a0:b6:6c:cf:89:96:c8:e7:14:a4:41: 12:d5:bf:91:7e:d5:12:00:c6:78:e1:cd:96:b0:76:78:da:bb: 62:31:25:4c:06:2e:7a:5e:6c:ad:de:55:16:e5:8a:a5:1d:b9: b7:49:5d:15:0f:04:c0:74:e8:ee:8b:bc:38:3f:e1:f4:5f:11: 26:34:5a:3b:28:0e:5a:4e:c2:b1:db:63:7d:40:28:66:05:26: bc:5e:f8:c9:3a:5d:b2:90:36:43:0e:c2:19:60:3f:46:0b:0a: f3:0f:33:b9:dd:ff:8d:6b:4d:46:e4:55:a8:11:6d:b9:41:35: 6f:b7:56:3e:b2:cb:d2:ef:15:3d:d2:3e:6c:3c:2a:c8:34:55: 4b:43:7d:38:f3:74:9c:62:9d:50:a7:59:12:da:83:7e:af:92: b0:a5:bd:ba:50:2e:fd:67:0d:4e:29:4b:e6:1c:70:3e:43:40: ef:34:67:ad:0f:24:b4:c4:6d:e1:1c:7e:9b:45:0e:e1:03:94: 81:36:e3:7c:41:ac:fb:4a:d1:a1:c2:0e:2d:7a:d7:37:ac:a1: 1b:e5:7b:c3:2c:81:bb:e7:68:3a:a8:23:3a:11:ea:c2:51:c5: c4:df:1e:39:3a:79:99:9c:c8:ff:94:4d:3e:9f:d5:d8:a3:91: 6d:26:e2:58 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsRJbpt5jpCoE15FXggd4v+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkNDM0NTM5NTU4NDY3NzNiNTI1NmU0Mjc5YTAzZDVhM2Iy YjU5NjMwHhcNMjUxMjEyMDYwMDQzWhcNMjUxMjEzMDYwMDQzWjAzMTEwLwYDVQQD Eyg0YjNmMjQzNzlhOGM0YmQ2N2M0OWM5ZTMyMGUzNjA3ZTE2NDQzNDVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw+TQ8owFx4Kqw4r8Yt5ivX7Am7Ty dDZYA8VQQbLpwm6eZhj4Yay/WrPmhcKTjwl96aXF5Pofn+z+WoXwjEaDlKG0w+QU I7DKjvj1Pw8hyZ0Xaseh7jssbhUWwZJcY57/FUS0UfXlYg208d8xAk/VmOQS4Hev n4I8ycEazMyobB2Pl91hM0HzT6gDrCUM9CTUKfoWlSpmH+B+ZjV0urN1UFj+BB8p izf7+Bsm5wnlqxsBoRb5YNptrlTlsHdpz9FUaU35uQbdgQl+nQhhpE4+4j1+wqOh DKM38LTsgQw7xyw1vVokXpOQR54KSsnpDU9nXyZdUXI2N/ZnJzIWFWYSTwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEs/JDeajEvWfEnJ4yDjYH4WRDRaMB8GA1UdIwQY MBaAFB1DRTlVhGdztSVuQnmgPVo7K1ljMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSFVORk9WV0VaM08xSlc1Q2VhQTlXanNyV1dNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS81OTE0YWYtM2FiOC00MTgyLWE4YWIt YzJjOThkMmI2YTY1LzEvSFVORk9WV0VaM08xSlc1Q2VhQTlXanNyV1dNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYS81OTE0YWYtM2FiOC00MTgyLWE4YWItYzJjOThkMmI2YTY1 LzEvSFVORk9WV0VaM08xSlc1Q2VhQTlXanNyV1dNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALUbpC2M8 MaC2bM+JlsjnFKRBEtW/kX7VEgDGeOHNlrB2eNq7YjElTAYuel5srd5VFuWKpR25 t0ldFQ8EwHTo7ou8OD/h9F8RJjRaOygOWk7CsdtjfUAoZgUmvF74yTpdspA2Qw7C GWA/RgsK8w8zud3/jWtNRuRVqBFtuUE1b7dWPrLL0u8VPdI+bDwqyDRVS0N9OPN0 nGKdUKdZEtqDfq+SsKW9ulAu/WcNTilL5hxwPkNA7zRnrQ8ktMRt4Rx+m0UO4QOU gTbjfEGs+0rRocIOLXrXN6yhG+V7wyyBu+doOqgjOhHqwlHFxN8eOTp5mZzI/5RN Pp/V2KORbSbiWA== -----END CERTIFICATE-----Generated at Fri Dec 12 13:08:24 2025 by rpki-client