This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/4238ae-a72f-471c-a9a9-5823f870141b/1/hTq7t9e8xKXFbpEu76wbC7BFUCE.mft File: hTq7t9e8xKXFbpEu76wbC7BFUCE.mft (raw, json) Hash identifier: ir00t5WnPG0mOmcYOR9zhT36zsWnH2zoM7TEeXircNw= Subject key identifier: DC:D0:4A:2F:71:D9:78:D9:FD:F7:6B:14:A5:BA:05:90:BC:42:A6:88 Authority key identifier: 85:3A:BB:B7:D7:BC:C4:A5:C5:6E:91:2E:EF:AC:1B:0B:B0:45:50:21 Certificate issuer: /CN=853abbb7d7bcc4a5c56e912eefac1b0bb0455021 Certificate serial: 019B31FA744A2F4D491E26BBC399E10D17EA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hTq7t9e8xKXFbpEu76wbC7BFUCE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/4238ae-a72f-471c-a9a9-5823f870141b/1/hTq7t9e8xKXFbpEu76wbC7BFUCE.mft Manifest number: 06CE Signing time: Thu 18 Dec 2025 15:00:55 +0000 Manifest this update: Thu 18 Dec 2025 15:00:55 +0000 Manifest next update: Fri 19 Dec 2025 15:00:55 +0000 Files and hashes: 1: hTq7t9e8xKXFbpEu76wbC7BFUCE.crl (hash: SMExetarVSqDUDe6d28MBFjf1uf7X9O4D/9aCxJkB40=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/4238ae-a72f-471c-a9a9-5823f870141b/1/hTq7t9e8xKXFbpEu76wbC7BFUCE.crl rsync://rpki.ripe.net/repository/DEFAULT/de/4238ae-a72f-471c-a9a9-5823f870141b/1/hTq7t9e8xKXFbpEu76wbC7BFUCE.mft rsync://rpki.ripe.net/repository/DEFAULT/hTq7t9e8xKXFbpEu76wbC7BFUCE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 15:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:31:fa:74:4a:2f:4d:49:1e:26:bb:c3:99:e1:0d:17:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=853abbb7d7bcc4a5c56e912eefac1b0bb0455021 Validity Not Before: Dec 18 15:00:55 2025 GMT Not After : Dec 19 15:00:55 2025 GMT Subject: CN=dcd04a2f71d978d9fdf76b14a5ba0590bc42a688 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:33:ba:c1:3c:7b:b0:04:de:62:8f:b7:62:7b: c6:60:f8:79:ed:89:71:2e:71:e9:d2:38:9e:18:df: 24:6b:ea:6e:ef:61:ae:27:29:5e:fd:4b:c2:10:0e: c7:86:e3:fa:86:24:eb:cb:a0:20:23:c1:e0:75:9c: 0c:88:86:30:89:46:76:38:18:7d:5f:53:68:e2:c7: 86:a0:c7:fd:b8:a5:88:e4:c8:c5:ac:f6:e2:e9:da: 5e:3d:32:fd:27:23:b4:de:41:9e:7b:8b:9b:e6:4b: ac:c8:a9:d4:35:f4:17:ea:dd:6d:e4:8a:cd:ca:df: 6e:d3:53:9f:5f:ba:28:18:ba:b5:ad:6a:81:6b:4a: 10:a7:fc:70:1f:8d:30:bc:fb:74:c4:2b:5e:e0:5b: ac:21:a7:b9:9c:43:c2:18:cd:27:b6:5d:34:10:bf: 4a:5e:b5:44:f9:aa:a4:71:6d:6c:07:3b:a8:03:6c: 8b:04:64:6a:ca:6d:10:59:3d:10:f9:ca:b1:0d:c4: 5f:fd:39:59:10:ec:64:4a:9e:85:92:d9:cc:41:01: 22:2b:fa:a0:9d:49:e6:cf:d3:0c:88:2e:79:e5:24: d8:4c:4e:a1:a8:12:6a:5b:86:2b:16:a6:95:f4:66: bb:5f:71:3f:2e:c0:84:3a:ff:a0:f1:f2:7f:2a:19: 91:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:D0:4A:2F:71:D9:78:D9:FD:F7:6B:14:A5:BA:05:90:BC:42:A6:88 X509v3 Authority Key Identifier: keyid:85:3A:BB:B7:D7:BC:C4:A5:C5:6E:91:2E:EF:AC:1B:0B:B0:45:50:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hTq7t9e8xKXFbpEu76wbC7BFUCE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/4238ae-a72f-471c-a9a9-5823f870141b/1/hTq7t9e8xKXFbpEu76wbC7BFUCE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/de/4238ae-a72f-471c-a9a9-5823f870141b/1/hTq7t9e8xKXFbpEu76wbC7BFUCE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:ed:be:a9:f7:e2:70:1b:56:8d:06:95:85:c3:61:05:a5:08: ae:da:5d:84:f4:46:aa:4e:0d:2f:45:57:55:26:04:8e:33:5e: 06:ec:c7:99:d7:0f:e3:7f:ff:b3:05:40:99:17:ad:99:f1:d4: 5a:bc:7e:dc:92:a2:fb:06:a9:0f:88:12:a5:fc:a0:d2:bf:2c: 8a:01:76:7c:c2:75:61:70:b3:fd:8b:86:98:c4:94:2c:1c:7d: a0:c6:a5:48:10:2e:18:06:37:70:b3:ae:b7:33:28:f5:3a:56: ab:a2:a1:04:1c:9d:b3:93:13:e1:1e:ee:4a:13:a8:5f:71:f0: df:72:d2:57:c5:66:84:56:4e:62:db:e0:fc:eb:ae:3b:6b:63: 66:e2:06:7e:89:3c:93:b6:02:4a:f0:ed:f7:23:b7:6a:43:90: 82:56:d7:c9:97:91:72:d7:59:70:37:ac:4f:0d:70:66:19:d6: 28:11:65:17:42:27:f7:95:da:fa:29:1c:f9:9d:06:fd:d1:a8: 01:96:62:00:41:5f:d7:09:50:ba:01:7b:5b:0e:a7:6b:90:07: b6:35:a9:c8:81:3d:e6:06:37:77:86:dc:f8:da:7b:e8:98:66: 3d:a6:6f:f6:12:3b:32:58:5d:c7:c1:e9:8e:6e:38:91:a1:3f: 01:f8:58:a7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsx+nRKL01JHia7w5nhDRfqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1M2FiYmI3ZDdiY2M0YTVjNTZlOTEyZWVmYWMxYjBiYjA0 NTUwMjEwHhcNMjUxMjE4MTUwMDU1WhcNMjUxMjE5MTUwMDU1WjAzMTEwLwYDVQQD EyhkY2QwNGEyZjcxZDk3OGQ5ZmRmNzZiMTRhNWJhMDU5MGJjNDJhNjg4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsjO6wTx7sATeYo+3YnvGYPh57Ylx LnHp0jieGN8ka+pu72GuJyle/UvCEA7HhuP6hiTry6AgI8HgdZwMiIYwiUZ2OBh9 X1No4seGoMf9uKWI5MjFrPbi6dpePTL9JyO03kGee4ub5kusyKnUNfQX6t1t5IrN yt9u01OfX7ooGLq1rWqBa0oQp/xwH40wvPt0xCte4FusIae5nEPCGM0ntl00EL9K XrVE+aqkcW1sBzuoA2yLBGRqym0QWT0Q+cqxDcRf/TlZEOxkSp6FktnMQQEiK/qg nUnmz9MMiC555STYTE6hqBJqW4YrFqaV9Ga7X3E/LsCEOv+g8fJ/KhmR7wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNzQSi9x2XjZ/fdrFKW6BZC8QqaIMB8GA1UdIwQY MBaAFIU6u7fXvMSlxW6RLu+sGwuwRVAhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaFRxN3Q5ZTh4S1hGYnBFdTc2d2JDN0JGVUNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS80MjM4YWUtYTcyZi00NzFjLWE5YTkt NTgyM2Y4NzAxNDFiLzEvaFRxN3Q5ZTh4S1hGYnBFdTc2d2JDN0JGVUNFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZS80MjM4YWUtYTcyZi00NzFjLWE5YTktNTgyM2Y4NzAxNDFi LzEvaFRxN3Q5ZTh4S1hGYnBFdTc2d2JDN0JGVUNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAau2+qffi cBtWjQaVhcNhBaUIrtpdhPRGqk4NL0VXVSYEjjNeBuzHmdcP43//swVAmRetmfHU Wrx+3JKi+wapD4gSpfyg0r8sigF2fMJ1YXCz/YuGmMSULBx9oMalSBAuGAY3cLOu tzMo9TpWq6KhBByds5MT4R7uShOoX3Hw33LSV8VmhFZOYtvg/OuuO2tjZuIGfok8 k7YCSvDt9yO3akOQglbXyZeRctdZcDesTw1wZhnWKBFlF0In95Xa+ikc+Z0G/dGo AZZiAEFf1wlQugF7Ww6na5AHtjWpyIE95gY3d4bc+Np76JhmPaZv9hI7Mlhdx8Hp jm44kaE/AfhYpw== -----END CERTIFICATE-----Generated at Fri Dec 19 00:57:02 2025 by rpki-client