This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/3d9777-c996-46fc-9d67-a720af861fee/1/hLWkCydKlj5e0-8C6DmcubG7DHs.mft File: hLWkCydKlj5e0-8C6DmcubG7DHs.mft (raw, json) Hash identifier: qRvsDkH5owJ/kErsHIr8WxZ8XRlHoof1N2ZA97toDhU= Subject key identifier: 97:AB:10:4B:0A:F5:A5:30:88:4A:8A:CD:D7:EB:EC:4C:55:D1:C1:5B Authority key identifier: 84:B5:A4:0B:27:4A:96:3E:5E:D3:EF:02:E8:39:9C:B9:B1:BB:0C:7B Certificate issuer: /CN=84b5a40b274a963e5ed3ef02e8399cb9b1bb0c7b Certificate serial: 019B202B33CB00C1246F5E5A5A23978AFA5E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLWkCydKlj5e0-8C6DmcubG7DHs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/3d9777-c996-46fc-9d67-a720af861fee/1/hLWkCydKlj5e0-8C6DmcubG7DHs.mft Manifest number: 177A Signing time: Mon 15 Dec 2025 04:01:00 +0000 Manifest this update: Mon 15 Dec 2025 04:01:00 +0000 Manifest next update: Tue 16 Dec 2025 04:01:00 +0000 Files and hashes: 1: O8vYugo1IMFhRrolkiJ5A2F_9k4.roa (hash: vT082QVsehcKVaVyOGMEheCQhaYoT8jhfxj4aHEzNiI=) 2: hLWkCydKlj5e0-8C6DmcubG7DHs.crl (hash: ylfosfNKp4k1x1Wfj05Ka3WctCfyxVdAbQ0ep8t3080=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/3d9777-c996-46fc-9d67-a720af861fee/1/hLWkCydKlj5e0-8C6DmcubG7DHs.crl rsync://rpki.ripe.net/repository/DEFAULT/e2/3d9777-c996-46fc-9d67-a720af861fee/1/hLWkCydKlj5e0-8C6DmcubG7DHs.mft rsync://rpki.ripe.net/repository/DEFAULT/hLWkCydKlj5e0-8C6DmcubG7DHs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 04:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:20:2b:33:cb:00:c1:24:6f:5e:5a:5a:23:97:8a:fa:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84b5a40b274a963e5ed3ef02e8399cb9b1bb0c7b Validity Not Before: Dec 15 04:01:00 2025 GMT Not After : Dec 16 04:01:00 2025 GMT Subject: CN=97ab104b0af5a530884a8acdd7ebec4c55d1c15b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:e1:04:54:1d:80:1e:52:07:e2:9d:10:e2:71: d7:b7:0b:3a:dc:67:41:67:ea:ca:78:b4:0f:72:b7: 4d:e4:56:10:30:98:21:a2:02:50:9a:a9:1d:7b:b9: 86:c7:5a:82:f7:f0:3d:ff:f9:e6:50:7d:dd:b5:36: bd:f8:b3:e4:08:55:71:52:49:88:bb:21:f7:ab:98: 80:0b:d6:db:7c:31:3c:0d:97:2c:85:b9:61:2c:5d: b2:d0:29:f4:a7:37:dc:e1:f8:a0:9a:96:a0:cf:81: ae:1e:ce:b9:58:26:bc:2f:25:8c:d1:69:f7:70:27: 14:8f:44:f5:2a:3e:ac:d0:0a:b4:2e:ea:48:e3:a4: c8:b7:7f:14:82:2b:5c:bd:9c:71:ab:02:27:62:39: 2e:73:32:95:de:32:ca:08:b3:7d:44:c0:a7:55:43: bc:c0:33:f1:c9:7a:bc:6d:dc:6d:bc:e7:87:de:b5: 73:52:ac:d7:9b:db:c1:1c:5d:91:26:28:31:be:d9: 91:59:01:12:3b:d2:c1:32:13:88:52:28:93:f2:f5: 78:d0:a2:72:1d:c1:70:b6:ab:a8:a3:fb:70:75:b2: a6:d8:89:37:0c:ef:63:16:bb:c2:b4:68:e6:39:95: 3b:24:f3:79:a3:3c:2a:01:73:2d:1f:b8:b5:0e:29: d1:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:AB:10:4B:0A:F5:A5:30:88:4A:8A:CD:D7:EB:EC:4C:55:D1:C1:5B X509v3 Authority Key Identifier: keyid:84:B5:A4:0B:27:4A:96:3E:5E:D3:EF:02:E8:39:9C:B9:B1:BB:0C:7B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLWkCydKlj5e0-8C6DmcubG7DHs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/3d9777-c996-46fc-9d67-a720af861fee/1/hLWkCydKlj5e0-8C6DmcubG7DHs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/3d9777-c996-46fc-9d67-a720af861fee/1/hLWkCydKlj5e0-8C6DmcubG7DHs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 67:e1:1b:ee:07:c0:d9:bc:62:41:8c:35:bb:c0:e4:39:42:c9: f1:99:d8:c7:fa:13:00:ee:f6:d8:ba:4c:bf:60:55:8c:bf:bd: 6e:1f:7d:c8:1a:3f:57:96:5b:e2:bf:3f:ee:c5:d2:7a:5c:a7: cf:5c:0b:10:75:b8:57:13:82:83:8e:b1:92:eb:3d:50:b8:35: 83:c0:6e:80:be:05:c8:de:dd:df:30:e5:79:be:68:f4:10:f9: e6:d7:0e:82:14:a8:2d:63:d0:c8:ac:50:f4:99:4b:c3:49:4c: e0:a4:b7:b4:2a:6c:3d:6e:35:b8:26:b9:60:d7:3e:86:b1:8e: 3e:0a:c3:29:05:13:8d:91:d5:64:5e:de:97:b8:fd:3a:af:d4: 2e:a4:21:05:92:b7:84:54:80:7c:d1:9c:18:cb:28:80:75:78: 13:75:3f:7b:d9:1f:72:b5:9a:e0:fb:35:24:11:10:c0:28:2f: af:e3:70:59:45:79:62:af:7e:1e:0f:b6:4e:e4:4a:1d:7c:50: 71:65:4c:b4:f9:cd:99:50:d6:35:c4:24:8d:e6:74:a6:f0:07: 9c:e6:bf:08:8a:3d:b9:c6:83:07:80:0c:ab:d2:f9:e7:ee:4c: 8a:1b:ba:59:10:f3:24:e1:21:12:8f:7c:cf:bd:83:a9:05:bb: 86:d7:70:1a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsgKzPLAMEkb15aWiOXivpeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0YjVhNDBiMjc0YTk2M2U1ZWQzZWYwMmU4Mzk5Y2I5YjFi YjBjN2IwHhcNMjUxMjE1MDQwMTAwWhcNMjUxMjE2MDQwMTAwWjAzMTEwLwYDVQQD Eyg5N2FiMTA0YjBhZjVhNTMwODg0YThhY2RkN2ViZWM0YzU1ZDFjMTViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzuEEVB2AHlIH4p0Q4nHXtws63GdB Z+rKeLQPcrdN5FYQMJghogJQmqkde7mGx1qC9/A9//nmUH3dtTa9+LPkCFVxUkmI uyH3q5iAC9bbfDE8DZcshblhLF2y0Cn0pzfc4figmpagz4GuHs65WCa8LyWM0Wn3 cCcUj0T1Kj6s0Aq0LupI46TIt38UgitcvZxxqwInYjkuczKV3jLKCLN9RMCnVUO8 wDPxyXq8bdxtvOeH3rVzUqzXm9vBHF2RJigxvtmRWQESO9LBMhOIUiiT8vV40KJy HcFwtquoo/twdbKm2Ik3DO9jFrvCtGjmOZU7JPN5ozwqAXMtH7i1DinRCwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJerEEsK9aUwiEqKzdfr7ExV0cFbMB8GA1UdIwQY MBaAFIS1pAsnSpY+XtPvAug5nLmxuwx7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaExXa0N5ZEtsajVlMC04QzZEbWN1Ykc3REhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi8zZDk3NzctYzk5Ni00NmZjLTlkNjct YTcyMGFmODYxZmVlLzEvaExXa0N5ZEtsajVlMC04QzZEbWN1Ykc3REhzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMi8zZDk3NzctYzk5Ni00NmZjLTlkNjctYTcyMGFmODYxZmVl LzEvaExXa0N5ZEtsajVlMC04QzZEbWN1Ykc3REhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZ+Eb7gfA 2bxiQYw1u8DkOULJ8ZnYx/oTAO722LpMv2BVjL+9bh99yBo/V5Zb4r8/7sXSelyn z1wLEHW4VxOCg46xkus9ULg1g8BugL4FyN7d3zDleb5o9BD55tcOghSoLWPQyKxQ 9JlLw0lM4KS3tCpsPW41uCa5YNc+hrGOPgrDKQUTjZHVZF7el7j9Oq/ULqQhBZK3 hFSAfNGcGMsogHV4E3U/e9kfcrWa4Ps1JBEQwCgvr+NwWUV5Yq9+Hg+2TuRKHXxQ cWVMtPnNmVDWNcQkjeZ0pvAHnOa/CIo9ucaDB4AMq9L55+5Mihu6WRDzJOEhEo98 z72DqQW7htdwGg== -----END CERTIFICATE-----Generated at Mon Dec 15 13:36:32 2025 by rpki-client