This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/4fb785-fff1-43a3-afd1-5ffcc46ae7b5/1/HqVZ2L9qwtho0GZa1X0sasFHIZM.mft File: HqVZ2L9qwtho0GZa1X0sasFHIZM.mft (raw, json) Hash identifier: cXlelgsqOy22IMQ8Ivnf5czJovDZbijbghwpfuWCJE0= Subject key identifier: 70:16:93:3B:EC:E7:05:32:6E:61:1F:B2:7B:3A:92:2B:12:81:DB:FF Authority key identifier: 1E:A5:59:D8:BF:6A:C2:D8:68:D0:66:5A:D5:7D:2C:6A:C1:47:21:93 Certificate issuer: /CN=1ea559d8bf6ac2d868d0665ad57d2c6ac1472193 Certificate serial: 019B1A28E102289FA58F16159056A9449897 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqVZ2L9qwtho0GZa1X0sasFHIZM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/4fb785-fff1-43a3-afd1-5ffcc46ae7b5/1/HqVZ2L9qwtho0GZa1X0sasFHIZM.mft Manifest number: 1707 Signing time: Sun 14 Dec 2025 00:00:45 +0000 Manifest this update: Sun 14 Dec 2025 00:00:45 +0000 Manifest next update: Mon 15 Dec 2025 00:00:45 +0000 Files and hashes: 1: AJvWKjlfflZ9cQofDD0ppbseZLQ.roa (hash: VGiicvrQITfBrX3SAtjyhR6B6SA41PSS6lItKnKTNYo=) 2: HqVZ2L9qwtho0GZa1X0sasFHIZM.crl (hash: G4jH0wyhCefE7aGQAI8epp2kSlI7BPSa/zH5ONdrpQQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/4fb785-fff1-43a3-afd1-5ffcc46ae7b5/1/HqVZ2L9qwtho0GZa1X0sasFHIZM.crl rsync://rpki.ripe.net/repository/DEFAULT/e8/4fb785-fff1-43a3-afd1-5ffcc46ae7b5/1/HqVZ2L9qwtho0GZa1X0sasFHIZM.mft rsync://rpki.ripe.net/repository/DEFAULT/HqVZ2L9qwtho0GZa1X0sasFHIZM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 17:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1a:28:e1:02:28:9f:a5:8f:16:15:90:56:a9:44:98:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1ea559d8bf6ac2d868d0665ad57d2c6ac1472193 Validity Not Before: Dec 14 00:00:45 2025 GMT Not After : Dec 15 00:00:45 2025 GMT Subject: CN=7016933bece705326e611fb27b3a922b1281dbff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:53:30:9b:32:6d:26:3f:47:bb:a2:a1:a2:0b: 3b:47:d0:99:70:68:30:b2:36:2b:90:18:39:b5:e3: 0e:32:60:48:58:d0:2a:1e:08:6e:4b:a9:bc:48:44: 6e:55:e6:8a:09:d7:09:9b:e7:a1:f2:67:39:60:07: 28:40:d4:c0:cf:32:e0:32:07:84:16:ec:d1:ed:d7: 8d:f7:c3:3d:cc:f3:d1:3d:ed:60:4f:06:0f:4d:38: d7:86:ba:3a:ef:ce:ad:da:4d:6e:1f:c1:79:94:f4: e6:9b:50:77:6e:2a:78:59:ea:1c:6e:f0:aa:cb:82: e3:a7:8f:8d:65:35:29:5c:90:58:f1:4d:c8:58:9d: e1:ef:60:54:cb:0f:a1:fc:a9:0b:92:70:c2:0d:4b: 17:d5:ac:d3:0a:3d:f6:60:e7:54:26:c9:54:30:71: 35:83:7d:e3:83:0a:6b:5e:02:fe:9f:1a:5e:27:5e: 71:e4:38:cd:dc:92:3c:1b:8c:93:7e:e7:e1:23:f6: 25:66:a1:87:f8:8d:ca:10:74:b9:3a:7d:6d:06:75: 7e:51:b5:0a:ed:d0:a1:75:20:89:00:c1:cf:f3:2f: 4b:58:85:74:67:84:4a:2f:bd:64:e1:03:e7:eb:72: 6b:83:d9:2d:00:7d:51:3b:f8:9e:e7:e1:04:83:7c: 28:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:16:93:3B:EC:E7:05:32:6E:61:1F:B2:7B:3A:92:2B:12:81:DB:FF X509v3 Authority Key Identifier: keyid:1E:A5:59:D8:BF:6A:C2:D8:68:D0:66:5A:D5:7D:2C:6A:C1:47:21:93 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqVZ2L9qwtho0GZa1X0sasFHIZM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/4fb785-fff1-43a3-afd1-5ffcc46ae7b5/1/HqVZ2L9qwtho0GZa1X0sasFHIZM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/4fb785-fff1-43a3-afd1-5ffcc46ae7b5/1/HqVZ2L9qwtho0GZa1X0sasFHIZM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 03:09:6a:45:aa:23:39:3b:fd:19:06:98:5e:af:8d:d5:49:d4: 1a:9b:36:bf:89:44:18:44:a7:87:79:53:df:56:09:ec:1e:2d: 14:fe:30:db:bb:31:97:60:94:0b:2a:96:73:1c:2c:49:91:d4: 59:6d:eb:9d:31:ad:8a:88:04:2e:b0:db:f8:ec:78:b2:c1:a9: b2:b4:e0:f5:27:2f:0b:1b:e4:80:ca:86:ed:55:0b:c9:a3:32: 0d:24:3f:5c:a3:51:94:07:1f:08:9b:74:a3:f3:e8:f0:03:be: e3:5c:d6:05:a7:86:d3:f3:db:5e:0f:63:62:d3:3a:c3:96:9a: a4:95:6f:3c:4f:e5:e4:72:55:b6:ef:e1:ca:d2:09:4f:88:ea: 4e:a6:4b:1b:85:52:7d:3b:1f:f1:e2:ed:1d:ea:37:85:a0:1b: c2:46:7f:74:93:1c:70:1a:d1:17:36:45:4a:a1:13:7f:73:86: 59:72:bf:4c:63:8c:e3:87:91:50:f5:9d:0d:59:e0:6b:fe:16: 1c:81:72:f7:36:1b:0d:35:b3:fd:12:d2:2a:64:1b:e8:90:d3: 45:6e:0b:02:0f:e7:f7:4f:35:13:5f:d3:40:ea:9c:19:6f:05: 7c:cf:fd:e2:e6:0f:de:60:b8:30:f0:9a:f9:95:66:50:04:56: cf:9c:91:cc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsaKOECKJ+ljxYVkFapRJiXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlYTU1OWQ4YmY2YWMyZDg2OGQwNjY1YWQ1N2QyYzZhYzE0 NzIxOTMwHhcNMjUxMjE0MDAwMDQ1WhcNMjUxMjE1MDAwMDQ1WjAzMTEwLwYDVQQD Eyg3MDE2OTMzYmVjZTcwNTMyNmU2MTFmYjI3YjNhOTIyYjEyODFkYmZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt1MwmzJtJj9Hu6Khogs7R9CZcGgw sjYrkBg5teMOMmBIWNAqHghuS6m8SERuVeaKCdcJm+eh8mc5YAcoQNTAzzLgMgeE FuzR7deN98M9zPPRPe1gTwYPTTjXhro6786t2k1uH8F5lPTmm1B3bip4WeocbvCq y4Ljp4+NZTUpXJBY8U3IWJ3h72BUyw+h/KkLknDCDUsX1azTCj32YOdUJslUMHE1 g33jgwprXgL+nxpeJ15x5DjN3JI8G4yTfufhI/YlZqGH+I3KEHS5On1tBnV+UbUK 7dChdSCJAMHP8y9LWIV0Z4RKL71k4QPn63Jrg9ktAH1RO/ie5+EEg3woFQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHAWkzvs5wUybmEfsns6kisSgdv/MB8GA1UdIwQY MBaAFB6lWdi/asLYaNBmWtV9LGrBRyGTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSHFWWjJMOXF3dGhvMEdaYTFYMHNhc0ZISVpNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC80ZmI3ODUtZmZmMS00M2EzLWFmZDEt NWZmY2M0NmFlN2I1LzEvSHFWWjJMOXF3dGhvMEdaYTFYMHNhc0ZISVpNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOC80ZmI3ODUtZmZmMS00M2EzLWFmZDEtNWZmY2M0NmFlN2I1 LzEvSHFWWjJMOXF3dGhvMEdaYTFYMHNhc0ZISVpNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAwlqRaoj OTv9GQaYXq+N1UnUGps2v4lEGESnh3lT31YJ7B4tFP4w27sxl2CUCyqWcxwsSZHU WW3rnTGtiogELrDb+Ox4ssGpsrTg9ScvCxvkgMqG7VULyaMyDSQ/XKNRlAcfCJt0 o/Po8AO+41zWBaeG0/PbXg9jYtM6w5aapJVvPE/l5HJVtu/hytIJT4jqTqZLG4VS fTsf8eLtHeo3haAbwkZ/dJMccBrRFzZFSqETf3OGWXK/TGOM44eRUPWdDVnga/4W HIFy9zYbDTWz/RLSKmQb6JDTRW4LAg/n9081E1/TQOqcGW8FfM/94uYP3mC4MPCa +ZVmUARWz5yRzA== -----END CERTIFICATE-----Generated at Sun Dec 14 01:18:19 2025 by rpki-client