This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.mft File: HQHtI2TsgiZcaIaf5yvnVzGaMes.mft (raw, json) Hash identifier: q1qGtbzrzc8ei4zVZoPh4NliwFjaztZJQvcGUTilSuQ= Subject key identifier: 6E:06:64:66:C5:61:02:BA:21:3B:BE:D9:3F:23:D2:0D:50:AE:7E:AE Authority key identifier: 1D:01:ED:23:64:EC:82:26:5C:68:86:9F:E7:2B:E7:57:31:9A:31:EB Certificate issuer: /CN=1d01ed2364ec82265c68869fe72be757319a31eb Certificate serial: 019B5AF6A28344CBC86B936D3A951039E35A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQHtI2TsgiZcaIaf5yvnVzGaMes.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.mft Manifest number: 15B9 Signing time: Fri 26 Dec 2025 14:01:11 +0000 Manifest this update: Fri 26 Dec 2025 14:01:11 +0000 Manifest next update: Sat 27 Dec 2025 14:01:11 +0000 Files and hashes: 1: HQHtI2TsgiZcaIaf5yvnVzGaMes.crl (hash: t5EHNKuUkPtHM7yeJO7H4OksSJ3EUd2LWj8m1Hah3WQ=) 2: VrKnPWUHZqDvzs6ur0GOjZl2i2E.roa (hash: mb8FZcI3peRcYmZtZcg+Q1vM47sFhZh3vrE8fwC75+A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.crl rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.mft rsync://rpki.ripe.net/repository/DEFAULT/HQHtI2TsgiZcaIaf5yvnVzGaMes.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:f6:a2:83:44:cb:c8:6b:93:6d:3a:95:10:39:e3:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1d01ed2364ec82265c68869fe72be757319a31eb Validity Not Before: Dec 26 14:01:11 2025 GMT Not After : Dec 27 14:01:11 2025 GMT Subject: CN=6e066466c56102ba213bbed93f23d20d50ae7eae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:e6:eb:1a:18:07:8d:8b:4f:90:ed:aa:fd:d8: ef:e7:bb:c1:98:83:b5:41:03:e8:28:42:7c:05:1f: fa:c8:99:65:85:1e:5d:f5:1f:8b:b5:da:15:dc:1e: e9:e4:48:88:61:5b:ba:75:ff:17:a2:27:7a:56:49: 88:3b:60:87:ae:b5:02:60:0a:dc:e6:0d:df:1c:bc: c1:23:dd:ce:19:c9:87:cf:02:5e:48:8b:81:e8:8c: a2:b6:29:80:5a:06:b9:d2:3a:b5:83:e8:2f:22:03: b9:c0:d9:b7:65:fc:4f:9c:5a:bc:01:97:37:36:1a: 1b:ee:bf:ec:10:29:d8:e6:a8:ba:92:b1:62:2f:81: 98:1d:bd:7a:e5:64:e5:75:cf:52:d2:30:d3:92:19: 93:43:36:1d:d9:ec:b3:25:4c:d7:0c:2c:14:73:47: e8:8a:37:fe:5a:1f:dc:3c:32:c7:5f:25:69:68:5c: 33:ae:bd:88:ea:cf:03:5a:00:ef:ae:0b:8f:e4:90: e6:7b:cd:62:1d:ed:f4:c0:d6:96:8e:69:8a:a1:fd: 98:2b:9d:09:0a:55:7b:25:b6:8a:e8:a0:cc:87:35: 3a:f5:c5:77:f2:29:24:73:ea:78:aa:25:1d:01:08: ec:7c:5d:c2:79:8b:b1:96:3a:37:8e:3d:3d:80:aa: dc:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:06:64:66:C5:61:02:BA:21:3B:BE:D9:3F:23:D2:0D:50:AE:7E:AE X509v3 Authority Key Identifier: keyid:1D:01:ED:23:64:EC:82:26:5C:68:86:9F:E7:2B:E7:57:31:9A:31:EB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQHtI2TsgiZcaIaf5yvnVzGaMes.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/99d683-43dc-484a-9047-b43cae6e2319/1/HQHtI2TsgiZcaIaf5yvnVzGaMes.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0c:3a:47:99:da:59:6a:c4:45:33:f0:f6:1b:dc:6d:b6:ca:15: 8d:df:16:3f:cd:bd:f0:ab:dc:d2:a9:75:10:cb:67:4f:43:11: fb:78:80:1d:b2:e9:e2:79:1a:2d:a8:28:30:91:9e:ab:71:3c: 12:ba:bd:36:ba:4f:e3:a0:af:f5:6f:ca:8c:b6:5e:0c:89:e6: 7e:8f:e7:8c:ff:f7:00:c7:cb:e4:67:4a:ca:43:af:97:e2:d2: 62:a8:dd:02:a0:57:9c:62:9a:cd:91:cc:40:ee:4d:84:ff:4c: 34:2c:06:11:b7:7b:e1:af:be:7f:be:fa:82:8e:9b:5f:c0:92: 42:1f:b5:a4:fc:22:c0:ca:1c:32:e9:bc:3b:ef:9d:e3:1b:88: 50:48:ff:ee:b4:7a:95:6a:5c:99:11:56:31:7c:1f:ee:c6:2e: b8:e2:ec:28:f1:0e:8e:f1:bb:8a:69:6b:c8:d1:4f:ef:3c:af: d1:ee:79:5a:c1:79:81:6b:df:29:0d:eb:58:cb:ce:89:82:d7: 84:26:e0:2d:98:c4:2c:e7:64:7b:0f:d1:a6:5d:cd:e4:c8:d4: 86:cf:c6:97:0a:57:2b:67:2c:8b:a9:b9:5b:5a:e2:8d:b5:c2: 78:8c:ac:8d:fc:5b:e9:f1:3e:a7:ca:40:fa:42:13:09:19:c4: 3d:01:f1:41 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZta9qKDRMvIa5NtOpUQOeNaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkMDFlZDIzNjRlYzgyMjY1YzY4ODY5ZmU3MmJlNzU3MzE5 YTMxZWIwHhcNMjUxMjI2MTQwMTExWhcNMjUxMjI3MTQwMTExWjAzMTEwLwYDVQQD Eyg2ZTA2NjQ2NmM1NjEwMmJhMjEzYmJlZDkzZjIzZDIwZDUwYWU3ZWFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6ObrGhgHjYtPkO2q/djv57vBmIO1 QQPoKEJ8BR/6yJllhR5d9R+LtdoV3B7p5EiIYVu6df8Xoid6VkmIO2CHrrUCYArc 5g3fHLzBI93OGcmHzwJeSIuB6IyitimAWga50jq1g+gvIgO5wNm3ZfxPnFq8AZc3 Nhob7r/sECnY5qi6krFiL4GYHb165WTldc9S0jDTkhmTQzYd2eyzJUzXDCwUc0fo ijf+Wh/cPDLHXyVpaFwzrr2I6s8DWgDvrguP5JDme81iHe30wNaWjmmKof2YK50J ClV7JbaK6KDMhzU69cV38ikkc+p4qiUdAQjsfF3CeYuxljo3jj09gKrcvwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG4GZGbFYQK6ITu+2T8j0g1Qrn6uMB8GA1UdIwQY MBaAFB0B7SNk7IImXGiGn+cr51cxmjHrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSFFIdEkyVHNnaVpjYUlhZjV5dm5WekdhTWVzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS85OWQ2ODMtNDNkYy00ODRhLTkwNDct YjQzY2FlNmUyMzE5LzEvSFFIdEkyVHNnaVpjYUlhZjV5dm5WekdhTWVzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYS85OWQ2ODMtNDNkYy00ODRhLTkwNDctYjQzY2FlNmUyMzE5 LzEvSFFIdEkyVHNnaVpjYUlhZjV5dm5WekdhTWVzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADDpHmdpZ asRFM/D2G9xttsoVjd8WP8298Kvc0ql1EMtnT0MR+3iAHbLp4nkaLagoMJGeq3E8 Erq9NrpP46Cv9W/KjLZeDInmfo/njP/3AMfL5GdKykOvl+LSYqjdAqBXnGKazZHM QO5NhP9MNCwGEbd74a++f776go6bX8CSQh+1pPwiwMocMum8O++d4xuIUEj/7rR6 lWpcmRFWMXwf7sYuuOLsKPEOjvG7imlryNFP7zyv0e55WsF5gWvfKQ3rWMvOiYLX hCbgLZjELOdkew/Rpl3N5MjUhs/GlwpXK2csi6m5W1rijbXCeIysjfxb6fE+p8pA +kITCRnEPQHxQQ== -----END CERTIFICATE-----Generated at Fri Dec 26 15:46:25 2025 by rpki-client