This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/0d0724-55f5-4755-99c2-612651ae3eb3/1/Htw6l_HMrvfxCGmRz3sQpBDOGUI.mft File: Htw6l_HMrvfxCGmRz3sQpBDOGUI.mft (raw, json) Hash identifier: iAseGlKPMsH0/IsUvAwCt0fFr5XLgwVqJrLq4q5Bqls= Subject key identifier: 4D:7D:F0:2C:0A:78:22:1C:74:D7:85:E7:48:4D:11:66:94:09:05:49 Authority key identifier: 1E:DC:3A:97:F1:CC:AE:F7:F1:08:69:91:CF:7B:10:A4:10:CE:19:42 Certificate issuer: /CN=1edc3a97f1ccaef7f1086991cf7b10a410ce1942 Certificate serial: 019B41A4E079F82C680A5AFE5AC4136845E4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Htw6l_HMrvfxCGmRz3sQpBDOGUI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/0d0724-55f5-4755-99c2-612651ae3eb3/1/Htw6l_HMrvfxCGmRz3sQpBDOGUI.mft Manifest number: 169D Signing time: Sun 21 Dec 2025 16:01:22 +0000 Manifest this update: Sun 21 Dec 2025 16:01:22 +0000 Manifest next update: Mon 22 Dec 2025 16:01:22 +0000 Files and hashes: 1: Htw6l_HMrvfxCGmRz3sQpBDOGUI.crl (hash: xmLKFASJ7jENrG7J5qOzhsZKSN7Om9PFrnPjH95kjJI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/0d0724-55f5-4755-99c2-612651ae3eb3/1/Htw6l_HMrvfxCGmRz3sQpBDOGUI.crl rsync://rpki.ripe.net/repository/DEFAULT/13/0d0724-55f5-4755-99c2-612651ae3eb3/1/Htw6l_HMrvfxCGmRz3sQpBDOGUI.mft rsync://rpki.ripe.net/repository/DEFAULT/Htw6l_HMrvfxCGmRz3sQpBDOGUI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 13:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:41:a4:e0:79:f8:2c:68:0a:5a:fe:5a:c4:13:68:45:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1edc3a97f1ccaef7f1086991cf7b10a410ce1942 Validity Not Before: Dec 21 16:01:22 2025 GMT Not After : Dec 22 16:01:22 2025 GMT Subject: CN=4d7df02c0a78221c74d785e7484d116694090549 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:45:16:b5:d6:6c:03:a0:5b:68:09:d8:30:bc: 4e:8c:01:20:99:11:fa:21:d0:d6:26:cd:42:2f:97: 1c:1f:6d:1a:ab:ad:90:c8:b7:4b:1e:ed:f3:8c:06: a5:5e:7b:54:5c:c5:d1:a8:b6:a5:8d:af:f6:60:5b: f0:30:78:c6:15:f9:be:b2:4e:2d:fb:7c:02:7f:b6: d0:36:6e:70:81:c1:a0:c1:e8:5d:27:95:85:e8:25: 8b:0c:5e:97:34:e2:c3:da:ba:75:26:f0:42:e1:e4: 09:e5:d2:78:ff:1f:b0:90:9b:f4:f4:5f:c1:18:d2: 27:7f:52:57:56:26:79:1c:19:7c:c8:7a:74:e2:f2: 7b:75:a9:b0:89:38:35:c2:a4:45:ce:eb:a8:3d:f0: 35:f6:f9:a8:63:42:c4:21:ed:8d:03:b5:7e:37:f0: f1:cc:91:aa:c8:f2:a6:d0:dd:06:e5:b9:6c:02:3b: c8:0d:51:32:58:01:1e:f1:50:f2:5a:3d:18:e1:5b: 94:00:7a:37:9f:d9:d9:1f:de:74:6b:b4:d6:bd:fd: 1b:3b:1a:48:88:6e:5b:2f:bf:39:f4:84:c1:2e:ab: 50:09:c6:5d:9a:f1:14:d3:f6:b3:74:a1:77:17:26: c7:c3:8e:5f:58:5a:9c:8b:9a:61:22:0d:8b:81:98: 0b:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:7D:F0:2C:0A:78:22:1C:74:D7:85:E7:48:4D:11:66:94:09:05:49 X509v3 Authority Key Identifier: keyid:1E:DC:3A:97:F1:CC:AE:F7:F1:08:69:91:CF:7B:10:A4:10:CE:19:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Htw6l_HMrvfxCGmRz3sQpBDOGUI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/0d0724-55f5-4755-99c2-612651ae3eb3/1/Htw6l_HMrvfxCGmRz3sQpBDOGUI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/0d0724-55f5-4755-99c2-612651ae3eb3/1/Htw6l_HMrvfxCGmRz3sQpBDOGUI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0a:5a:d2:54:17:66:5b:31:1f:84:bf:bf:c5:4b:ac:cb:14:f0: a8:5c:95:f8:05:67:80:e8:09:b1:ea:41:0c:00:43:92:db:84: fc:50:3b:81:16:4d:92:e1:d2:09:8c:e2:b1:0a:80:bc:ec:6a: 02:d5:bb:7a:3a:50:c9:82:e6:5e:88:e8:8b:19:80:22:3c:2b: f6:bf:3e:e7:66:52:0f:f2:75:a5:2a:74:61:8d:8c:d0:e2:c6: 37:69:74:ec:db:2a:c3:30:c4:e4:3b:8c:14:74:6c:10:b1:45: 86:e7:cc:a1:85:79:22:1c:13:9f:38:bc:d1:7c:e0:72:58:c0: 0e:32:2f:a4:5c:bc:46:54:a3:29:8f:93:26:34:6c:c4:bb:24: 7f:d4:3a:6c:84:3e:55:c6:81:1e:8f:e7:58:66:f1:0f:67:37: a1:84:40:c0:75:5e:c5:dc:87:b7:6b:66:8c:fb:03:d7:94:b0: d0:63:e7:8e:7d:7b:20:e9:d1:a0:8b:2a:5c:fd:79:74:96:ff: aa:05:0f:89:6a:6e:f7:bc:8f:b9:09:3d:0d:ad:3e:0a:a0:1e: 09:f1:bf:a2:7f:27:ca:82:97:13:d5:99:dd:9e:13:d4:38:04: 07:16:51:b7:d8:38:53:59:88:4a:87:3d:f0:2b:11:80:ac:e2: c1:10:57:6d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtBpOB5+CxoClr+WsQTaEXkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlZGMzYTk3ZjFjY2FlZjdmMTA4Njk5MWNmN2IxMGE0MTBj ZTE5NDIwHhcNMjUxMjIxMTYwMTIyWhcNMjUxMjIyMTYwMTIyWjAzMTEwLwYDVQQD Eyg0ZDdkZjAyYzBhNzgyMjFjNzRkNzg1ZTc0ODRkMTE2Njk0MDkwNTQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxkUWtdZsA6BbaAnYMLxOjAEgmRH6 IdDWJs1CL5ccH20aq62QyLdLHu3zjAalXntUXMXRqLalja/2YFvwMHjGFfm+sk4t +3wCf7bQNm5wgcGgwehdJ5WF6CWLDF6XNOLD2rp1JvBC4eQJ5dJ4/x+wkJv09F/B GNInf1JXViZ5HBl8yHp04vJ7damwiTg1wqRFzuuoPfA19vmoY0LEIe2NA7V+N/Dx zJGqyPKm0N0G5blsAjvIDVEyWAEe8VDyWj0Y4VuUAHo3n9nZH950a7TWvf0bOxpI iG5bL7859ITBLqtQCcZdmvEU0/azdKF3FybHw45fWFqci5phIg2LgZgLjQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE198CwKeCIcdNeF50hNEWaUCQVJMB8GA1UdIwQY MBaAFB7cOpfxzK738Qhpkc97EKQQzhlCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSHR3NmxfSE1ydmZ4Q0dtUnozc1FwQkRPR1VJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy8wZDA3MjQtNTVmNS00NzU1LTk5YzIt NjEyNjUxYWUzZWIzLzEvSHR3NmxfSE1ydmZ4Q0dtUnozc1FwQkRPR1VJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy8wZDA3MjQtNTVmNS00NzU1LTk5YzItNjEyNjUxYWUzZWIz LzEvSHR3NmxfSE1ydmZ4Q0dtUnozc1FwQkRPR1VJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAClrSVBdm WzEfhL+/xUusyxTwqFyV+AVngOgJsepBDABDktuE/FA7gRZNkuHSCYzisQqAvOxq AtW7ejpQyYLmXojoixmAIjwr9r8+52ZSD/J1pSp0YY2M0OLGN2l07NsqwzDE5DuM FHRsELFFhufMoYV5IhwTnzi80XzgcljADjIvpFy8RlSjKY+TJjRsxLskf9Q6bIQ+ VcaBHo/nWGbxD2c3oYRAwHVexdyHt2tmjPsD15Sw0GPnjn17IOnRoIsqXP15dJb/ qgUPiWpu97yPuQk9Da0+CqAeCfG/on8nyoKXE9WZ3Z4T1DgEBxZRt9g4U1mISoc9 8CsRgKziwRBXbQ== -----END CERTIFICATE-----Generated at Sun Dec 21 22:58:26 2025 by rpki-client