This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/a400b2-bab4-4119-a3d1-89981c8f9e7b/1/MHXYfBl6D6BNqPIlNY0_r3hvfQs.mft File: MHXYfBl6D6BNqPIlNY0_r3hvfQs.mft (raw, json) Hash identifier: gfRnIKGURKTX+KBQzx8Ayn19SZPH9OXTS/LA9lJOgA4= Subject key identifier: F2:BF:17:26:89:8D:C1:3C:44:50:26:61:98:A8:07:BF:C2:25:AC:73 Authority key identifier: 30:75:D8:7C:19:7A:0F:A0:4D:A8:F2:25:35:8D:3F:AF:78:6F:7D:0B Certificate issuer: /CN=3075d87c197a0fa04da8f225358d3faf786f7d0b Certificate serial: 019B41A482B21ED956E93BF9A80B58502559 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MHXYfBl6D6BNqPIlNY0_r3hvfQs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/a400b2-bab4-4119-a3d1-89981c8f9e7b/1/MHXYfBl6D6BNqPIlNY0_r3hvfQs.mft Manifest number: 0575 Signing time: Sun 21 Dec 2025 16:00:58 +0000 Manifest this update: Sun 21 Dec 2025 16:00:58 +0000 Manifest next update: Mon 22 Dec 2025 16:00:58 +0000 Files and hashes: 1: MHXYfBl6D6BNqPIlNY0_r3hvfQs.crl (hash: oTpnpw6r9BpE4DH7+9ILSxFo0UuI2hA77u/PwsAfD6o=) 2: _Op4bSAp0gWDx4UfTJUc97va5qw.roa (hash: tJEKSC7Hrru5HEiTFvhI8vLaAa+FAs4tPlo2cnkUBAA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/a400b2-bab4-4119-a3d1-89981c8f9e7b/1/MHXYfBl6D6BNqPIlNY0_r3hvfQs.crl rsync://rpki.ripe.net/repository/DEFAULT/13/a400b2-bab4-4119-a3d1-89981c8f9e7b/1/MHXYfBl6D6BNqPIlNY0_r3hvfQs.mft rsync://rpki.ripe.net/repository/DEFAULT/MHXYfBl6D6BNqPIlNY0_r3hvfQs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 16:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:41:a4:82:b2:1e:d9:56:e9:3b:f9:a8:0b:58:50:25:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3075d87c197a0fa04da8f225358d3faf786f7d0b Validity Not Before: Dec 21 16:00:58 2025 GMT Not After : Dec 22 16:00:58 2025 GMT Subject: CN=f2bf1726898dc13c4450266198a807bfc225ac73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:1a:f6:25:ea:32:b4:77:11:1c:b3:b5:b0:4c: 95:06:a4:45:09:c3:ef:d6:91:79:fb:3c:94:f2:0c: d3:a3:90:40:d2:81:cc:3b:95:3b:79:1b:53:07:a1: 61:3d:c0:b4:35:1f:1b:0c:57:46:e0:04:99:48:ee: cf:3d:37:e3:6b:52:33:86:bb:37:af:1c:b3:c2:cc: 71:c0:69:f4:5f:02:fe:78:9f:6c:19:25:e1:c1:96: de:bc:24:f5:ea:3f:9e:1b:a2:de:86:a2:81:8c:dc: db:eb:da:7f:fd:ae:b8:c4:c9:da:e9:30:77:6e:ad: e0:72:a2:f4:f6:55:4a:6c:11:b4:53:aa:a3:7f:52: 0d:ea:79:ef:94:c8:10:f9:df:d1:64:93:d5:43:40: b1:4e:a8:f3:e3:39:f3:21:1d:86:db:22:a0:fb:ab: 99:e8:c6:87:be:0f:d4:ea:5a:11:ee:8e:5b:78:88: 9e:e4:d7:65:cf:f9:64:4c:e4:99:b0:b1:c9:36:df: 08:c5:53:9c:72:35:e4:3e:64:17:e5:f3:ab:70:9e: 3a:48:b9:5f:11:99:c3:f1:64:44:d0:96:5c:0c:81: b1:f2:75:66:f9:e1:a1:68:1a:13:cf:db:e7:ca:a0: d7:d3:00:dc:5e:a7:62:3e:1a:39:38:4f:74:0a:6a: da:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:BF:17:26:89:8D:C1:3C:44:50:26:61:98:A8:07:BF:C2:25:AC:73 X509v3 Authority Key Identifier: keyid:30:75:D8:7C:19:7A:0F:A0:4D:A8:F2:25:35:8D:3F:AF:78:6F:7D:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MHXYfBl6D6BNqPIlNY0_r3hvfQs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a400b2-bab4-4119-a3d1-89981c8f9e7b/1/MHXYfBl6D6BNqPIlNY0_r3hvfQs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a400b2-bab4-4119-a3d1-89981c8f9e7b/1/MHXYfBl6D6BNqPIlNY0_r3hvfQs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:a4:11:f9:3f:a8:23:55:36:4c:9e:8f:85:9d:5e:8f:3b:3a: 2f:26:97:93:00:25:0b:e2:a8:bb:f6:e8:b6:00:7c:43:40:6f: 46:cd:33:6d:db:b4:03:04:c1:e2:cc:c3:fa:87:08:63:1c:b8: 20:bd:61:07:f3:69:b7:82:0d:3a:35:33:31:0a:96:73:36:6a: 84:e9:8f:bc:bb:0f:8e:0d:0e:f2:f9:9a:b7:02:bf:49:dd:97: 51:8d:a7:84:0c:35:74:1f:a4:0b:7b:77:77:2a:8d:40:bb:f5: 18:22:ca:c8:1b:ca:21:9a:a3:52:87:eb:2e:9c:df:e5:85:32: 0b:9e:c5:63:e1:e1:ae:28:47:e4:28:d8:f5:0a:8a:d4:91:fb: c1:a0:ba:03:45:2f:f1:15:a9:b2:f6:ef:e6:eb:f3:ac:07:af: 23:98:36:12:2e:1a:a1:2c:14:01:54:15:a2:d9:79:c8:98:6c: c8:4e:5c:d3:d7:22:6e:15:e1:11:a4:96:8c:99:6d:99:0f:9b: 7d:43:cd:d4:eb:59:4c:da:22:a0:ea:ab:3a:4b:14:22:55:c7: b5:84:26:8a:07:d7:50:69:82:5e:de:c0:07:d9:70:82:fc:52: c9:29:10:9c:4c:7d:ee:1c:5e:f5:97:21:33:61:52:28:35:75: af:49:a3:f8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtBpIKyHtlW6Tv5qAtYUCVZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMwNzVkODdjMTk3YTBmYTA0ZGE4ZjIyNTM1OGQzZmFmNzg2 ZjdkMGIwHhcNMjUxMjIxMTYwMDU4WhcNMjUxMjIyMTYwMDU4WjAzMTEwLwYDVQQD EyhmMmJmMTcyNjg5OGRjMTNjNDQ1MDI2NjE5OGE4MDdiZmMyMjVhYzczMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2hr2JeoytHcRHLO1sEyVBqRFCcPv 1pF5+zyU8gzTo5BA0oHMO5U7eRtTB6FhPcC0NR8bDFdG4ASZSO7PPTfja1Izhrs3 rxyzwsxxwGn0XwL+eJ9sGSXhwZbevCT16j+eG6LehqKBjNzb69p//a64xMna6TB3 bq3gcqL09lVKbBG0U6qjf1IN6nnvlMgQ+d/RZJPVQ0CxTqjz4znzIR2G2yKg+6uZ 6MaHvg/U6loR7o5beIie5Ndlz/lkTOSZsLHJNt8IxVOccjXkPmQX5fOrcJ46SLlf EZnD8WRE0JZcDIGx8nVm+eGhaBoTz9vnyqDX0wDcXqdiPho5OE90CmraCQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPK/FyaJjcE8RFAmYZioB7/CJaxzMB8GA1UdIwQY MBaAFDB12HwZeg+gTajyJTWNP694b30LMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTUhYWWZCbDZENkJOcVBJbE5ZMF9yM2h2ZlFzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9hNDAwYjItYmFiNC00MTE5LWEzZDEt ODk5ODFjOGY5ZTdiLzEvTUhYWWZCbDZENkJOcVBJbE5ZMF9yM2h2ZlFzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy9hNDAwYjItYmFiNC00MTE5LWEzZDEtODk5ODFjOGY5ZTdi LzEvTUhYWWZCbDZENkJOcVBJbE5ZMF9yM2h2ZlFzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhqQR+T+o I1U2TJ6PhZ1ejzs6LyaXkwAlC+Kou/botgB8Q0BvRs0zbdu0AwTB4szD+ocIYxy4 IL1hB/Npt4INOjUzMQqWczZqhOmPvLsPjg0O8vmatwK/Sd2XUY2nhAw1dB+kC3t3 dyqNQLv1GCLKyBvKIZqjUofrLpzf5YUyC57FY+HhrihH5CjY9QqK1JH7waC6A0Uv 8RWpsvbv5uvzrAevI5g2Ei4aoSwUAVQVotl5yJhsyE5c09cibhXhEaSWjJltmQ+b fUPN1OtZTNoioOqrOksUIlXHtYQmigfXUGmCXt7AB9lwgvxSySkQnEx97hxe9Zch M2FSKDV1r0mj+A== -----END CERTIFICATE-----Generated at Mon Dec 22 01:48:48 2025 by rpki-client