This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft File: HlcDhG16g2S-wwMDTbkay_9C2gw.mft (raw, json) Hash identifier: SDZBPHpg76JCRodkL0rJZydWIAcmIdbjLTWjupBmDJg= Subject key identifier: ED:32:83:DD:83:40:18:02:2A:E2:C6:0D:BC:17:D3:10:1F:13:C5:19 Authority key identifier: 1E:57:03:84:6D:7A:83:64:BE:C3:03:03:4D:B9:1A:CB:FF:42:DA:0C Certificate issuer: /CN=1e5703846d7a8364bec303034db91acbff42da0c Certificate serial: 019B416D75EE5AA1E374AA839F4C6B448060 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft Manifest number: 0B4B Signing time: Sun 21 Dec 2025 15:00:51 +0000 Manifest this update: Sun 21 Dec 2025 15:00:51 +0000 Manifest next update: Mon 22 Dec 2025 15:00:51 +0000 Files and hashes: 1: 4PNlkOPWAaPkvxKKyZ24ywHUUNs.roa (hash: eaQPOrhXnd6IgLBTpKSTCgVJBcG3spHBZu3BsMLZw3g=) 2: HlcDhG16g2S-wwMDTbkay_9C2gw.crl (hash: 39A9xXK6c69/GFoWubnbkzQqeKGP5xbx8UN1IlR4cow=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.crl rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 13:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:41:6d:75:ee:5a:a1:e3:74:aa:83:9f:4c:6b:44:80:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1e5703846d7a8364bec303034db91acbff42da0c Validity Not Before: Dec 21 15:00:51 2025 GMT Not After : Dec 22 15:00:51 2025 GMT Subject: CN=ed3283dd834018022ae2c60dbc17d3101f13c519 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:3a:c1:52:59:af:85:61:31:e1:a6:df:0c:e9: a6:c8:78:6e:9f:bd:e7:79:df:95:5d:d4:e9:c6:ac: 96:21:e4:44:15:84:45:15:5e:43:48:05:27:3a:df: 29:e7:b2:62:bc:f6:26:b1:0d:01:55:79:cf:78:a7: 23:ee:94:97:90:64:88:96:9e:3b:d8:04:e4:a6:29: ce:d1:7d:66:e7:77:b0:f0:de:8c:a1:7c:02:2e:cb: e8:1c:16:91:35:7a:52:ef:9d:4e:2f:a0:a7:03:38: a3:5e:76:40:de:f9:65:70:fc:2f:35:49:1a:1c:33: b8:ed:d9:a5:97:09:5e:ba:6a:1d:ef:82:59:3b:00: eb:69:38:c8:11:95:c6:11:34:46:59:62:ac:a6:67: 94:ea:2c:71:51:e9:8c:61:85:72:b1:72:d0:52:c3: c4:df:a2:5b:ab:9a:9c:9f:32:e1:c0:ce:6a:46:7a: ca:33:30:52:51:4d:43:d4:e7:59:b6:77:9d:d3:8a: 35:39:4a:ef:a5:df:9d:5f:df:5f:ce:f1:f5:e7:6c: ef:a8:1c:9b:23:ce:a5:28:7a:bb:3f:72:94:8e:7f: 77:16:54:5f:c7:e5:83:a5:89:c2:b6:07:9c:a6:91: 91:86:01:6d:bb:8b:11:5f:89:fb:ed:71:f5:78:de: ad:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:32:83:DD:83:40:18:02:2A:E2:C6:0D:BC:17:D3:10:1F:13:C5:19 X509v3 Authority Key Identifier: keyid:1E:57:03:84:6D:7A:83:64:BE:C3:03:03:4D:B9:1A:CB:FF:42:DA:0C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlcDhG16g2S-wwMDTbkay_9C2gw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/24/bc658f-a528-4360-b58c-07b09e465119/1/HlcDhG16g2S-wwMDTbkay_9C2gw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3c:60:8b:59:80:a2:57:49:05:77:ab:16:c1:2e:15:39:79:95: ce:48:5c:3d:24:71:0e:af:d1:4c:cf:7e:df:94:3f:1e:41:e9: 81:8a:be:7f:f2:9b:4b:1b:21:03:3f:7f:60:d5:49:9f:50:3b: 99:fb:91:54:52:a2:4e:a0:44:fa:fa:61:0c:d1:29:b6:91:78: a6:af:6b:b2:c2:57:cd:34:a0:b6:55:ef:fc:9f:81:1a:d3:6b: cb:38:7c:ba:bb:69:7f:65:5f:3a:90:b6:8a:e0:51:aa:52:1e: ab:a2:fd:1c:a3:7f:60:38:e4:1f:e9:09:50:2f:2c:d2:8a:7e: 37:75:fc:1c:06:3d:b4:53:1b:f8:7e:11:82:c2:97:f3:0f:56: 9c:7d:92:9b:c0:35:96:d2:c7:89:16:3f:8b:b9:66:10:63:5e: 0b:65:30:c8:76:95:41:19:e4:59:23:5d:05:84:75:2e:eb:5e: 06:b8:cb:cd:ae:81:9d:49:3f:ee:12:d7:0d:0f:20:9d:14:90: 52:a0:f8:1f:ad:91:1b:01:b8:17:d1:46:0f:9a:9c:37:02:e0: 65:50:b6:6d:0a:e3:b4:b8:e5:dd:65:c4:dd:ad:e4:14:f9:e7: 80:c1:74:f3:10:a5:06:b9:58:79:5d:f6:d3:81:bd:be:1e:e5: f1:41:8e:57 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtBbXXuWqHjdKqDn0xrRIBgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlNTcwMzg0NmQ3YTgzNjRiZWMzMDMwMzRkYjkxYWNiZmY0 MmRhMGMwHhcNMjUxMjIxMTUwMDUxWhcNMjUxMjIyMTUwMDUxWjAzMTEwLwYDVQQD EyhlZDMyODNkZDgzNDAxODAyMmFlMmM2MGRiYzE3ZDMxMDFmMTNjNTE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtjrBUlmvhWEx4abfDOmmyHhun73n ed+VXdTpxqyWIeREFYRFFV5DSAUnOt8p57JivPYmsQ0BVXnPeKcj7pSXkGSIlp47 2ATkpinO0X1m53ew8N6MoXwCLsvoHBaRNXpS751OL6CnAzijXnZA3vllcPwvNUka HDO47dmllwleumod74JZOwDraTjIEZXGETRGWWKspmeU6ixxUemMYYVysXLQUsPE 36Jbq5qcnzLhwM5qRnrKMzBSUU1D1OdZtned04o1OUrvpd+dX99fzvH152zvqByb I86lKHq7P3KUjn93FlRfx+WDpYnCtgecppGRhgFtu4sRX4n77XH1eN6tjQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO0yg92DQBgCKuLGDbwX0xAfE8UZMB8GA1UdIwQY MBaAFB5XA4RteoNkvsMDA025Gsv/QtoMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSGxjRGhHMTZnMlMtd3dNRFRia2F5XzlDMmd3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC9iYzY1OGYtYTUyOC00MzYwLWI1OGMt MDdiMDllNDY1MTE5LzEvSGxjRGhHMTZnMlMtd3dNRFRia2F5XzlDMmd3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNC9iYzY1OGYtYTUyOC00MzYwLWI1OGMtMDdiMDllNDY1MTE5 LzEvSGxjRGhHMTZnMlMtd3dNRFRia2F5XzlDMmd3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPGCLWYCi V0kFd6sWwS4VOXmVzkhcPSRxDq/RTM9+35Q/HkHpgYq+f/KbSxshAz9/YNVJn1A7 mfuRVFKiTqBE+vphDNEptpF4pq9rssJXzTSgtlXv/J+BGtNryzh8urtpf2VfOpC2 iuBRqlIeq6L9HKN/YDjkH+kJUC8s0op+N3X8HAY9tFMb+H4RgsKX8w9WnH2Sm8A1 ltLHiRY/i7lmEGNeC2UwyHaVQRnkWSNdBYR1LuteBrjLza6BnUk/7hLXDQ8gnRSQ UqD4H62RGwG4F9FGD5qcNwLgZVC2bQrjtLjl3WXE3a3kFPnngMF08xClBrlYeV32 04G9vh7l8UGOVw== -----END CERTIFICATE-----Generated at Sun Dec 21 20:54:50 2025 by rpki-client