This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/5645d2-7224-4d10-82bf-3e75051b8eac/1/B4Huhp0uHCAP-MaX4tN-qkKUCjY.mft File: B4Huhp0uHCAP-MaX4tN-qkKUCjY.mft (raw, json) Hash identifier: Rm7068dRAjI55edQFdFl4q0vO9tC69+EgneRJttQzuo= Subject key identifier: 95:5F:36:7A:4D:07:6D:B0:36:10:22:6D:22:B7:C4:1A:9B:AB:92:12 Authority key identifier: 07:81:EE:86:9D:2E:1C:20:0F:F8:C6:97:E2:D3:7E:AA:42:94:0A:36 Certificate issuer: /CN=0781ee869d2e1c200ff8c697e2d37eaa42940a36 Certificate serial: 019B75FF771A30CFC53E9763F440FB0805DF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B4Huhp0uHCAP-MaX4tN-qkKUCjY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/5645d2-7224-4d10-82bf-3e75051b8eac/1/B4Huhp0uHCAP-MaX4tN-qkKUCjY.mft Manifest number: 12A4 Signing time: Wed 31 Dec 2025 20:00:34 +0000 Manifest this update: Wed 31 Dec 2025 20:00:34 +0000 Manifest next update: Thu 01 Jan 2026 20:00:34 +0000 Files and hashes: 1: B4Huhp0uHCAP-MaX4tN-qkKUCjY.crl (hash: dkO5oJ08jqIAtwZoOphU66d+3wTZIuu6qT0xI/t2Mw8=) 2: jIFgf1lBNqu6NES_hhmJCRkx6WU.roa (hash: b4SkMZ2qfegq/aAVSnzcin5lHV5SoqB7AozMTZpTRfs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/5645d2-7224-4d10-82bf-3e75051b8eac/1/B4Huhp0uHCAP-MaX4tN-qkKUCjY.crl rsync://rpki.ripe.net/repository/DEFAULT/30/5645d2-7224-4d10-82bf-3e75051b8eac/1/B4Huhp0uHCAP-MaX4tN-qkKUCjY.mft rsync://rpki.ripe.net/repository/DEFAULT/B4Huhp0uHCAP-MaX4tN-qkKUCjY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 01 Jan 2026 18:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:75:ff:77:1a:30:cf:c5:3e:97:63:f4:40:fb:08:05:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0781ee869d2e1c200ff8c697e2d37eaa42940a36 Validity Not Before: Dec 31 20:00:34 2025 GMT Not After : Jan 1 20:00:34 2026 GMT Subject: CN=955f367a4d076db03610226d22b7c41a9bab9212 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:e7:28:e1:22:24:2b:a2:7c:85:8c:ad:95:80: f8:5d:b5:e0:e7:46:c0:62:d2:98:b2:dc:9c:94:b5: d4:ac:9b:e6:01:56:d3:c6:80:ae:a7:ff:42:3e:50: 62:d6:7f:59:32:f5:eb:4f:6c:c6:ee:b2:65:94:7c: f2:98:9d:df:d6:1e:78:79:01:8c:18:31:2b:a3:e0: b9:92:d2:f5:ab:ce:24:74:91:b0:66:3d:6a:e0:56: 57:be:86:62:62:81:f4:19:83:ba:5b:76:35:b9:bc: 6b:ca:12:3c:6f:fe:10:39:86:bd:ce:85:7d:cf:bb: 14:f4:e5:13:44:91:e2:95:c9:9b:7a:2f:e8:be:f1: 7d:9a:47:41:77:78:48:d7:6c:37:b2:19:5e:9f:bb: 55:39:d5:87:03:87:bf:3a:0c:63:73:47:c1:40:90: 45:24:91:1f:30:65:0d:8a:c7:d2:05:00:c6:43:58: e6:3c:76:d3:00:b1:37:af:ad:9c:04:5e:42:61:d5: ef:f0:75:a5:10:22:12:03:90:2d:cd:ff:de:66:bc: 79:aa:8e:0e:a7:86:4c:68:59:6f:97:fd:bc:d3:3e: e6:3b:5b:3d:8a:95:8f:2c:fd:9b:64:a0:b7:56:63: 71:ae:2a:6d:ae:e9:44:14:e5:4c:1d:14:d5:0e:a2: cf:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:5F:36:7A:4D:07:6D:B0:36:10:22:6D:22:B7:C4:1A:9B:AB:92:12 X509v3 Authority Key Identifier: keyid:07:81:EE:86:9D:2E:1C:20:0F:F8:C6:97:E2:D3:7E:AA:42:94:0A:36 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B4Huhp0uHCAP-MaX4tN-qkKUCjY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/5645d2-7224-4d10-82bf-3e75051b8eac/1/B4Huhp0uHCAP-MaX4tN-qkKUCjY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/5645d2-7224-4d10-82bf-3e75051b8eac/1/B4Huhp0uHCAP-MaX4tN-qkKUCjY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 29:24:f8:e7:8f:12:f7:87:08:58:7d:34:51:70:bc:20:db:10: b9:01:75:47:8d:ac:05:a2:35:cb:d6:34:2b:c3:0e:ec:b6:3c: 8c:b9:ba:9e:00:63:73:ee:c6:09:86:37:f7:6e:48:a6:01:6b: f2:90:7a:da:80:cc:70:e3:6b:da:29:6b:60:89:a9:55:9f:db: 59:59:24:50:de:3d:97:47:ba:84:a3:63:b1:7a:ad:81:8d:11: 8c:df:27:e0:14:c1:4e:76:d6:7e:5a:6b:cd:14:51:dc:b2:49: da:97:9a:28:fe:f3:3e:d7:ab:26:d6:63:ac:1c:4b:6b:88:6d: 32:26:3d:75:3a:af:ec:c4:9e:b9:5e:fc:9d:bf:58:09:6a:06: ba:0e:4f:09:b0:eb:31:31:ff:fd:48:b1:af:76:f9:28:ab:25: b1:10:59:d5:61:63:2e:4c:34:47:de:4c:7a:de:05:7c:a6:67: 8c:52:6d:4f:06:19:55:d9:5e:61:b8:de:44:b9:60:cc:02:85: c0:28:d8:58:e2:8f:65:3e:d2:a0:70:0a:d6:9d:0a:6b:8e:f1: 92:81:80:49:c9:7b:d8:da:24:71:5c:a5:6b:0e:c6:b9:db:07: d0:28:67:ca:db:0b:84:eb:b0:35:89:90:9d:ee:f2:5f:1c:ae: ec:3f:88:79 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZt1/3caMM/FPpdj9ED7CAXfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA3ODFlZTg2OWQyZTFjMjAwZmY4YzY5N2UyZDM3ZWFhNDI5 NDBhMzYwHhcNMjUxMjMxMjAwMDM0WhcNMjYwMTAxMjAwMDM0WjAzMTEwLwYDVQQD Eyg5NTVmMzY3YTRkMDc2ZGIwMzYxMDIyNmQyMmI3YzQxYTliYWI5MjEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkOco4SIkK6J8hYytlYD4XbXg50bA YtKYstyclLXUrJvmAVbTxoCup/9CPlBi1n9ZMvXrT2zG7rJllHzymJ3f1h54eQGM GDEro+C5ktL1q84kdJGwZj1q4FZXvoZiYoH0GYO6W3Y1ubxryhI8b/4QOYa9zoV9 z7sU9OUTRJHilcmbei/ovvF9mkdBd3hI12w3shlen7tVOdWHA4e/Ogxjc0fBQJBF JJEfMGUNisfSBQDGQ1jmPHbTALE3r62cBF5CYdXv8HWlECISA5Atzf/eZrx5qo4O p4ZMaFlvl/280z7mO1s9ipWPLP2bZKC3VmNxriptrulEFOVMHRTVDqLPuQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJVfNnpNB22wNhAibSK3xBqbq5ISMB8GA1UdIwQY MBaAFAeB7oadLhwgD/jGl+LTfqpClAo2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQjRIdWhwMHVIQ0FQLU1hWDR0Ti1xa0tVQ2pZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC81NjQ1ZDItNzIyNC00ZDEwLTgyYmYt M2U3NTA1MWI4ZWFjLzEvQjRIdWhwMHVIQ0FQLU1hWDR0Ti1xa0tVQ2pZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC81NjQ1ZDItNzIyNC00ZDEwLTgyYmYtM2U3NTA1MWI4ZWFj LzEvQjRIdWhwMHVIQ0FQLU1hWDR0Ti1xa0tVQ2pZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKST4548S 94cIWH00UXC8INsQuQF1R42sBaI1y9Y0K8MO7LY8jLm6ngBjc+7GCYY3925IpgFr 8pB62oDMcONr2ilrYImpVZ/bWVkkUN49l0e6hKNjsXqtgY0RjN8n4BTBTnbWflpr zRRR3LJJ2peaKP7zPterJtZjrBxLa4htMiY9dTqv7MSeuV78nb9YCWoGug5PCbDr MTH//Uixr3b5KKslsRBZ1WFjLkw0R95Met4FfKZnjFJtTwYZVdleYbjeRLlgzAKF wCjYWOKPZT7SoHAK1p0Ka47xkoGAScl72NokcVylaw7GudsH0ChnytsLhOuwNYmQ ne7yXxyu7D+IeQ== -----END CERTIFICATE-----Generated at Thu Jan 1 01:02:25 2026 by rpki-client