This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/23d7b7-5ae6-4631-b142-496abee7ce79/1/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.mft File: H5AE6gU4xzwjo9Hf3BIfDmAKzfU.mft (raw, json) Hash identifier: niaFRb+DEnu4crMGgozpQXrIjknKGNXsBossvpkp3fE= Subject key identifier: 03:74:48:96:CA:F7:62:DB:EF:F5:80:18:D3:CE:BB:79:D4:09:72:BF Authority key identifier: 1F:90:04:EA:05:38:C7:3C:23:A3:D1:DF:DC:12:1F:0E:60:0A:CD:F5 Certificate issuer: /CN=1f9004ea0538c73c23a3d1dfdc121f0e600acdf5 Certificate serial: 019B608AE3E7CE53F4AEBDB4BF01BE63A957 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/23d7b7-5ae6-4631-b142-496abee7ce79/1/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.mft Manifest number: 0C9F Signing time: Sat 27 Dec 2025 16:01:13 +0000 Manifest this update: Sat 27 Dec 2025 16:01:13 +0000 Manifest next update: Sun 28 Dec 2025 16:01:13 +0000 Files and hashes: 1: H5AE6gU4xzwjo9Hf3BIfDmAKzfU.crl (hash: MSCzjI5N5S+quWJgvvRQOeP2Fr1VNRlMHu0OBOPUXCE=) 2: ntEteGeDZu85wNJOAqgjTrUSx54.roa (hash: Q0TMKcR9tSI7oBt+FGXWaqYBj7j3GPsfDK87Fv5h+YM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/23d7b7-5ae6-4631-b142-496abee7ce79/1/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.crl rsync://rpki.ripe.net/repository/DEFAULT/37/23d7b7-5ae6-4631-b142-496abee7ce79/1/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.mft rsync://rpki.ripe.net/repository/DEFAULT/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 28 Dec 2025 15:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:60:8a:e3:e7:ce:53:f4:ae:bd:b4:bf:01:be:63:a9:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1f9004ea0538c73c23a3d1dfdc121f0e600acdf5 Validity Not Before: Dec 27 16:01:13 2025 GMT Not After : Dec 28 16:01:13 2025 GMT Subject: CN=03744896caf762dbeff58018d3cebb79d40972bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:7b:06:be:12:84:b9:65:e2:3a:5a:44:44:6b: ab:63:a6:50:4d:ea:08:80:19:23:18:8d:dd:35:42: 81:42:2e:b0:cb:89:01:fd:30:37:0e:45:68:27:e0: d6:4e:1b:09:1c:8c:d9:49:d1:1c:83:8b:ce:2a:95: 25:b3:49:08:f7:5a:be:dc:75:49:d6:c8:b2:d0:4e: f4:11:4e:c4:3e:cc:9b:c3:be:22:d9:3f:74:69:8d: 09:9a:60:e1:f5:c9:2e:40:ae:9e:d8:c0:07:35:b0: 9f:d3:60:ae:5e:a5:86:67:7d:87:bd:21:7e:60:77: 41:e7:00:09:25:d4:f4:31:ba:7a:ec:e1:61:29:4b: 40:db:05:34:a6:d7:f2:da:66:9f:6f:59:2a:30:a4: 91:67:43:5c:b7:05:f0:ce:86:71:9a:29:60:03:5b: 4e:ad:e6:a7:30:66:33:63:7f:72:59:60:bc:3f:d7: a6:68:f8:5c:4b:8a:cf:06:8c:5e:88:bb:c9:cc:f5: 61:1c:46:5f:f2:4b:fa:3b:e7:52:dd:3f:36:ac:b6: f5:dd:3b:b9:8e:5b:7a:52:be:69:ac:f5:5f:d5:ec: f9:38:a8:26:d0:8f:05:10:62:42:26:ae:ad:02:60: 8f:a9:bf:b4:b0:d1:9c:20:fa:3e:8d:dc:36:60:bf: aa:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:74:48:96:CA:F7:62:DB:EF:F5:80:18:D3:CE:BB:79:D4:09:72:BF X509v3 Authority Key Identifier: keyid:1F:90:04:EA:05:38:C7:3C:23:A3:D1:DF:DC:12:1F:0E:60:0A:CD:F5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/23d7b7-5ae6-4631-b142-496abee7ce79/1/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/37/23d7b7-5ae6-4631-b142-496abee7ce79/1/H5AE6gU4xzwjo9Hf3BIfDmAKzfU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 13:64:c7:a0:df:e0:f5:76:c1:3b:06:7a:21:49:86:8c:98:61: 1a:9c:04:b3:5e:be:36:e6:c4:d4:7c:e2:36:55:47:6b:a4:7a: 4f:de:44:3a:32:2c:5f:1d:78:48:fa:9e:ae:58:97:c8:bc:49: 3f:81:a3:ad:7a:66:7d:ad:57:b2:09:b3:68:4c:bf:ec:1f:14: 2d:03:3d:44:77:55:7d:8f:de:73:54:57:15:db:a7:8e:58:99: 62:80:b7:02:b0:82:85:94:81:9b:93:6a:29:83:6a:4c:cb:1a: 99:c7:e2:d3:36:e7:7a:87:a1:fa:cc:3f:49:1b:e3:d4:97:af: 82:5e:5e:d0:97:4a:10:75:b6:a0:7a:fc:45:6d:25:c6:41:df: 2c:ec:c2:dd:c2:e9:85:a3:56:23:bb:3e:65:55:76:a6:4e:dd: ff:92:51:cb:fb:31:d8:dd:ce:f3:9f:22:0a:b2:a4:47:5c:fe: d3:a5:b3:71:47:50:2b:7f:08:f8:76:bd:df:4e:48:3e:83:f2: 5d:71:8b:45:1f:c3:a0:28:5b:44:63:8d:8b:5c:3b:45:80:e6: 4c:d3:b1:2c:42:92:b4:06:a2:2d:25:1d:0d:6e:1f:82:6c:74: 58:6c:27:f0:ae:15:f9:b4:92:6b:78:36:f4:a7:47:1c:c1:e2: 14:1a:57:87 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtgiuPnzlP0rr20vwG+Y6lXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFmOTAwNGVhMDUzOGM3M2MyM2EzZDFkZmRjMTIxZjBlNjAw YWNkZjUwHhcNMjUxMjI3MTYwMTEzWhcNMjUxMjI4MTYwMTEzWjAzMTEwLwYDVQQD EygwMzc0NDg5NmNhZjc2MmRiZWZmNTgwMThkM2NlYmI3OWQ0MDk3MmJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApHsGvhKEuWXiOlpERGurY6ZQTeoI gBkjGI3dNUKBQi6wy4kB/TA3DkVoJ+DWThsJHIzZSdEcg4vOKpUls0kI91q+3HVJ 1siy0E70EU7EPsybw74i2T90aY0JmmDh9ckuQK6e2MAHNbCf02CuXqWGZ32HvSF+ YHdB5wAJJdT0Mbp67OFhKUtA2wU0ptfy2mafb1kqMKSRZ0NctwXwzoZxmilgA1tO reanMGYzY39yWWC8P9emaPhcS4rPBoxeiLvJzPVhHEZf8kv6O+dS3T82rLb13Tu5 jlt6Ur5prPVf1ez5OKgm0I8FEGJCJq6tAmCPqb+0sNGcIPo+jdw2YL+qvQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAN0SJbK92Lb7/WAGNPOu3nUCXK/MB8GA1UdIwQY MBaAFB+QBOoFOMc8I6PR39wSHw5gCs31MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSDVBRTZnVTR4endqbzlIZjNCSWZEbUFLemZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy8yM2Q3YjctNWFlNi00NjMxLWIxNDIt NDk2YWJlZTdjZTc5LzEvSDVBRTZnVTR4endqbzlIZjNCSWZEbUFLemZVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNy8yM2Q3YjctNWFlNi00NjMxLWIxNDItNDk2YWJlZTdjZTc5 LzEvSDVBRTZnVTR4endqbzlIZjNCSWZEbUFLemZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE2THoN/g 9XbBOwZ6IUmGjJhhGpwEs16+NubE1HziNlVHa6R6T95EOjIsXx14SPqerliXyLxJ P4GjrXpmfa1XsgmzaEy/7B8ULQM9RHdVfY/ec1RXFdunjliZYoC3ArCChZSBm5Nq KYNqTMsamcfi0zbneoeh+sw/SRvj1Jevgl5e0JdKEHW2oHr8RW0lxkHfLOzC3cLp haNWI7s+ZVV2pk7d/5JRy/sx2N3O858iCrKkR1z+06WzcUdQK38I+Ha9305IPoPy XXGLRR/DoChbRGONi1w7RYDmTNOxLEKStAaiLSUdDW4fgmx0WGwn8K4V+bSSa3g2 9KdHHMHiFBpXhw== -----END CERTIFICATE-----Generated at Sat Dec 27 21:03:51 2025 by rpki-client