This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/0de7e1-bf7f-434f-9591-8d46e09df9f3/1/HCrBJGouDql6DCKVtz3b4AbQ7Sw.mft File: HCrBJGouDql6DCKVtz3b4AbQ7Sw.mft (raw, json) Hash identifier: 4/nhQ7wbdUog/WlrPQ2g1McvFjvlebazQSjNEU6RHQY= Subject key identifier: A5:C1:31:AD:1F:A6:C0:E2:58:60:39:C0:61:3E:51:97:60:C6:5E:7B Authority key identifier: 1C:2A:C1:24:6A:2E:0E:A9:7A:0C:22:95:B7:3D:DB:E0:06:D0:ED:2C Certificate issuer: /CN=1c2ac1246a2e0ea97a0c2295b73ddbe006d0ed2c Certificate serial: 019B4438214A08398F61C3405C659DA9B0CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HCrBJGouDql6DCKVtz3b4AbQ7Sw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/0de7e1-bf7f-434f-9591-8d46e09df9f3/1/HCrBJGouDql6DCKVtz3b4AbQ7Sw.mft Manifest number: 16E6 Signing time: Mon 22 Dec 2025 04:01:27 +0000 Manifest this update: Mon 22 Dec 2025 04:01:27 +0000 Manifest next update: Tue 23 Dec 2025 04:01:27 +0000 Files and hashes: 1: HCrBJGouDql6DCKVtz3b4AbQ7Sw.crl (hash: xEw5pslNH3KJ1UH2VfpG0EQa/Hy7xd+IKkqRqKCHDek=) 2: bDOy4M4R57nj8_Sff5gfBKz-LP0.roa (hash: vm1SQ0etoIa7LbOonRtmj5Ah0LoPLSlL7NdxQSQ76i0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/0de7e1-bf7f-434f-9591-8d46e09df9f3/1/HCrBJGouDql6DCKVtz3b4AbQ7Sw.crl rsync://rpki.ripe.net/repository/DEFAULT/42/0de7e1-bf7f-434f-9591-8d46e09df9f3/1/HCrBJGouDql6DCKVtz3b4AbQ7Sw.mft rsync://rpki.ripe.net/repository/DEFAULT/HCrBJGouDql6DCKVtz3b4AbQ7Sw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 04:01:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:44:38:21:4a:08:39:8f:61:c3:40:5c:65:9d:a9:b0:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c2ac1246a2e0ea97a0c2295b73ddbe006d0ed2c Validity Not Before: Dec 22 04:01:27 2025 GMT Not After : Dec 23 04:01:27 2025 GMT Subject: CN=a5c131ad1fa6c0e2586039c0613e519760c65e7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:fc:fe:bf:9a:82:77:b6:bb:93:e5:35:ea:5d: 3e:e4:16:6f:a9:1a:5a:0d:e1:1b:ea:7b:e1:53:eb: ca:10:49:2c:fd:7a:93:db:2c:4d:8a:50:55:5c:43: 5d:a4:cf:9c:ea:4b:e7:9c:45:17:69:ba:5e:b0:5d: 77:f4:49:5e:e4:7b:3e:13:c7:a5:4a:d3:d9:c2:ab: d4:21:e7:6e:ff:19:2e:42:6a:2d:9f:14:7b:d0:7d: 93:49:53:4f:21:d5:6e:be:91:47:7f:be:33:88:c0: 80:06:69:a0:4a:58:a8:c3:5d:29:b9:f1:1d:1c:00: 12:38:90:62:04:68:50:5b:90:34:b1:92:a7:10:c4: 81:0f:9b:28:0c:cd:38:97:46:27:94:92:5f:8d:d9: 27:bf:ac:0c:80:55:06:55:5e:44:2b:18:92:7f:11: 32:39:77:63:4c:c4:26:bd:c5:db:20:3d:d5:da:a7: 58:e4:ef:8e:74:83:08:d8:94:8f:06:9b:87:19:df: 09:b4:04:89:09:6b:15:57:93:a3:de:90:c7:56:73: c5:82:ce:71:af:33:42:f0:08:27:bf:e0:13:5f:a0: 1e:37:b3:65:aa:61:a0:68:6d:0d:a4:e4:5f:6d:76: 66:df:b9:56:0f:14:18:3d:29:51:30:a1:95:26:25: 1c:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:C1:31:AD:1F:A6:C0:E2:58:60:39:C0:61:3E:51:97:60:C6:5E:7B X509v3 Authority Key Identifier: keyid:1C:2A:C1:24:6A:2E:0E:A9:7A:0C:22:95:B7:3D:DB:E0:06:D0:ED:2C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HCrBJGouDql6DCKVtz3b4AbQ7Sw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0de7e1-bf7f-434f-9591-8d46e09df9f3/1/HCrBJGouDql6DCKVtz3b4AbQ7Sw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0de7e1-bf7f-434f-9591-8d46e09df9f3/1/HCrBJGouDql6DCKVtz3b4AbQ7Sw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 68:4f:a4:c9:c3:68:1f:88:52:ad:e8:67:69:47:a3:25:9d:be: 6c:40:1b:51:d0:71:14:60:a3:c6:fc:5e:0b:56:34:fd:cd:35: e5:41:40:dc:21:6b:0a:0b:54:7f:39:aa:f7:17:02:70:07:90: ee:08:8f:10:e5:a7:1c:9b:31:2e:e3:d5:37:18:29:0d:5b:1c: 07:59:90:ca:7a:00:2c:18:2e:80:99:27:55:b3:11:ed:fc:86: d9:09:3c:1e:13:13:02:f8:6d:c9:cd:98:01:79:64:d0:7f:b8: ba:48:02:f0:ca:f2:f4:6c:8d:a0:c8:96:99:9b:fe:82:2a:de: cb:87:17:b3:40:43:37:0b:53:48:f4:c1:22:59:ce:c5:9e:5b: 62:31:36:39:62:15:f9:43:fc:88:89:5a:27:e6:01:e3:f6:8c: 70:d0:81:db:1e:95:0f:c9:b7:90:40:60:c4:33:46:ab:55:6f: d5:67:d1:c9:73:39:42:4f:86:4f:73:8b:07:2e:50:9d:9d:79: 48:21:f6:a6:5e:93:1f:02:bf:30:1f:40:c6:d0:69:21:bb:cf: 2b:d9:96:86:a8:2b:28:f8:4c:d7:f1:b3:59:5c:68:cf:03:02: 5d:7d:43:4a:7d:ee:f1:30:03:94:de:17:d4:83:e5:7e:a5:fa: fd:19:6d:ef -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtEOCFKCDmPYcNAXGWdqbDLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjMmFjMTI0NmEyZTBlYTk3YTBjMjI5NWI3M2RkYmUwMDZk MGVkMmMwHhcNMjUxMjIyMDQwMTI3WhcNMjUxMjIzMDQwMTI3WjAzMTEwLwYDVQQD EyhhNWMxMzFhZDFmYTZjMGUyNTg2MDM5YzA2MTNlNTE5NzYwYzY1ZTdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz/z+v5qCd7a7k+U16l0+5BZvqRpa DeEb6nvhU+vKEEks/XqT2yxNilBVXENdpM+c6kvnnEUXabpesF139Ele5Hs+E8el StPZwqvUIedu/xkuQmotnxR70H2TSVNPIdVuvpFHf74ziMCABmmgSliow10pufEd HAASOJBiBGhQW5A0sZKnEMSBD5soDM04l0YnlJJfjdknv6wMgFUGVV5EKxiSfxEy OXdjTMQmvcXbID3V2qdY5O+OdIMI2JSPBpuHGd8JtASJCWsVV5Oj3pDHVnPFgs5x rzNC8Agnv+ATX6AeN7NlqmGgaG0NpORfbXZm37lWDxQYPSlRMKGVJiUcXwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKXBMa0fpsDiWGA5wGE+UZdgxl57MB8GA1UdIwQY MBaAFBwqwSRqLg6pegwilbc92+AG0O0sMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSENyQkpHb3VEcWw2RENLVnR6M2I0QWJRN1N3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8wZGU3ZTEtYmY3Zi00MzRmLTk1OTEt OGQ0NmUwOWRmOWYzLzEvSENyQkpHb3VEcWw2RENLVnR6M2I0QWJRN1N3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi8wZGU3ZTEtYmY3Zi00MzRmLTk1OTEtOGQ0NmUwOWRmOWYz LzEvSENyQkpHb3VEcWw2RENLVnR6M2I0QWJRN1N3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaE+kycNo H4hSrehnaUejJZ2+bEAbUdBxFGCjxvxeC1Y0/c015UFA3CFrCgtUfzmq9xcCcAeQ 7giPEOWnHJsxLuPVNxgpDVscB1mQynoALBgugJknVbMR7fyG2Qk8HhMTAvhtyc2Y AXlk0H+4ukgC8Mry9GyNoMiWmZv+girey4cXs0BDNwtTSPTBIlnOxZ5bYjE2OWIV +UP8iIlaJ+YB4/aMcNCB2x6VD8m3kEBgxDNGq1Vv1WfRyXM5Qk+GT3OLBy5QnZ15 SCH2pl6THwK/MB9AxtBpIbvPK9mWhqgrKPhM1/GzWVxozwMCXX1DSn3u8TADlN4X 1IPlfqX6/Rlt7w== -----END CERTIFICATE-----Generated at Mon Dec 22 13:56:00 2025 by rpki-client