This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft File: HTHgIH7TynaEoD6I-aHeKSLdRd4.mft (raw, json) Hash identifier: DzXtrG9NWMLAuXA8T9Qrw+b6Iz6tNQv7jYxoXiiqdrs= Subject key identifier: FC:C8:1C:EC:2C:CE:53:6B:48:01:72:90:2F:7A:99:46:5C:16:D3:48 Authority key identifier: 1D:31:E0:20:7E:D3:CA:76:84:A0:3E:88:F9:A1:DE:29:22:DD:45:DE Certificate issuer: /CN=1d31e0207ed3ca7684a03e88f9a1de2922dd45de Certificate serial: 019B5F40E855B72E7A3A7D019A8CD9408509 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft Manifest number: 0342 Signing time: Sat 27 Dec 2025 10:00:47 +0000 Manifest this update: Sat 27 Dec 2025 10:00:47 +0000 Manifest next update: Sun 28 Dec 2025 10:00:47 +0000 Files and hashes: 1: HTHgIH7TynaEoD6I-aHeKSLdRd4.crl (hash: r3jXwaDgEksq881AXn62W+0Zm+VmQQlwwVOeZAgRkcY=) 2: ZwHdEqulD1m_3ODalRm8KKpV4D8.roa (hash: AgKObURVZ2No/6B5xbYFDC7jFhFUnrv7+FottsPk3vg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.crl rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 28 Dec 2025 10:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5f:40:e8:55:b7:2e:7a:3a:7d:01:9a:8c:d9:40:85:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1d31e0207ed3ca7684a03e88f9a1de2922dd45de Validity Not Before: Dec 27 10:00:47 2025 GMT Not After : Dec 28 10:00:47 2025 GMT Subject: CN=fcc81cec2cce536b480172902f7a99465c16d348 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:31:3c:78:21:bf:89:34:a1:ff:16:92:11:47: fb:1c:9a:37:58:a0:73:14:f3:81:0e:7f:81:e2:49: c8:cb:e0:d2:be:9a:a9:5f:d7:40:d3:c6:d0:84:8c: 79:05:a4:df:5e:42:8e:63:8f:d3:ec:eb:91:fd:70: 6e:01:0d:b6:6f:9b:82:5a:61:fe:5b:e1:41:9e:ef: b7:8d:16:d2:c7:70:2d:d5:cc:36:40:99:62:d1:34: 52:2c:9d:97:3f:f1:91:c5:9f:e8:38:66:b9:79:c1: 31:29:dc:54:b2:ce:c3:2c:b6:01:8a:da:e8:1e:2f: a8:cb:33:7a:74:8d:c9:7c:54:1a:7d:e0:d5:13:3e: aa:83:47:9f:45:1a:0c:16:e4:28:9a:08:41:99:12: 6b:b1:27:2f:c1:e8:56:88:59:6b:a8:5d:52:e7:35: ac:4e:4e:e3:34:34:52:8a:4b:84:e3:d9:b8:6c:a0: 09:11:20:d8:9d:b7:eb:74:14:6f:c7:ce:1b:e1:81: 93:e1:03:7b:e6:15:6b:70:10:ca:38:ff:a5:44:4f: dc:4e:c9:9c:d7:70:f2:d9:86:e6:37:60:aa:50:82: 93:81:3f:17:1f:de:35:db:fb:80:7b:37:60:bb:dd: 03:c9:3e:b5:11:19:a0:1f:70:3f:1b:3d:82:06:79: da:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:C8:1C:EC:2C:CE:53:6B:48:01:72:90:2F:7A:99:46:5C:16:D3:48 X509v3 Authority Key Identifier: keyid:1D:31:E0:20:7E:D3:CA:76:84:A0:3E:88:F9:A1:DE:29:22:DD:45:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HTHgIH7TynaEoD6I-aHeKSLdRd4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/730e38-ff89-43e1-94fe-a1b778f4d07d/1/HTHgIH7TynaEoD6I-aHeKSLdRd4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 71:df:c4:e5:16:6a:44:80:76:4f:20:ee:80:a5:fc:9b:07:03: b9:73:28:66:a5:e7:64:47:04:79:46:ee:26:d7:e4:d6:4f:7b: b0:26:25:bc:9a:a1:0c:57:2a:90:84:f1:4e:72:81:6b:bf:d6: 23:9d:c3:dc:20:f9:b6:f9:5f:e5:5d:d2:d4:7e:46:50:20:2f: 82:c0:f6:19:d6:a2:d5:89:68:68:a0:83:79:cc:3f:e0:fb:fa: 8b:be:55:ec:b5:22:5b:67:4d:50:47:f8:a0:78:e0:9c:d8:d8: 39:e2:85:36:56:c1:44:5a:6f:a2:6f:23:97:41:47:27:04:f9: 32:f3:1b:af:eb:7b:b1:6c:29:41:e9:9a:3a:e1:03:bd:78:04: 94:de:e4:f2:6b:94:8b:79:63:48:16:69:d6:7c:d8:6b:b0:88: b8:32:4e:0b:4e:6e:41:24:9f:96:5f:0e:f5:db:14:b7:e4:ed: b0:44:67:38:2d:28:9a:2d:8d:2c:97:11:c6:46:81:b8:c3:6f: 8b:55:34:ef:86:98:ae:1c:15:41:86:d7:6d:11:ab:bd:c9:26: 9d:78:52:b9:4e:5a:36:8b:4f:12:d9:09:86:79:5c:e5:f1:a4: 9f:f7:c7:06:b3:b3:4f:9b:e7:04:5c:d3:14:39:9f:6d:04:a2: 3d:ef:c0:5d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtfQOhVty56On0BmozZQIUJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkMzFlMDIwN2VkM2NhNzY4NGEwM2U4OGY5YTFkZTI5MjJk ZDQ1ZGUwHhcNMjUxMjI3MTAwMDQ3WhcNMjUxMjI4MTAwMDQ3WjAzMTEwLwYDVQQD EyhmY2M4MWNlYzJjY2U1MzZiNDgwMTcyOTAyZjdhOTk0NjVjMTZkMzQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAizE8eCG/iTSh/xaSEUf7HJo3WKBz FPOBDn+B4knIy+DSvpqpX9dA08bQhIx5BaTfXkKOY4/T7OuR/XBuAQ22b5uCWmH+ W+FBnu+3jRbSx3At1cw2QJli0TRSLJ2XP/GRxZ/oOGa5ecExKdxUss7DLLYBitro Hi+oyzN6dI3JfFQafeDVEz6qg0efRRoMFuQomghBmRJrsScvwehWiFlrqF1S5zWs Tk7jNDRSikuE49m4bKAJESDYnbfrdBRvx84b4YGT4QN75hVrcBDKOP+lRE/cTsmc 13Dy2YbmN2CqUIKTgT8XH9412/uAezdgu90DyT61ERmgH3A/Gz2CBnnaHQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPzIHOwszlNrSAFykC96mUZcFtNIMB8GA1UdIwQY MBaAFB0x4CB+08p2hKA+iPmh3iki3UXeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSFRIZ0lIN1R5bmFFb0Q2SS1hSGVLU0xkUmQ0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My83MzBlMzgtZmY4OS00M2UxLTk0ZmUt YTFiNzc4ZjRkMDdkLzEvSFRIZ0lIN1R5bmFFb0Q2SS1hSGVLU0xkUmQ0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My83MzBlMzgtZmY4OS00M2UxLTk0ZmUtYTFiNzc4ZjRkMDdk LzEvSFRIZ0lIN1R5bmFFb0Q2SS1hSGVLU0xkUmQ0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcd/E5RZq RIB2TyDugKX8mwcDuXMoZqXnZEcEeUbuJtfk1k97sCYlvJqhDFcqkITxTnKBa7/W I53D3CD5tvlf5V3S1H5GUCAvgsD2Gdai1YloaKCDecw/4Pv6i75V7LUiW2dNUEf4 oHjgnNjYOeKFNlbBRFpvom8jl0FHJwT5MvMbr+t7sWwpQemaOuEDvXgElN7k8muU i3ljSBZp1nzYa7CIuDJOC05uQSSfll8O9dsUt+TtsERnOC0omi2NLJcRxkaBuMNv i1U074aYrhwVQYbXbRGrvckmnXhSuU5aNotPEtkJhnlc5fGkn/fHBrOzT5vnBFzT FDmfbQSiPe/AXQ== -----END CERTIFICATE-----Generated at Sat Dec 27 19:23:35 2025 by rpki-client