This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft File: HVceK9tBEuxdazpkuxe_CygP5uE.mft (raw, json) Hash identifier: yoFyGT1x/Em5am+pKZbnsOxaNzYhPfo0Tmea0gjXZ6E= Subject key identifier: 96:90:90:9F:2D:74:00:35:4D:23:6B:15:E4:4D:1C:F1:E6:E9:49:F2 Authority key identifier: 1D:57:1E:2B:DB:41:12:EC:5D:6B:3A:64:BB:17:BF:0B:28:0F:E6:E1 Certificate issuer: /CN=1d571e2bdb4112ec5d6b3a64bb17bf0b280fe6e1 Certificate serial: 019B3E6D43DC879D6C7D99452FFCB963B903 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft Manifest number: 0F0E Signing time: Sun 21 Dec 2025 01:01:46 +0000 Manifest this update: Sun 21 Dec 2025 01:01:46 +0000 Manifest next update: Mon 22 Dec 2025 01:01:46 +0000 Files and hashes: 1: HVceK9tBEuxdazpkuxe_CygP5uE.crl (hash: nz5uNGy1RBao60bCf2Xe2+4oXxxsQX2ADXmDh+979Bo=) 2: h7CHzkBnlnsCPZHhaVmBEiptsJU.roa (hash: EbCVP8Yz7oXyf9jeo4iTmjzKKTktTCeVwJmVIt/iZmE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.crl rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3e:6d:43:dc:87:9d:6c:7d:99:45:2f:fc:b9:63:b9:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1d571e2bdb4112ec5d6b3a64bb17bf0b280fe6e1 Validity Not Before: Dec 21 01:01:46 2025 GMT Not After : Dec 22 01:01:46 2025 GMT Subject: CN=9690909f2d7400354d236b15e44d1cf1e6e949f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:5e:de:74:58:3a:c5:01:68:da:ac:29:b7:71: 37:a9:0b:71:eb:3b:17:6d:28:cf:63:15:87:8c:d5: a3:7d:92:61:bf:ed:23:8c:58:6c:79:19:45:e0:0c: 06:e2:96:cb:df:41:6f:3f:40:40:7c:d6:d3:bd:06: 68:5b:18:75:8f:5a:26:bb:68:9d:85:4a:c3:ec:41: 84:8b:fe:ee:59:fe:57:df:44:33:62:17:f4:56:98: 20:81:f9:a1:d7:65:fc:93:36:bd:d5:41:b1:2b:ff: 49:4f:4d:1a:13:e4:eb:6c:6d:5d:da:0e:63:74:ad: cb:47:7e:1b:ea:ed:64:5a:a7:00:47:b8:e1:1b:fb: 9c:5d:70:5f:e7:34:ca:55:f7:b0:cf:20:80:d5:b3: 3d:5c:94:2c:d4:a2:a2:af:dc:fc:31:10:1c:1d:81: 62:e0:f4:de:fa:bd:e6:6d:27:c9:e2:06:d7:fe:f0: cb:38:22:04:74:00:84:4e:71:da:7f:bb:44:3e:63: ef:4c:c2:05:ee:d2:ec:ab:16:1c:6b:62:24:fc:86: 6d:bf:3e:fb:d2:9a:38:ac:a9:4b:1e:7a:0b:cb:3c: f2:39:35:85:20:00:ee:5c:38:35:79:66:e3:5f:ac: 30:7e:ce:22:11:2e:cb:5b:84:23:f1:56:e1:c7:92: 09:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:90:90:9F:2D:74:00:35:4D:23:6B:15:E4:4D:1C:F1:E6:E9:49:F2 X509v3 Authority Key Identifier: keyid:1D:57:1E:2B:DB:41:12:EC:5D:6B:3A:64:BB:17:BF:0B:28:0F:E6:E1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HVceK9tBEuxdazpkuxe_CygP5uE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/44/ac68ee-b590-46ac-b52e-db2572dacb45/1/HVceK9tBEuxdazpkuxe_CygP5uE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:93:50:f1:23:f9:e3:11:19:16:49:32:5b:68:cf:56:2b:43: 40:9e:e4:f0:27:f8:59:3c:e1:0f:1b:00:bc:53:4b:85:73:ee: ae:eb:35:35:b6:19:c3:31:25:6d:a0:88:43:02:78:49:4c:dc: 00:16:5e:7a:a9:bf:46:e9:67:39:56:26:0a:a5:d5:a0:2e:8c: a1:e3:66:38:f8:b1:cc:af:38:d7:1b:f1:8b:81:b8:a9:86:bd: cd:ab:11:2d:2a:ad:1f:9c:4d:25:78:40:88:5d:b3:ed:24:03: 2b:0f:d7:03:85:88:9f:f6:f0:61:03:d7:16:70:f0:da:2b:75: 63:d4:67:e7:6c:12:e6:32:b3:c6:d8:2c:9b:58:6e:e1:2f:49: f9:3e:82:0a:5e:99:1e:b6:a2:20:e0:2f:b2:d8:ac:59:23:ce: 99:81:ce:0d:af:a1:b8:d5:9f:6e:7a:d9:8c:87:b9:77:d3:95: 59:a3:8d:ed:f3:99:0d:82:07:c7:47:51:64:06:50:cf:45:5d: d9:e0:fb:93:1b:ff:2b:47:ec:aa:0a:ae:9e:12:85:e2:30:b9: f6:2a:06:df:c8:94:f5:8b:3c:92:ba:ae:d0:7e:8a:4d:5b:7a: e4:e3:45:59:0b:71:7f:2e:a6:d8:07:09:b4:33:ad:c3:99:66: da:65:a0:e5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs+bUPch51sfZlFL/y5Y7kDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkNTcxZTJiZGI0MTEyZWM1ZDZiM2E2NGJiMTdiZjBiMjgw ZmU2ZTEwHhcNMjUxMjIxMDEwMTQ2WhcNMjUxMjIyMDEwMTQ2WjAzMTEwLwYDVQQD Eyg5NjkwOTA5ZjJkNzQwMDM1NGQyMzZiMTVlNDRkMWNmMWU2ZTk0OWYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxF7edFg6xQFo2qwpt3E3qQtx6zsX bSjPYxWHjNWjfZJhv+0jjFhseRlF4AwG4pbL30FvP0BAfNbTvQZoWxh1j1omu2id hUrD7EGEi/7uWf5X30QzYhf0Vpgggfmh12X8kza91UGxK/9JT00aE+TrbG1d2g5j dK3LR34b6u1kWqcAR7jhG/ucXXBf5zTKVfewzyCA1bM9XJQs1KKir9z8MRAcHYFi 4PTe+r3mbSfJ4gbX/vDLOCIEdACETnHaf7tEPmPvTMIF7tLsqxYca2Ik/IZtvz77 0po4rKlLHnoLyzzyOTWFIADuXDg1eWbjX6wwfs4iES7LW4Qj8Vbhx5IJqQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJaQkJ8tdAA1TSNrFeRNHPHm6UnyMB8GA1UdIwQY MBaAFB1XHivbQRLsXWs6ZLsXvwsoD+bhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSFZjZUs5dEJFdXhkYXpwa3V4ZV9DeWdQNXVFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC9hYzY4ZWUtYjU5MC00NmFjLWI1MmUt ZGIyNTcyZGFjYjQ1LzEvSFZjZUs5dEJFdXhkYXpwa3V4ZV9DeWdQNXVFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NC9hYzY4ZWUtYjU5MC00NmFjLWI1MmUtZGIyNTcyZGFjYjQ1 LzEvSFZjZUs5dEJFdXhkYXpwa3V4ZV9DeWdQNXVFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXJNQ8SP5 4xEZFkkyW2jPVitDQJ7k8Cf4WTzhDxsAvFNLhXPurus1NbYZwzElbaCIQwJ4SUzc ABZeeqm/RulnOVYmCqXVoC6MoeNmOPixzK841xvxi4G4qYa9zasRLSqtH5xNJXhA iF2z7SQDKw/XA4WIn/bwYQPXFnDw2it1Y9Rn52wS5jKzxtgsm1hu4S9J+T6CCl6Z HraiIOAvstisWSPOmYHODa+huNWfbnrZjIe5d9OVWaON7fOZDYIHx0dRZAZQz0Vd 2eD7kxv/K0fsqgqunhKF4jC59ioG38iU9Ys8krqu0H6KTVt65ONFWQtxfy6m2AcJ tDOtw5lm2mWg5Q== -----END CERTIFICATE-----Generated at Sun Dec 21 08:15:55 2025 by rpki-client