This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.mft File: hpwOc330guiapnJs3YqZWKp0ER4.mft (raw, json) Hash identifier: nXk3VKW/ReJnTsjYrmnrDB2HG1z/GIs/yFlbOLn5KPw= Subject key identifier: 1C:5C:85:D9:82:35:AC:F4:B0:73:D4:49:CD:C2:49:96:B6:C0:57:3E Authority key identifier: 86:9C:0E:73:7D:F4:82:E8:9A:A6:72:6C:DD:8A:99:58:AA:74:11:1E Certificate issuer: /CN=869c0e737df482e89aa6726cdd8a9958aa74111e Certificate serial: 019B3EA32EADE75C7969906B2F317A380338 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hpwOc330guiapnJs3YqZWKp0ER4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.mft Manifest number: 01EC Signing time: Sun 21 Dec 2025 02:00:40 +0000 Manifest this update: Sun 21 Dec 2025 02:00:40 +0000 Manifest next update: Mon 22 Dec 2025 02:00:40 +0000 Files and hashes: 1: f9MGnlddFQ2IMf-Uoo2fTYxJ_co.roa (hash: kPIpbLqEj4dHSmVPx7WOIcV4CWQtCce8UvwQXn1AUT0=) 2: hpwOc330guiapnJs3YqZWKp0ER4.crl (hash: hcB9b8NfRCSyGyJFYcpJI8vs+n2pnFSvEeh6CSKZyPY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.crl rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.mft rsync://rpki.ripe.net/repository/DEFAULT/hpwOc330guiapnJs3YqZWKp0ER4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3e:a3:2e:ad:e7:5c:79:69:90:6b:2f:31:7a:38:03:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=869c0e737df482e89aa6726cdd8a9958aa74111e Validity Not Before: Dec 21 02:00:40 2025 GMT Not After : Dec 22 02:00:40 2025 GMT Subject: CN=1c5c85d98235acf4b073d449cdc24996b6c0573e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:57:2c:69:c3:65:c6:d9:46:91:8b:01:0e:b5: 2d:46:c7:5e:d4:26:1f:a0:08:1e:72:4a:d8:f6:e1: 1b:a3:ef:8b:31:56:c3:59:45:3f:c7:e7:b2:b3:36: 34:6a:3d:d6:6e:95:fd:83:49:65:3f:b1:14:10:7c: 9a:b0:1e:86:d1:e8:37:0b:5e:11:49:e8:d3:d4:fe: 6c:b2:e0:be:d4:1b:ad:e7:63:5a:c8:b5:b5:e8:c6: 21:73:92:99:01:11:25:21:ad:73:9a:f5:89:58:42: 41:fc:08:6a:ea:ef:1c:aa:95:2e:55:68:ae:61:e0: 16:13:90:d9:fe:43:6f:8d:b5:be:ad:f9:d2:50:7c: b9:61:b4:bd:d2:4e:13:09:26:8d:98:ab:11:43:fd: b3:2c:33:fd:3f:13:8c:6a:c1:ad:dd:c4:19:86:21: b2:08:aa:c1:81:cf:f1:ff:65:af:90:7a:47:52:ec: 2c:d6:34:58:85:79:d1:ec:59:63:e8:b0:04:45:a4: 63:46:b7:36:ce:7e:8b:cc:ee:5e:ec:26:6a:ff:b4: 16:7b:fc:6b:f6:bb:5f:7f:e3:08:25:18:56:c1:49: 8a:bf:5d:c7:7c:d4:3b:ac:de:e1:73:cb:50:54:ce: 64:8b:90:ac:81:0b:14:21:8e:65:59:10:fc:2a:ff: 16:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:5C:85:D9:82:35:AC:F4:B0:73:D4:49:CD:C2:49:96:B6:C0:57:3E X509v3 Authority Key Identifier: keyid:86:9C:0E:73:7D:F4:82:E8:9A:A6:72:6C:DD:8A:99:58:AA:74:11:1E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hpwOc330guiapnJs3YqZWKp0ER4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a7980b-cef8-4b53-a031-c5e0faca4a5e/1/hpwOc330guiapnJs3YqZWKp0ER4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0c:95:86:79:84:0b:41:0b:22:1d:66:36:08:81:53:90:78:81: 39:e1:67:af:5c:ef:72:7d:06:34:bd:bd:8b:f0:e6:4e:7a:3c: b7:c8:ba:12:b4:48:fe:cf:2f:47:c6:7e:47:38:98:2c:0d:46: db:ef:6f:bf:e4:5d:d3:72:69:a2:04:65:ff:70:9a:f4:48:b6: 12:d3:45:b9:c7:fc:56:46:88:70:14:c0:90:c4:46:8d:06:0e: e8:5c:46:c3:6b:f8:f3:01:fe:8f:e6:a4:ce:a1:0c:03:f6:fa: 11:f8:8e:f5:b4:81:31:48:83:df:8f:5a:e4:d3:3c:36:c7:36: 1c:c6:92:63:ad:51:ae:c4:5c:66:51:b2:52:ca:92:dd:0a:e1: 49:7c:66:87:d5:bc:31:67:09:fe:ff:5e:45:9d:bd:5c:23:8b: 15:74:5b:e1:d6:b2:b3:d9:3c:73:93:d9:e9:fc:16:67:9a:8f: cb:74:ea:24:5f:33:01:bf:a1:03:d5:82:05:70:33:21:18:d4: 5b:3c:62:e3:0a:81:d6:b1:21:5b:84:55:55:0b:08:84:33:58: 22:cf:02:52:92:5f:f4:62:09:0b:41:97:43:7e:9f:7a:bf:ca: 60:92:a0:50:32:1f:7c:8f:83:d9:8c:25:4b:e3:fe:a0:2c:dc: 00:48:24:2a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs+oy6t51x5aZBrLzF6OAM4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2OWMwZTczN2RmNDgyZTg5YWE2NzI2Y2RkOGE5OTU4YWE3 NDExMWUwHhcNMjUxMjIxMDIwMDQwWhcNMjUxMjIyMDIwMDQwWjAzMTEwLwYDVQQD EygxYzVjODVkOTgyMzVhY2Y0YjA3M2Q0NDljZGMyNDk5NmI2YzA1NzNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA21csacNlxtlGkYsBDrUtRsde1CYf oAgeckrY9uEbo++LMVbDWUU/x+eyszY0aj3WbpX9g0llP7EUEHyasB6G0eg3C14R SejT1P5ssuC+1But52NayLW16MYhc5KZARElIa1zmvWJWEJB/Ahq6u8cqpUuVWiu YeAWE5DZ/kNvjbW+rfnSUHy5YbS90k4TCSaNmKsRQ/2zLDP9PxOMasGt3cQZhiGy CKrBgc/x/2WvkHpHUuws1jRYhXnR7Flj6LAERaRjRrc2zn6LzO5e7CZq/7QWe/xr 9rtff+MIJRhWwUmKv13HfNQ7rN7hc8tQVM5ki5CsgQsUIY5lWRD8Kv8WWQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBxchdmCNaz0sHPUSc3CSZa2wFc+MB8GA1UdIwQY MBaAFIacDnN99ILomqZybN2KmViqdBEeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHB3T2MzMzBndWlhcG5KczNZcVpXS3AwRVI0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny9hNzk4MGItY2VmOC00YjUzLWEwMzEt YzVlMGZhY2E0YTVlLzEvaHB3T2MzMzBndWlhcG5KczNZcVpXS3AwRVI0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ny9hNzk4MGItY2VmOC00YjUzLWEwMzEtYzVlMGZhY2E0YTVl LzEvaHB3T2MzMzBndWlhcG5KczNZcVpXS3AwRVI0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADJWGeYQL QQsiHWY2CIFTkHiBOeFnr1zvcn0GNL29i/DmTno8t8i6ErRI/s8vR8Z+RziYLA1G 2+9vv+Rd03JpogRl/3Ca9Ei2EtNFucf8VkaIcBTAkMRGjQYO6FxGw2v48wH+j+ak zqEMA/b6EfiO9bSBMUiD349a5NM8Nsc2HMaSY61RrsRcZlGyUsqS3QrhSXxmh9W8 MWcJ/v9eRZ29XCOLFXRb4days9k8c5PZ6fwWZ5qPy3TqJF8zAb+hA9WCBXAzIRjU Wzxi4wqB1rEhW4RVVQsIhDNYIs8CUpJf9GIJC0GXQ36fer/KYJKgUDIffI+D2Ywl S+P+oCzcAEgkKg== -----END CERTIFICATE-----Generated at Sun Dec 21 08:14:26 2025 by rpki-client