This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.mft File: MHTWUd_sSw03HgJQWx-Gk-0djgI.mft (raw, json) Hash identifier: s0zMZ4R2cWZQoYk3l7/BXXo3wzwiPgMvRQ3dMX9Lvhg= Subject key identifier: 8B:2D:B5:E6:7C:36:95:EA:BA:B4:EC:1B:A4:6D:BD:D3:54:3B:64:C1 Authority key identifier: 30:74:D6:51:DF:EC:4B:0D:37:1E:02:50:5B:1F:86:93:ED:1D:8E:02 Certificate issuer: /CN=3074d651dfec4b0d371e02505b1f8693ed1d8e02 Certificate serial: 019B687B8EFCA724F9551B470F3F5005AEF4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MHTWUd_sSw03HgJQWx-Gk-0djgI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.mft Manifest number: 17A0 Signing time: Mon 29 Dec 2025 05:01:26 +0000 Manifest this update: Mon 29 Dec 2025 05:01:26 +0000 Manifest next update: Tue 30 Dec 2025 05:01:26 +0000 Files and hashes: 1: 1-eAJE_ZPw_LJuNlElXg0BRaL11g.roa (hash: YakZb3LMYAiCfML5t2kxegtBvI+8ocrvx+dTJt+Il2M=) 2: MHTWUd_sSw03HgJQWx-Gk-0djgI.crl (hash: 5grIhhrACcQzUVg1ZEQMfNJ9iTcMj0nLNEOeDp6FNuA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.mft rsync://rpki.ripe.net/repository/DEFAULT/MHTWUd_sSw03HgJQWx-Gk-0djgI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 29 Dec 2025 21:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:68:7b:8e:fc:a7:24:f9:55:1b:47:0f:3f:50:05:ae:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3074d651dfec4b0d371e02505b1f8693ed1d8e02 Validity Not Before: Dec 29 05:01:26 2025 GMT Not After : Dec 30 05:01:26 2025 GMT Subject: CN=8b2db5e67c3695eabab4ec1ba46dbdd3543b64c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c4:ce:f4:8a:13:df:25:42:61:77:54:b4:5f: 84:2e:55:e1:14:cc:1d:25:eb:eb:15:a2:f4:08:b9: 81:0a:11:06:28:3c:8d:e1:bd:b8:9b:ff:dc:9d:a0: b9:fe:e4:a8:f6:9a:8a:76:3a:fd:57:06:04:73:f7: 23:54:f6:0a:dd:e1:6f:c4:60:aa:3c:da:20:f1:e3: 63:e1:23:55:0d:54:4e:cc:7a:50:32:4e:69:84:47: 49:61:f3:fd:e0:7c:8e:af:b9:49:3a:6a:1a:b6:cb: 2d:c7:5f:c3:e3:49:e5:2f:ac:28:90:fb:26:25:19: 1f:52:47:e1:b0:4b:34:aa:88:a2:ed:28:93:64:f9: 23:0b:57:ac:99:ac:99:e8:43:9f:65:91:f2:49:54: 9d:ed:67:bd:9f:5c:f0:3e:62:d4:7f:80:36:8c:be: 33:ba:57:f1:ff:6d:50:94:d1:f4:cd:8f:85:48:f3: 11:dc:63:af:0e:05:ab:e4:d1:e9:f4:1f:d2:bd:3a: dd:31:05:ba:8e:51:a4:6b:33:7f:1b:96:cf:f9:83: 88:05:71:12:72:33:97:1c:f5:40:f5:f8:0b:a5:32: a5:7b:29:8e:07:9c:8f:64:bd:d1:90:34:d9:d8:36: 40:f7:40:20:0e:07:a9:e3:c2:14:ca:f2:6c:7e:ff: 28:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:2D:B5:E6:7C:36:95:EA:BA:B4:EC:1B:A4:6D:BD:D3:54:3B:64:C1 X509v3 Authority Key Identifier: keyid:30:74:D6:51:DF:EC:4B:0D:37:1E:02:50:5B:1F:86:93:ED:1D:8E:02 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MHTWUd_sSw03HgJQWx-Gk-0djgI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/21283f-f7aa-4a67-9570-92ba2d5077c3/1/MHTWUd_sSw03HgJQWx-Gk-0djgI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 68:13:30:e7:69:c7:b6:2f:7c:af:e4:37:83:6f:fc:04:9a:05: d6:b8:83:a4:b7:e2:9a:71:ab:83:91:d6:7e:2b:f6:6a:da:dd: 5f:f9:11:1d:3b:7f:9f:64:e4:8d:55:a9:ac:15:ee:60:66:18: 4b:0f:4f:11:35:06:7c:47:95:6a:4f:88:0c:38:ff:12:b1:c7: fc:34:71:a2:56:19:f0:ec:20:3b:80:ec:2c:5f:89:ef:17:ed: 44:80:77:22:c7:79:6e:82:bd:88:e5:df:a7:9c:45:96:f7:ed: 9c:9f:7e:dd:de:ad:e1:8f:0e:9f:71:cf:3f:34:31:a6:a1:4b: f6:06:e0:96:85:52:62:f0:18:47:2b:c7:ac:8a:18:4d:c5:a1: 5e:94:7e:96:3f:5e:98:15:7e:e0:84:6e:88:c1:91:de:ff:97: dc:8f:db:19:5d:7b:dc:a0:8e:f4:4d:47:86:1d:f6:ea:24:40: 85:40:e2:b2:6e:00:98:a9:30:e8:13:38:d9:49:d7:d5:6e:91: c9:f5:f8:b2:d6:94:11:5e:de:1a:d8:b1:41:70:b6:1b:17:3e: e0:e2:74:81:9b:30:9e:cd:14:2b:04:7f:57:19:63:8a:36:15: 0d:b0:76:9c:e9:22:91:76:70:f4:91:10:3b:43:b8:8f:0b:99: 55:f1:dd:c3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtoe478pyT5VRtHDz9QBa70MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMwNzRkNjUxZGZlYzRiMGQzNzFlMDI1MDViMWY4NjkzZWQx ZDhlMDIwHhcNMjUxMjI5MDUwMTI2WhcNMjUxMjMwMDUwMTI2WjAzMTEwLwYDVQQD Eyg4YjJkYjVlNjdjMzY5NWVhYmFiNGVjMWJhNDZkYmRkMzU0M2I2NGMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvsTO9IoT3yVCYXdUtF+ELlXhFMwd JevrFaL0CLmBChEGKDyN4b24m//cnaC5/uSo9pqKdjr9VwYEc/cjVPYK3eFvxGCq PNog8eNj4SNVDVROzHpQMk5phEdJYfP94HyOr7lJOmoatsstx1/D40nlL6wokPsm JRkfUkfhsEs0qoii7SiTZPkjC1esmayZ6EOfZZHySVSd7We9n1zwPmLUf4A2jL4z ulfx/21QlNH0zY+FSPMR3GOvDgWr5NHp9B/SvTrdMQW6jlGkazN/G5bP+YOIBXES cjOXHPVA9fgLpTKleymOB5yPZL3RkDTZ2DZA90AgDgep48IUyvJsfv8oAQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIstteZ8NpXqurTsG6RtvdNUO2TBMB8GA1UdIwQY MBaAFDB01lHf7EsNNx4CUFsfhpPtHY4CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTUhUV1VkX3NTdzAzSGdKUVd4LUdrLTBkamdJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi8yMTI4M2YtZjdhYS00YTY3LTk1NzAt OTJiYTJkNTA3N2MzLzEvTUhUV1VkX3NTdzAzSGdKUVd4LUdrLTBkamdJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi8yMTI4M2YtZjdhYS00YTY3LTk1NzAtOTJiYTJkNTA3N2Mz LzEvTUhUV1VkX3NTdzAzSGdKUVd4LUdrLTBkamdJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaBMw52nH ti98r+Q3g2/8BJoF1riDpLfimnGrg5HWfiv2atrdX/kRHTt/n2TkjVWprBXuYGYY Sw9PETUGfEeVak+IDDj/ErHH/DRxolYZ8OwgO4DsLF+J7xftRIB3Isd5boK9iOXf p5xFlvftnJ9+3d6t4Y8On3HPPzQxpqFL9gbgloVSYvAYRyvHrIoYTcWhXpR+lj9e mBV+4IRuiMGR3v+X3I/bGV173KCO9E1Hhh326iRAhUDism4AmKkw6BM42UnX1W6R yfX4staUEV7eGtixQXC2Gxc+4OJ0gZswns0UKwR/VxljijYVDbB2nOkikXZw9JEQ O0O4jwuZVfHdww== -----END CERTIFICATE-----Generated at Mon Dec 29 07:07:41 2025 by rpki-client