This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.mft File: HDotyHGc8y1ZegUekO2VAmg15Pg.mft (raw, json) Hash identifier: jTEibbZorpy3maZTZtLnr0L9h6ZpmIKAl4LVdcJOJC0= Subject key identifier: CA:52:7E:58:5D:C6:81:AE:31:D8:19:49:BE:D6:41:22:09:61:5D:46 Authority key identifier: 1C:3A:2D:C8:71:9C:F3:2D:59:7A:05:1E:90:ED:95:02:68:35:E4:F8 Certificate issuer: /CN=1c3a2dc8719cf32d597a051e90ed95026835e4f8 Certificate serial: 019B2B53CCB757723ACC046DDAAAAFB86601 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HDotyHGc8y1ZegUekO2VAmg15Pg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.mft Manifest number: 0896 Signing time: Wed 17 Dec 2025 08:01:10 +0000 Manifest this update: Wed 17 Dec 2025 08:01:10 +0000 Manifest next update: Thu 18 Dec 2025 08:01:10 +0000 Files and hashes: 1: HDotyHGc8y1ZegUekO2VAmg15Pg.crl (hash: eSK2KBPVLUBM+LWqIa43ZGxbJBniwlGp0GxoLdq0O14=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.crl rsync://rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.mft rsync://rpki.ripe.net/repository/DEFAULT/HDotyHGc8y1ZegUekO2VAmg15Pg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 08:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2b:53:cc:b7:57:72:3a:cc:04:6d:da:aa:af:b8:66:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c3a2dc8719cf32d597a051e90ed95026835e4f8 Validity Not Before: Dec 17 08:01:10 2025 GMT Not After : Dec 18 08:01:10 2025 GMT Subject: CN=ca527e585dc681ae31d81949bed6412209615d46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:d7:19:ba:ca:2e:0a:b8:1c:5f:5e:98:9d:94: 57:00:5c:bc:a4:31:ad:b9:ad:a2:8e:a2:33:d8:8c: 98:bf:5b:81:42:c4:63:b8:65:de:35:9f:e8:33:3d: 60:2f:20:46:d1:1d:d2:c1:b6:9c:67:c4:cb:37:66: b3:91:e0:b0:39:63:c8:6b:4b:f8:6a:89:ce:99:09: d5:35:46:fd:9a:f8:61:87:bc:0c:e4:52:3e:00:c4: 8f:75:6b:13:3e:94:aa:4c:43:f0:4d:24:52:ec:83: 5d:ae:34:29:5a:e6:b8:95:1b:e2:e9:30:a4:27:55: a9:6c:6b:04:17:a2:2c:d2:aa:50:cc:55:81:46:18: 0d:31:57:f7:7d:0d:9d:0c:9f:f6:a4:10:d9:e6:96: 62:a4:8c:80:45:77:0c:11:21:17:57:52:df:01:19: 8b:01:e7:30:3d:3c:65:c3:37:7d:9a:eb:b2:0a:8d: 27:75:a4:ac:91:7a:dd:7f:c9:15:de:dc:20:e7:c9: 9c:b0:ea:a2:24:40:9c:4d:aa:9a:ce:38:7a:f2:bb: 6b:1c:3e:fc:0e:82:00:95:c8:53:1d:5c:6f:d3:14: 79:a7:06:13:e5:7b:42:d5:4c:99:97:0a:f4:e7:d8: cb:11:9c:4e:c6:3b:dc:9a:3f:a1:4c:02:73:cd:1e: c5:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:52:7E:58:5D:C6:81:AE:31:D8:19:49:BE:D6:41:22:09:61:5D:46 X509v3 Authority Key Identifier: keyid:1C:3A:2D:C8:71:9C:F3:2D:59:7A:05:1E:90:ED:95:02:68:35:E4:F8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HDotyHGc8y1ZegUekO2VAmg15Pg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a14fdd-2ec8-44c8-a470-a665651fcb20/1/HDotyHGc8y1ZegUekO2VAmg15Pg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7c:4e:9e:f9:b3:00:f6:fa:87:6a:d2:6b:fe:ab:55:ef:47:12: e5:09:31:c3:ac:f0:c4:ea:51:7a:00:e2:61:a7:43:b0:8d:c6: cd:43:3a:1f:c0:5c:5d:97:69:12:40:f4:5d:00:3b:57:96:c4: 56:ed:4b:65:53:86:1e:b3:59:15:de:d0:b5:e9:15:ec:a3:a6: 88:bc:a7:69:4f:b8:15:e2:4f:33:a9:84:ba:e1:04:ae:0c:e3: 89:20:75:fe:3a:0e:81:00:7c:11:d0:63:c9:2a:75:74:76:f6: ed:14:58:04:ef:a2:dc:1e:b6:27:64:1d:94:28:cb:09:8e:d6: e3:0e:01:db:2b:1b:0e:d2:cf:13:df:76:cb:58:2d:74:6f:21: 42:72:ad:a1:c8:b1:41:28:29:68:18:b4:36:c2:5e:85:e2:b6: 3c:b7:bd:3d:1f:9b:d1:19:62:a9:90:72:69:b4:ad:a1:d5:6d: cb:99:4d:77:d3:d6:6e:87:a0:ec:91:82:0f:d4:f4:54:95:a3: d5:a0:6c:07:06:47:2f:79:82:e2:7f:f6:46:ab:29:22:fa:c3: f4:92:40:c0:a7:3e:09:56:f7:54:3b:62:54:e2:ad:ac:f9:cd: f7:f4:56:36:3f:9b:98:2b:fb:43:9e:95:77:ed:a5:c7:f2:81: e5:40:e0:83 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsrU8y3V3I6zARt2qqvuGYBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjM2EyZGM4NzE5Y2YzMmQ1OTdhMDUxZTkwZWQ5NTAyNjgz NWU0ZjgwHhcNMjUxMjE3MDgwMTEwWhcNMjUxMjE4MDgwMTEwWjAzMTEwLwYDVQQD EyhjYTUyN2U1ODVkYzY4MWFlMzFkODE5NDliZWQ2NDEyMjA5NjE1ZDQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8NcZusouCrgcX16YnZRXAFy8pDGt ua2ijqIz2IyYv1uBQsRjuGXeNZ/oMz1gLyBG0R3SwbacZ8TLN2azkeCwOWPIa0v4 aonOmQnVNUb9mvhhh7wM5FI+AMSPdWsTPpSqTEPwTSRS7INdrjQpWua4lRvi6TCk J1WpbGsEF6Is0qpQzFWBRhgNMVf3fQ2dDJ/2pBDZ5pZipIyARXcMESEXV1LfARmL AecwPTxlwzd9muuyCo0ndaSskXrdf8kV3twg58mcsOqiJECcTaqazjh68rtrHD78 DoIAlchTHVxv0xR5pwYT5XtC1UyZlwr059jLEZxOxjvcmj+hTAJzzR7FpQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMpSflhdxoGuMdgZSb7WQSIJYV1GMB8GA1UdIwQY MBaAFBw6LchxnPMtWXoFHpDtlQJoNeT4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSERvdHlIR2M4eTFaZWdVZWtPMlZBbWcxNVBnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy9hMTRmZGQtMmVjOC00NGM4LWE0NzAt YTY2NTY1MWZjYjIwLzEvSERvdHlIR2M4eTFaZWdVZWtPMlZBbWcxNVBnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNy9hMTRmZGQtMmVjOC00NGM4LWE0NzAtYTY2NTY1MWZjYjIw LzEvSERvdHlIR2M4eTFaZWdVZWtPMlZBbWcxNVBnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfE6e+bMA 9vqHatJr/qtV70cS5Qkxw6zwxOpRegDiYadDsI3GzUM6H8BcXZdpEkD0XQA7V5bE Vu1LZVOGHrNZFd7QtekV7KOmiLynaU+4FeJPM6mEuuEErgzjiSB1/joOgQB8EdBj ySp1dHb27RRYBO+i3B62J2QdlCjLCY7W4w4B2ysbDtLPE992y1gtdG8hQnKtocix QSgpaBi0NsJeheK2PLe9PR+b0RliqZByabStodVty5lNd9PWboeg7JGCD9T0VJWj 1aBsBwZHL3mC4n/2RqspIvrD9JJAwKc+CVb3VDtiVOKtrPnN9/RWNj+bmCv7Q56V d+2lx/KB5UDggw== -----END CERTIFICATE-----Generated at Wed Dec 17 18:24:49 2025 by rpki-client