This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/246466-607a-44da-9cbf-c417442eff93/1/HT0ETAkeiLgLSyaeu3lrPyRUS18.mft File: HT0ETAkeiLgLSyaeu3lrPyRUS18.mft (raw, json) Hash identifier: SmcDQ5+zYlTha9GqG6MRnCHpK92yiyAhZWCDM0AUf34= Subject key identifier: B9:B5:43:3C:66:DB:8E:19:73:62:4D:9E:5D:45:D2:4D:5F:E8:7A:1B Authority key identifier: 1D:3D:04:4C:09:1E:88:B8:0B:4B:26:9E:BB:79:6B:3F:24:54:4B:5F Certificate issuer: /CN=1d3d044c091e88b80b4b269ebb796b3f24544b5f Certificate serial: 019B638BD7419458E18D7D7075C09A1D5F01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HT0ETAkeiLgLSyaeu3lrPyRUS18.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/246466-607a-44da-9cbf-c417442eff93/1/HT0ETAkeiLgLSyaeu3lrPyRUS18.mft Manifest number: 0831 Signing time: Sun 28 Dec 2025 06:01:07 +0000 Manifest this update: Sun 28 Dec 2025 06:01:07 +0000 Manifest next update: Mon 29 Dec 2025 06:01:07 +0000 Files and hashes: 1: HT0ETAkeiLgLSyaeu3lrPyRUS18.crl (hash: 3GYArOGdt3hbCs3Vsr1DqCS66kv44BAwic4w1m0wCHU=) 2: NW7G420E0Tk7pMi-UVKL9EO5zTA.roa (hash: Q3IRZsTEhDqe1ExEIgIekgobeYaG4FmT5pyujXNfnVk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/246466-607a-44da-9cbf-c417442eff93/1/HT0ETAkeiLgLSyaeu3lrPyRUS18.crl rsync://rpki.ripe.net/repository/DEFAULT/c8/246466-607a-44da-9cbf-c417442eff93/1/HT0ETAkeiLgLSyaeu3lrPyRUS18.mft rsync://rpki.ripe.net/repository/DEFAULT/HT0ETAkeiLgLSyaeu3lrPyRUS18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 29 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:63:8b:d7:41:94:58:e1:8d:7d:70:75:c0:9a:1d:5f:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1d3d044c091e88b80b4b269ebb796b3f24544b5f Validity Not Before: Dec 28 06:01:07 2025 GMT Not After : Dec 29 06:01:07 2025 GMT Subject: CN=b9b5433c66db8e1973624d9e5d45d24d5fe87a1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:07:b4:82:3a:ff:ca:8b:37:38:cd:67:53:43: 3c:d6:81:cc:2b:a0:56:7f:2d:8c:c1:25:22:d6:3f: e2:c0:50:2c:d0:61:96:f5:19:18:2f:89:96:83:8d: 81:1f:79:99:48:dd:27:4a:f7:43:3e:c5:75:b2:37: bc:34:25:47:c5:8d:41:09:81:51:71:4a:f3:41:9b: cb:c6:70:76:6e:82:75:1d:3b:37:e6:92:97:ab:88: c0:a1:21:f7:72:5b:8d:39:d3:9d:a6:74:6a:cb:11: cb:9a:b5:d6:cf:5f:47:df:d8:0c:50:ff:33:38:72: 23:7f:16:4a:c8:16:4b:f1:ef:de:9e:87:eb:b7:51: d3:8f:e6:3d:41:c1:bf:09:e3:f6:3f:d7:00:28:1a: d5:83:5f:10:21:30:39:cc:9d:4b:f6:e2:d4:30:b5: fa:1f:c6:b2:be:0c:54:76:b2:07:67:31:2c:34:3c: b8:62:43:89:b0:36:3e:16:c4:6c:fa:60:9a:59:29: 50:d5:8c:7a:24:76:40:61:54:95:4e:97:07:31:76: 2f:2a:f5:cc:60:82:b4:6c:90:16:f5:dc:f7:ba:ea: e8:2b:aa:7c:75:c2:be:c1:cf:67:f1:a5:c0:06:e2: e3:ee:62:a1:3a:ff:2b:e9:0b:15:ab:cb:da:98:ad: 9a:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:B5:43:3C:66:DB:8E:19:73:62:4D:9E:5D:45:D2:4D:5F:E8:7A:1B X509v3 Authority Key Identifier: keyid:1D:3D:04:4C:09:1E:88:B8:0B:4B:26:9E:BB:79:6B:3F:24:54:4B:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HT0ETAkeiLgLSyaeu3lrPyRUS18.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/246466-607a-44da-9cbf-c417442eff93/1/HT0ETAkeiLgLSyaeu3lrPyRUS18.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/246466-607a-44da-9cbf-c417442eff93/1/HT0ETAkeiLgLSyaeu3lrPyRUS18.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:7a:1e:d3:8f:9a:fc:f3:08:32:bf:6a:bf:1f:95:b9:24:bd: 52:85:16:8d:c1:0a:94:e6:ab:ec:36:2a:b1:07:8c:6b:70:83: 97:c3:26:65:c7:0c:f4:a3:ff:aa:01:5f:3f:99:3f:ea:76:57: 75:fc:dc:5d:3a:64:04:11:10:ac:65:aa:af:aa:52:ca:b3:6e: df:a7:d8:c5:0f:26:37:7d:b3:60:46:8c:18:71:e1:9b:85:74: c3:e6:55:52:a2:e8:af:16:db:46:0d:ff:aa:11:42:7a:47:df: 4e:f9:67:ce:12:cd:c2:99:41:07:c3:a4:4e:84:c1:06:cf:57: 9d:8a:ca:54:5a:54:05:c4:5d:93:df:df:8b:19:26:bb:7c:3e: 31:9d:c7:45:d2:c9:34:4f:96:f8:e6:a8:e8:1f:9b:b0:71:73: b3:d5:18:dd:65:b2:64:49:5d:f4:e2:55:8e:e9:d4:25:26:e9: 33:bd:93:35:8e:bc:32:a4:5f:62:7b:09:77:28:a2:32:f7:e7: 00:18:ad:44:55:f5:38:2b:da:28:d8:d3:0e:0d:6f:43:cc:b8: e8:d9:79:cd:93:88:3f:11:1a:a0:8b:d0:fc:e3:d0:42:b8:74: ea:a8:c3:28:46:b3:51:4f:ba:a5:c5:1e:23:98:c5:15:e7:30: 5a:3e:c2:fb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtji9dBlFjhjX1wdcCaHV8BMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkM2QwNDRjMDkxZTg4YjgwYjRiMjY5ZWJiNzk2YjNmMjQ1 NDRiNWYwHhcNMjUxMjI4MDYwMTA3WhcNMjUxMjI5MDYwMTA3WjAzMTEwLwYDVQQD EyhiOWI1NDMzYzY2ZGI4ZTE5NzM2MjRkOWU1ZDQ1ZDI0ZDVmZTg3YTFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqge0gjr/yos3OM1nU0M81oHMK6BW fy2MwSUi1j/iwFAs0GGW9RkYL4mWg42BH3mZSN0nSvdDPsV1sje8NCVHxY1BCYFR cUrzQZvLxnB2boJ1HTs35pKXq4jAoSH3cluNOdOdpnRqyxHLmrXWz19H39gMUP8z OHIjfxZKyBZL8e/enofrt1HTj+Y9QcG/CeP2P9cAKBrVg18QITA5zJ1L9uLUMLX6 H8ayvgxUdrIHZzEsNDy4YkOJsDY+FsRs+mCaWSlQ1Yx6JHZAYVSVTpcHMXYvKvXM YIK0bJAW9dz3uuroK6p8dcK+wc9n8aXABuLj7mKhOv8r6QsVq8vamK2abwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLm1Qzxm244Zc2JNnl1F0k1f6HobMB8GA1UdIwQY MBaAFB09BEwJHoi4C0smnrt5az8kVEtfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSFQwRVRBa2VpTGdMU3lhZXUzbHJQeVJVUzE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC8yNDY0NjYtNjA3YS00NGRhLTljYmYt YzQxNzQ0MmVmZjkzLzEvSFQwRVRBa2VpTGdMU3lhZXUzbHJQeVJVUzE4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOC8yNDY0NjYtNjA3YS00NGRhLTljYmYtYzQxNzQ0MmVmZjkz LzEvSFQwRVRBa2VpTGdMU3lhZXUzbHJQeVJVUzE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMnoe04+a /PMIMr9qvx+VuSS9UoUWjcEKlOar7DYqsQeMa3CDl8MmZccM9KP/qgFfP5k/6nZX dfzcXTpkBBEQrGWqr6pSyrNu36fYxQ8mN32zYEaMGHHhm4V0w+ZVUqLorxbbRg3/ qhFCekffTvlnzhLNwplBB8OkToTBBs9XnYrKVFpUBcRdk9/fixkmu3w+MZ3HRdLJ NE+W+Oao6B+bsHFzs9UY3WWyZEld9OJVjunUJSbpM72TNY68MqRfYnsJdyiiMvfn ABitRFX1OCvaKNjTDg1vQ8y46Nl5zZOIPxEaoIvQ/OPQQrh06qjDKEazUU+6pcUe I5jFFecwWj7C+w== -----END CERTIFICATE-----Generated at Sun Dec 28 08:15:43 2025 by rpki-client