This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.mft File: HLRkugOLwLu-5ADz6QjfUUgsUbs.mft (raw, json) Hash identifier: WVGcPi/uu28vqZP9kJ4sK7tOXssXCkkmk3NMUC/NPLM= Subject key identifier: 94:0F:DF:13:90:4C:87:7B:C7:0F:91:E2:D0:8A:24:58:88:E8:5C:1E Authority key identifier: 1C:B4:64:BA:03:8B:C0:BB:BE:E4:00:F3:E9:08:DF:51:48:2C:51:BB Certificate issuer: /CN=1cb464ba038bc0bbbee400f3e908df51482c51bb Certificate serial: 019B3C7FD8D6F56E70F464086CB7A47A2AA1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HLRkugOLwLu-5ADz6QjfUUgsUbs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.mft Manifest number: 1678 Signing time: Sat 20 Dec 2025 16:02:49 +0000 Manifest this update: Sat 20 Dec 2025 16:02:49 +0000 Manifest next update: Sun 21 Dec 2025 16:02:49 +0000 Files and hashes: 1: HLRkugOLwLu-5ADz6QjfUUgsUbs.crl (hash: RQc3kU33DONUmnpQC16UkdazuEKr3r4F1io3m4ft5h0=) 2: W-OtDTrcD4enIHqlL53Q8gJVqVg.roa (hash: MIoWyZfzBnM9tbFHcQ1uCgLljDFhySK8a9b/Bqx5jVg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.crl rsync://rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.mft rsync://rpki.ripe.net/repository/DEFAULT/HLRkugOLwLu-5ADz6QjfUUgsUbs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 15:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3c:7f:d8:d6:f5:6e:70:f4:64:08:6c:b7:a4:7a:2a:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1cb464ba038bc0bbbee400f3e908df51482c51bb Validity Not Before: Dec 20 16:02:49 2025 GMT Not After : Dec 21 16:02:49 2025 GMT Subject: CN=940fdf13904c877bc70f91e2d08a245888e85c1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:32:e4:9a:23:e7:0b:b7:1b:e8:b9:63:51:9f: 32:12:ec:33:21:0d:0b:ba:57:f5:52:2f:a0:08:a4: 0d:47:ae:53:dd:0c:6f:1f:db:2d:09:9c:ce:3f:83: 8a:98:84:f2:9a:d6:b6:16:0e:3b:34:42:9a:57:82: 07:ee:b5:93:47:9b:05:f7:6e:0c:6b:d3:9f:b2:c1: 36:28:bd:3f:35:9d:e3:3d:c2:20:9d:15:1c:62:a9: f8:3d:ae:1d:0f:cf:72:bf:35:9d:96:06:81:e6:8a: b1:61:e9:53:cf:89:97:77:5a:79:b5:df:bc:68:d0: de:6f:68:31:57:a5:56:94:c9:57:a5:46:50:a0:55: f6:55:46:e9:4c:02:10:9a:af:3c:92:31:64:cf:cc: 34:31:ce:10:37:fd:4e:58:b4:e5:83:f5:75:44:bf: aa:50:05:96:9b:7d:7b:74:6c:39:66:2a:8f:5e:79: f2:1a:50:d4:1d:7e:0f:4e:8b:37:a7:87:d7:25:67: fe:67:23:2e:ce:88:27:8a:26:4d:fb:7f:66:06:93: dc:25:2b:a8:a6:95:7c:7b:04:cd:4b:69:9a:8c:53: 85:9a:99:98:fe:4f:39:1d:82:00:6e:a6:34:b0:0a: 8e:da:86:3e:df:5d:b6:3f:35:69:ea:19:fd:37:4f: f7:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:0F:DF:13:90:4C:87:7B:C7:0F:91:E2:D0:8A:24:58:88:E8:5C:1E X509v3 Authority Key Identifier: keyid:1C:B4:64:BA:03:8B:C0:BB:BE:E4:00:F3:E9:08:DF:51:48:2C:51:BB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HLRkugOLwLu-5ADz6QjfUUgsUbs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/da/08729f-79a6-48d0-b2e1-bb26143c5edc/1/HLRkugOLwLu-5ADz6QjfUUgsUbs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9b:9d:8d:ac:51:7f:ac:af:62:c0:be:2b:9d:2a:ba:ce:8c:6f: 8b:e5:55:5c:b8:c4:81:2f:3b:56:c2:9d:c1:97:15:88:e8:f0: b2:82:be:64:32:4b:ad:d3:1b:a4:21:0f:c6:33:9f:67:0c:d1: ec:76:83:7e:47:9d:a5:65:3e:41:14:8d:cb:55:6f:0f:e4:ed: 2b:7d:3b:91:eb:3e:da:a4:33:bb:93:86:95:2b:31:25:95:95: 38:bb:ee:3a:84:c9:4a:62:f5:ce:d8:e4:af:27:a5:f0:34:9c: f9:cf:cd:86:53:70:e7:ad:6e:94:79:1b:74:3b:76:05:b2:7f: 3f:e6:76:88:9d:12:d0:7d:6d:83:db:e4:19:d0:99:e8:ff:78: d5:13:27:66:c8:49:a7:1d:92:43:fe:9d:d5:e4:4d:30:25:51: af:13:21:47:f7:76:29:dd:14:8d:bb:3f:ee:a9:14:0e:a2:b4: 68:91:10:89:10:93:e5:fc:89:f9:7d:ae:8b:1d:93:b8:2d:6a: 69:e5:42:4a:1c:7e:7e:fd:41:fa:0d:a0:8f:81:4a:70:37:67: b5:75:23:cb:c5:69:42:2f:58:8a:35:f0:82:bf:85:65:83:23: 3c:2d:c5:3e:56:9c:14:ac:66:ed:e8:6f:fb:b2:54:b6:c9:7a: f7:bd:79:25 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs8f9jW9W5w9GQIbLekeiqhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjYjQ2NGJhMDM4YmMwYmJiZWU0MDBmM2U5MDhkZjUxNDgy YzUxYmIwHhcNMjUxMjIwMTYwMjQ5WhcNMjUxMjIxMTYwMjQ5WjAzMTEwLwYDVQQD Eyg5NDBmZGYxMzkwNGM4NzdiYzcwZjkxZTJkMDhhMjQ1ODg4ZTg1YzFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuDLkmiPnC7cb6LljUZ8yEuwzIQ0L ulf1Ui+gCKQNR65T3QxvH9stCZzOP4OKmITymta2Fg47NEKaV4IH7rWTR5sF924M a9OfssE2KL0/NZ3jPcIgnRUcYqn4Pa4dD89yvzWdlgaB5oqxYelTz4mXd1p5td+8 aNDeb2gxV6VWlMlXpUZQoFX2VUbpTAIQmq88kjFkz8w0Mc4QN/1OWLTlg/V1RL+q UAWWm317dGw5ZiqPXnnyGlDUHX4PTos3p4fXJWf+ZyMuzogniiZN+39mBpPcJSuo ppV8ewTNS2majFOFmpmY/k85HYIAbqY0sAqO2oY+3122PzVp6hn9N0/3aQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJQP3xOQTId7xw+R4tCKJFiI6FweMB8GA1UdIwQY MBaAFBy0ZLoDi8C7vuQA8+kI31FILFG7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSExSa3VnT0x3THUtNUFEejZRamZVVWdzVWJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS8wODcyOWYtNzlhNi00OGQwLWIyZTEt YmIyNjE0M2M1ZWRjLzEvSExSa3VnT0x3THUtNUFEejZRamZVVWdzVWJzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYS8wODcyOWYtNzlhNi00OGQwLWIyZTEtYmIyNjE0M2M1ZWRj LzEvSExSa3VnT0x3THUtNUFEejZRamZVVWdzVWJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAm52NrFF/ rK9iwL4rnSq6zoxvi+VVXLjEgS87VsKdwZcViOjwsoK+ZDJLrdMbpCEPxjOfZwzR 7HaDfkedpWU+QRSNy1VvD+TtK307kes+2qQzu5OGlSsxJZWVOLvuOoTJSmL1ztjk ryel8DSc+c/NhlNw561ulHkbdDt2BbJ/P+Z2iJ0S0H1tg9vkGdCZ6P941RMnZshJ px2SQ/6d1eRNMCVRrxMhR/d2Kd0Ujbs/7qkUDqK0aJEQiRCT5fyJ+X2uix2TuC1q aeVCShx+fv1B+g2gj4FKcDdntXUjy8VpQi9YijXwgr+FZYMjPC3FPlacFKxm7ehv +7JUtsl69715JQ== -----END CERTIFICATE-----Generated at Sun Dec 21 00:36:23 2025 by rpki-client