This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/01e70b-945c-4817-8189-7e179466298c/1/hWL0qJNlk83sba1-Ls8beb9lwFo.mft File: hWL0qJNlk83sba1-Ls8beb9lwFo.mft (raw, json) Hash identifier: QJ30nOFTadwpA7E2CQrY0Ba91yfciSHdxJak6ZUmbdE= Subject key identifier: 2A:23:29:8F:CF:54:51:D8:53:30:03:D9:D1:C8:33:B4:C7:F8:11:82 Authority key identifier: 85:62:F4:A8:93:65:93:CD:EC:6D:AD:7E:2E:CF:1B:79:BF:65:C0:5A Certificate issuer: /CN=8562f4a8936593cdec6dad7e2ecf1b79bf65c05a Certificate serial: 019B39EB18E8FBA702A7F16B5C7114274B19 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWL0qJNlk83sba1-Ls8beb9lwFo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/01e70b-945c-4817-8189-7e179466298c/1/hWL0qJNlk83sba1-Ls8beb9lwFo.mft Manifest number: 1669 Signing time: Sat 20 Dec 2025 04:01:07 +0000 Manifest this update: Sat 20 Dec 2025 04:01:07 +0000 Manifest next update: Sun 21 Dec 2025 04:01:07 +0000 Files and hashes: 1: AuqfHgJMLbox-SCvoHiOWVRxGtM.roa (hash: xeAvQlAlfgpUCdvO+zQfkKF/6NqDyXiaKSOgk2lfPWU=) 2: hWL0qJNlk83sba1-Ls8beb9lwFo.crl (hash: 3psHBEYmp7tURJkenKnH5rTK5yjgwUlG2YSir3kN7Fk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/01e70b-945c-4817-8189-7e179466298c/1/hWL0qJNlk83sba1-Ls8beb9lwFo.crl rsync://rpki.ripe.net/repository/DEFAULT/f4/01e70b-945c-4817-8189-7e179466298c/1/hWL0qJNlk83sba1-Ls8beb9lwFo.mft rsync://rpki.ripe.net/repository/DEFAULT/hWL0qJNlk83sba1-Ls8beb9lwFo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 04:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:39:eb:18:e8:fb:a7:02:a7:f1:6b:5c:71:14:27:4b:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8562f4a8936593cdec6dad7e2ecf1b79bf65c05a Validity Not Before: Dec 20 04:01:07 2025 GMT Not After : Dec 21 04:01:07 2025 GMT Subject: CN=2a23298fcf5451d8533003d9d1c833b4c7f81182 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:76:86:c8:b2:ef:85:c0:8b:68:6f:eb:c2:00: c7:ce:af:06:b9:97:10:8a:da:15:95:4f:a8:5f:02: 22:9c:5e:9f:53:99:13:32:95:6e:cc:d1:58:99:2e: d9:a5:73:34:a7:90:6e:ac:13:69:de:45:f6:a5:32: 03:0b:5a:1f:27:36:5c:72:41:eb:8a:fb:f3:3f:a7: 4a:59:fc:64:ab:c5:cb:3c:39:db:ee:9f:4f:f9:ba: e3:34:2c:d7:48:6c:96:e5:73:0f:a3:44:12:1a:c4: 6f:40:4a:d6:60:e0:b3:43:94:29:b1:a6:99:4e:b5: 2b:04:ed:e0:53:e7:72:06:c4:3a:da:c2:a9:9d:c0: 83:cb:c7:4a:ae:63:76:ac:3e:6a:ec:44:0d:33:ee: 09:e8:94:1d:85:ef:98:85:32:0e:aa:54:ce:88:89: ce:82:3e:f0:59:fe:3b:87:cd:46:74:62:b4:77:79: 89:f7:13:d1:3e:f7:4c:9c:66:fd:28:b5:26:ca:ee: 17:46:d1:11:e7:66:5d:b5:7b:23:02:88:c6:66:58: ff:6d:c2:8f:35:27:d9:e0:0b:97:a9:0a:c3:12:aa: a7:2d:4b:97:bb:6b:8f:dc:bb:04:6d:40:38:c9:10: 2f:2f:f7:a8:e0:e4:d8:52:5a:ee:0f:5f:61:41:02: ba:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:23:29:8F:CF:54:51:D8:53:30:03:D9:D1:C8:33:B4:C7:F8:11:82 X509v3 Authority Key Identifier: keyid:85:62:F4:A8:93:65:93:CD:EC:6D:AD:7E:2E:CF:1B:79:BF:65:C0:5A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWL0qJNlk83sba1-Ls8beb9lwFo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/01e70b-945c-4817-8189-7e179466298c/1/hWL0qJNlk83sba1-Ls8beb9lwFo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/01e70b-945c-4817-8189-7e179466298c/1/hWL0qJNlk83sba1-Ls8beb9lwFo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7c:59:f0:f8:38:7e:2a:d4:27:61:33:ae:2e:2c:b7:28:f0:e2: c4:ae:aa:34:d1:14:48:6d:09:8b:23:37:7e:96:1f:f5:36:b9: 47:08:1c:d8:fd:f3:92:81:46:5e:47:8d:4e:84:0a:84:eb:7e: 65:2a:8e:09:fc:fa:99:c6:14:66:f9:ca:19:72:05:88:dd:4b: 5e:5a:31:3f:bf:9b:73:4d:bb:db:34:f9:76:b3:a4:0c:f1:27: 74:7e:02:60:97:a4:7a:8e:2b:35:1e:37:6e:f6:ec:00:b9:97: cd:78:c8:06:b6:2e:74:2d:75:52:b6:31:0c:a3:de:8e:9b:98: 93:46:02:61:1a:6d:d2:25:ee:a2:e8:5d:08:ff:00:56:96:03: b1:26:e2:78:a1:f3:c4:e3:1a:4d:d0:c8:2a:18:88:de:99:03: 5a:2e:29:f5:a5:61:89:e6:f8:3c:4e:af:04:54:37:34:fd:bb: e9:3e:02:07:73:f3:9b:2c:f7:c8:d6:0a:a9:ce:e2:48:20:f0: bc:fa:06:bf:5d:8d:25:9f:fa:fd:e4:f9:fe:02:1f:a1:de:a0: 46:07:98:54:13:e5:6a:bd:4e:b9:47:43:3a:44:29:95:4a:a9: a9:40:88:d3:d6:6d:e9:62:57:45:98:59:23:b3:79:bc:68:1b: 5c:93:64:54 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs56xjo+6cCp/FrXHEUJ0sZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1NjJmNGE4OTM2NTkzY2RlYzZkYWQ3ZTJlY2YxYjc5YmY2 NWMwNWEwHhcNMjUxMjIwMDQwMTA3WhcNMjUxMjIxMDQwMTA3WjAzMTEwLwYDVQQD EygyYTIzMjk4ZmNmNTQ1MWQ4NTMzMDAzZDlkMWM4MzNiNGM3ZjgxMTgyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAznaGyLLvhcCLaG/rwgDHzq8GuZcQ itoVlU+oXwIinF6fU5kTMpVuzNFYmS7ZpXM0p5BurBNp3kX2pTIDC1ofJzZcckHr ivvzP6dKWfxkq8XLPDnb7p9P+brjNCzXSGyW5XMPo0QSGsRvQErWYOCzQ5QpsaaZ TrUrBO3gU+dyBsQ62sKpncCDy8dKrmN2rD5q7EQNM+4J6JQdhe+YhTIOqlTOiInO gj7wWf47h81GdGK0d3mJ9xPRPvdMnGb9KLUmyu4XRtER52ZdtXsjAojGZlj/bcKP NSfZ4AuXqQrDEqqnLUuXu2uP3LsEbUA4yRAvL/eo4OTYUlruD19hQQK6kwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCojKY/PVFHYUzAD2dHIM7TH+BGCMB8GA1UdIwQY MBaAFIVi9KiTZZPN7G2tfi7PG3m/ZcBaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaFdMMHFKTmxrODNzYmExLUxzOGJlYjlsd0ZvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC8wMWU3MGItOTQ1Yy00ODE3LTgxODkt N2UxNzk0NjYyOThjLzEvaFdMMHFKTmxrODNzYmExLUxzOGJlYjlsd0ZvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNC8wMWU3MGItOTQ1Yy00ODE3LTgxODktN2UxNzk0NjYyOThj LzEvaFdMMHFKTmxrODNzYmExLUxzOGJlYjlsd0ZvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfFnw+Dh+ KtQnYTOuLiy3KPDixK6qNNEUSG0JiyM3fpYf9Ta5Rwgc2P3zkoFGXkeNToQKhOt+ ZSqOCfz6mcYUZvnKGXIFiN1LXloxP7+bc0272zT5drOkDPEndH4CYJekeo4rNR43 bvbsALmXzXjIBrYudC11UrYxDKPejpuYk0YCYRpt0iXuouhdCP8AVpYDsSbieKHz xOMaTdDIKhiI3pkDWi4p9aVhieb4PE6vBFQ3NP276T4CB3Pzmyz3yNYKqc7iSCDw vPoGv12NJZ/6/eT5/gIfod6gRgeYVBPlar1OuUdDOkQplUqpqUCI09Zt6WJXRZhZ I7N5vGgbXJNkVA== -----END CERTIFICATE-----Generated at Sat Dec 20 12:36:49 2025 by rpki-client