This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/291463-91cc-4704-9528-69794f050276/1/HpKJoBWvREH4-d9MjFXpiykogc8.mft File: HpKJoBWvREH4-d9MjFXpiykogc8.mft (raw, json) Hash identifier: w/9MXcgjl5q17kvqJd32lQ6R27g0YAGQ1lrtY+7fOj4= Subject key identifier: A1:09:5B:1C:6C:EB:21:6D:19:47:24:9A:BE:95:42:DD:A5:CD:62:31 Authority key identifier: 1E:92:89:A0:15:AF:44:41:F8:F9:DF:4C:8C:55:E9:8B:29:28:81:CF Certificate issuer: /CN=1e9289a015af4441f8f9df4c8c55e98b292881cf Certificate serial: 019B4437FDBC636D852B066C5D24DD7F2C46 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HpKJoBWvREH4-d9MjFXpiykogc8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/291463-91cc-4704-9528-69794f050276/1/HpKJoBWvREH4-d9MjFXpiykogc8.mft Manifest number: 178B Signing time: Mon 22 Dec 2025 04:01:18 +0000 Manifest this update: Mon 22 Dec 2025 04:01:18 +0000 Manifest next update: Tue 23 Dec 2025 04:01:18 +0000 Files and hashes: 1: HpKJoBWvREH4-d9MjFXpiykogc8.crl (hash: /xP06ekHVntxEl7hchR8onDJc+3x+LcdtXslMrfoqBc=) 2: NgTdB5AEPD4DAHaTIZRq0754ZYU.roa (hash: X0ljVmj2cD5On812FnYT4pXdeEcEXod3j6IYZXkhhSU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/291463-91cc-4704-9528-69794f050276/1/HpKJoBWvREH4-d9MjFXpiykogc8.crl rsync://rpki.ripe.net/repository/DEFAULT/f8/291463-91cc-4704-9528-69794f050276/1/HpKJoBWvREH4-d9MjFXpiykogc8.mft rsync://rpki.ripe.net/repository/DEFAULT/HpKJoBWvREH4-d9MjFXpiykogc8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 04:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:44:37:fd:bc:63:6d:85:2b:06:6c:5d:24:dd:7f:2c:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1e9289a015af4441f8f9df4c8c55e98b292881cf Validity Not Before: Dec 22 04:01:18 2025 GMT Not After : Dec 23 04:01:18 2025 GMT Subject: CN=a1095b1c6ceb216d1947249abe9542dda5cd6231 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:88:c5:0f:e7:3b:ce:c3:fe:c7:59:9a:6a:f5: 69:69:1a:b5:e1:38:72:56:5f:95:0f:da:a0:ac:88: 92:a4:56:87:41:40:1c:d1:74:2e:17:bc:3e:67:1d: 80:ef:00:0d:ae:b5:1b:75:24:c2:47:37:47:96:c0: 45:36:93:1c:c8:7e:2b:5c:fe:f7:81:83:d4:03:45: a8:e8:fb:32:35:10:17:c9:6d:a9:93:b6:4e:37:6d: 0b:36:1b:f3:8c:00:af:13:ca:4c:36:a5:37:4b:b4: 80:84:72:11:f8:da:df:f0:2c:54:23:16:a4:9e:e8: a6:7f:cf:d1:36:c7:d8:66:18:a9:bd:86:ca:fa:81: 87:60:8d:6d:75:95:3d:41:62:28:d3:44:c2:ad:c5: 71:fa:38:13:97:3f:92:79:c3:32:ac:22:8c:e5:73: d4:6f:7a:6e:89:6d:2b:38:b4:0e:f3:70:cc:34:bf: 9e:a6:c5:a1:62:ca:c9:e7:37:f9:bf:18:06:2b:83: c7:de:f8:6a:7d:9c:d6:af:7c:11:51:5b:bd:24:29: b5:34:fd:d4:fa:43:4a:18:31:a4:f7:17:81:ba:f3: f7:a2:21:fa:0e:a1:d3:d0:d1:c6:d5:1d:fa:54:90: d0:31:66:a0:d5:04:87:c1:fd:b4:59:5a:ac:fb:43: 58:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:09:5B:1C:6C:EB:21:6D:19:47:24:9A:BE:95:42:DD:A5:CD:62:31 X509v3 Authority Key Identifier: keyid:1E:92:89:A0:15:AF:44:41:F8:F9:DF:4C:8C:55:E9:8B:29:28:81:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HpKJoBWvREH4-d9MjFXpiykogc8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/291463-91cc-4704-9528-69794f050276/1/HpKJoBWvREH4-d9MjFXpiykogc8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/291463-91cc-4704-9528-69794f050276/1/HpKJoBWvREH4-d9MjFXpiykogc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 47:67:8e:ab:6d:6c:a6:b8:4f:a6:bc:57:e2:3f:3c:e8:eb:04: 3e:98:ef:75:ec:16:c5:2e:37:b4:ec:33:88:2e:53:25:ea:1b: 0a:c3:65:5b:de:8a:1f:37:5c:36:e5:a2:9a:46:f4:92:32:ee: 4f:43:df:cc:ad:cb:f6:72:d2:86:13:f3:6d:83:19:89:a0:7a: ac:bb:ff:8d:67:93:94:74:85:f7:ed:ee:99:c0:9d:e0:29:bc: 63:98:5c:c0:37:1d:31:9a:e6:90:d5:f1:20:e5:4a:43:3f:1e: 33:9c:85:2d:3c:d9:0d:65:2a:49:ea:e4:21:1e:c4:98:9a:85: 21:73:8f:5d:0a:af:6c:d7:98:43:9d:b9:dc:dd:6a:94:6b:49: 50:14:dd:5e:3f:66:10:31:5f:40:50:17:8d:87:4d:f6:f5:70: f8:58:87:7a:19:f8:ce:9a:56:c0:06:16:5c:e9:2e:21:3d:bb: cd:80:3f:c6:5d:1f:fd:ab:1d:8f:cd:76:1c:df:b4:23:c3:8d: 92:e5:31:5f:b1:a5:90:58:2c:c0:22:8c:c7:d1:18:24:8f:5e: 2a:83:69:0c:6f:7c:1e:25:11:84:32:8b:96:94:26:4c:53:f5: d5:94:94:18:78:e6:2e:11:bf:5d:73:df:f0:7d:56:76:96:46: 84:21:3c:3d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtEN/28Y22FKwZsXSTdfyxGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlOTI4OWEwMTVhZjQ0NDFmOGY5ZGY0YzhjNTVlOThiMjky ODgxY2YwHhcNMjUxMjIyMDQwMTE4WhcNMjUxMjIzMDQwMTE4WjAzMTEwLwYDVQQD EyhhMTA5NWIxYzZjZWIyMTZkMTk0NzI0OWFiZTk1NDJkZGE1Y2Q2MjMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr4jFD+c7zsP+x1maavVpaRq14Thy Vl+VD9qgrIiSpFaHQUAc0XQuF7w+Zx2A7wANrrUbdSTCRzdHlsBFNpMcyH4rXP73 gYPUA0Wo6PsyNRAXyW2pk7ZON20LNhvzjACvE8pMNqU3S7SAhHIR+Nrf8CxUIxak nuimf8/RNsfYZhipvYbK+oGHYI1tdZU9QWIo00TCrcVx+jgTlz+SecMyrCKM5XPU b3puiW0rOLQO83DMNL+epsWhYsrJ5zf5vxgGK4PH3vhqfZzWr3wRUVu9JCm1NP3U +kNKGDGk9xeBuvP3oiH6DqHT0NHG1R36VJDQMWag1QSHwf20WVqs+0NYJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKEJWxxs6yFtGUckmr6VQt2lzWIxMB8GA1UdIwQY MBaAFB6SiaAVr0RB+PnfTIxV6YspKIHPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSHBLSm9CV3ZSRUg0LWQ5TWpGWHBpeWtvZ2M4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC8yOTE0NjMtOTFjYy00NzA0LTk1Mjgt Njk3OTRmMDUwMjc2LzEvSHBLSm9CV3ZSRUg0LWQ5TWpGWHBpeWtvZ2M4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOC8yOTE0NjMtOTFjYy00NzA0LTk1MjgtNjk3OTRmMDUwMjc2 LzEvSHBLSm9CV3ZSRUg0LWQ5TWpGWHBpeWtvZ2M4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAR2eOq21s prhPprxX4j886OsEPpjvdewWxS43tOwziC5TJeobCsNlW96KHzdcNuWimkb0kjLu T0PfzK3L9nLShhPzbYMZiaB6rLv/jWeTlHSF9+3umcCd4Cm8Y5hcwDcdMZrmkNXx IOVKQz8eM5yFLTzZDWUqSerkIR7EmJqFIXOPXQqvbNeYQ5253N1qlGtJUBTdXj9m EDFfQFAXjYdN9vVw+FiHehn4zppWwAYWXOkuIT27zYA/xl0f/asdj812HN+0I8ON kuUxX7GlkFgswCKMx9EYJI9eKoNpDG98HiURhDKLlpQmTFP11ZSUGHjmLhG/XXPf 8H1WdpZGhCE8PQ== -----END CERTIFICATE-----Generated at Mon Dec 22 14:31:16 2025 by rpki-client