This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft File: HjXAaowG1d1k_nawkKPh4qSZbcg.mft (raw, json) Hash identifier: GNTgxaf/UPtOSZQVikrUAN7A/OhRhmV7Mz5ervsoBks= Subject key identifier: 3C:F9:91:4C:9E:9D:A2:06:3D:EC:B5:FB:B8:8C:17:25:C5:A5:A0:85 Authority key identifier: 1E:35:C0:6A:8C:06:D5:DD:64:FE:76:B0:90:A3:E1:E2:A4:99:6D:C8 Certificate issuer: /CN=1e35c06a8c06d5dd64fe76b090a3e1e2a4996dc8 Certificate serial: 019B5C7701D72A7CE2259B91747029BE5A1D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft Manifest number: 179A Signing time: Fri 26 Dec 2025 21:01:01 +0000 Manifest this update: Fri 26 Dec 2025 21:01:01 +0000 Manifest next update: Sat 27 Dec 2025 21:01:01 +0000 Files and hashes: 1: HjXAaowG1d1k_nawkKPh4qSZbcg.crl (hash: mZ3UJqe/oWXJRIlNY2M8mSmmn3zXggNS4rRKkZxtSyA=) 2: R12AgdneGd4IinauuD2IQCzaNdo.roa (hash: 0Vf4DfoprRpqIbS3viTk0elhBi8JnCMTTU8OHnzZBdQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.crl rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 15:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5c:77:01:d7:2a:7c:e2:25:9b:91:74:70:29:be:5a:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1e35c06a8c06d5dd64fe76b090a3e1e2a4996dc8 Validity Not Before: Dec 26 21:01:01 2025 GMT Not After : Dec 27 21:01:01 2025 GMT Subject: CN=3cf9914c9e9da2063decb5fbb88c1725c5a5a085 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b1:a7:8b:f8:2b:17:ec:b5:ca:64:e2:61:6a: db:b9:e7:18:a2:80:eb:fb:2d:69:06:c4:b7:0c:5d: 48:53:32:dd:45:be:87:7d:7f:c1:48:bc:6f:a9:63: 0b:7b:35:24:41:9c:1a:6b:8d:8c:de:61:03:d7:6e: de:40:83:21:bd:4d:21:ed:33:37:14:2d:bf:21:bf: 8c:67:69:2a:0e:ca:0b:94:02:fa:1b:c8:18:61:e5: dc:18:60:0e:00:c4:ad:51:d8:8d:93:73:28:db:0a: b3:f1:31:49:ae:91:89:4c:13:bc:69:c9:67:f1:94: 44:03:d6:58:83:bc:cd:de:68:7c:1e:24:a0:d9:fe: c2:af:c1:85:75:31:c4:d2:95:b9:a1:d2:21:dc:56: 27:f5:9d:37:a7:60:f5:8c:f1:2d:ad:bb:27:e7:7b: be:66:9c:30:4b:cf:27:56:65:44:54:dd:1d:c6:30: 5c:09:7a:e3:0c:d3:d8:76:ac:3a:cd:5f:90:a2:9c: f2:ae:ca:52:2c:33:65:91:e7:d4:f6:fe:8a:3f:ba: ea:76:81:3d:cc:77:c0:ea:dc:c5:69:ce:c0:60:1a: ee:19:84:12:18:dc:58:f9:d2:ec:03:d6:76:be:11: 5b:e6:09:5d:96:65:12:3b:2b:0f:5f:d2:5f:55:7b: a7:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:F9:91:4C:9E:9D:A2:06:3D:EC:B5:FB:B8:8C:17:25:C5:A5:A0:85 X509v3 Authority Key Identifier: keyid:1E:35:C0:6A:8C:06:D5:DD:64:FE:76:B0:90:A3:E1:E2:A4:99:6D:C8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HjXAaowG1d1k_nawkKPh4qSZbcg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/ab45e4-6ea0-495f-8b78-9b5d76a949f4/1/HjXAaowG1d1k_nawkKPh4qSZbcg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:47:c0:12:c0:4e:8a:f3:32:bf:72:f3:c6:6e:54:6a:39:4d: 4a:57:44:fd:98:be:41:75:6b:37:49:fb:c4:cd:75:80:d4:a7: 66:79:15:e6:bf:89:03:4b:0d:de:ae:4a:13:ef:73:51:f2:d7: f3:02:c5:ec:fd:44:f0:4a:90:f0:eb:53:56:04:97:21:d5:aa: 71:83:4e:5d:7e:2c:e7:06:d8:39:67:b7:eb:84:a9:01:4f:5e: 6c:f3:68:52:45:3c:67:fe:51:da:ae:dd:19:db:a3:f5:7c:be: bb:65:22:39:c3:6b:94:43:21:dd:5a:cb:ab:d5:74:0b:0d:04: e9:81:57:be:68:d4:ea:72:06:65:6d:af:a6:36:c7:c7:0e:86: cc:97:82:2d:71:35:03:3f:26:ae:3c:34:ba:fc:1a:65:12:b0: 1b:6d:82:61:c7:e9:82:52:23:e6:5f:0a:02:04:cc:d9:4e:5d: 4c:c8:88:5b:24:df:9c:de:8e:4f:4e:98:80:52:60:6f:a0:52: 2e:84:1e:92:69:0c:be:96:fc:06:b6:87:56:37:c6:80:b0:10: 91:c3:95:62:14:dc:48:87:03:c1:ca:cb:b3:fb:ff:77:3a:26: c3:44:f9:90:89:3c:24:fa:a0:5c:d7:57:35:d7:0c:f2:95:5a: ca:f0:7a:96 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtcdwHXKnziJZuRdHApvlodMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlMzVjMDZhOGMwNmQ1ZGQ2NGZlNzZiMDkwYTNlMWUyYTQ5 OTZkYzgwHhcNMjUxMjI2MjEwMTAxWhcNMjUxMjI3MjEwMTAxWjAzMTEwLwYDVQQD EygzY2Y5OTE0YzllOWRhMjA2M2RlY2I1ZmJiODhjMTcyNWM1YTVhMDg1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx7Gni/grF+y1ymTiYWrbuecYooDr +y1pBsS3DF1IUzLdRb6HfX/BSLxvqWMLezUkQZwaa42M3mED127eQIMhvU0h7TM3 FC2/Ib+MZ2kqDsoLlAL6G8gYYeXcGGAOAMStUdiNk3Mo2wqz8TFJrpGJTBO8acln 8ZREA9ZYg7zN3mh8HiSg2f7Cr8GFdTHE0pW5odIh3FYn9Z03p2D1jPEtrbsn53u+ ZpwwS88nVmVEVN0dxjBcCXrjDNPYdqw6zV+QopzyrspSLDNlkefU9v6KP7rqdoE9 zHfA6tzFac7AYBruGYQSGNxY+dLsA9Z2vhFb5gldlmUSOysPX9JfVXunrwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDz5kUyenaIGPey1+7iMFyXFpaCFMB8GA1UdIwQY MBaAFB41wGqMBtXdZP52sJCj4eKkmW3IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSGpYQWFvd0cxZDFrX25hd2tLUGg0cVNaYmNnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS9hYjQ1ZTQtNmVhMC00OTVmLThiNzgt OWI1ZDc2YTk0OWY0LzEvSGpYQWFvd0cxZDFrX25hd2tLUGg0cVNaYmNnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYS9hYjQ1ZTQtNmVhMC00OTVmLThiNzgtOWI1ZDc2YTk0OWY0 LzEvSGpYQWFvd0cxZDFrX25hd2tLUGg0cVNaYmNnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI0fAEsBO ivMyv3Lzxm5UajlNSldE/Zi+QXVrN0n7xM11gNSnZnkV5r+JA0sN3q5KE+9zUfLX 8wLF7P1E8EqQ8OtTVgSXIdWqcYNOXX4s5wbYOWe364SpAU9ebPNoUkU8Z/5R2q7d Gduj9Xy+u2UiOcNrlEMh3VrLq9V0Cw0E6YFXvmjU6nIGZW2vpjbHxw6GzJeCLXE1 Az8mrjw0uvwaZRKwG22CYcfpglIj5l8KAgTM2U5dTMiIWyTfnN6OT06YgFJgb6BS LoQekmkMvpb8BraHVjfGgLAQkcOVYhTcSIcDwcrLs/v/dzomw0T5kIk8JPqgXNdX NdcM8pVayvB6lg== -----END CERTIFICATE-----Generated at Sat Dec 27 00:48:02 2025 by rpki-client