This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft File: Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft (raw, json) Hash identifier: HrAmLZ639iYrmEHsf3nEu06wy2reqBPSI/J82G52dak= Subject key identifier: FB:B8:B0:7B:00:BC:FA:F7:45:37:BF:16:6A:C4:04:DB:97:6B:C1:29 Authority key identifier: 1D:DE:74:63:ED:84:98:02:0D:D3:92:32:24:59:D2:CF:40:F2:26:B2 Certificate issuer: /CN=1dde7463ed8498020dd392322459d2cf40f226b2 Certificate serial: 019AF19B4778909764B1C86C2ABD6659626A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hd50Y-2EmAIN05IyJFnSz0DyJrI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft Manifest number: 0B96 Signing time: Sat 06 Dec 2025 03:01:16 +0000 Manifest this update: Sat 06 Dec 2025 03:01:16 +0000 Manifest next update: Sun 07 Dec 2025 03:01:16 +0000 Files and hashes: 1: Hd50Y-2EmAIN05IyJFnSz0DyJrI.crl (hash: revnbyvHFiOipPZQpnFO9mFkL6pJDFkynLjybEJ8me8=) 2: ZeLziwVcKFCzlXV46oF95sJgQFI.roa (hash: YJb2jXI2aFgonHfwW6/ZhSjIG0Uw2jOF0vpZ55dF3+8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft rsync://rpki.ripe.net/repository/DEFAULT/Hd50Y-2EmAIN05IyJFnSz0DyJrI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:47:78:90:97:64:b1:c8:6c:2a:bd:66:59:62:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1dde7463ed8498020dd392322459d2cf40f226b2 Validity Not Before: Dec 6 03:01:16 2025 GMT Not After : Dec 7 03:01:16 2025 GMT Subject: CN=fbb8b07b00bcfaf74537bf166ac404db976bc129 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:89:44:62:70:23:0b:08:8e:e1:1a:f0:ef:77: 13:90:0c:86:de:ad:85:73:39:5c:dd:2b:59:4e:91: 4d:a5:f6:65:e3:bd:d7:4e:73:a5:d4:4f:81:11:4d: 10:f9:75:fa:96:d7:a1:b0:c8:4d:2d:fa:32:c6:97: 4e:e6:d1:9c:10:a6:ff:88:8a:f9:35:44:e5:4e:67: e9:c1:93:25:eb:a3:5a:70:70:13:1f:7e:68:e6:f6: b0:e8:99:3d:a2:c6:82:d3:a9:42:10:f4:6f:a0:5d: d6:f2:b4:cd:73:1a:91:e3:42:64:41:6a:19:76:1e: 99:19:98:e9:3a:ba:5e:6e:1c:1d:34:b0:d1:06:ce: 17:cd:19:16:ab:c3:4a:10:9d:66:b7:2d:b6:91:e5: 76:5f:dd:2f:26:de:1f:a7:04:cb:5d:1d:b0:81:c0: 3a:47:3b:c4:fa:32:e8:a4:3a:38:c6:3d:08:b2:1b: 94:e0:a1:e6:c2:5b:66:51:38:e9:ae:65:63:a8:07: 67:48:58:b3:ce:c1:a5:29:1c:4f:f1:d0:2f:2c:ca: 99:e8:f5:35:f0:60:c4:b8:9e:7d:ed:f0:97:7b:c5: 49:3e:22:50:49:53:91:5a:ff:6a:f9:07:4e:03:22: 5f:0c:d5:e8:a0:d2:65:56:0e:b7:a6:87:0d:fe:20: de:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:B8:B0:7B:00:BC:FA:F7:45:37:BF:16:6A:C4:04:DB:97:6B:C1:29 X509v3 Authority Key Identifier: keyid:1D:DE:74:63:ED:84:98:02:0D:D3:92:32:24:59:D2:CF:40:F2:26:B2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hd50Y-2EmAIN05IyJFnSz0DyJrI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:1c:6f:f5:b8:4a:71:3a:5a:c8:bc:b0:2f:9f:21:3f:99:11: 8e:be:f5:88:e4:be:cf:de:f1:23:52:f0:f9:5e:34:ec:11:04: c5:c4:8f:81:af:46:f9:d7:6c:15:c8:90:cf:4b:e5:a3:f7:62: 16:41:50:62:38:2f:70:b7:9e:37:80:31:94:54:dd:be:bd:66: 86:f5:c8:dc:3c:e4:c6:7f:09:f6:df:c2:45:59:92:44:d9:99: 96:c6:d3:6d:3e:0f:ec:e4:5b:f3:58:3b:34:08:cb:44:12:95: 11:7b:b8:28:28:5c:e8:f7:e8:da:a2:cd:45:3a:d8:0b:f6:85: ec:ea:42:0b:85:63:d8:f7:9b:61:40:e7:0f:5e:eb:b9:44:f9: e7:81:2a:ea:a9:30:a7:a2:86:74:4a:cb:0f:80:e2:6f:0b:ba: 1a:66:b6:b1:e4:df:12:79:3b:10:41:b3:f1:e7:12:68:d4:2f: 26:ba:3c:4a:4d:6e:b2:48:85:ca:44:aa:f9:69:91:df:43:85: 9b:f3:fe:4f:c8:a5:de:bc:25:2d:39:11:60:87:b2:91:49:f4: 33:8e:a7:0d:08:93:8e:e5:67:74:28:a4:95:df:86:da:e4:0c: 46:ba:7c:b3:51:c8:44:78:b0:c4:c3:16:35:21:e3:dd:81:e6: a6:2d:f5:3e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm0d4kJdkschsKr1mWWJqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkZGU3NDYzZWQ4NDk4MDIwZGQzOTIzMjI0NTlkMmNmNDBm MjI2YjIwHhcNMjUxMjA2MDMwMTE2WhcNMjUxMjA3MDMwMTE2WjAzMTEwLwYDVQQD EyhmYmI4YjA3YjAwYmNmYWY3NDUzN2JmMTY2YWM0MDRkYjk3NmJjMTI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA14lEYnAjCwiO4Rrw73cTkAyG3q2F czlc3StZTpFNpfZl473XTnOl1E+BEU0Q+XX6ltehsMhNLfoyxpdO5tGcEKb/iIr5 NUTlTmfpwZMl66NacHATH35o5vaw6Jk9osaC06lCEPRvoF3W8rTNcxqR40JkQWoZ dh6ZGZjpOrpebhwdNLDRBs4XzRkWq8NKEJ1mty22keV2X90vJt4fpwTLXR2wgcA6 RzvE+jLopDo4xj0IshuU4KHmwltmUTjprmVjqAdnSFizzsGlKRxP8dAvLMqZ6PU1 8GDEuJ597fCXe8VJPiJQSVORWv9q+QdOAyJfDNXooNJlVg63pocN/iDeVQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPu4sHsAvPr3RTe/FmrEBNuXa8EpMB8GA1UdIwQY MBaAFB3edGPthJgCDdOSMiRZ0s9A8iayMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSGQ1MFktMkVtQUlOMDVJeUpGblN6MER5SnJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi81NTI4M2EtMDlhMC00ZGE4LWE5Njgt NDNjN2YwMjdjNmU0LzEvSGQ1MFktMkVtQUlOMDVJeUpGblN6MER5SnJJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi81NTI4M2EtMDlhMC00ZGE4LWE5NjgtNDNjN2YwMjdjNmU0 LzEvSGQ1MFktMkVtQUlOMDVJeUpGblN6MER5SnJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZRxv9bhK cTpayLywL58hP5kRjr71iOS+z97xI1Lw+V407BEExcSPga9G+ddsFciQz0vlo/di FkFQYjgvcLeeN4AxlFTdvr1mhvXI3Dzkxn8J9t/CRVmSRNmZlsbTbT4P7ORb81g7 NAjLRBKVEXu4KChc6Pfo2qLNRTrYC/aF7OpCC4Vj2PebYUDnD17ruUT554Eq6qkw p6KGdErLD4Dibwu6Gma2seTfEnk7EEGz8ecSaNQvJro8Sk1uskiFykSq+WmR30OF m/P+T8il3rwlLTkRYIeykUn0M46nDQiTjuVndCikld+G2uQMRrp8s1HIRHiwxMMW NSHj3YHmpi31Pg== -----END CERTIFICATE-----Generated at Sat Dec 6 07:21:14 2025 by rpki-client