This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft File: Hd51apttFAAMPhUNW31glbdhP-Q.mft (raw, json) Hash identifier: NPrvZZ58tck5a6So7c6lmRIvTNVjW5mOqTS8Yu7uuAk= Subject key identifier: 4C:0A:D5:A6:38:D9:EF:FD:AC:E5:79:50:14:DB:21:ED:B5:43:90:66 Authority key identifier: 1D:DE:75:6A:9B:6D:14:00:0C:3E:15:0D:5B:7D:60:95:B7:61:3F:E4 Certificate issuer: /CN=1dde756a9b6d14000c3e150d5b7d6095b7613fe4 Certificate serial: 019AF19B46E9067873ECE64BFEDBA4BB7181 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hd51apttFAAMPhUNW31glbdhP-Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft Manifest number: 1761 Signing time: Sat 06 Dec 2025 03:01:16 +0000 Manifest this update: Sat 06 Dec 2025 03:01:16 +0000 Manifest next update: Sun 07 Dec 2025 03:01:16 +0000 Files and hashes: 1: Hd51apttFAAMPhUNW31glbdhP-Q.crl (hash: DKVMM6lg3R5I2/qA1G2uJAZ5nDXeCOnb9iodpS31x70=) 2: dcbMwMMoAbrSDYORYR-a2Au1hPA.roa (hash: GaJP4UO0sS8NGTP1pZn3Q8XkpBsgZUPrCjP5yXsfKKw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.crl rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft rsync://rpki.ripe.net/repository/DEFAULT/Hd51apttFAAMPhUNW31glbdhP-Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:46:e9:06:78:73:ec:e6:4b:fe:db:a4:bb:71:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1dde756a9b6d14000c3e150d5b7d6095b7613fe4 Validity Not Before: Dec 6 03:01:16 2025 GMT Not After : Dec 7 03:01:16 2025 GMT Subject: CN=4c0ad5a638d9effdace5795014db21edb5439066 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:c0:81:c7:18:56:1d:04:54:a7:5d:cc:bf:06: c3:86:a0:47:5f:9b:88:4d:a2:f2:5d:58:59:72:63: 4b:b0:bc:55:a0:bd:0a:4c:80:c4:ad:73:14:ed:7b: 8d:1c:96:44:34:2b:44:71:92:d6:be:f5:34:88:5f: da:a9:33:39:f7:02:ad:f6:6d:a2:c9:54:f6:40:b8: 7b:ce:66:4c:7e:98:e8:84:2e:9d:9f:85:a8:cf:94: 93:0f:58:18:a4:b5:9f:66:c8:55:f2:31:06:9c:70: 73:ae:07:2c:27:2b:2c:b0:9e:72:c7:6a:6b:3b:5b: 14:91:1a:43:b6:57:ca:2a:2b:21:d1:94:92:02:1f: fa:01:55:c6:31:fb:28:7b:c9:86:f2:47:d2:71:7c: 0f:46:b1:c7:a6:5a:9d:07:16:ae:3e:29:ad:62:36: 4a:b2:96:59:6a:fc:74:5e:d4:9e:da:6b:04:7d:00: 8a:03:03:84:55:7e:2a:65:65:59:ca:7f:b8:a1:e0: 2d:49:2c:4c:5d:3e:e3:79:c1:e0:eb:0f:fa:a9:08: 3c:2d:5e:3a:a3:93:4f:e6:b2:99:1b:c2:54:f4:c2: 3b:a9:bc:3d:fb:00:ef:26:21:73:93:ae:d2:c9:ca: 1f:64:82:31:c5:f5:e7:61:37:c4:33:25:61:aa:e2: d6:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:0A:D5:A6:38:D9:EF:FD:AC:E5:79:50:14:DB:21:ED:B5:43:90:66 X509v3 Authority Key Identifier: keyid:1D:DE:75:6A:9B:6D:14:00:0C:3E:15:0D:5B:7D:60:95:B7:61:3F:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hd51apttFAAMPhUNW31glbdhP-Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 28:7b:bf:90:fc:19:7f:19:21:26:ac:1e:2e:58:34:e8:98:0b: 53:d7:09:5a:da:4f:a2:07:b1:c5:2a:91:f5:ce:b3:2f:c8:fb: c9:84:a3:78:0e:a7:d5:97:83:c0:41:f4:4d:93:4e:f7:86:04: cb:8a:ca:09:2e:ea:37:7e:23:6b:72:36:e6:40:b4:b2:9e:ff: fe:3d:81:da:f8:0d:06:18:67:4a:8d:83:ff:40:2a:67:35:4d: 8d:ae:e1:96:67:74:7d:fa:17:c7:01:a5:88:3e:b4:92:56:76: dd:6d:2c:8a:8b:20:1b:19:5b:de:4b:d9:2d:4b:ed:da:04:38: f1:32:db:f1:5a:b1:56:f4:8b:6f:4e:5b:98:f1:07:48:e5:6e: dd:5f:48:05:7f:65:01:13:2c:56:77:6e:07:82:70:e5:ec:f9: e2:80:33:b6:2a:bd:4a:af:9b:4b:79:2d:f9:1e:5d:ff:f2:ee: 99:07:7a:ee:0e:b6:1d:24:ff:35:09:e5:f8:09:74:8d:9d:e1: 20:43:6f:2f:df:f0:e9:1d:85:41:ea:52:0b:2c:4b:d6:a8:33: 4f:3a:a3:07:4e:2c:69:e6:79:8e:8d:64:27:85:ac:a9:ce:4d: 81:bc:21:f4:32:49:36:59:ee:4f:37:1f:1d:08:13:3b:c0:39: 26:fe:ae:ca -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm0bpBnhz7OZL/tuku3GBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkZGU3NTZhOWI2ZDE0MDAwYzNlMTUwZDViN2Q2MDk1Yjc2 MTNmZTQwHhcNMjUxMjA2MDMwMTE2WhcNMjUxMjA3MDMwMTE2WjAzMTEwLwYDVQQD Eyg0YzBhZDVhNjM4ZDllZmZkYWNlNTc5NTAxNGRiMjFlZGI1NDM5MDY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnsCBxxhWHQRUp13MvwbDhqBHX5uI TaLyXVhZcmNLsLxVoL0KTIDErXMU7XuNHJZENCtEcZLWvvU0iF/aqTM59wKt9m2i yVT2QLh7zmZMfpjohC6dn4Woz5STD1gYpLWfZshV8jEGnHBzrgcsJysssJ5yx2pr O1sUkRpDtlfKKish0ZSSAh/6AVXGMfsoe8mG8kfScXwPRrHHplqdBxauPimtYjZK spZZavx0XtSe2msEfQCKAwOEVX4qZWVZyn+4oeAtSSxMXT7jecHg6w/6qQg8LV46 o5NP5rKZG8JU9MI7qbw9+wDvJiFzk67SycofZIIxxfXnYTfEMyVhquLWJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEwK1aY42e/9rOV5UBTbIe21Q5BmMB8GA1UdIwQY MBaAFB3edWqbbRQADD4VDVt9YJW3YT/kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSGQ1MWFwdHRGQUFNUGhVTlczMWdsYmRoUC1RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My80YTFlYmQtZDQ0ZS00ODkyLTg1YjMt NzM1YTBjYzFlNzg5LzEvSGQ1MWFwdHRGQUFNUGhVTlczMWdsYmRoUC1RLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83My80YTFlYmQtZDQ0ZS00ODkyLTg1YjMtNzM1YTBjYzFlNzg5 LzEvSGQ1MWFwdHRGQUFNUGhVTlczMWdsYmRoUC1RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKHu/kPwZ fxkhJqweLlg06JgLU9cJWtpPogexxSqR9c6zL8j7yYSjeA6n1ZeDwEH0TZNO94YE y4rKCS7qN34ja3I25kC0sp7//j2B2vgNBhhnSo2D/0AqZzVNja7hlmd0ffoXxwGl iD60klZ23W0siosgGxlb3kvZLUvt2gQ48TLb8VqxVvSLb05bmPEHSOVu3V9IBX9l ARMsVnduB4Jw5ez54oAztiq9Sq+bS3kt+R5d//LumQd67g62HST/NQnl+Al0jZ3h IENvL9/w6R2FQepSCyxL1qgzTzqjB04saeZ5jo1kJ4Wsqc5Ngbwh9DJJNlnuTzcf HQgTO8A5Jv6uyg== -----END CERTIFICATE-----Generated at Sat Dec 6 07:12:42 2025 by rpki-client