This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft File: HdxT0d56LvfrK5DICRVUQUAEJIg.mft (raw, json) Hash identifier: RtWQIqedmZ/YERL0pWETgSLkBuhnZxhbnP60V8N9h6s= Subject key identifier: 47:28:89:F7:08:C1:C3:BB:F2:60:05:99:EE:3D:77:2E:19:F1:3A:49 Authority key identifier: 1D:DC:53:D1:DE:7A:2E:F7:EB:2B:90:C8:09:15:54:41:40:04:24:88 Certificate issuer: /CN=1ddc53d1de7a2ef7eb2b90c80915544140042488 Certificate serial: 019AF0F5EEAAC27E9893BBC4F3D6BABBBFEB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft Manifest number: 1766 Signing time: Sat 06 Dec 2025 00:00:40 +0000 Manifest this update: Sat 06 Dec 2025 00:00:40 +0000 Manifest next update: Sun 07 Dec 2025 00:00:40 +0000 Files and hashes: 1: AAZYcUjhuGAJA3sXjywaEslf598.roa (hash: RBp9easJVYqUVgaIiMMNSM2ioBAAirvckRHOuxL4X0g=) 2: HdxT0d56LvfrK5DICRVUQUAEJIg.crl (hash: vB/k/ZhmW8BN7YGyGAZ+LP8fk7lLY+rA2lMlHn2C7lA=) 3: KX2FVoJMwagFqXSqm7WmM6GiAdc.roa (hash: kL6N1Ap9alUNCwv0399F2Foe8bxiyXhyi55mwtllJAY=) 4: vMt7TQ-qRZJTqOxHDMRDIZs6N9Q.roa (hash: 3Jk3Icytf7EIaMHCfe+p0xudth/qPlKoWzoPX62k9oA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.crl rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 00:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:f5:ee:aa:c2:7e:98:93:bb:c4:f3:d6:ba:bb:bf:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1ddc53d1de7a2ef7eb2b90c80915544140042488 Validity Not Before: Dec 6 00:00:40 2025 GMT Not After : Dec 7 00:00:40 2025 GMT Subject: CN=472889f708c1c3bbf2600599ee3d772e19f13a49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:d0:77:b1:ab:80:3c:bc:f8:ad:cc:31:4f:8d: 46:cc:fa:79:32:d3:9e:35:09:4a:96:7b:37:e0:c4: bb:f8:07:26:64:77:2a:2c:56:b6:8a:bc:9b:dd:4c: cb:e0:51:0b:f4:78:9d:41:a2:83:c0:7c:9b:81:23: 41:46:30:4f:10:9b:8f:85:4d:e1:4f:d2:fc:78:08: 0d:f3:17:0c:54:a4:30:65:7a:d3:98:cb:8d:75:a2: 0a:2c:19:03:21:ab:41:8c:6a:28:f1:bc:cc:12:c9: 5f:70:dc:e7:e4:b7:df:a2:e1:21:43:fd:6d:1b:8e: a6:a0:15:6c:ff:ce:91:0f:b1:3a:8e:06:03:51:12: 3e:d3:a8:e3:c5:7c:e7:29:d4:60:a8:22:f5:c4:18: 52:4b:41:31:54:69:9d:15:06:a1:50:b6:b6:1e:77: 0f:c9:29:8e:ea:b4:a3:62:ee:5d:e2:d0:f2:ff:3a: 3d:d4:de:c4:07:3b:50:bd:a1:48:1b:f8:44:2c:ef: 12:28:bd:8c:7b:4a:41:6c:13:ae:65:05:60:52:03: e2:aa:66:b9:0a:06:b8:74:31:89:96:76:88:c9:cb: 16:e4:af:1d:b7:72:08:12:3f:92:01:00:29:17:1d: a5:2a:8d:eb:49:12:58:9d:d6:8e:75:6f:4c:04:fc: a4:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:28:89:F7:08:C1:C3:BB:F2:60:05:99:EE:3D:77:2E:19:F1:3A:49 X509v3 Authority Key Identifier: keyid:1D:DC:53:D1:DE:7A:2E:F7:EB:2B:90:C8:09:15:54:41:40:04:24:88 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 12:42:7a:fa:5e:40:c8:be:38:28:b6:ce:91:ee:fe:66:0c:df: c4:b3:14:96:83:84:6a:9c:ba:b7:04:5a:78:3d:a5:b6:e4:d6: c3:b9:9a:e1:45:25:30:f4:d7:c7:9e:0d:76:ae:77:cf:ef:06: 4d:75:41:56:56:1c:8a:21:34:98:94:48:1d:a3:56:03:21:9a: ba:44:98:e4:8b:0b:7e:63:92:ae:6f:dc:62:30:18:1d:f8:8f: 81:60:bb:2e:db:b1:9a:9e:c3:46:46:d3:23:99:1f:6a:90:f2: 27:c8:3e:03:69:ef:ad:d0:0d:28:c3:0a:be:82:10:f8:39:cd: 9a:8f:c3:d8:c0:77:5a:47:49:d8:c6:dc:14:b4:50:cb:6e:57: 48:de:8f:11:57:48:c3:bb:ce:9f:1f:3d:dc:45:dd:44:57:ea: 51:63:77:58:a5:80:b2:6e:2a:18:bc:c4:a7:a1:42:a6:dd:1d: 09:52:3f:35:20:be:23:85:8f:2d:13:ad:69:6b:06:5e:31:0a: 09:ed:58:e6:24:ae:f8:a9:6d:ba:b2:29:ff:0b:fc:23:1f:06: 3e:07:89:af:f1:af:56:c6:6c:b2:bf:54:dc:a2:fa:57:b5:ff: 1a:ca:33:84:3d:8b:46:18:45:7e:86:94:bd:5c:f3:e5:ea:ca: 98:95:cd:e5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrw9e6qwn6Yk7vE89a6u7/rMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkZGM1M2QxZGU3YTJlZjdlYjJiOTBjODA5MTU1NDQxNDAw NDI0ODgwHhcNMjUxMjA2MDAwMDQwWhcNMjUxMjA3MDAwMDQwWjAzMTEwLwYDVQQD Eyg0NzI4ODlmNzA4YzFjM2JiZjI2MDA1OTllZTNkNzcyZTE5ZjEzYTQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi9B3sauAPLz4rcwxT41GzPp5MtOe NQlKlns34MS7+AcmZHcqLFa2iryb3UzL4FEL9HidQaKDwHybgSNBRjBPEJuPhU3h T9L8eAgN8xcMVKQwZXrTmMuNdaIKLBkDIatBjGoo8bzMEslfcNzn5LffouEhQ/1t G46moBVs/86RD7E6jgYDURI+06jjxXznKdRgqCL1xBhSS0ExVGmdFQahULa2HncP ySmO6rSjYu5d4tDy/zo91N7EBztQvaFIG/hELO8SKL2Me0pBbBOuZQVgUgPiqma5 Cga4dDGJlnaIycsW5K8dt3IIEj+SAQApFx2lKo3rSRJYndaOdW9MBPykcQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEcoifcIwcO78mAFme49dy4Z8TpJMB8GA1UdIwQY MBaAFB3cU9Heei736yuQyAkVVEFABCSIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSGR4VDBkNTZMdmZySzVESUNSVlVRVUFFSklnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy81NTc0MTQtZDk5My00Y2JmLTgxODEt NDg2NzFmYjdkMzgwLzEvSGR4VDBkNTZMdmZySzVESUNSVlVRVUFFSklnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNy81NTc0MTQtZDk5My00Y2JmLTgxODEtNDg2NzFmYjdkMzgw LzEvSGR4VDBkNTZMdmZySzVESUNSVlVRVUFFSklnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEkJ6+l5A yL44KLbOke7+ZgzfxLMUloOEapy6twRaeD2ltuTWw7ma4UUlMPTXx54Ndq53z+8G TXVBVlYciiE0mJRIHaNWAyGaukSY5IsLfmOSrm/cYjAYHfiPgWC7Ltuxmp7DRkbT I5kfapDyJ8g+A2nvrdANKMMKvoIQ+DnNmo/D2MB3WkdJ2MbcFLRQy25XSN6PEVdI w7vOnx893EXdRFfqUWN3WKWAsm4qGLzEp6FCpt0dCVI/NSC+I4WPLROtaWsGXjEK Ce1Y5iSu+KlturIp/wv8Ix8GPgeJr/GvVsZssr9U3KL6V7X/GsozhD2LRhhFfoaU vVzz5erKmJXN5Q== -----END CERTIFICATE-----Generated at Sat Dec 6 08:31:26 2025 by rpki-client