This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/5d0928-e68f-4e19-b226-4036278b43f9/1/HdGoMITMB7cxuvkdqvMTbC9rddM.mft File: HdGoMITMB7cxuvkdqvMTbC9rddM.mft (raw, json) Hash identifier: crGBU/mKmRLWOiVA4Qg1PKE4bKogW6YPyUdTkkvCogs= Subject key identifier: FE:5E:45:76:9B:A1:FB:31:B6:EC:0A:26:F8:75:81:AD:5E:A5:EF:1B Authority key identifier: 1D:D1:A8:30:84:CC:07:B7:31:BA:F9:1D:AA:F3:13:6C:2F:6B:75:D3 Certificate issuer: /CN=1dd1a83084cc07b731baf91daaf3136c2f6b75d3 Certificate serial: 019AF31B9B05C6C692BF864A424237EA71E3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HdGoMITMB7cxuvkdqvMTbC9rddM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/5d0928-e68f-4e19-b226-4036278b43f9/1/HdGoMITMB7cxuvkdqvMTbC9rddM.mft Manifest number: 132F Signing time: Sat 06 Dec 2025 10:01:03 +0000 Manifest this update: Sat 06 Dec 2025 10:01:03 +0000 Manifest next update: Sun 07 Dec 2025 10:01:03 +0000 Files and hashes: 1: HdGoMITMB7cxuvkdqvMTbC9rddM.crl (hash: JXuNMLqcwbMXEmirGuyqeqZVYq4aGeEnEhyW4SSzYqE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/5d0928-e68f-4e19-b226-4036278b43f9/1/HdGoMITMB7cxuvkdqvMTbC9rddM.crl rsync://rpki.ripe.net/repository/DEFAULT/de/5d0928-e68f-4e19-b226-4036278b43f9/1/HdGoMITMB7cxuvkdqvMTbC9rddM.mft rsync://rpki.ripe.net/repository/DEFAULT/HdGoMITMB7cxuvkdqvMTbC9rddM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1b:9b:05:c6:c6:92:bf:86:4a:42:42:37:ea:71:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1dd1a83084cc07b731baf91daaf3136c2f6b75d3 Validity Not Before: Dec 6 10:01:03 2025 GMT Not After : Dec 7 10:01:03 2025 GMT Subject: CN=fe5e45769ba1fb31b6ec0a26f87581ad5ea5ef1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:c5:ee:d8:17:95:74:2b:b8:76:82:21:16:03: 81:ad:ab:de:ad:6f:d2:d9:06:95:c3:6b:2a:5b:54: 0b:62:6c:3a:55:d4:41:a9:ff:f3:67:4c:53:29:ae: ed:8f:44:ff:21:2d:01:7d:81:cc:08:90:3e:06:56: e8:1b:cc:a7:cc:b6:72:22:21:8a:55:39:f5:46:64: 2f:8e:55:13:4d:d8:03:ea:6b:58:ae:06:89:89:fa: ce:88:64:3f:63:17:d0:72:3c:59:62:8b:8b:64:47: f9:72:3d:8e:b1:27:68:a5:9e:6c:8f:53:ba:96:f8: 61:c0:e3:d7:0e:7c:26:21:f1:11:0f:4b:58:73:86: cd:f9:cd:24:55:96:4e:33:36:e4:80:bc:20:c2:a3: e1:16:e5:ae:e8:fd:03:77:a2:d3:57:b5:c2:b4:59: dd:b8:9e:91:91:5f:f9:1f:da:25:c6:c4:a7:c2:0f: a6:9c:25:c1:15:c4:0f:3d:42:c1:ab:c7:b3:03:20: 31:3f:1b:46:e2:74:a3:1b:4d:ea:4d:56:99:20:83: b0:9f:01:dc:88:9b:3e:32:10:e4:97:29:a1:2e:fd: 21:c4:ba:73:b7:aa:9c:f7:d3:2c:4c:7c:6b:e0:d7: 56:6a:c4:fd:0f:ac:5b:32:62:e0:6b:49:38:01:46: e1:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:5E:45:76:9B:A1:FB:31:B6:EC:0A:26:F8:75:81:AD:5E:A5:EF:1B X509v3 Authority Key Identifier: keyid:1D:D1:A8:30:84:CC:07:B7:31:BA:F9:1D:AA:F3:13:6C:2F:6B:75:D3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HdGoMITMB7cxuvkdqvMTbC9rddM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/5d0928-e68f-4e19-b226-4036278b43f9/1/HdGoMITMB7cxuvkdqvMTbC9rddM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/de/5d0928-e68f-4e19-b226-4036278b43f9/1/HdGoMITMB7cxuvkdqvMTbC9rddM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 68:00:d1:07:91:ad:56:09:24:19:5a:ca:d6:63:94:7f:92:ae: 22:b8:bb:18:84:ba:57:94:c6:b8:78:bf:17:16:b1:8a:38:10: 97:71:f4:ce:ab:31:6a:e7:2d:53:e9:d6:6c:0b:e2:fd:59:52: c0:60:4d:f7:b8:79:cc:60:5a:05:0c:91:14:10:d3:03:08:7e: 68:76:fa:e4:63:d7:5d:17:e2:16:4c:5c:5b:d2:f0:f1:da:f1: 65:86:8c:d8:03:97:63:16:1a:5d:29:75:1d:a4:73:f6:24:b6: 98:08:ce:b2:03:c4:44:0f:11:56:a6:3f:be:78:63:d4:fc:15: aa:2a:d3:8c:fb:e2:ef:f6:7c:30:86:75:5b:e6:02:2c:b5:cc: c7:57:04:4b:00:d0:6f:df:93:43:02:ae:6a:22:0f:e0:75:69: df:c3:13:81:ea:73:de:19:d0:e6:b6:df:0a:e0:e5:47:15:a1: 74:f6:d3:57:bc:b6:99:69:27:3f:3b:b9:34:1e:88:ad:ce:aa: 3a:93:a6:fd:2f:e6:47:f3:cb:83:09:2e:88:c8:ea:5f:c1:54: fd:91:a1:7f:24:59:11:6c:d5:e8:61:34:24:09:46:7e:e4:a2: dd:73:43:c7:10:08:f2:aa:38:a4:f2:7a:78:13:46:e7:78:5b: 40:fa:de:df -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzG5sFxsaSv4ZKQkI36nHjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkZDFhODMwODRjYzA3YjczMWJhZjkxZGFhZjMxMzZjMmY2 Yjc1ZDMwHhcNMjUxMjA2MTAwMTAzWhcNMjUxMjA3MTAwMTAzWjAzMTEwLwYDVQQD EyhmZTVlNDU3NjliYTFmYjMxYjZlYzBhMjZmODc1ODFhZDVlYTVlZjFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqMXu2BeVdCu4doIhFgOBraverW/S 2QaVw2sqW1QLYmw6VdRBqf/zZ0xTKa7tj0T/IS0BfYHMCJA+BlboG8ynzLZyIiGK VTn1RmQvjlUTTdgD6mtYrgaJifrOiGQ/YxfQcjxZYouLZEf5cj2OsSdopZ5sj1O6 lvhhwOPXDnwmIfERD0tYc4bN+c0kVZZOMzbkgLwgwqPhFuWu6P0Dd6LTV7XCtFnd uJ6RkV/5H9olxsSnwg+mnCXBFcQPPULBq8ezAyAxPxtG4nSjG03qTVaZIIOwnwHc iJs+MhDklymhLv0hxLpzt6qc99MsTHxr4NdWasT9D6xbMmLga0k4AUbhoQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP5eRXabofsxtuwKJvh1ga1epe8bMB8GA1UdIwQY MBaAFB3RqDCEzAe3Mbr5HarzE2wva3XTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSGRHb01JVE1CN2N4dXZrZHF2TVRiQzlyZGRNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS81ZDA5MjgtZTY4Zi00ZTE5LWIyMjYt NDAzNjI3OGI0M2Y5LzEvSGRHb01JVE1CN2N4dXZrZHF2TVRiQzlyZGRNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZS81ZDA5MjgtZTY4Zi00ZTE5LWIyMjYtNDAzNjI3OGI0M2Y5 LzEvSGRHb01JVE1CN2N4dXZrZHF2TVRiQzlyZGRNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaADRB5Gt VgkkGVrK1mOUf5KuIri7GIS6V5TGuHi/FxaxijgQl3H0zqsxauctU+nWbAvi/VlS wGBN97h5zGBaBQyRFBDTAwh+aHb65GPXXRfiFkxcW9Lw8drxZYaM2AOXYxYaXSl1 HaRz9iS2mAjOsgPERA8RVqY/vnhj1PwVqirTjPvi7/Z8MIZ1W+YCLLXMx1cESwDQ b9+TQwKuaiIP4HVp38MTgepz3hnQ5rbfCuDlRxWhdPbTV7y2mWknPzu5NB6Irc6q OpOm/S/mR/PLgwkuiMjqX8FU/ZGhfyRZEWzV6GE0JAlGfuSi3XNDxxAI8qo4pPJ6 eBNG53hbQPre3w== -----END CERTIFICATE-----Generated at Sat Dec 6 12:31:40 2025 by rpki-client