This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft File: Hd51apttFAAMPhUNW31glbdhP-Q.mft (raw, json) Hash identifier: A6A44awAdDBAcvVzTcdk1XZCx5EG7L1IJK5lpytLznk= Subject key identifier: 08:7B:45:3D:E0:46:FF:FA:02:06:45:B9:8B:6A:9E:3F:F4:19:78:B0 Authority key identifier: 1D:DE:75:6A:9B:6D:14:00:0C:3E:15:0D:5B:7D:60:95:B7:61:3F:E4 Certificate issuer: /CN=1dde756a9b6d14000c3e150d5b7d6095b7613fe4 Certificate serial: 019B33442B74D2415DCDA1548129FF8EEDBF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hd51apttFAAMPhUNW31glbdhP-Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft Manifest number: 1783 Signing time: Thu 18 Dec 2025 21:01:04 +0000 Manifest this update: Thu 18 Dec 2025 21:01:04 +0000 Manifest next update: Fri 19 Dec 2025 21:01:04 +0000 Files and hashes: 1: Hd51apttFAAMPhUNW31glbdhP-Q.crl (hash: yPgJmptQdhPImgfAj9PikLBeLN5QCIwCZiwo0JZA0qU=) 2: dcbMwMMoAbrSDYORYR-a2Au1hPA.roa (hash: GaJP4UO0sS8NGTP1pZn3Q8XkpBsgZUPrCjP5yXsfKKw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.crl rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft rsync://rpki.ripe.net/repository/DEFAULT/Hd51apttFAAMPhUNW31glbdhP-Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 20:16:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:33:44:2b:74:d2:41:5d:cd:a1:54:81:29:ff:8e:ed:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1dde756a9b6d14000c3e150d5b7d6095b7613fe4 Validity Not Before: Dec 18 21:01:04 2025 GMT Not After : Dec 19 21:01:04 2025 GMT Subject: CN=087b453de046fffa020645b98b6a9e3ff41978b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:d6:d1:2e:c1:b9:3a:f8:05:5c:e6:e8:56:55: f5:92:97:48:2c:f6:85:67:6e:4e:a5:dc:26:0b:c2: d3:43:5d:59:54:ee:8d:98:d4:12:f0:cd:c4:2c:3a: 93:cb:20:cd:7e:43:32:0c:bd:4a:2a:7b:00:13:07: 4b:c2:21:34:35:7f:56:a2:81:fd:92:71:68:e0:15: 69:76:ec:45:31:ac:e6:6b:01:2b:d0:27:6b:d8:de: 92:73:23:32:11:4a:ce:cf:23:a2:36:68:ac:7e:4e: 99:1f:9f:1c:73:43:7a:ef:d3:de:3d:f5:9d:f8:5f: d0:e3:c8:ac:e3:8e:ab:c0:9c:b6:c1:5f:43:20:3e: 7e:ff:24:60:5a:66:84:8e:12:c1:0f:20:c2:aa:93: 8f:28:ea:57:45:4b:0e:47:15:b1:68:f2:b6:fa:7a: d9:a1:38:20:76:c6:60:65:4c:cf:e6:fe:9c:bc:2f: 8b:cc:46:56:98:2e:80:64:73:da:08:2d:79:17:44: 59:7d:69:9f:9e:6b:5c:44:a1:70:12:7b:02:17:83: 3f:8e:2b:11:e1:63:83:90:5f:de:b7:8b:fe:ee:43: 4b:d7:d0:d4:a1:3f:d9:78:19:15:b5:7b:d0:d2:ae: 30:74:6e:91:85:ce:d0:15:ea:21:5a:c6:fa:d9:c6: 59:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:7B:45:3D:E0:46:FF:FA:02:06:45:B9:8B:6A:9E:3F:F4:19:78:B0 X509v3 Authority Key Identifier: keyid:1D:DE:75:6A:9B:6D:14:00:0C:3E:15:0D:5B:7D:60:95:B7:61:3F:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hd51apttFAAMPhUNW31glbdhP-Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/73/4a1ebd-d44e-4892-85b3-735a0cc1e789/1/Hd51apttFAAMPhUNW31glbdhP-Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 40:8f:8e:9d:38:fc:22:ee:a7:b6:a6:90:a0:78:af:9e:0b:ba: 1b:f5:c8:f8:bd:8f:3c:8d:61:a7:f7:3e:f7:5e:56:78:ce:50: 01:84:c9:2d:86:fc:d1:45:94:46:f7:d7:9d:02:e3:72:33:30: a9:9c:54:38:bc:ba:ae:b4:b7:cc:64:8e:34:20:b4:19:38:f8: 81:87:44:a7:62:46:97:77:e0:00:05:de:87:ea:c7:a6:ce:66: 2b:c0:46:1e:9d:61:3d:6b:73:62:11:47:90:a0:5f:74:07:98: 69:0e:ea:0c:b1:b7:23:ee:51:f2:3d:84:ca:ff:24:b9:68:38: b0:96:02:eb:f5:21:93:ba:3a:63:b4:ff:77:92:77:33:03:40: 35:49:21:e8:51:b6:c6:22:1d:79:b8:8d:a3:2f:fc:51:91:7a: 52:9a:a4:58:1f:20:95:c8:d7:f2:87:79:ee:b6:78:49:3e:0f: 37:89:be:52:18:55:f9:4b:92:44:27:8a:fc:a6:91:c3:2f:37: af:38:7f:06:90:77:93:a5:e5:74:38:1a:77:ce:18:80:2e:20: cc:0f:28:89:65:46:79:02:5e:a7:0a:19:a5:d2:fc:ae:e9:fd: 6f:6b:ac:2d:e9:7b:a9:4b:e1:4d:54:b1:89:aa:5c:7d:6a:19: 33:72:62:de -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZszRCt00kFdzaFUgSn/ju2/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkZGU3NTZhOWI2ZDE0MDAwYzNlMTUwZDViN2Q2MDk1Yjc2 MTNmZTQwHhcNMjUxMjE4MjEwMTA0WhcNMjUxMjE5MjEwMTA0WjAzMTEwLwYDVQQD EygwODdiNDUzZGUwNDZmZmZhMDIwNjQ1Yjk4YjZhOWUzZmY0MTk3OGIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhtbRLsG5OvgFXOboVlX1kpdILPaF Z25OpdwmC8LTQ11ZVO6NmNQS8M3ELDqTyyDNfkMyDL1KKnsAEwdLwiE0NX9WooH9 knFo4BVpduxFMazmawEr0Cdr2N6ScyMyEUrOzyOiNmisfk6ZH58cc0N679PePfWd +F/Q48is446rwJy2wV9DID5+/yRgWmaEjhLBDyDCqpOPKOpXRUsORxWxaPK2+nrZ oTggdsZgZUzP5v6cvC+LzEZWmC6AZHPaCC15F0RZfWmfnmtcRKFwEnsCF4M/jisR 4WODkF/et4v+7kNL19DUoT/ZeBkVtXvQ0q4wdG6Rhc7QFeohWsb62cZZ9QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAh7RT3gRv/6AgZFuYtqnj/0GXiwMB8GA1UdIwQY MBaAFB3edWqbbRQADD4VDVt9YJW3YT/kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSGQ1MWFwdHRGQUFNUGhVTlczMWdsYmRoUC1RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My80YTFlYmQtZDQ0ZS00ODkyLTg1YjMt NzM1YTBjYzFlNzg5LzEvSGQ1MWFwdHRGQUFNUGhVTlczMWdsYmRoUC1RLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83My80YTFlYmQtZDQ0ZS00ODkyLTg1YjMtNzM1YTBjYzFlNzg5 LzEvSGQ1MWFwdHRGQUFNUGhVTlczMWdsYmRoUC1RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQI+OnTj8 Iu6ntqaQoHivngu6G/XI+L2PPI1hp/c+915WeM5QAYTJLYb80UWURvfXnQLjcjMw qZxUOLy6rrS3zGSONCC0GTj4gYdEp2JGl3fgAAXeh+rHps5mK8BGHp1hPWtzYhFH kKBfdAeYaQ7qDLG3I+5R8j2Eyv8kuWg4sJYC6/Uhk7o6Y7T/d5J3MwNANUkh6FG2 xiIdebiNoy/8UZF6UpqkWB8glcjX8od57rZ4ST4PN4m+UhhV+UuSRCeK/KaRwy83 rzh/BpB3k6XldDgad84YgC4gzA8oiWVGeQJepwoZpdL8run9b2usLel7qUvhTVSx iapcfWoZM3Ji3g== -----END CERTIFICATE-----Generated at Fri Dec 19 01:50:08 2025 by rpki-client