This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft File: HdxT0d56LvfrK5DICRVUQUAEJIg.mft (raw, json) Hash identifier: g5c4VcefSMURDzhBCw1ur69gpnKzQe4nwkJ+Nc4dsds= Subject key identifier: 14:52:E7:B4:97:9D:B1:CD:97:B3:59:7E:5A:09:77:A9:11:AF:A2:B7 Authority key identifier: 1D:DC:53:D1:DE:7A:2E:F7:EB:2B:90:C8:09:15:54:41:40:04:24:88 Certificate issuer: /CN=1ddc53d1de7a2ef7eb2b90c80915544140042488 Certificate serial: 019B1B724F4567B13062B6CF9FEBC471CD7C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft Manifest number: 177C Signing time: Sun 14 Dec 2025 06:00:34 +0000 Manifest this update: Sun 14 Dec 2025 06:00:34 +0000 Manifest next update: Mon 15 Dec 2025 06:00:34 +0000 Files and hashes: 1: AAZYcUjhuGAJA3sXjywaEslf598.roa (hash: RBp9easJVYqUVgaIiMMNSM2ioBAAirvckRHOuxL4X0g=) 2: HdxT0d56LvfrK5DICRVUQUAEJIg.crl (hash: OLEMMzuGXKTIEWJlHbAl+qHfSeEwbOkSSJiKP3CHtWU=) 3: KX2FVoJMwagFqXSqm7WmM6GiAdc.roa (hash: kL6N1Ap9alUNCwv0399F2Foe8bxiyXhyi55mwtllJAY=) 4: vMt7TQ-qRZJTqOxHDMRDIZs6N9Q.roa (hash: 3Jk3Icytf7EIaMHCfe+p0xudth/qPlKoWzoPX62k9oA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.crl rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1b:72:4f:45:67:b1:30:62:b6:cf:9f:eb:c4:71:cd:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1ddc53d1de7a2ef7eb2b90c80915544140042488 Validity Not Before: Dec 14 06:00:34 2025 GMT Not After : Dec 15 06:00:34 2025 GMT Subject: CN=1452e7b4979db1cd97b3597e5a0977a911afa2b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:de:12:43:76:ed:09:7a:95:cc:64:1a:0f:0f: 86:52:08:f6:9b:eb:b1:55:20:95:80:44:12:67:05: 0c:bf:a2:b1:54:de:97:1b:01:97:cc:56:6e:95:ff: d3:b8:7b:76:4c:58:95:86:1c:c5:15:41:03:fa:1e: d4:a8:cd:ba:f3:1b:dd:ee:eb:2b:e3:2e:38:26:d6: d7:04:d2:80:67:f9:5e:ad:79:c4:30:82:30:54:85: 54:23:cb:15:fd:51:dc:b9:02:03:9e:62:d5:28:f0: 73:4c:8a:b5:3f:34:b0:1d:70:b2:ac:e4:90:e9:c7: ea:5f:c7:52:53:4c:5b:f6:54:47:e2:c4:d6:69:0a: 73:ed:b3:4d:ab:cb:96:b4:89:c5:0c:8a:1d:fa:ba: 2b:9d:c5:b2:63:72:91:f4:ff:15:06:ae:59:6d:43: eb:23:81:87:9e:78:8f:07:c2:c3:eb:44:07:69:0f: 9a:fd:35:8d:17:ab:d3:3c:f3:57:bd:28:36:ea:ac: 49:fa:9e:b2:e1:8f:f4:c3:ae:99:0c:dc:9a:47:24: 9c:b0:5b:b7:26:39:dd:a1:58:50:63:97:61:c4:b2: 3b:89:29:30:95:01:c6:0f:a2:f1:0f:24:56:dd:b2: c3:79:74:dd:9a:37:e0:3a:4f:6f:bf:01:b4:9b:1a: 4a:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:52:E7:B4:97:9D:B1:CD:97:B3:59:7E:5A:09:77:A9:11:AF:A2:B7 X509v3 Authority Key Identifier: keyid:1D:DC:53:D1:DE:7A:2E:F7:EB:2B:90:C8:09:15:54:41:40:04:24:88 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HdxT0d56LvfrK5DICRVUQUAEJIg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/557414-d993-4cbf-8181-48671fb7d380/1/HdxT0d56LvfrK5DICRVUQUAEJIg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 33:a2:5b:4a:01:44:dc:41:37:ee:a5:db:2f:a1:3a:56:2a:ff: 65:3b:e9:53:86:5b:55:ca:ab:ad:3f:cf:88:04:0e:92:8f:16: de:8a:0d:63:ea:97:f6:41:26:13:74:35:fb:3b:e7:a1:6b:87: 89:77:90:bb:ac:0f:30:32:cf:4f:09:ce:99:bd:ef:22:4a:d1: 91:8f:50:ac:30:79:8e:5e:8d:d0:3c:e1:a8:54:8f:23:e8:cf: ee:c5:86:03:ad:4b:e7:1f:35:60:3a:df:83:5a:49:d0:fb:b2: 33:8e:a2:fc:27:aa:7f:fa:ab:d8:fe:41:e9:cd:eb:ed:a3:fa: 2c:23:ac:72:dd:6c:01:b6:82:e4:70:4a:cc:85:a5:c6:cc:5e: fe:43:33:8e:62:d1:22:7c:af:78:64:3b:1c:70:97:ef:29:89: 2f:0e:62:db:76:ed:99:37:51:55:8d:55:cc:c7:99:49:8e:5d: a2:19:05:e5:69:c1:f3:d8:06:e9:4c:9f:8b:f7:0b:5e:41:9b: 43:2b:47:b5:7f:e7:21:20:9b:f7:f0:b6:ed:80:d4:64:e2:0b: 5a:b3:ca:57:ba:1a:82:4e:e0:bc:ee:e2:58:24:12:47:8a:de: e7:b3:21:16:64:4b:3d:8c:a6:e0:12:89:ab:f7:c9:30:57:79: a2:b6:43:27 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsbck9FZ7EwYrbPn+vEcc18MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkZGM1M2QxZGU3YTJlZjdlYjJiOTBjODA5MTU1NDQxNDAw NDI0ODgwHhcNMjUxMjE0MDYwMDM0WhcNMjUxMjE1MDYwMDM0WjAzMTEwLwYDVQQD EygxNDUyZTdiNDk3OWRiMWNkOTdiMzU5N2U1YTA5NzdhOTExYWZhMmI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApN4SQ3btCXqVzGQaDw+GUgj2m+ux VSCVgEQSZwUMv6KxVN6XGwGXzFZulf/TuHt2TFiVhhzFFUED+h7UqM268xvd7usr 4y44JtbXBNKAZ/lerXnEMIIwVIVUI8sV/VHcuQIDnmLVKPBzTIq1PzSwHXCyrOSQ 6cfqX8dSU0xb9lRH4sTWaQpz7bNNq8uWtInFDIod+rorncWyY3KR9P8VBq5ZbUPr I4GHnniPB8LD60QHaQ+a/TWNF6vTPPNXvSg26qxJ+p6y4Y/0w66ZDNyaRyScsFu3 JjndoVhQY5dhxLI7iSkwlQHGD6LxDyRW3bLDeXTdmjfgOk9vvwG0mxpKqQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBRS57SXnbHNl7NZfloJd6kRr6K3MB8GA1UdIwQY MBaAFB3cU9Heei736yuQyAkVVEFABCSIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSGR4VDBkNTZMdmZySzVESUNSVlVRVUFFSklnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy81NTc0MTQtZDk5My00Y2JmLTgxODEt NDg2NzFmYjdkMzgwLzEvSGR4VDBkNTZMdmZySzVESUNSVlVRVUFFSklnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNy81NTc0MTQtZDk5My00Y2JmLTgxODEtNDg2NzFmYjdkMzgw LzEvSGR4VDBkNTZMdmZySzVESUNSVlVRVUFFSklnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAM6JbSgFE 3EE37qXbL6E6Vir/ZTvpU4ZbVcqrrT/PiAQOko8W3ooNY+qX9kEmE3Q1+zvnoWuH iXeQu6wPMDLPTwnOmb3vIkrRkY9QrDB5jl6N0DzhqFSPI+jP7sWGA61L5x81YDrf g1pJ0PuyM46i/Ceqf/qr2P5B6c3r7aP6LCOsct1sAbaC5HBKzIWlxsxe/kMzjmLR InyveGQ7HHCX7ymJLw5i23btmTdRVY1VzMeZSY5dohkF5WnB89gG6Uyfi/cLXkGb QytHtX/nISCb9/C27YDUZOILWrPKV7oagk7gvO7iWCQSR4re57MhFmRLPYym4BKJ q/fJMFd5orZDJw== -----END CERTIFICATE-----Generated at Sun Dec 14 13:45:22 2025 by rpki-client