This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/cc2039-2451-405e-b06d-ac183a9adeb1/1/uwKqn6RfyXvbLm3I_Ap_A3HITek.mft File: uwKqn6RfyXvbLm3I_Ap_A3HITek.mft (raw, json) Hash identifier: VfuZr3Ar8Ww4NP6QqxaEtDo8is52o5NgVT6Vhda/X2s= Subject key identifier: AD:21:2F:95:E3:FD:F4:35:C4:D6:43:97:B4:2C:F5:45:DD:25:8C:9B Authority key identifier: BB:02:AA:9F:A4:5F:C9:7B:DB:2E:6D:C8:FC:0A:7F:03:71:C8:4D:E9 Certificate issuer: /CN=bb02aa9fa45fc97bdb2e6dc8fc0a7f0371c84de9 Certificate serial: 019B32D80CD1D03C75DFD47E766CB60ABE6A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uwKqn6RfyXvbLm3I_Ap_A3HITek.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/cc2039-2451-405e-b06d-ac183a9adeb1/1/uwKqn6RfyXvbLm3I_Ap_A3HITek.mft Manifest number: 032E Signing time: Thu 18 Dec 2025 19:02:58 +0000 Manifest this update: Thu 18 Dec 2025 19:02:58 +0000 Manifest next update: Fri 19 Dec 2025 19:02:58 +0000 Files and hashes: 1: R5Jq1FBCLvbBgZNwF7Icfpxv3yE.roa (hash: ir5koZmhGGNuMOajWDB8hvuKf0qBoIQa1qm6cPf+lx4=) 2: uwKqn6RfyXvbLm3I_Ap_A3HITek.crl (hash: mDk1tJIxwjLdh2LfBIR3RKj+iOqZILIz+UU7K+tOz2A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/cc2039-2451-405e-b06d-ac183a9adeb1/1/uwKqn6RfyXvbLm3I_Ap_A3HITek.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/cc2039-2451-405e-b06d-ac183a9adeb1/1/uwKqn6RfyXvbLm3I_Ap_A3HITek.mft rsync://rpki.ripe.net/repository/DEFAULT/uwKqn6RfyXvbLm3I_Ap_A3HITek.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 19:02:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:32:d8:0c:d1:d0:3c:75:df:d4:7e:76:6c:b6:0a:be:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bb02aa9fa45fc97bdb2e6dc8fc0a7f0371c84de9 Validity Not Before: Dec 18 19:02:58 2025 GMT Not After : Dec 19 19:02:58 2025 GMT Subject: CN=ad212f95e3fdf435c4d64397b42cf545dd258c9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:05:21:3d:6c:50:62:3c:65:bc:eb:b0:28:1b: 21:0f:43:1a:41:a0:5a:95:91:6e:1c:8a:eb:7a:c5: 53:82:2a:cc:4e:15:bc:11:52:61:c6:62:dd:2e:71: 2e:4a:5a:f2:5d:79:9f:17:e7:c6:46:09:c7:e5:02: d9:3e:0a:1c:7b:d3:d5:fc:7a:e9:07:39:da:c3:63: db:c8:fb:9e:6c:b1:b7:84:ca:e8:60:35:09:90:3a: 40:c3:ed:aa:f1:18:92:34:a5:cb:b0:eb:62:85:0e: 21:a7:db:f1:6e:b2:af:91:c3:4e:d2:e2:cf:eb:ea: 04:35:c5:90:ae:ad:91:8c:06:7d:49:23:d9:a0:76: b9:17:dd:49:11:41:2b:13:56:dd:fb:e2:7d:9d:8e: b2:6a:3e:e3:cd:a8:33:8f:bc:c8:51:e1:69:3e:bb: bf:ca:6f:62:fd:f0:78:a3:f6:ff:71:57:ce:74:93: 47:dd:ac:cb:68:4c:02:30:17:ff:dc:65:8e:8f:68: c5:45:40:13:a6:0c:24:a2:10:c4:2b:03:83:6f:c7: ff:d1:1c:60:48:6a:86:4a:ee:ed:85:2d:d9:28:35: f7:9b:e6:e6:2c:60:bf:b2:c6:5b:be:4c:74:61:2a: ec:ec:d5:59:39:47:ac:57:e3:44:b0:43:f2:62:39: 84:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:21:2F:95:E3:FD:F4:35:C4:D6:43:97:B4:2C:F5:45:DD:25:8C:9B X509v3 Authority Key Identifier: keyid:BB:02:AA:9F:A4:5F:C9:7B:DB:2E:6D:C8:FC:0A:7F:03:71:C8:4D:E9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uwKqn6RfyXvbLm3I_Ap_A3HITek.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/cc2039-2451-405e-b06d-ac183a9adeb1/1/uwKqn6RfyXvbLm3I_Ap_A3HITek.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/cc2039-2451-405e-b06d-ac183a9adeb1/1/uwKqn6RfyXvbLm3I_Ap_A3HITek.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 82:16:82:f2:28:3c:10:24:54:1b:82:f6:7f:ec:4f:bd:94:11: 5e:d8:ca:7c:cd:d6:99:45:a1:5c:c7:55:a0:72:91:56:b4:cc: 64:8e:34:e8:c8:01:bc:fc:16:90:f7:39:7a:21:d0:d8:8c:1d: 6f:23:77:27:80:2c:ec:85:63:75:1d:5f:63:5e:0b:87:28:0e: e8:72:f7:ea:d5:c9:45:1a:8b:ab:2e:dc:23:ec:ac:70:47:72: 5f:2d:87:eb:d6:02:68:90:79:90:19:b5:83:1e:cc:31:27:19: c1:24:68:af:61:1f:ed:c8:03:0e:d2:01:b9:2e:98:2e:b9:65: 60:be:ef:5c:48:f2:dd:10:73:8e:d0:e6:0e:74:af:52:83:f8: a1:da:01:49:fb:02:c8:30:60:c2:81:e1:da:a4:e1:71:7c:fb: 50:36:38:d7:c2:86:0e:d2:3e:8f:c1:5d:7e:76:47:27:90:b4: b0:c2:5a:88:ae:bf:35:b3:41:a9:03:68:6a:90:fe:3a:d9:e8: 4b:0e:d9:8d:3f:f5:5d:47:16:c9:10:55:87:64:e0:f1:8f:e4: 0c:7c:79:54:ec:61:22:f4:0f:17:08:22:66:da:96:9c:58:a4: 48:df:a3:8e:de:a1:7e:34:e4:7c:f5:d1:e5:38:bf:e6:5b:b7: a2:f2:e1:8d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsy2AzR0Dx139R+dmy2Cr5qMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJiMDJhYTlmYTQ1ZmM5N2JkYjJlNmRjOGZjMGE3ZjAzNzFj ODRkZTkwHhcNMjUxMjE4MTkwMjU4WhcNMjUxMjE5MTkwMjU4WjAzMTEwLwYDVQQD EyhhZDIxMmY5NWUzZmRmNDM1YzRkNjQzOTdiNDJjZjU0NWRkMjU4YzliMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7QUhPWxQYjxlvOuwKBshD0MaQaBa lZFuHIrresVTgirMThW8EVJhxmLdLnEuSlryXXmfF+fGRgnH5QLZPgoce9PV/Hrp Bznaw2PbyPuebLG3hMroYDUJkDpAw+2q8RiSNKXLsOtihQ4hp9vxbrKvkcNO0uLP 6+oENcWQrq2RjAZ9SSPZoHa5F91JEUErE1bd++J9nY6yaj7jzagzj7zIUeFpPru/ ym9i/fB4o/b/cVfOdJNH3azLaEwCMBf/3GWOj2jFRUATpgwkohDEKwODb8f/0Rxg SGqGSu7thS3ZKDX3m+bmLGC/ssZbvkx0YSrs7NVZOUesV+NEsEPyYjmE7QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK0hL5Xj/fQ1xNZDl7Qs9UXdJYybMB8GA1UdIwQY MBaAFLsCqp+kX8l72y5tyPwKfwNxyE3pMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdXdLcW42UmZ5WHZiTG0zSV9BcF9BM0hJVGVrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC9jYzIwMzktMjQ1MS00MDVlLWIwNmQt YWMxODNhOWFkZWIxLzEvdXdLcW42UmZ5WHZiTG0zSV9BcF9BM0hJVGVrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC9jYzIwMzktMjQ1MS00MDVlLWIwNmQtYWMxODNhOWFkZWIx LzEvdXdLcW42UmZ5WHZiTG0zSV9BcF9BM0hJVGVrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAghaC8ig8 ECRUG4L2f+xPvZQRXtjKfM3WmUWhXMdVoHKRVrTMZI406MgBvPwWkPc5eiHQ2Iwd byN3J4As7IVjdR1fY14LhygO6HL36tXJRRqLqy7cI+yscEdyXy2H69YCaJB5kBm1 gx7MMScZwSRor2Ef7cgDDtIBuS6YLrllYL7vXEjy3RBzjtDmDnSvUoP4odoBSfsC yDBgwoHh2qThcXz7UDY418KGDtI+j8FdfnZHJ5C0sMJaiK6/NbNBqQNoapD+Otno Sw7ZjT/1XUcWyRBVh2Tg8Y/kDHx5VOxhIvQPFwgiZtqWnFikSN+jjt6hfjTkfPXR 5Ti/5lu3ovLhjQ== -----END CERTIFICATE-----Generated at Fri Dec 19 03:11:23 2025 by rpki-client