This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/56d200-416d-4430-85c8-87d3e181e594/1/Hms-F_m50MMT0FMCNCUnWydF_IM.mft File: Hms-F_m50MMT0FMCNCUnWydF_IM.mft (raw, json) Hash identifier: cHOHluIPONKEcF6X/FbyNZgx6leng71KHxcCmprQaAY= Subject key identifier: 56:1D:FB:CB:5E:01:BD:FF:AC:AD:6C:04:F6:B7:7C:EF:72:35:DF:0F Authority key identifier: 1E:6B:3E:17:F9:B9:D0:C3:13:D0:53:02:34:25:27:5B:27:45:FC:83 Certificate issuer: /CN=1e6b3e17f9b9d0c313d053023425275b2745fc83 Certificate serial: 019B3CB4F9D25452A58E4EC8DE15956692CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hms-F_m50MMT0FMCNCUnWydF_IM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/56d200-416d-4430-85c8-87d3e181e594/1/Hms-F_m50MMT0FMCNCUnWydF_IM.mft Manifest number: 171A Signing time: Sat 20 Dec 2025 17:00:51 +0000 Manifest this update: Sat 20 Dec 2025 17:00:51 +0000 Manifest next update: Sun 21 Dec 2025 17:00:51 +0000 Files and hashes: 1: Hms-F_m50MMT0FMCNCUnWydF_IM.crl (hash: FcTN8l7BQzzQQTY6Jj7FoUW1P35W988VI2prjH2Qjdk=) 2: UdTz9ESnCBONhFhPnKTJSPAPKew.roa (hash: 0eKPRYHWi1Fk+s60KVEthvqfye7EFF2oFsVLARt647E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/56d200-416d-4430-85c8-87d3e181e594/1/Hms-F_m50MMT0FMCNCUnWydF_IM.crl rsync://rpki.ripe.net/repository/DEFAULT/33/56d200-416d-4430-85c8-87d3e181e594/1/Hms-F_m50MMT0FMCNCUnWydF_IM.mft rsync://rpki.ripe.net/repository/DEFAULT/Hms-F_m50MMT0FMCNCUnWydF_IM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 15:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3c:b4:f9:d2:54:52:a5:8e:4e:c8:de:15:95:66:92:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1e6b3e17f9b9d0c313d053023425275b2745fc83 Validity Not Before: Dec 20 17:00:51 2025 GMT Not After : Dec 21 17:00:51 2025 GMT Subject: CN=561dfbcb5e01bdffacad6c04f6b77cef7235df0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:59:9a:95:35:f4:4a:64:6d:51:c2:84:c4:0e: c7:aa:78:5a:0a:2e:e5:f1:6d:fb:d4:cc:bb:55:28: a9:ac:fd:a7:6d:ec:3e:9e:88:62:2d:c7:7e:bd:83: dc:97:89:41:c1:9b:64:69:c9:97:a8:0a:51:04:69: 7c:e1:54:4f:88:2b:64:cf:0e:e7:d4:95:52:29:fa: 01:62:5e:5a:b0:11:e3:14:e8:5a:7a:cc:50:d8:8e: de:68:08:c5:f6:1f:0d:f5:e1:0b:57:78:ae:6d:ff: af:71:6f:ae:e3:6c:63:98:b7:b1:6d:a3:0a:f3:ae: 2d:56:ef:f7:18:97:de:d9:66:f1:8b:42:58:a2:b2: 65:e2:f3:06:9d:02:93:57:e1:c3:db:1f:e4:59:24: d8:89:36:9b:ae:1d:78:fb:86:4b:78:b3:28:a6:10: ba:80:20:f0:98:08:43:8a:d7:15:cd:fc:8a:6d:ae: 1d:ad:ea:a3:23:bd:a4:1c:38:7d:71:24:1e:fb:96: d1:99:63:3d:44:94:e9:e9:b1:75:df:b6:0d:2f:24: f2:87:df:71:e4:92:27:48:2b:2f:04:8d:91:52:f2: 07:84:72:31:c0:4b:d3:55:31:5a:ea:39:f7:25:37: 2e:a6:2c:c2:ee:07:ce:2e:e9:8a:fc:ad:56:af:2d: 28:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:1D:FB:CB:5E:01:BD:FF:AC:AD:6C:04:F6:B7:7C:EF:72:35:DF:0F X509v3 Authority Key Identifier: keyid:1E:6B:3E:17:F9:B9:D0:C3:13:D0:53:02:34:25:27:5B:27:45:FC:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hms-F_m50MMT0FMCNCUnWydF_IM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/56d200-416d-4430-85c8-87d3e181e594/1/Hms-F_m50MMT0FMCNCUnWydF_IM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/33/56d200-416d-4430-85c8-87d3e181e594/1/Hms-F_m50MMT0FMCNCUnWydF_IM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9e:6a:36:34:ec:d7:29:b7:ca:45:04:36:82:3b:84:02:2f:e8: 9f:5a:e9:f5:71:e3:2e:ce:6f:71:45:b6:1d:5d:0a:dc:2e:71: 80:16:34:ed:ff:cf:1a:69:22:7c:c9:8d:e8:f5:28:4f:25:4b: 13:aa:35:1a:32:e4:3e:27:e3:ad:8d:79:72:ec:25:45:12:bf: 5f:64:be:b8:d3:d6:84:10:79:bf:77:85:0d:96:42:2a:9f:58: 00:2d:f2:bb:8f:45:2f:aa:41:6c:0f:43:02:79:69:b0:a4:61: b3:ae:9e:be:62:11:2a:69:56:d2:d8:0f:32:eb:88:09:00:71: 9a:c1:e6:83:77:b0:6c:6d:93:c3:9c:90:85:ac:f0:5d:ad:65: e2:bd:b3:9b:23:fb:22:5a:a6:27:ff:f9:1c:5b:dd:de:bd:1f: 15:93:b4:3d:69:6e:14:d1:60:b4:8a:c2:32:b1:f8:85:ff:13: d8:10:dc:b0:bc:54:d1:99:34:29:46:94:c7:ad:5e:3d:08:bb: 8f:80:75:47:91:63:21:3d:ec:0d:fe:2a:97:99:cf:50:e0:b1: 03:ef:a5:20:25:38:65:87:c5:09:2d:7b:d1:91:32:fe:6c:0f: 2d:52:61:75:e9:20:8c:2f:6c:a9:7d:0a:aa:d2:22:c9:08:07: b0:01:41:f7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs8tPnSVFKljk7I3hWVZpLLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlNmIzZTE3ZjliOWQwYzMxM2QwNTMwMjM0MjUyNzViMjc0 NWZjODMwHhcNMjUxMjIwMTcwMDUxWhcNMjUxMjIxMTcwMDUxWjAzMTEwLwYDVQQD Eyg1NjFkZmJjYjVlMDFiZGZmYWNhZDZjMDRmNmI3N2NlZjcyMzVkZjBmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwFmalTX0SmRtUcKExA7HqnhaCi7l 8W371My7VSiprP2nbew+nohiLcd+vYPcl4lBwZtkacmXqApRBGl84VRPiCtkzw7n 1JVSKfoBYl5asBHjFOhaesxQ2I7eaAjF9h8N9eELV3iubf+vcW+u42xjmLexbaMK 864tVu/3GJfe2Wbxi0JYorJl4vMGnQKTV+HD2x/kWSTYiTabrh14+4ZLeLMophC6 gCDwmAhDitcVzfyKba4dreqjI72kHDh9cSQe+5bRmWM9RJTp6bF137YNLyTyh99x 5JInSCsvBI2RUvIHhHIxwEvTVTFa6jn3JTcupizC7gfOLumK/K1Wry0ofQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFYd+8teAb3/rK1sBPa3fO9yNd8PMB8GA1UdIwQY MBaAFB5rPhf5udDDE9BTAjQlJ1snRfyDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSG1zLUZfbTUwTU1UMEZNQ05DVW5XeWRGX0lNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy81NmQyMDAtNDE2ZC00NDMwLTg1Yzgt ODdkM2UxODFlNTk0LzEvSG1zLUZfbTUwTU1UMEZNQ05DVW5XeWRGX0lNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMy81NmQyMDAtNDE2ZC00NDMwLTg1YzgtODdkM2UxODFlNTk0 LzEvSG1zLUZfbTUwTU1UMEZNQ05DVW5XeWRGX0lNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnmo2NOzX KbfKRQQ2gjuEAi/on1rp9XHjLs5vcUW2HV0K3C5xgBY07f/PGmkifMmN6PUoTyVL E6o1GjLkPifjrY15cuwlRRK/X2S+uNPWhBB5v3eFDZZCKp9YAC3yu49FL6pBbA9D AnlpsKRhs66evmIRKmlW0tgPMuuICQBxmsHmg3ewbG2Tw5yQhazwXa1l4r2zmyP7 IlqmJ//5HFvd3r0fFZO0PWluFNFgtIrCMrH4hf8T2BDcsLxU0Zk0KUaUx61ePQi7 j4B1R5FjIT3sDf4ql5nPUOCxA++lICU4ZYfFCS170ZEy/mwPLVJhdekgjC9sqX0K qtIiyQgHsAFB9w== -----END CERTIFICATE-----Generated at Sun Dec 21 01:10:03 2025 by rpki-client