This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft File: Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft (raw, json) Hash identifier: g4axA7j5cNuGuWuOu0kWYF8tIIOfttnSsRnowS8xF6U= Subject key identifier: 84:C2:B7:B5:30:46:C6:16:E5:EA:7C:88:66:2A:60:24:A2:1E:E5:41 Authority key identifier: 1D:DE:74:63:ED:84:98:02:0D:D3:92:32:24:59:D2:CF:40:F2:26:B2 Certificate issuer: /CN=1dde7463ed8498020dd392322459d2cf40f226b2 Certificate serial: 019B4E4DDD2C4D61B18889E80B1FE7609EDB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hd50Y-2EmAIN05IyJFnSz0DyJrI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft Manifest number: 0BC6 Signing time: Wed 24 Dec 2025 03:01:24 +0000 Manifest this update: Wed 24 Dec 2025 03:01:24 +0000 Manifest next update: Thu 25 Dec 2025 03:01:24 +0000 Files and hashes: 1: Hd50Y-2EmAIN05IyJFnSz0DyJrI.crl (hash: nDxCeD3mntDFAqUghpMWsfpY3s6zvbuaEoRMhHkseJ0=) 2: ZeLziwVcKFCzlXV46oF95sJgQFI.roa (hash: YJb2jXI2aFgonHfwW6/ZhSjIG0Uw2jOF0vpZ55dF3+8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft rsync://rpki.ripe.net/repository/DEFAULT/Hd50Y-2EmAIN05IyJFnSz0DyJrI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 03:01:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4e:4d:dd:2c:4d:61:b1:88:89:e8:0b:1f:e7:60:9e:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1dde7463ed8498020dd392322459d2cf40f226b2 Validity Not Before: Dec 24 03:01:24 2025 GMT Not After : Dec 25 03:01:24 2025 GMT Subject: CN=84c2b7b53046c616e5ea7c88662a6024a21ee541 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:09:db:21:cd:88:57:73:a3:df:9a:f1:1e:cf: 03:28:ab:38:26:05:7c:a9:31:e0:a8:9c:78:09:4b: 95:c0:d6:25:39:64:cb:45:ce:20:f6:51:27:71:e8: b1:56:fd:23:7f:3e:b3:0d:c0:8e:70:b7:76:10:57: 57:4c:98:a0:73:7c:8c:6f:09:9a:c8:95:04:af:71: 36:fa:0a:bb:28:f1:8c:4b:8a:d4:02:0e:ff:6d:96: 01:63:b1:b8:ea:49:31:5f:83:cd:1a:00:28:97:26: b7:d6:76:bf:d4:f7:f3:e8:fe:ce:15:e2:79:43:6f: 0b:f9:73:72:bd:46:f4:5d:8f:b3:9f:ea:08:f0:ba: 94:a3:4f:8c:bf:2b:fb:e8:a7:55:09:a6:09:da:f2: 24:40:98:88:19:10:10:9e:dc:12:a2:9c:9f:5c:9c: 59:e6:82:20:33:9d:3d:55:07:ee:0b:bf:e8:a3:a9: 0c:04:07:86:bb:91:a5:aa:df:8a:18:09:bd:ad:43: b4:ad:95:17:e6:82:6c:2b:10:11:dc:a9:1e:e5:b9: e6:ac:ef:98:fb:46:fd:85:ec:a8:cc:16:fd:c0:04: 4b:1a:5d:c7:8e:29:49:e7:e2:e2:b0:40:6f:3c:97: b8:e5:89:d2:c2:cb:3e:82:4b:a1:21:43:10:72:49: 8c:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:C2:B7:B5:30:46:C6:16:E5:EA:7C:88:66:2A:60:24:A2:1E:E5:41 X509v3 Authority Key Identifier: keyid:1D:DE:74:63:ED:84:98:02:0D:D3:92:32:24:59:D2:CF:40:F2:26:B2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hd50Y-2EmAIN05IyJFnSz0DyJrI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/55283a-09a0-4da8-a968-43c7f027c6e4/1/Hd50Y-2EmAIN05IyJFnSz0DyJrI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a7:0d:86:9b:fb:20:01:14:8c:07:a5:bf:76:a6:ae:b2:08:6e: 17:e6:45:d7:fb:26:2f:b3:b6:54:fa:e6:69:ea:b9:56:5e:69: 4c:a3:fe:bc:12:3a:d8:4f:f9:60:8b:12:81:f1:09:5b:33:4c: fe:7d:42:c2:c7:fb:7a:4c:4e:4e:7d:1e:61:c4:e5:a6:e8:c2: 92:6f:81:3f:53:93:44:b9:18:8e:c4:75:1a:86:3d:bf:b1:70: 55:78:f1:a2:1d:e7:6f:64:c8:b9:cb:33:01:7c:1d:b7:80:52: 13:be:f2:43:af:c6:6c:ec:73:bc:ca:84:84:1c:c4:c4:74:aa: 98:ae:be:52:c1:63:4b:86:ff:5d:fc:a5:d1:d0:9e:42:09:74: 9d:8f:02:e6:fa:98:2e:76:e7:29:63:76:b1:c2:75:46:f1:ba: 86:93:1d:18:c9:cd:2e:66:d0:67:e1:6a:8a:8f:a7:6b:06:b5: 08:a6:7c:a9:25:85:be:59:eb:74:66:19:e3:d6:35:58:f4:eb: 03:ee:4d:69:3a:91:62:59:e3:78:b4:fd:6e:95:60:6e:75:14: e4:15:03:2b:ce:25:9f:53:47:76:d8:d8:11:a8:a9:5e:fc:44: 73:25:86:6e:a2:4b:aa:f9:58:ff:90:ce:af:0f:9d:24:a8:61: 20:f2:ee:e2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtOTd0sTWGxiInoCx/nYJ7bMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkZGU3NDYzZWQ4NDk4MDIwZGQzOTIzMjI0NTlkMmNmNDBm MjI2YjIwHhcNMjUxMjI0MDMwMTI0WhcNMjUxMjI1MDMwMTI0WjAzMTEwLwYDVQQD Eyg4NGMyYjdiNTMwNDZjNjE2ZTVlYTdjODg2NjJhNjAyNGEyMWVlNTQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArgnbIc2IV3Oj35rxHs8DKKs4JgV8 qTHgqJx4CUuVwNYlOWTLRc4g9lEnceixVv0jfz6zDcCOcLd2EFdXTJigc3yMbwma yJUEr3E2+gq7KPGMS4rUAg7/bZYBY7G46kkxX4PNGgAolya31na/1Pfz6P7OFeJ5 Q28L+XNyvUb0XY+zn+oI8LqUo0+Mvyv76KdVCaYJ2vIkQJiIGRAQntwSopyfXJxZ 5oIgM509VQfuC7/oo6kMBAeGu5Glqt+KGAm9rUO0rZUX5oJsKxAR3Kke5bnmrO+Y +0b9heyozBb9wARLGl3HjilJ5+LisEBvPJe45YnSwss+gkuhIUMQckmMBQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFITCt7UwRsYW5ep8iGYqYCSiHuVBMB8GA1UdIwQY MBaAFB3edGPthJgCDdOSMiRZ0s9A8iayMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSGQ1MFktMkVtQUlOMDVJeUpGblN6MER5SnJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi81NTI4M2EtMDlhMC00ZGE4LWE5Njgt NDNjN2YwMjdjNmU0LzEvSGQ1MFktMkVtQUlOMDVJeUpGblN6MER5SnJJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi81NTI4M2EtMDlhMC00ZGE4LWE5NjgtNDNjN2YwMjdjNmU0 LzEvSGQ1MFktMkVtQUlOMDVJeUpGblN6MER5SnJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApw2Gm/sg ARSMB6W/dqausghuF+ZF1/smL7O2VPrmaeq5Vl5pTKP+vBI62E/5YIsSgfEJWzNM /n1Cwsf7ekxOTn0eYcTlpujCkm+BP1OTRLkYjsR1GoY9v7FwVXjxoh3nb2TIucsz AXwdt4BSE77yQ6/GbOxzvMqEhBzExHSqmK6+UsFjS4b/Xfyl0dCeQgl0nY8C5vqY LnbnKWN2scJ1RvG6hpMdGMnNLmbQZ+Fqio+nawa1CKZ8qSWFvlnrdGYZ49Y1WPTr A+5NaTqRYlnjeLT9bpVgbnUU5BUDK84ln1NHdtjYEaipXvxEcyWGbqJLqvlY/5DO rw+dJKhhIPLu4g== -----END CERTIFICATE-----Generated at Wed Dec 24 11:27:43 2025 by rpki-client