This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/5d0928-e68f-4e19-b226-4036278b43f9/1/HdGoMITMB7cxuvkdqvMTbC9rddM.mft File: HdGoMITMB7cxuvkdqvMTbC9rddM.mft (raw, json) Hash identifier: rKssChqClwDIsGJHN5hM1DwyFbew9wuO8QnY+DcY6D4= Subject key identifier: 56:DC:68:C3:B6:32:11:D8:32:C1:1A:D6:AF:8B:16:9C:EB:50:99:A9 Authority key identifier: 1D:D1:A8:30:84:CC:07:B7:31:BA:F9:1D:AA:F3:13:6C:2F:6B:75:D3 Certificate issuer: /CN=1dd1a83084cc07b731baf91daaf3136c2f6b75d3 Certificate serial: 019B34C50AB4FCC7B36266E28678B0D988AE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HdGoMITMB7cxuvkdqvMTbC9rddM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/5d0928-e68f-4e19-b226-4036278b43f9/1/HdGoMITMB7cxuvkdqvMTbC9rddM.mft Manifest number: 1351 Signing time: Fri 19 Dec 2025 04:01:27 +0000 Manifest this update: Fri 19 Dec 2025 04:01:27 +0000 Manifest next update: Sat 20 Dec 2025 04:01:27 +0000 Files and hashes: 1: HdGoMITMB7cxuvkdqvMTbC9rddM.crl (hash: VclA671DEjXO67ZVTzTAYU2nYbNN6cwaOpPQwpn6/xk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/5d0928-e68f-4e19-b226-4036278b43f9/1/HdGoMITMB7cxuvkdqvMTbC9rddM.crl rsync://rpki.ripe.net/repository/DEFAULT/de/5d0928-e68f-4e19-b226-4036278b43f9/1/HdGoMITMB7cxuvkdqvMTbC9rddM.mft rsync://rpki.ripe.net/repository/DEFAULT/HdGoMITMB7cxuvkdqvMTbC9rddM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:34:c5:0a:b4:fc:c7:b3:62:66:e2:86:78:b0:d9:88:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1dd1a83084cc07b731baf91daaf3136c2f6b75d3 Validity Not Before: Dec 19 04:01:27 2025 GMT Not After : Dec 20 04:01:27 2025 GMT Subject: CN=56dc68c3b63211d832c11ad6af8b169ceb5099a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:7b:7c:bf:d3:45:8c:19:25:8c:27:fd:6b:c2: 7e:84:fa:99:66:ef:8a:d5:e8:81:a8:d8:8b:8f:ed: 97:e7:b1:4d:51:87:ae:39:3e:e2:5e:10:87:d5:5b: 6b:aa:59:27:29:05:ba:ec:24:79:a0:6d:fb:0c:58: c5:04:ab:05:5b:25:fe:ec:3a:b0:50:e7:a5:d1:2d: 26:a2:e7:c6:38:ec:0d:b6:13:98:c0:cb:dc:ae:72: 3a:e4:1d:a7:3a:c0:7c:eb:8d:d0:29:ef:81:56:ee: 7c:77:56:df:cf:f5:54:d4:b2:ad:8d:f9:d7:41:ed: 53:21:7b:6d:61:e9:e8:c2:d1:09:c3:3a:74:8d:23: 1b:d8:1c:c7:82:32:1c:4d:68:60:30:c6:ce:b8:2d: ee:a4:88:fd:fc:1d:4b:cd:a3:62:e1:32:c6:5c:af: 67:5a:6f:24:de:47:8a:00:6c:c2:8d:be:14:32:d5: 17:28:5a:db:2d:5e:c6:2e:a2:4f:69:46:e1:e7:6d: aa:d0:74:ca:c0:06:9f:43:c4:e5:b1:45:f3:be:c3: 83:27:da:68:cb:04:19:f0:da:ba:48:65:c4:83:ef: b1:bb:02:d5:e9:d3:99:f8:13:2e:93:c2:5b:25:33: 65:26:6c:8a:ae:3e:25:be:67:80:4b:32:03:a1:1e: 98:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:DC:68:C3:B6:32:11:D8:32:C1:1A:D6:AF:8B:16:9C:EB:50:99:A9 X509v3 Authority Key Identifier: keyid:1D:D1:A8:30:84:CC:07:B7:31:BA:F9:1D:AA:F3:13:6C:2F:6B:75:D3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HdGoMITMB7cxuvkdqvMTbC9rddM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/5d0928-e68f-4e19-b226-4036278b43f9/1/HdGoMITMB7cxuvkdqvMTbC9rddM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/de/5d0928-e68f-4e19-b226-4036278b43f9/1/HdGoMITMB7cxuvkdqvMTbC9rddM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 52:44:51:df:ec:67:6a:b5:3a:03:41:ec:f0:06:81:97:66:c9: 0d:01:49:43:bc:87:f5:c4:77:d2:89:65:16:79:56:f0:18:70: ac:1b:e5:7f:5c:7c:d5:26:c9:67:99:39:32:8d:d9:b4:69:7c: 02:55:12:93:a9:70:c8:0d:7b:c9:eb:02:ee:75:55:4b:ac:e5: 24:1a:ef:16:3d:eb:a6:68:61:65:e2:2f:3a:4c:e7:91:d5:8b: 42:70:e9:d7:7a:13:bd:da:c5:9c:a2:ff:75:d0:ea:25:10:a6: 47:9b:57:cb:f7:3c:6b:c8:9c:fe:b5:ec:f0:dc:6d:5b:15:3b: 7d:36:45:18:2d:24:e8:20:a3:2a:3d:a0:61:11:c8:13:96:f9: 8c:f3:06:b8:5f:fa:2e:c3:91:eb:0a:26:e6:75:8f:6c:9c:15: b8:67:40:be:76:90:be:20:ac:a6:96:06:01:eb:ee:19:b3:9f: 4e:79:47:07:1e:28:33:fa:a9:23:2c:aa:5c:60:c5:93:a6:62: c0:8a:14:ee:da:42:d7:3e:44:5e:4e:ce:32:86:82:1a:2b:01: 4e:2a:ea:fc:0b:13:54:d1:6d:2c:88:2e:56:51:0e:11:0e:50: b5:dd:2a:41:e8:32:d3:3a:63:e9:10:a0:bb:8c:fc:7c:b2:ad: eb:fb:d5:92 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs0xQq0/MezYmbihniw2YiuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkZDFhODMwODRjYzA3YjczMWJhZjkxZGFhZjMxMzZjMmY2 Yjc1ZDMwHhcNMjUxMjE5MDQwMTI3WhcNMjUxMjIwMDQwMTI3WjAzMTEwLwYDVQQD Eyg1NmRjNjhjM2I2MzIxMWQ4MzJjMTFhZDZhZjhiMTY5Y2ViNTA5OWE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArXt8v9NFjBkljCf9a8J+hPqZZu+K 1eiBqNiLj+2X57FNUYeuOT7iXhCH1VtrqlknKQW67CR5oG37DFjFBKsFWyX+7Dqw UOel0S0moufGOOwNthOYwMvcrnI65B2nOsB8643QKe+BVu58d1bfz/VU1LKtjfnX Qe1TIXttYenowtEJwzp0jSMb2BzHgjIcTWhgMMbOuC3upIj9/B1LzaNi4TLGXK9n Wm8k3keKAGzCjb4UMtUXKFrbLV7GLqJPaUbh522q0HTKwAafQ8TlsUXzvsODJ9po ywQZ8Nq6SGXEg++xuwLV6dOZ+BMuk8JbJTNlJmyKrj4lvmeASzIDoR6YJQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFbcaMO2MhHYMsEa1q+LFpzrUJmpMB8GA1UdIwQY MBaAFB3RqDCEzAe3Mbr5HarzE2wva3XTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSGRHb01JVE1CN2N4dXZrZHF2TVRiQzlyZGRNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS81ZDA5MjgtZTY4Zi00ZTE5LWIyMjYt NDAzNjI3OGI0M2Y5LzEvSGRHb01JVE1CN2N4dXZrZHF2TVRiQzlyZGRNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZS81ZDA5MjgtZTY4Zi00ZTE5LWIyMjYtNDAzNjI3OGI0M2Y5 LzEvSGRHb01JVE1CN2N4dXZrZHF2TVRiQzlyZGRNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUkRR3+xn arU6A0Hs8AaBl2bJDQFJQ7yH9cR30ollFnlW8BhwrBvlf1x81SbJZ5k5Mo3ZtGl8 AlUSk6lwyA17yesC7nVVS6zlJBrvFj3rpmhhZeIvOkznkdWLQnDp13oTvdrFnKL/ ddDqJRCmR5tXy/c8a8ic/rXs8NxtWxU7fTZFGC0k6CCjKj2gYRHIE5b5jPMGuF/6 LsOR6wom5nWPbJwVuGdAvnaQviCsppYGAevuGbOfTnlHBx4oM/qpIyyqXGDFk6Zi wIoU7tpC1z5EXk7OMoaCGisBTirq/AsTVNFtLIguVlEOEQ5Qtd0qQegy0zpj6RCg u4z8fLKt6/vVkg== -----END CERTIFICATE-----Generated at Fri Dec 19 08:23:22 2025 by rpki-client