This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.mft File: U8kSoEEbsBdFBwktDKNaka15kFw.mft (raw, json) Hash identifier: q6I2ZmQK7yHknYt5S9NhVsYIuusH/Ap8Miu/H9XJoZU= Subject key identifier: DE:70:E4:66:5A:F7:C1:95:76:9E:ED:94:54:9F:EA:24:23:AA:FD:92 Authority key identifier: 53:C9:12:A0:41:1B:B0:17:45:07:09:2D:0C:A3:5A:91:AD:79:90:5C Certificate issuer: /CN=53c912a0411bb0174507092d0ca35a91ad79905c Certificate serial: 019B0F37A38F9A54155BDB9472D8A7A64F4D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U8kSoEEbsBdFBwktDKNaka15kFw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.mft Manifest number: 1777 Signing time: Thu 11 Dec 2025 21:01:03 +0000 Manifest this update: Thu 11 Dec 2025 21:01:03 +0000 Manifest next update: Fri 12 Dec 2025 21:01:03 +0000 Files and hashes: 1: 4bEGcfHd_w1hv-Zgrf8mtzNQOF8.roa (hash: Yz5lhUK8jG4fxty/HMD7XY7daqUIEiCINpgWbEB+eSk=) 2: U8kSoEEbsBdFBwktDKNaka15kFw.crl (hash: xkc02FTj/YKqGxalwBoOEsCImGoE2vmtNUanVfIYXQ4=) 3: V2UHD8Ezb4do1e1amF_9bhIjwm0.roa (hash: y2BL9g++y9jPkFQqtQIhZUhynDTSuho7DqIRo/6vN6o=) 4: Xx5AoKMFPro34EMu91UFlynTj2s.roa (hash: NlxbkxLq2MDyD2nlPITsFETHKzu5cELRgwcKIcBnH7U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.crl rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.mft rsync://rpki.ripe.net/repository/DEFAULT/U8kSoEEbsBdFBwktDKNaka15kFw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 19:27:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0f:37:a3:8f:9a:54:15:5b:db:94:72:d8:a7:a6:4f:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53c912a0411bb0174507092d0ca35a91ad79905c Validity Not Before: Dec 11 21:01:03 2025 GMT Not After : Dec 12 21:01:03 2025 GMT Subject: CN=de70e4665af7c195769eed94549fea2423aafd92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:a1:8b:a2:d5:e4:69:fa:04:a8:05:e9:d7:d2: df:8c:11:d0:75:f1:ec:7f:1a:fa:00:46:04:e1:8e: 07:8f:ea:cf:a4:fe:67:75:ff:70:3d:48:09:a1:af: 3e:30:32:30:8e:20:ec:2f:b8:2a:84:da:6c:b4:f7: e2:62:a2:3e:4a:98:6c:01:2a:a4:20:e1:16:df:6f: 07:e6:3f:46:a3:93:7c:b4:fc:0c:fc:70:57:42:da: 3b:d7:d7:2f:95:18:71:11:ed:76:da:ef:f5:81:49: e4:2b:31:31:01:04:6b:f6:a8:88:c7:a2:21:36:ff: 34:40:c2:c9:d8:50:f6:0c:94:28:9d:8d:7d:09:2b: 7e:eb:cf:7d:b3:35:69:77:4a:28:35:cf:e4:4e:10: 61:df:69:1a:20:6c:2e:70:cd:9f:4d:58:27:dc:1b: 98:60:d3:40:c5:54:dd:f2:6e:6f:0a:d8:26:4d:fb: 29:eb:cf:8b:50:c3:bd:ee:22:f9:9c:f0:51:2c:4d: 60:78:f5:14:68:6e:fa:21:44:93:f2:d7:07:1f:c7: 1d:92:db:57:7f:13:3e:3d:10:38:d1:0a:72:0f:69: 73:d9:c9:58:9c:b4:fe:6d:d5:e6:d5:a0:90:90:f2: c3:7c:52:a6:f2:56:61:2b:d4:8f:3c:80:c2:ae:8e: 6d:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:70:E4:66:5A:F7:C1:95:76:9E:ED:94:54:9F:EA:24:23:AA:FD:92 X509v3 Authority Key Identifier: keyid:53:C9:12:A0:41:1B:B0:17:45:07:09:2D:0C:A3:5A:91:AD:79:90:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U8kSoEEbsBdFBwktDKNaka15kFw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0d:c9:12:b8:fe:a7:05:ed:cd:7f:d2:70:21:42:92:a8:fb:d4: ff:d2:60:75:e5:48:41:0a:25:cc:db:03:1f:02:f8:a3:2d:c2: 94:a9:0c:21:b6:c5:5a:3f:0f:83:4b:57:48:d8:0c:f2:e9:ab: 46:7c:f6:cf:11:25:17:08:8b:04:5d:2e:4c:ee:9a:02:2d:e6: 66:1b:f5:49:e1:5b:f2:3b:cc:1b:78:4c:27:09:80:31:05:93: 6f:ba:16:f1:d1:e8:40:2c:9b:d0:ed:54:6f:02:56:cd:f1:cc: 92:2a:7b:27:c3:40:00:48:65:23:43:5e:26:8a:ec:db:ed:6b: b8:ec:9c:5d:87:30:a6:24:6b:48:86:a6:55:d0:74:29:31:69: 94:e8:e4:dc:3d:19:ca:c0:7d:be:c8:ba:df:cf:7a:39:86:2e: 37:85:e8:82:49:b4:35:c4:00:4e:57:6c:62:ff:62:ba:65:8c: 87:93:3c:80:c4:be:80:59:9d:d1:5a:24:dc:bb:da:05:76:91: 5d:21:e2:74:ff:0f:47:a5:d2:aa:e4:34:fd:2a:91:64:f0:4e: cc:71:08:7a:30:2c:aa:54:c9:b2:c5:91:3a:93:45:6d:69:e8: 64:9a:0b:25:1b:cf:91:48:2b:80:f6:65:8b:a3:be:67:bb:61: 6f:70:0d:7e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsPN6OPmlQVW9uUctinpk9NMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzYzkxMmEwNDExYmIwMTc0NTA3MDkyZDBjYTM1YTkxYWQ3 OTkwNWMwHhcNMjUxMjExMjEwMTAzWhcNMjUxMjEyMjEwMTAzWjAzMTEwLwYDVQQD EyhkZTcwZTQ2NjVhZjdjMTk1NzY5ZWVkOTQ1NDlmZWEyNDIzYWFmZDkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhqGLotXkafoEqAXp19LfjBHQdfHs fxr6AEYE4Y4Hj+rPpP5ndf9wPUgJoa8+MDIwjiDsL7gqhNpstPfiYqI+SphsASqk IOEW328H5j9Go5N8tPwM/HBXQto719cvlRhxEe122u/1gUnkKzExAQRr9qiIx6Ih Nv80QMLJ2FD2DJQonY19CSt+6899szVpd0ooNc/kThBh32kaIGwucM2fTVgn3BuY YNNAxVTd8m5vCtgmTfsp68+LUMO97iL5nPBRLE1gePUUaG76IUST8tcHH8cdkttX fxM+PRA40QpyD2lz2clYnLT+bdXm1aCQkPLDfFKm8lZhK9SPPIDCro5thwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN5w5GZa98GVdp7tlFSf6iQjqv2SMB8GA1UdIwQY MBaAFFPJEqBBG7AXRQcJLQyjWpGteZBcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVThrU29FRWJzQmRGQndrdERLTmFrYTE1a0Z3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi9kNzdlNjAtODkxNi00Zjk2LThlZDAt ZTIxYzQzNmI2MmVmLzEvVThrU29FRWJzQmRGQndrdERLTmFrYTE1a0Z3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNi9kNzdlNjAtODkxNi00Zjk2LThlZDAtZTIxYzQzNmI2MmVm LzEvVThrU29FRWJzQmRGQndrdERLTmFrYTE1a0Z3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADckSuP6n Be3Nf9JwIUKSqPvU/9JgdeVIQQolzNsDHwL4oy3ClKkMIbbFWj8Pg0tXSNgM8umr Rnz2zxElFwiLBF0uTO6aAi3mZhv1SeFb8jvMG3hMJwmAMQWTb7oW8dHoQCyb0O1U bwJWzfHMkip7J8NAAEhlI0NeJors2+1ruOycXYcwpiRrSIamVdB0KTFplOjk3D0Z ysB9vsi63896OYYuN4Xogkm0NcQATldsYv9iumWMh5M8gMS+gFmd0Vok3LvaBXaR XSHidP8PR6XSquQ0/SqRZPBOzHEIejAsqlTJssWROpNFbWnoZJoLJRvPkUgrgPZl i6O+Z7thb3ANfg== -----END CERTIFICATE-----Generated at Fri Dec 12 00:27:04 2025 by rpki-client