This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.mft File: uv5tfV8eRHjRoCUXHaawObJjAR8.mft (raw, json) Hash identifier: Cb8HTTpuDtNwpi7SMadMs5V2HhU6dgldo1Sb16IUpuk= Subject key identifier: BD:D7:71:2B:C7:F3:4D:6A:3E:6A:4F:39:33:86:49:44:4C:CC:64:14 Authority key identifier: BA:FE:6D:7D:5F:1E:44:78:D1:A0:25:17:1D:A6:B0:39:B2:63:01:1F Certificate issuer: /CN=bafe6d7d5f1e4478d1a025171da6b039b263011f Certificate serial: 019B19BAFFC39613CD1AABB0402E27F35E50 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uv5tfV8eRHjRoCUXHaawObJjAR8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.mft Manifest number: 0B19 Signing time: Sat 13 Dec 2025 22:00:44 +0000 Manifest this update: Sat 13 Dec 2025 22:00:44 +0000 Manifest next update: Sun 14 Dec 2025 22:00:44 +0000 Files and hashes: 1: uv5tfV8eRHjRoCUXHaawObJjAR8.crl (hash: zheh0C2iPfpNqka+t2WFCl0SbbJ0GHM1Uy3/QLSIJZs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.crl rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.mft rsync://rpki.ripe.net/repository/DEFAULT/uv5tfV8eRHjRoCUXHaawObJjAR8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 17:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:19:ba:ff:c3:96:13:cd:1a:ab:b0:40:2e:27:f3:5e:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bafe6d7d5f1e4478d1a025171da6b039b263011f Validity Not Before: Dec 13 22:00:44 2025 GMT Not After : Dec 14 22:00:44 2025 GMT Subject: CN=bdd7712bc7f34d6a3e6a4f39338649444ccc6414 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:da:a0:05:e1:10:52:0f:5d:53:db:e2:e2:78: 16:cf:fd:b1:3e:4f:5a:52:7c:8c:29:90:b5:17:66: 2d:68:0c:af:fe:b5:4e:02:f6:7b:6a:cd:8e:3e:5e: d6:2a:ad:9e:e8:17:8f:7c:0e:d4:3a:15:01:05:3d: 35:42:44:a5:d4:60:27:9b:93:1c:af:1d:08:c5:57: 39:a7:64:54:82:28:8b:d1:91:33:bb:8e:75:9b:55: 19:67:6b:a8:34:63:9a:a5:16:3c:92:46:b2:e1:7f: 92:a1:3d:67:74:a1:1a:42:4c:db:4b:fa:92:47:45: 0d:36:88:2f:14:da:e8:bb:35:4a:33:49:59:12:7b: db:22:0a:95:e9:67:ba:6f:1c:1b:c4:07:e0:0a:31: a5:09:f9:b5:36:44:be:d4:80:c6:d2:28:b0:32:29: 0a:f6:65:0a:54:aa:06:da:94:e1:60:ad:53:a8:c7: e5:16:6b:e1:ae:09:60:2b:e3:ba:82:9e:0f:30:a1: 0f:70:c7:70:ba:5d:d1:21:bf:56:c2:f5:45:a1:1e: a3:f7:e0:8f:1b:de:9f:a2:10:f5:a6:31:0f:c9:ed: ca:59:f5:a7:fb:8a:a8:a6:37:f3:7f:04:e4:1d:f9: b5:4e:15:b4:f7:c6:57:4c:4a:50:12:d9:f4:fe:b3: 5c:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:D7:71:2B:C7:F3:4D:6A:3E:6A:4F:39:33:86:49:44:4C:CC:64:14 X509v3 Authority Key Identifier: keyid:BA:FE:6D:7D:5F:1E:44:78:D1:A0:25:17:1D:A6:B0:39:B2:63:01:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uv5tfV8eRHjRoCUXHaawObJjAR8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 71:94:09:35:5f:42:fa:f0:82:1a:03:24:7a:d9:83:0f:f3:13: b1:6f:d7:99:de:a7:1a:ce:84:4b:33:39:bb:0e:7f:f2:49:f3: 6b:cf:8e:2b:54:f7:fd:4a:13:57:76:8c:4f:11:c9:ea:c4:ac: ad:20:e1:ea:36:29:ba:a2:a7:2e:ab:0d:1d:7a:81:f4:9c:22: 25:c7:a3:98:91:39:c6:74:a8:fb:ae:a7:87:bd:af:7c:71:74: 65:d8:3b:ca:34:bc:a6:25:fa:dc:d7:1a:98:3d:7e:ea:50:e7: 5d:cf:a0:d7:d2:11:5a:e1:56:0b:d3:b5:28:8e:da:44:d8:47: 20:13:d2:0c:df:82:ca:09:5d:a1:be:17:07:d8:03:12:66:3b: 5a:bd:c8:3a:f5:6a:0c:94:c8:39:6b:ee:75:95:66:73:f9:b0: c2:e3:59:a8:5f:e7:16:8d:ba:94:2b:56:f1:fe:76:3d:60:81: 04:b8:cd:e3:d2:00:71:c9:27:ba:1e:73:59:4b:e2:8b:64:32: ac:ea:b2:8b:14:8e:66:14:a4:83:d5:74:fe:ad:eb:3f:3b:43: 0e:9d:41:7f:2c:7e:27:cf:b2:40:00:fe:66:08:8e:a5:76:a8: 7e:ad:21:12:65:9d:68:3f:dc:83:7f:d7:81:14:f1:54:df:f3: 16:99:f9:cb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsZuv/DlhPNGquwQC4n815QMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhZmU2ZDdkNWYxZTQ0NzhkMWEwMjUxNzFkYTZiMDM5YjI2 MzAxMWYwHhcNMjUxMjEzMjIwMDQ0WhcNMjUxMjE0MjIwMDQ0WjAzMTEwLwYDVQQD EyhiZGQ3NzEyYmM3ZjM0ZDZhM2U2YTRmMzkzMzg2NDk0NDRjY2M2NDE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwNqgBeEQUg9dU9vi4ngWz/2xPk9a UnyMKZC1F2YtaAyv/rVOAvZ7as2OPl7WKq2e6BePfA7UOhUBBT01QkSl1GAnm5Mc rx0IxVc5p2RUgiiL0ZEzu451m1UZZ2uoNGOapRY8kkay4X+SoT1ndKEaQkzbS/qS R0UNNogvFNrouzVKM0lZEnvbIgqV6We6bxwbxAfgCjGlCfm1NkS+1IDG0iiwMikK 9mUKVKoG2pThYK1TqMflFmvhrglgK+O6gp4PMKEPcMdwul3RIb9WwvVFoR6j9+CP G96fohD1pjEPye3KWfWn+4qopjfzfwTkHfm1ThW098ZXTEpQEtn0/rNcSwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL3XcSvH801qPmpPOTOGSURMzGQUMB8GA1UdIwQY MBaAFLr+bX1fHkR40aAlFx2msDmyYwEfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdXY1dGZWOGVSSGpSb0NVWEhhYXdPYkpqQVI4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS85ZmY4NmMtMWY3Yi00YmM3LTk3NmEt ZGZiNzliYmExYjY4LzEvdXY1dGZWOGVSSGpSb0NVWEhhYXdPYkpqQVI4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS85ZmY4NmMtMWY3Yi00YmM3LTk3NmEtZGZiNzliYmExYjY4 LzEvdXY1dGZWOGVSSGpSb0NVWEhhYXdPYkpqQVI4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcZQJNV9C +vCCGgMketmDD/MTsW/Xmd6nGs6ESzM5uw5/8knza8+OK1T3/UoTV3aMTxHJ6sSs rSDh6jYpuqKnLqsNHXqB9JwiJcejmJE5xnSo+66nh72vfHF0Zdg7yjS8piX63Nca mD1+6lDnXc+g19IRWuFWC9O1KI7aRNhHIBPSDN+Cygldob4XB9gDEmY7Wr3IOvVq DJTIOWvudZVmc/mwwuNZqF/nFo26lCtW8f52PWCBBLjN49IAccknuh5zWUvii2Qy rOqyixSOZhSkg9V0/q3rPztDDp1Bfyx+J8+yQAD+ZgiOpXaofq0hEmWdaD/cg3/X gRTxVN/zFpn5yw== -----END CERTIFICATE-----Generated at Sun Dec 14 01:52:58 2025 by rpki-client