This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft File: U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft (raw, json) Hash identifier: FnahFahA6KLonAiz2dTISIsqkqnCxMuVxbeLyTK/pWY= Subject key identifier: 98:C1:D0:95:0D:E4:88:36:30:0E:3E:92:B9:1F:EC:01:F8:4C:00:B7 Authority key identifier: 53:46:C4:D2:00:FE:50:35:C6:1B:0C:89:4B:94:54:E7:2D:27:C9:1F Certificate issuer: /CN=5346c4d200fe5035c61b0c894b9454e72d27c91f Certificate serial: 019B1494CF72859E58CE4AC9114DC4B3BDBE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U0bE0gD-UDXGGwyJS5RU5y0nyR8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft Manifest number: 1775 Signing time: Fri 12 Dec 2025 22:00:55 +0000 Manifest this update: Fri 12 Dec 2025 22:00:55 +0000 Manifest next update: Sat 13 Dec 2025 22:00:55 +0000 Files and hashes: 1: ECD7apX3eHOOfrh7KlF7PFjYZG4.roa (hash: 71V9g38SO7JBAaQym2ThymDLgJtxxyPJi6oj0bVn0zY=) 2: U0bE0gD-UDXGGwyJS5RU5y0nyR8.crl (hash: g1ArP6SW/O1pfDIqleVhL/ZghpZsfGON17uUT8Z5z88=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.crl rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft rsync://rpki.ripe.net/repository/DEFAULT/U0bE0gD-UDXGGwyJS5RU5y0nyR8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Dec 2025 16:30:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:14:94:cf:72:85:9e:58:ce:4a:c9:11:4d:c4:b3:bd:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5346c4d200fe5035c61b0c894b9454e72d27c91f Validity Not Before: Dec 12 22:00:55 2025 GMT Not After : Dec 13 22:00:55 2025 GMT Subject: CN=98c1d0950de48836300e3e92b91fec01f84c00b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a6:ab:ac:f3:3a:65:eb:f3:85:98:f1:71:d8: bf:0f:95:8f:e1:d1:d8:de:66:9c:4f:27:f8:42:14: 56:99:e5:00:8a:49:32:15:c2:57:3e:ff:06:65:e3: b9:e2:9a:16:0c:c5:51:57:15:d1:40:b7:db:7c:4a: 91:70:4c:30:81:3e:c2:48:87:bf:57:b7:46:b7:91: 78:45:29:bb:15:d1:de:03:0c:63:07:0b:a6:51:45: e1:d5:16:b6:79:ab:c1:3a:e4:d9:8d:e1:5a:34:9b: 04:4e:2b:5a:37:73:0c:3f:46:e4:2a:50:25:1d:05: 95:9f:ba:9b:c6:60:e5:5a:63:87:f5:ec:30:f4:78: 8c:97:3a:c7:15:08:2f:7f:25:2d:44:72:f0:95:e5: ae:70:59:1b:88:2a:2e:70:5e:0f:2c:e2:0d:11:5f: 2e:df:6f:04:45:d3:e2:c2:aa:5a:5d:f9:4c:24:7f: 36:d6:9e:c2:79:24:c1:5b:9e:a8:93:cb:cf:26:22: 7b:02:33:59:be:1d:be:8d:65:02:62:e9:d2:95:32: f0:1d:ce:b7:fc:21:53:33:5a:16:f0:aa:5a:ac:c3: df:43:0c:40:be:74:ef:a4:9f:69:fc:fb:39:07:b3: 3c:9e:ae:02:ba:89:92:c6:75:0e:a0:ab:76:6b:d2: ca:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:C1:D0:95:0D:E4:88:36:30:0E:3E:92:B9:1F:EC:01:F8:4C:00:B7 X509v3 Authority Key Identifier: keyid:53:46:C4:D2:00:FE:50:35:C6:1B:0C:89:4B:94:54:E7:2D:27:C9:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U0bE0gD-UDXGGwyJS5RU5y0nyR8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:95:e4:a9:97:da:a5:a3:9e:9d:ce:ec:4e:f1:76:ef:6c:de: 44:72:0f:33:5c:53:72:1e:8a:56:4d:f9:8e:8b:ef:e7:cc:c5: fc:75:45:04:f0:46:bd:6d:3e:e8:31:4d:7c:18:fb:2c:a7:60: fd:09:af:33:d6:a9:b2:c2:6f:9d:9e:98:8c:4a:cb:44:bc:6a: a4:7a:aa:48:b8:c5:4d:25:a2:95:1b:55:3c:55:5c:a5:11:96: 1a:5b:0a:f0:69:bf:15:e8:e2:69:fc:07:bc:23:6a:26:7b:54: 88:24:88:f0:ab:c8:5b:af:70:61:a6:d2:17:47:2c:b3:4a:17: 3e:7b:d7:b9:7a:99:e8:84:fc:af:8b:a6:d8:41:a4:89:10:ef: f1:c6:10:b6:40:f7:21:3e:f2:ca:9f:b1:a7:4b:55:43:31:dd: b7:fb:20:95:db:6e:3b:a8:91:22:96:6b:fe:a4:7e:0d:fb:b3: eb:0d:58:b6:a6:3b:1a:c9:77:c9:f7:57:41:39:fa:29:bd:dc: b6:96:dc:2a:1d:92:e6:e6:cb:17:ab:25:ee:37:48:8f:08:60: 64:48:68:12:fc:59:25:b9:79:e7:3c:3c:45:34:e3:27:74:94: 9f:ab:9c:9a:9f:1b:f8:3a:03:35:22:cc:34:16:a3:2d:87:42: 68:6a:cd:55 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsUlM9yhZ5YzkrJEU3Es72+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzNDZjNGQyMDBmZTUwMzVjNjFiMGM4OTRiOTQ1NGU3MmQy N2M5MWYwHhcNMjUxMjEyMjIwMDU1WhcNMjUxMjEzMjIwMDU1WjAzMTEwLwYDVQQD Eyg5OGMxZDA5NTBkZTQ4ODM2MzAwZTNlOTJiOTFmZWMwMWY4NGMwMGI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsqarrPM6ZevzhZjxcdi/D5WP4dHY 3macTyf4QhRWmeUAikkyFcJXPv8GZeO54poWDMVRVxXRQLfbfEqRcEwwgT7CSIe/ V7dGt5F4RSm7FdHeAwxjBwumUUXh1Ra2eavBOuTZjeFaNJsETitaN3MMP0bkKlAl HQWVn7qbxmDlWmOH9eww9HiMlzrHFQgvfyUtRHLwleWucFkbiCoucF4PLOINEV8u 328ERdPiwqpaXflMJH821p7CeSTBW56ok8vPJiJ7AjNZvh2+jWUCYunSlTLwHc63 /CFTM1oW8KparMPfQwxAvnTvpJ9p/Ps5B7M8nq4CuomSxnUOoKt2a9LK9QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJjB0JUN5Ig2MA4+krkf7AH4TAC3MB8GA1UdIwQY MBaAFFNGxNIA/lA1xhsMiUuUVOctJ8kfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVTBiRTBnRC1VRFhHR3d5SlM1UlU1eTBueVI4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS81ODdhNzktMWI2Yy00YzJhLWIxMzkt MjRhYWI0NGYyNTM5LzEvVTBiRTBnRC1VRFhHR3d5SlM1UlU1eTBueVI4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNS81ODdhNzktMWI2Yy00YzJhLWIxMzktMjRhYWI0NGYyNTM5 LzEvVTBiRTBnRC1VRFhHR3d5SlM1UlU1eTBueVI4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADpXkqZfa paOenc7sTvF272zeRHIPM1xTch6KVk35jovv58zF/HVFBPBGvW0+6DFNfBj7LKdg /QmvM9apssJvnZ6YjErLRLxqpHqqSLjFTSWilRtVPFVcpRGWGlsK8Gm/FejiafwH vCNqJntUiCSI8KvIW69wYabSF0css0oXPnvXuXqZ6IT8r4um2EGkiRDv8cYQtkD3 IT7yyp+xp0tVQzHdt/sgldtuO6iRIpZr/qR+Dfuz6w1YtqY7Gsl3yfdXQTn6Kb3c tpbcKh2S5ubLF6sl7jdIjwhgZEhoEvxZJbl55zw8RTTjJ3SUn6ucmp8b+DoDNSLM NBajLYdCaGrNVQ== -----END CERTIFICATE-----Generated at Sat Dec 13 00:32:58 2025 by rpki-client