This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/4dfbd4-8ed7-45f2-950d-3aeb7cde036c/1/ufdp1EM7dwTfcD0WRbf-qO-_km4.mft File: ufdp1EM7dwTfcD0WRbf-qO-_km4.mft (raw, json) Hash identifier: 9FGwyxvSLjGx6xH8czSDNrXEmQYJ2obQmACcMCpsDjo= Subject key identifier: 26:6E:23:AA:DB:7C:30:F0:C8:2D:42:99:C3:4C:B1:38:0F:78:1A:C3 Authority key identifier: B9:F7:69:D4:43:3B:77:04:DF:70:3D:16:45:B7:FE:A8:EF:BF:92:6E Certificate issuer: /CN=b9f769d4433b7704df703d1645b7fea8efbf926e Certificate serial: 019AB962D52865957C2B33AFFD0D8503B745 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ufdp1EM7dwTfcD0WRbf-qO-_km4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/4dfbd4-8ed7-45f2-950d-3aeb7cde036c/1/ufdp1EM7dwTfcD0WRbf-qO-_km4.mft Manifest number: 1747 Signing time: Tue 25 Nov 2025 05:00:53 +0000 Manifest this update: Tue 25 Nov 2025 05:00:53 +0000 Manifest next update: Wed 26 Nov 2025 05:00:53 +0000 Files and hashes: 1: ETuDi1i7QuaCZ06xCz67-_-3rS8.roa (hash: gA8InJx+hYlKiEEOwcyboW6iWIBSscTMh1nnp+mxyU8=) 2: ufdp1EM7dwTfcD0WRbf-qO-_km4.crl (hash: xYeUEkTX3+6iUvgqSoMG2/CUO1aPUKzXmABsN0vMHEQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/4dfbd4-8ed7-45f2-950d-3aeb7cde036c/1/ufdp1EM7dwTfcD0WRbf-qO-_km4.crl rsync://rpki.ripe.net/repository/DEFAULT/29/4dfbd4-8ed7-45f2-950d-3aeb7cde036c/1/ufdp1EM7dwTfcD0WRbf-qO-_km4.mft rsync://rpki.ripe.net/repository/DEFAULT/ufdp1EM7dwTfcD0WRbf-qO-_km4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 26 Nov 2025 05:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:b9:62:d5:28:65:95:7c:2b:33:af:fd:0d:85:03:b7:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b9f769d4433b7704df703d1645b7fea8efbf926e Validity Not Before: Nov 25 05:00:53 2025 GMT Not After : Nov 26 05:00:53 2025 GMT Subject: CN=266e23aadb7c30f0c82d4299c34cb1380f781ac3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:2f:7d:b9:2e:08:55:11:1b:d5:4b:f4:62:c9: 00:b4:8d:5c:6c:ad:54:42:61:02:00:2e:61:70:f3: 52:c2:dc:6c:36:2f:2e:95:74:61:65:bc:d1:0c:ae: a7:d1:f7:2c:9f:ff:39:cc:48:98:97:83:34:49:30: 8a:5a:6e:83:dc:88:7f:f6:43:2c:a7:3d:de:f2:52: aa:fc:7d:e2:b2:d1:60:3b:a7:fb:52:16:a8:9c:3b: c4:4d:f9:55:6a:32:79:c6:0a:e5:52:d4:84:20:ec: 68:52:f8:8a:71:21:f8:72:39:66:d2:2f:14:10:b1: dc:71:94:30:4d:70:22:76:a1:fd:8a:ef:65:d2:13: 71:3b:cb:ac:3c:c4:44:9b:d0:49:ce:b2:ab:41:6d: 05:53:74:83:96:ca:3f:65:c4:dc:9f:9e:05:06:03: 4f:7b:bc:76:61:c5:91:07:40:25:e4:74:39:64:8a: 14:8b:9e:c2:84:c4:2c:d9:51:d7:07:dd:e1:ea:72: fa:43:86:f6:fe:ea:79:2d:49:a0:c2:fe:e6:79:45: ea:b6:7c:35:2b:21:2d:fb:e3:7a:74:db:c6:fa:9e: 57:b0:ec:35:7c:18:41:1b:c0:c9:4d:e0:3f:dc:a3: f4:42:e8:12:91:72:75:a3:c0:5a:c9:0d:ee:b6:e5: a3:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:6E:23:AA:DB:7C:30:F0:C8:2D:42:99:C3:4C:B1:38:0F:78:1A:C3 X509v3 Authority Key Identifier: keyid:B9:F7:69:D4:43:3B:77:04:DF:70:3D:16:45:B7:FE:A8:EF:BF:92:6E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ufdp1EM7dwTfcD0WRbf-qO-_km4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/4dfbd4-8ed7-45f2-950d-3aeb7cde036c/1/ufdp1EM7dwTfcD0WRbf-qO-_km4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/4dfbd4-8ed7-45f2-950d-3aeb7cde036c/1/ufdp1EM7dwTfcD0WRbf-qO-_km4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:f6:b1:0a:b2:85:93:d6:3c:e3:5b:26:85:05:5b:cb:cc:54: 73:da:45:30:87:83:f4:05:4b:35:c2:2c:7f:9c:c1:5a:ff:80: bb:af:d7:a0:f4:82:9d:a5:da:a4:cf:4c:de:b9:a5:ee:8d:a5: 8d:11:8a:38:74:7e:b5:29:5f:aa:60:4d:fa:f6:fe:6f:9e:92: 0e:21:0a:b4:2f:2e:a2:59:05:0d:11:76:33:5c:28:d6:87:34: 13:11:2d:45:04:ea:06:7e:9d:87:ae:66:d5:a2:e3:ee:3e:6f: 71:d2:25:cb:e1:85:cc:be:3f:1d:54:d6:a4:ff:f5:2f:80:04: f0:10:f9:98:9c:d3:1b:3b:7e:61:55:ea:8c:b1:cd:ca:c4:6e: 42:c6:33:23:ce:ff:d0:ad:58:a8:19:af:13:9c:4b:c9:92:f6: 96:4c:0c:ee:68:ae:af:79:35:0f:2c:c8:c1:aa:cd:d0:5e:04: 14:47:c0:42:7f:6c:b8:a3:a4:2d:5b:24:cc:33:1f:7e:ec:86: 7f:72:e0:34:d9:54:c5:7c:1f:0d:25:c5:73:fc:ab:4f:ec:91: b7:f0:88:53:91:6a:49:a8:1f:94:0e:53:72:cf:72:a6:1f:55: 23:51:8d:90:47:3a:78:2a:79:60:c3:d3:2b:af:27:60:6e:cb: 28:64:20:73 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZq5YtUoZZV8KzOv/Q2FA7dFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI5Zjc2OWQ0NDMzYjc3MDRkZjcwM2QxNjQ1YjdmZWE4ZWZi ZjkyNmUwHhcNMjUxMTI1MDUwMDUzWhcNMjUxMTI2MDUwMDUzWjAzMTEwLwYDVQQD EygyNjZlMjNhYWRiN2MzMGYwYzgyZDQyOTljMzRjYjEzODBmNzgxYWMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsC99uS4IVREb1Uv0YskAtI1cbK1U QmECAC5hcPNSwtxsNi8ulXRhZbzRDK6n0fcsn/85zEiYl4M0STCKWm6D3Ih/9kMs pz3e8lKq/H3istFgO6f7UhaonDvETflVajJ5xgrlUtSEIOxoUviKcSH4cjlm0i8U ELHccZQwTXAidqH9iu9l0hNxO8usPMREm9BJzrKrQW0FU3SDlso/ZcTcn54FBgNP e7x2YcWRB0Al5HQ5ZIoUi57ChMQs2VHXB93h6nL6Q4b2/up5LUmgwv7meUXqtnw1 KyEt++N6dNvG+p5XsOw1fBhBG8DJTeA/3KP0QugSkXJ1o8BayQ3utuWjMwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCZuI6rbfDDwyC1CmcNMsTgPeBrDMB8GA1UdIwQY MBaAFLn3adRDO3cE33A9FkW3/qjvv5JuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdWZkcDFFTTdkd1RmY0QwV1JiZi1xTy1fa200LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS80ZGZiZDQtOGVkNy00NWYyLTk1MGQt M2FlYjdjZGUwMzZjLzEvdWZkcDFFTTdkd1RmY0QwV1JiZi1xTy1fa200Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS80ZGZiZDQtOGVkNy00NWYyLTk1MGQtM2FlYjdjZGUwMzZj LzEvdWZkcDFFTTdkd1RmY0QwV1JiZi1xTy1fa200LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWPaxCrKF k9Y841smhQVby8xUc9pFMIeD9AVLNcIsf5zBWv+Au6/XoPSCnaXapM9M3rml7o2l jRGKOHR+tSlfqmBN+vb+b56SDiEKtC8uolkFDRF2M1wo1oc0ExEtRQTqBn6dh65m 1aLj7j5vcdIly+GFzL4/HVTWpP/1L4AE8BD5mJzTGzt+YVXqjLHNysRuQsYzI87/ 0K1YqBmvE5xLyZL2lkwM7miur3k1DyzIwarN0F4EFEfAQn9suKOkLVskzDMffuyG f3LgNNlUxXwfDSXFc/yrT+yRt/CIU5FqSagflA5Tcs9yph9VI1GNkEc6eCp5YMPT K68nYG7LKGQgcw== -----END CERTIFICATE-----Generated at Tue Nov 25 12:57:42 2025 by rpki-client