This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft File: ui1f0wndbMbPeIYEHl6cLBomzqs.mft (raw, json) Hash identifier: owX6a9xuMecJw3jkJwvayy2XXoU+DMXe6lJc5m+bb9k= Subject key identifier: 75:0E:97:68:3C:E6:13:85:4D:CF:D8:B7:1F:42:F5:CD:C7:FF:D5:56 Authority key identifier: BA:2D:5F:D3:09:DD:6C:C6:CF:78:86:04:1E:5E:9C:2C:1A:26:CE:AB Certificate issuer: /CN=ba2d5fd309dd6cc6cf7886041e5e9c2c1a26ceab Certificate serial: 019B24E3C7690EE1F8948D9756F369D3C8BE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ui1f0wndbMbPeIYEHl6cLBomzqs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft Manifest number: 170F Signing time: Tue 16 Dec 2025 02:01:05 +0000 Manifest this update: Tue 16 Dec 2025 02:01:05 +0000 Manifest next update: Wed 17 Dec 2025 02:01:05 +0000 Files and hashes: 1: Kp9T4yQ0BWzmIgTW27o6VMb8qh4.roa (hash: 8tmSpbSEt6oRRtmXjjT27qxLy0bdW3q5K1nXAwi0cxU=) 2: ui1f0wndbMbPeIYEHl6cLBomzqs.crl (hash: U6LZcwR7J6PQeKCSaUDt/1zWbPtTLK8nZ2uulBKye0U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft rsync://rpki.ripe.net/repository/DEFAULT/ui1f0wndbMbPeIYEHl6cLBomzqs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 02:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:24:e3:c7:69:0e:e1:f8:94:8d:97:56:f3:69:d3:c8:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba2d5fd309dd6cc6cf7886041e5e9c2c1a26ceab Validity Not Before: Dec 16 02:01:05 2025 GMT Not After : Dec 17 02:01:05 2025 GMT Subject: CN=750e97683ce613854dcfd8b71f42f5cdc7ffd556 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:b8:f8:b4:b1:ee:54:17:07:8e:4e:32:bc:49: 88:63:e6:2c:f7:d5:90:bc:84:dc:73:52:da:80:8e: 0a:5e:ef:cb:41:65:65:87:80:d6:73:cf:37:ad:bc: ec:13:fa:3f:27:bd:d1:52:f1:ac:e0:ec:8e:fc:39: 82:fc:92:84:04:84:00:36:d9:d4:d6:13:74:d7:76: de:29:d5:06:19:56:db:ee:b9:01:2d:2e:76:32:2e: d7:c9:ce:91:0d:40:ca:d6:8c:a2:94:c7:b0:6b:78: 25:5c:02:2d:5b:86:2e:af:51:d8:30:fd:19:22:5c: 67:a2:64:d5:68:32:16:31:e2:5b:bc:0a:62:e3:06: 69:0e:7f:0f:ea:72:72:ba:c3:8a:e5:d3:11:45:a9: 9d:db:79:e6:a0:cd:d0:27:22:ba:9b:19:65:08:60: e8:68:bd:24:c4:ac:67:12:4b:d5:91:9f:3a:a0:24: ab:dc:05:e0:33:74:76:52:4a:e0:20:e3:91:07:d5: e6:f7:78:47:23:43:b0:06:80:4e:63:16:cc:3f:38: c9:b8:81:f5:c2:2f:dc:c2:5e:a1:7c:fa:4b:0c:4f: 4f:f3:1b:3f:95:82:02:86:36:51:1e:c8:05:f1:a2: ce:06:dd:2e:fb:0d:10:87:77:05:5a:5f:c7:e2:59: 2d:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:0E:97:68:3C:E6:13:85:4D:CF:D8:B7:1F:42:F5:CD:C7:FF:D5:56 X509v3 Authority Key Identifier: keyid:BA:2D:5F:D3:09:DD:6C:C6:CF:78:86:04:1E:5E:9C:2C:1A:26:CE:AB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ui1f0wndbMbPeIYEHl6cLBomzqs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5a:e1:19:a3:ec:af:1c:96:26:3a:26:2e:c3:67:d9:62:85:d3: 10:5e:51:3f:c6:e0:70:5c:5a:a3:62:e6:f8:44:34:4a:7d:b6: 4c:75:18:e6:ed:17:6d:a3:23:96:ed:fe:49:65:66:86:d2:40: 9b:3d:e4:29:05:53:46:0e:d6:76:ab:28:9a:ea:09:a5:c8:31: 3a:ca:be:bd:36:fd:92:7e:d6:2a:63:01:c9:3b:e9:33:35:02: ac:16:92:a2:ed:cd:23:89:a8:8b:83:a3:1e:9a:e4:12:b1:ad: 93:69:7b:db:d1:e6:90:9f:9a:53:e0:40:2f:88:cd:6f:26:bc: e1:79:02:6b:b0:7d:3e:1e:2c:26:8a:bc:7d:f0:cc:49:33:78: 7f:aa:22:02:ea:3c:5f:e3:d7:91:3c:32:2f:a7:bd:e9:8f:9a: 7e:6a:2e:f5:44:e9:5a:78:92:1a:fd:d3:6c:2c:9c:a3:48:aa: 7a:94:72:10:41:6d:27:d9:aa:02:a6:3d:5e:75:5d:ff:11:50: 01:68:76:c8:24:81:7b:cf:2a:bb:b5:57:92:46:6a:5f:c2:c1: 5b:4a:a3:de:ac:25:f4:fa:82:60:fd:d8:b6:40:13:ff:f0:f2: 1f:73:14:fb:86:9f:40:a8:6e:ef:af:57:46:85:26:2b:8c:a6: 54:95:07:a1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsk48dpDuH4lI2XVvNp08i+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhMmQ1ZmQzMDlkZDZjYzZjZjc4ODYwNDFlNWU5YzJjMWEy NmNlYWIwHhcNMjUxMjE2MDIwMTA1WhcNMjUxMjE3MDIwMTA1WjAzMTEwLwYDVQQD Eyg3NTBlOTc2ODNjZTYxMzg1NGRjZmQ4YjcxZjQyZjVjZGM3ZmZkNTU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4bj4tLHuVBcHjk4yvEmIY+Ys99WQ vITcc1LagI4KXu/LQWVlh4DWc883rbzsE/o/J73RUvGs4OyO/DmC/JKEBIQANtnU 1hN013beKdUGGVbb7rkBLS52Mi7Xyc6RDUDK1oyilMewa3glXAItW4Yur1HYMP0Z IlxnomTVaDIWMeJbvApi4wZpDn8P6nJyusOK5dMRRamd23nmoM3QJyK6mxllCGDo aL0kxKxnEkvVkZ86oCSr3AXgM3R2UkrgIOORB9Xm93hHI0OwBoBOYxbMPzjJuIH1 wi/cwl6hfPpLDE9P8xs/lYIChjZRHsgF8aLOBt0u+w0Qh3cFWl/H4lktlwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHUOl2g85hOFTc/Ytx9C9c3H/9VWMB8GA1UdIwQY MBaAFLotX9MJ3WzGz3iGBB5enCwaJs6rMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdWkxZjB3bmRiTWJQZUlZRUhsNmNMQm9tenFzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi8yY2JkZTktODQ4MC00NDBkLWFiY2Yt NmQ3NTUwNTJiYjI0LzEvdWkxZjB3bmRiTWJQZUlZRUhsNmNMQm9tenFzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi8yY2JkZTktODQ4MC00NDBkLWFiY2YtNmQ3NTUwNTJiYjI0 LzEvdWkxZjB3bmRiTWJQZUlZRUhsNmNMQm9tenFzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWuEZo+yv HJYmOiYuw2fZYoXTEF5RP8bgcFxao2Lm+EQ0Sn22THUY5u0XbaMjlu3+SWVmhtJA mz3kKQVTRg7WdqsomuoJpcgxOsq+vTb9kn7WKmMByTvpMzUCrBaSou3NI4moi4Oj HprkErGtk2l729HmkJ+aU+BAL4jNbya84XkCa7B9Ph4sJoq8ffDMSTN4f6oiAuo8 X+PXkTwyL6e96Y+afmou9UTpWniSGv3TbCyco0iqepRyEEFtJ9mqAqY9XnVd/xFQ AWh2yCSBe88qu7VXkkZqX8LBW0qj3qwl9PqCYP3YtkAT//DyH3MU+4afQKhu769X RoUmK4ymVJUHoQ== -----END CERTIFICATE-----Generated at Tue Dec 16 11:26:04 2025 by rpki-client