This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.mft File: UOpay0R7LOuTKgPykAgtx2-OQOM.mft (raw, json) Hash identifier: M21KLsjm2ZGDgDGepOjI3xLo3QN2k8rZZ5sAfvlbzAI= Subject key identifier: 64:8B:48:E6:DD:E2:0F:9E:BF:0A:30:85:70:87:9F:D1:05:06:4C:45 Authority key identifier: 50:EA:5A:CB:44:7B:2C:EB:93:2A:03:F2:90:08:2D:C7:6F:8E:40:E3 Certificate issuer: /CN=50ea5acb447b2ceb932a03f290082dc76f8e40e3 Certificate serial: 019B1C85A02B03A47CAE5ABEFAA21411F5FA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UOpay0R7LOuTKgPykAgtx2-OQOM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.mft Manifest number: 1777 Signing time: Sun 14 Dec 2025 11:01:17 +0000 Manifest this update: Sun 14 Dec 2025 11:01:17 +0000 Manifest next update: Mon 15 Dec 2025 11:01:17 +0000 Files and hashes: 1: UOpay0R7LOuTKgPykAgtx2-OQOM.crl (hash: bovWwVLRZ+FMOTihvb0ZsmP/1HPGhV/vs9zcZZxZELA=) 2: UPs4nn0eBay_fIEXwzFrziOGHlg.roa (hash: n1rQX2er8ehY5mv/Oe6cZ3YcfGOcUxMxZAxeUBrIysk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.crl rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.mft rsync://rpki.ripe.net/repository/DEFAULT/UOpay0R7LOuTKgPykAgtx2-OQOM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1c:85:a0:2b:03:a4:7c:ae:5a:be:fa:a2:14:11:f5:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=50ea5acb447b2ceb932a03f290082dc76f8e40e3 Validity Not Before: Dec 14 11:01:17 2025 GMT Not After : Dec 15 11:01:17 2025 GMT Subject: CN=648b48e6dde20f9ebf0a308570879fd105064c45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:16:b4:d9:05:82:6e:ba:e0:57:0a:85:00:7c: d4:e3:6b:b2:59:91:8a:7e:e4:2f:ba:26:00:52:e6: ab:5a:27:a8:56:e5:e0:73:58:47:06:31:38:67:6d: 3d:42:47:1e:95:9a:7e:28:39:d6:2e:cd:e7:59:28: 9f:53:ae:18:d2:48:b8:bc:1d:25:a3:c6:55:03:e5: 01:c6:fa:d8:37:cd:3b:c3:1f:b0:b3:0e:6d:d0:aa: 5b:38:f6:06:c1:80:00:fa:96:3f:e3:c8:59:2f:6d: 3a:20:3f:3e:53:04:a9:a0:89:38:05:bf:f6:b2:3c: f7:d8:fc:c6:4c:a7:9e:50:ee:d4:da:17:c6:3d:2f: ef:73:e3:97:27:28:8c:3a:19:9c:29:db:e6:ae:99: 3c:0f:ee:82:de:43:e5:1c:31:79:61:45:49:a2:00: 75:b7:0a:90:42:6a:47:10:a0:59:1b:c0:cd:36:a9: 5d:e5:ff:bf:82:e2:0e:9a:bd:b7:39:ed:15:58:25: 42:bb:56:47:bb:44:96:d8:ac:79:21:4a:8d:49:81: 6f:97:d7:3d:30:b4:45:03:96:fa:26:04:a4:40:4d: 26:a1:29:dc:2d:32:d7:5c:97:9f:23:cd:58:f1:95: 82:57:71:6b:4a:6d:b1:c1:9f:18:82:c4:cc:75:e8: 3e:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:8B:48:E6:DD:E2:0F:9E:BF:0A:30:85:70:87:9F:D1:05:06:4C:45 X509v3 Authority Key Identifier: keyid:50:EA:5A:CB:44:7B:2C:EB:93:2A:03:F2:90:08:2D:C7:6F:8E:40:E3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UOpay0R7LOuTKgPykAgtx2-OQOM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/10edef-253d-49b1-969e-5ca8ac18096d/1/UOpay0R7LOuTKgPykAgtx2-OQOM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8f:9f:8e:bb:f9:87:55:57:5b:a5:40:51:cb:b4:4e:c6:44:1e: 44:09:d9:0f:aa:fb:ed:b1:62:aa:dc:34:ac:2a:1b:99:e7:1c: 55:46:53:38:32:42:c9:7d:8b:a9:16:10:b2:1d:f8:10:22:4c: bb:cb:63:c4:0c:c9:dc:0e:44:c2:32:58:e8:d4:83:8f:ff:f8: e8:28:6a:09:dd:f0:e6:eb:7a:4e:db:59:f7:1e:2f:2e:e1:ee: 81:8d:29:14:d6:5f:3c:f5:35:da:13:7d:4a:c2:34:47:4c:37: 6b:60:6a:4d:90:a7:a1:21:bb:f9:d5:79:a5:d1:13:87:64:5f: 36:d6:13:55:fa:69:52:95:39:e8:83:24:c7:a1:c1:0a:bc:d0: f6:cd:c9:59:80:c7:36:d5:b6:ba:ad:5c:71:77:eb:4f:a9:30: 3d:b0:62:e0:ed:68:54:52:84:46:01:ee:15:bc:47:b5:91:06: 2c:11:d5:0f:d3:7c:6d:e6:34:92:56:3f:62:9d:a3:56:1c:56: 83:a0:57:1d:d2:24:85:82:e1:3f:fa:93:de:cf:f0:3a:fa:b1: a0:31:ef:c6:a1:9a:c1:97:48:f4:c7:95:74:21:cf:40:27:21: 86:38:59:29:23:e5:b4:d4:9f:d5:37:bb:b8:f3:68:9d:bb:da: 71:b4:52:db -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZschaArA6R8rlq++qIUEfX6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUwZWE1YWNiNDQ3YjJjZWI5MzJhMDNmMjkwMDgyZGM3NmY4 ZTQwZTMwHhcNMjUxMjE0MTEwMTE3WhcNMjUxMjE1MTEwMTE3WjAzMTEwLwYDVQQD Eyg2NDhiNDhlNmRkZTIwZjllYmYwYTMwODU3MDg3OWZkMTA1MDY0YzQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiBa02QWCbrrgVwqFAHzU42uyWZGK fuQvuiYAUuarWieoVuXgc1hHBjE4Z209QkcelZp+KDnWLs3nWSifU64Y0ki4vB0l o8ZVA+UBxvrYN807wx+wsw5t0KpbOPYGwYAA+pY/48hZL206ID8+UwSpoIk4Bb/2 sjz32PzGTKeeUO7U2hfGPS/vc+OXJyiMOhmcKdvmrpk8D+6C3kPlHDF5YUVJogB1 twqQQmpHEKBZG8DNNqld5f+/guIOmr23Oe0VWCVCu1ZHu0SW2Kx5IUqNSYFvl9c9 MLRFA5b6JgSkQE0moSncLTLXXJefI81Y8ZWCV3FrSm2xwZ8YgsTMdeg+OwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGSLSObd4g+evwowhXCHn9EFBkxFMB8GA1UdIwQY MBaAFFDqWstEeyzrkyoD8pAILcdvjkDjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVU9wYXkwUjdMT3VUS2dQeWtBZ3R4Mi1PUU9NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi8xMGVkZWYtMjUzZC00OWIxLTk2OWUt NWNhOGFjMTgwOTZkLzEvVU9wYXkwUjdMT3VUS2dQeWtBZ3R4Mi1PUU9NLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZi8xMGVkZWYtMjUzZC00OWIxLTk2OWUtNWNhOGFjMTgwOTZk LzEvVU9wYXkwUjdMT3VUS2dQeWtBZ3R4Mi1PUU9NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAj5+Ou/mH VVdbpUBRy7ROxkQeRAnZD6r77bFiqtw0rCobmeccVUZTODJCyX2LqRYQsh34ECJM u8tjxAzJ3A5EwjJY6NSDj//46ChqCd3w5ut6TttZ9x4vLuHugY0pFNZfPPU12hN9 SsI0R0w3a2BqTZCnoSG7+dV5pdETh2RfNtYTVfppUpU56IMkx6HBCrzQ9s3JWYDH NtW2uq1ccXfrT6kwPbBi4O1oVFKERgHuFbxHtZEGLBHVD9N8beY0klY/Yp2jVhxW g6BXHdIkhYLhP/qT3s/wOvqxoDHvxqGawZdI9MeVdCHPQCchhjhZKSPltNSf1Te7 uPNonbvacbRS2w== -----END CERTIFICATE-----Generated at Sun Dec 14 14:36:38 2025 by rpki-client