This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.mft File: uqI_dArVZMVpO3cJHHGzwDE2pYA.mft (raw, json) Hash identifier: 3IHHP3CwpJNes73HSSaGcQipcgfzovJhpSi/9522qSo= Subject key identifier: 6F:C6:F2:94:39:EC:66:3E:19:66:FA:74:CC:9A:6B:1F:76:F8:41:91 Authority key identifier: BA:A2:3F:74:0A:D5:64:C5:69:3B:77:09:1C:71:B3:C0:31:36:A5:80 Certificate issuer: /CN=baa23f740ad564c5693b77091c71b3c03136a580 Certificate serial: 019B25512635812098CCA565D9992F208004 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uqI_dArVZMVpO3cJHHGzwDE2pYA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.mft Manifest number: 0BF4 Signing time: Tue 16 Dec 2025 04:00:33 +0000 Manifest this update: Tue 16 Dec 2025 04:00:33 +0000 Manifest next update: Wed 17 Dec 2025 04:00:33 +0000 Files and hashes: 1: gQl4YCr829YOGRu3QQEM_8QNnRo.roa (hash: 468s9eqjwKzKxWWYEkQfsVXrMKlrp7YiLVsT2AanKV4=) 2: uqI_dArVZMVpO3cJHHGzwDE2pYA.crl (hash: rXFP727rMxMkR/1rl58rWghy4yuNILZCpKPfi09MguQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.crl rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.mft rsync://rpki.ripe.net/repository/DEFAULT/uqI_dArVZMVpO3cJHHGzwDE2pYA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:25:51:26:35:81:20:98:cc:a5:65:d9:99:2f:20:80:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=baa23f740ad564c5693b77091c71b3c03136a580 Validity Not Before: Dec 16 04:00:33 2025 GMT Not After : Dec 17 04:00:33 2025 GMT Subject: CN=6fc6f29439ec663e1966fa74cc9a6b1f76f84191 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:b0:2d:14:d2:d7:24:1c:9c:a8:a9:8d:eb:b9: 52:d0:fc:9c:91:d5:b8:97:08:5f:43:a8:d9:fd:9b: 8b:9f:b8:97:8e:e8:fc:87:0c:4f:7e:78:45:18:78: 68:91:5b:11:20:b4:b0:e0:09:be:ca:45:21:13:0d: 4a:f3:45:4f:89:56:81:b4:ac:74:d2:f5:31:09:03: e4:4f:23:eb:07:d1:53:05:48:c0:d9:48:8c:5f:94: 4f:09:4f:bd:2b:5f:1a:e9:a4:09:3c:e3:35:ba:24: 78:e5:81:a0:45:b3:76:92:11:e1:f2:1b:db:16:61: 2a:f7:0a:3c:1b:a8:c6:36:eb:9d:c6:18:81:86:b3: 71:ac:cc:e3:2f:a5:64:27:e8:e3:ff:2a:6e:7e:c1: da:38:ee:54:3a:31:71:d9:b3:dd:24:a6:36:ac:ce: e9:c1:82:e3:76:70:93:ae:a0:fc:b0:ce:ff:96:9e: 69:4f:04:a8:08:12:4c:be:a6:b2:17:32:56:f4:74: 63:98:9d:59:87:8f:b5:72:21:24:a3:4c:17:46:85: fc:e9:40:16:08:b1:92:89:75:05:f4:b4:f1:7d:2d: 4f:24:98:89:e7:70:45:66:2a:54:fb:15:0e:88:f6: d1:c8:ed:40:13:20:1c:42:72:7a:cb:1b:bc:2f:44: 84:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:C6:F2:94:39:EC:66:3E:19:66:FA:74:CC:9A:6B:1F:76:F8:41:91 X509v3 Authority Key Identifier: keyid:BA:A2:3F:74:0A:D5:64:C5:69:3B:77:09:1C:71:B3:C0:31:36:A5:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqI_dArVZMVpO3cJHHGzwDE2pYA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2d:9c:5d:18:08:f7:ac:12:ee:8e:2b:2c:f4:40:69:39:ab:c6: 0c:14:b9:40:f1:b6:78:cf:05:97:38:20:d8:46:5c:78:9a:3f: 91:c3:d9:63:1e:6d:20:31:d4:81:2f:d3:1c:2e:8a:55:62:1f: b4:f4:bc:6a:6c:ee:b7:04:a2:89:b3:6a:73:0c:76:1b:68:df: 8e:82:26:b6:5c:76:05:e6:a9:f3:38:7c:88:0e:06:58:b2:cd: d1:94:fc:ad:72:2c:68:d2:b9:30:3b:a7:aa:a1:a7:c5:26:d4: b0:01:9d:ad:35:ec:e0:5b:58:01:a8:8c:b6:dc:0a:c0:77:94: 9a:e2:91:61:e3:a7:95:0c:46:ab:97:f4:20:4f:44:35:ee:38: 7b:45:8d:09:2a:4a:ec:a4:7f:8c:95:3c:f7:1f:5a:23:e2:21: 73:a4:61:65:e6:e1:6f:96:e4:25:63:77:53:b0:b3:26:f2:5c: 18:88:05:6b:f4:5a:2e:37:e2:0e:b3:cb:c3:67:56:af:15:b1: 2a:d2:22:48:73:6a:98:92:38:3e:0d:df:82:a7:e2:24:9d:46: ab:e5:85:9d:68:da:de:1e:28:c3:0f:72:97:1c:82:58:92:f4: 4a:31:43:59:f1:fc:31:8c:37:cf:cb:54:a8:79:33:96:1d:31: 70:d4:40:7c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZslUSY1gSCYzKVl2ZkvIIAEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhYTIzZjc0MGFkNTY0YzU2OTNiNzcwOTFjNzFiM2MwMzEz NmE1ODAwHhcNMjUxMjE2MDQwMDMzWhcNMjUxMjE3MDQwMDMzWjAzMTEwLwYDVQQD Eyg2ZmM2ZjI5NDM5ZWM2NjNlMTk2NmZhNzRjYzlhNmIxZjc2Zjg0MTkxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlbAtFNLXJBycqKmN67lS0PyckdW4 lwhfQ6jZ/ZuLn7iXjuj8hwxPfnhFGHhokVsRILSw4Am+ykUhEw1K80VPiVaBtKx0 0vUxCQPkTyPrB9FTBUjA2UiMX5RPCU+9K18a6aQJPOM1uiR45YGgRbN2khHh8hvb FmEq9wo8G6jGNuudxhiBhrNxrMzjL6VkJ+jj/ypufsHaOO5UOjFx2bPdJKY2rM7p wYLjdnCTrqD8sM7/lp5pTwSoCBJMvqayFzJW9HRjmJ1Zh4+1ciEko0wXRoX86UAW CLGSiXUF9LTxfS1PJJiJ53BFZipU+xUOiPbRyO1AEyAcQnJ6yxu8L0SErQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG/G8pQ57GY+GWb6dMyaax92+EGRMB8GA1UdIwQY MBaAFLqiP3QK1WTFaTt3CRxxs8AxNqWAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdXFJX2RBclZaTVZwTzNjSkhIR3p3REUycFlBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi84YzA5YjMtZjZkOC00YzlhLTk2NGMt ODUyN2M5YjNlNzVmLzEvdXFJX2RBclZaTVZwTzNjSkhIR3p3REUycFlBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZi84YzA5YjMtZjZkOC00YzlhLTk2NGMtODUyN2M5YjNlNzVm LzEvdXFJX2RBclZaTVZwTzNjSkhIR3p3REUycFlBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALZxdGAj3 rBLujiss9EBpOavGDBS5QPG2eM8Flzgg2EZceJo/kcPZYx5tIDHUgS/THC6KVWIf tPS8amzutwSiibNqcwx2G2jfjoImtlx2Beap8zh8iA4GWLLN0ZT8rXIsaNK5MDun qqGnxSbUsAGdrTXs4FtYAaiMttwKwHeUmuKRYeOnlQxGq5f0IE9ENe44e0WNCSpK 7KR/jJU89x9aI+Ihc6RhZebhb5bkJWN3U7CzJvJcGIgFa/RaLjfiDrPLw2dWrxWx KtIiSHNqmJI4Pg3fgqfiJJ1Gq+WFnWja3h4oww9ylxyCWJL0SjFDWfH8MYw3z8tU qHkzlh0xcNRAfA== -----END CERTIFICATE-----Generated at Tue Dec 16 09:10:39 2025 by rpki-client