This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/421c6d-535c-4c13-8da3-dea12dd8c7f4/1/uO0-vNIVX5oXihA62rSP2osidaU.mft File: uO0-vNIVX5oXihA62rSP2osidaU.mft (raw, json) Hash identifier: 5iHLbVqevEzkJnFnYcp8I0Wmx+jKnwclN+c6gHkd52U= Subject key identifier: D8:7B:23:5A:5B:E7:19:52:C7:86:6B:51:62:89:E5:CF:50:69:E7:12 Authority key identifier: B8:ED:3E:BC:D2:15:5F:9A:17:8A:10:3A:DA:B4:8F:DA:8B:22:75:A5 Certificate issuer: /CN=b8ed3ebcd2155f9a178a103adab48fda8b2275a5 Certificate serial: 019B1FF4CEC9001A18E84939B9C27CC8A359 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uO0-vNIVX5oXihA62rSP2osidaU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/421c6d-535c-4c13-8da3-dea12dd8c7f4/1/uO0-vNIVX5oXihA62rSP2osidaU.mft Manifest number: 12E0 Signing time: Mon 15 Dec 2025 03:01:35 +0000 Manifest this update: Mon 15 Dec 2025 03:01:35 +0000 Manifest next update: Tue 16 Dec 2025 03:01:35 +0000 Files and hashes: 1: Brko5nMKSPwBgCgkjjg5igCr-DI.roa (hash: 3fOnCI08ItaZVpBsarkgTQcdgGi7HK10nR8m2pkLLWI=) 2: RdMb9DZXvill1bIjga0E0ALFTSE.roa (hash: glVlBHXB1p3fuc6KcN7QeAF0s4whdubmLa4lXiIAO04=) 3: bGID9MISfapCQvxtnoK2mwgER1c.roa (hash: 48jEs1SYz7H/DF1j6XjhPt2MSQotOuG8cV4gNdbAuRU=) 4: uO0-vNIVX5oXihA62rSP2osidaU.crl (hash: 2YHftik/Q6IQx8EB+s9thkM41eMjVeFJiSqiHN+C2WI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/421c6d-535c-4c13-8da3-dea12dd8c7f4/1/uO0-vNIVX5oXihA62rSP2osidaU.crl rsync://rpki.ripe.net/repository/DEFAULT/32/421c6d-535c-4c13-8da3-dea12dd8c7f4/1/uO0-vNIVX5oXihA62rSP2osidaU.mft rsync://rpki.ripe.net/repository/DEFAULT/uO0-vNIVX5oXihA62rSP2osidaU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 03:01:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1f:f4:ce:c9:00:1a:18:e8:49:39:b9:c2:7c:c8:a3:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b8ed3ebcd2155f9a178a103adab48fda8b2275a5 Validity Not Before: Dec 15 03:01:35 2025 GMT Not After : Dec 16 03:01:35 2025 GMT Subject: CN=d87b235a5be71952c7866b516289e5cf5069e712 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:a9:8e:10:41:1b:2d:30:21:9d:5d:00:56:b6: b7:5b:9e:e4:1c:26:24:41:b4:3f:a4:7a:0b:4f:d6: dd:07:fd:95:44:de:9c:8c:f5:c0:5e:b8:2d:8b:17: de:35:66:ca:3f:a8:9a:5e:01:34:4a:d3:b6:b9:d3: bf:1f:01:37:ae:10:9b:5e:da:6d:1e:f8:70:92:aa: 69:16:ac:99:4f:c9:0b:c4:76:48:cc:93:2d:87:10: 83:72:07:47:33:13:79:05:37:82:7a:2a:b4:32:cb: d5:38:47:5d:72:3a:fb:41:0a:6d:e1:ce:7f:30:3b: 4f:45:68:3f:a9:a5:82:b4:79:d9:75:e2:a3:12:9c: b7:3b:73:1f:31:8d:50:4f:00:30:f2:4c:c0:78:41: f6:0a:2a:b5:cb:78:90:b0:44:dc:da:6d:e5:73:06: 77:63:ac:1f:4d:9d:34:27:e6:81:0c:f7:4d:e1:6e: c6:6e:38:9c:c8:dc:72:07:6b:cf:a7:72:83:b6:19: ec:d2:ed:20:f6:a8:df:53:48:32:74:6b:79:8f:a8: 89:78:38:6e:fc:2b:5a:67:8e:55:48:9f:71:7d:84: ef:91:e7:14:e3:ac:48:84:70:1d:06:65:09:18:d7: b9:72:de:bd:f4:83:a4:b4:d0:1b:ec:2a:6b:c8:0f: 95:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:7B:23:5A:5B:E7:19:52:C7:86:6B:51:62:89:E5:CF:50:69:E7:12 X509v3 Authority Key Identifier: keyid:B8:ED:3E:BC:D2:15:5F:9A:17:8A:10:3A:DA:B4:8F:DA:8B:22:75:A5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uO0-vNIVX5oXihA62rSP2osidaU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/421c6d-535c-4c13-8da3-dea12dd8c7f4/1/uO0-vNIVX5oXihA62rSP2osidaU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/32/421c6d-535c-4c13-8da3-dea12dd8c7f4/1/uO0-vNIVX5oXihA62rSP2osidaU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:7e:f0:af:4e:98:fa:83:4c:73:a3:8f:dd:a4:01:63:57:06: 79:07:59:19:ce:0c:03:d0:a6:04:fa:1a:8a:b0:45:e8:fb:30: 01:dd:d0:86:4f:0d:5e:ea:b3:2b:4b:e0:4e:f8:5c:26:9e:2a: 27:3c:78:b3:95:94:00:12:b4:cd:3d:2f:96:d7:1a:5a:25:38: 2e:27:9f:3e:63:82:72:85:78:b4:7e:11:d8:a9:a9:83:57:35: b5:2f:9b:f3:2e:13:84:2c:df:b4:03:68:56:af:20:7a:0e:3f: d0:2d:e6:d8:f8:5a:d7:8c:e3:d9:a1:8e:fe:ea:b5:f1:55:af: 71:99:3b:79:8d:b5:df:fd:f6:13:15:5e:8d:0b:85:d3:29:9e: c4:4f:5a:9a:4b:f4:39:26:a8:06:e9:c6:f7:26:20:16:7f:9b: 90:c3:3b:81:1e:5e:d0:5b:34:13:97:8c:e2:92:e0:a2:4b:d7: 3e:11:6e:48:d2:be:b4:51:c0:54:a7:e3:0b:d2:e2:b1:ee:49: 86:c9:85:50:03:4e:fb:36:24:21:a9:22:f9:e7:34:64:6b:de: 38:9a:a1:29:5f:2c:50:0c:1b:a8:ff:11:d4:8f:ab:7c:65:e2: a1:b8:cb:91:61:45:a4:2a:47:e9:be:9d:27:bc:a3:f8:d7:95: 0d:24:6c:91 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsf9M7JABoY6Ek5ucJ8yKNZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI4ZWQzZWJjZDIxNTVmOWExNzhhMTAzYWRhYjQ4ZmRhOGIy Mjc1YTUwHhcNMjUxMjE1MDMwMTM1WhcNMjUxMjE2MDMwMTM1WjAzMTEwLwYDVQQD EyhkODdiMjM1YTViZTcxOTUyYzc4NjZiNTE2Mjg5ZTVjZjUwNjllNzEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApamOEEEbLTAhnV0AVra3W57kHCYk QbQ/pHoLT9bdB/2VRN6cjPXAXrgtixfeNWbKP6iaXgE0StO2udO/HwE3rhCbXtpt HvhwkqppFqyZT8kLxHZIzJMthxCDcgdHMxN5BTeCeiq0MsvVOEddcjr7QQpt4c5/ MDtPRWg/qaWCtHnZdeKjEpy3O3MfMY1QTwAw8kzAeEH2Ciq1y3iQsETc2m3lcwZ3 Y6wfTZ00J+aBDPdN4W7GbjicyNxyB2vPp3KDthns0u0g9qjfU0gydGt5j6iJeDhu /CtaZ45VSJ9xfYTvkecU46xIhHAdBmUJGNe5ct699IOktNAb7CpryA+V9wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNh7I1pb5xlSx4ZrUWKJ5c9QaecSMB8GA1UdIwQY MBaAFLjtPrzSFV+aF4oQOtq0j9qLInWlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdU8wLXZOSVZYNW9YaWhBNjJyU1Ayb3NpZGFVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi80MjFjNmQtNTM1Yy00YzEzLThkYTMt ZGVhMTJkZDhjN2Y0LzEvdU8wLXZOSVZYNW9YaWhBNjJyU1Ayb3NpZGFVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMi80MjFjNmQtNTM1Yy00YzEzLThkYTMtZGVhMTJkZDhjN2Y0 LzEvdU8wLXZOSVZYNW9YaWhBNjJyU1Ayb3NpZGFVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkX7wr06Y +oNMc6OP3aQBY1cGeQdZGc4MA9CmBPoairBF6PswAd3Qhk8NXuqzK0vgTvhcJp4q Jzx4s5WUABK0zT0vltcaWiU4LiefPmOCcoV4tH4R2Kmpg1c1tS+b8y4ThCzftANo Vq8geg4/0C3m2Pha14zj2aGO/uq18VWvcZk7eY213/32ExVejQuF0ymexE9amkv0 OSaoBunG9yYgFn+bkMM7gR5e0Fs0E5eM4pLgokvXPhFuSNK+tFHAVKfjC9Lise5J hsmFUANO+zYkIaki+ec0ZGveOJqhKV8sUAwbqP8R1I+rfGXiobjLkWFFpCpH6b6d J7yj+NeVDSRskQ== -----END CERTIFICATE-----Generated at Mon Dec 15 12:12:29 2025 by rpki-client