This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/9d43cb-841c-40f2-9d9f-75f47f07c4e3/1/UnB4bxfEG9AWJvctsjnyCLUYm7A.mft File: UnB4bxfEG9AWJvctsjnyCLUYm7A.mft (raw, json) Hash identifier: qK/XCAYJx5D9qZpOm8/eOB55q7P7e/4KOa0NEoQYZD8= Subject key identifier: D0:47:4F:15:DF:8C:7C:E7:29:B1:47:5D:59:22:0D:C6:E8:35:A6:9B Authority key identifier: 52:70:78:6F:17:C4:1B:D0:16:26:F7:2D:B2:39:F2:08:B5:18:9B:B0 Certificate issuer: /CN=5270786f17c41bd01626f72db239f208b5189bb0 Certificate serial: 019B5A88C6FD5EAD63E5B2D301A74AA8DC24 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UnB4bxfEG9AWJvctsjnyCLUYm7A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/9d43cb-841c-40f2-9d9f-75f47f07c4e3/1/UnB4bxfEG9AWJvctsjnyCLUYm7A.mft Manifest number: 179B Signing time: Fri 26 Dec 2025 12:01:11 +0000 Manifest this update: Fri 26 Dec 2025 12:01:11 +0000 Manifest next update: Sat 27 Dec 2025 12:01:11 +0000 Files and hashes: 1: DmHJvnXYNCZG6CwLW6LsQtmujI4.roa (hash: x67qTlyXrzA3beyYfkqEGco6s6alggLnNjlSZnKsSr0=) 2: UnB4bxfEG9AWJvctsjnyCLUYm7A.crl (hash: FThd2BbH3EnoiaiHBc+9/4g4robysKaGWqrYYEulEH4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/9d43cb-841c-40f2-9d9f-75f47f07c4e3/1/UnB4bxfEG9AWJvctsjnyCLUYm7A.crl rsync://rpki.ripe.net/repository/DEFAULT/34/9d43cb-841c-40f2-9d9f-75f47f07c4e3/1/UnB4bxfEG9AWJvctsjnyCLUYm7A.mft rsync://rpki.ripe.net/repository/DEFAULT/UnB4bxfEG9AWJvctsjnyCLUYm7A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:88:c6:fd:5e:ad:63:e5:b2:d3:01:a7:4a:a8:dc:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5270786f17c41bd01626f72db239f208b5189bb0 Validity Not Before: Dec 26 12:01:11 2025 GMT Not After : Dec 27 12:01:11 2025 GMT Subject: CN=d0474f15df8c7ce729b1475d59220dc6e835a69b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:3f:07:75:28:61:28:7e:ec:1b:45:0a:32:23: 4a:03:69:11:fa:62:ef:4b:13:52:e3:86:62:24:39: e3:aa:5f:90:e3:a2:9b:55:88:63:c8:03:36:61:1a: 7f:aa:12:8f:bd:24:9c:1d:ed:8b:0d:9c:e4:75:7d: e2:9a:4b:fa:d9:0d:8e:a7:70:d1:21:fe:3e:39:10: c4:c2:e9:00:c9:2a:10:39:ea:a8:02:56:51:e2:e3: b9:ce:f9:e4:b5:38:19:1f:75:31:a9:e2:d4:77:34: e9:7f:4e:2c:c1:1c:fa:23:25:29:f7:cb:07:1c:25: d1:92:02:39:34:8f:d7:62:34:4c:9b:c0:e7:a1:2e: f1:5e:08:ec:a9:c0:83:18:15:3d:6a:f0:52:2f:a4: 7a:49:af:a7:10:dd:80:ea:df:5a:73:82:c8:a1:cb: 92:95:8a:c4:b8:85:62:86:30:c6:f5:d6:4c:b1:97: 25:d2:65:8f:4b:21:54:b2:08:2a:a8:b8:da:2d:53: 49:79:34:36:3c:24:94:62:2a:df:d1:0f:73:e3:e1: 07:8d:af:20:cd:f1:e3:43:8a:81:8b:88:7d:b6:16: 42:32:cf:f1:f8:cb:51:9e:83:de:6c:83:ea:52:47: 4a:c5:38:99:80:81:48:5d:6d:15:92:fb:78:38:3d: 46:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:47:4F:15:DF:8C:7C:E7:29:B1:47:5D:59:22:0D:C6:E8:35:A6:9B X509v3 Authority Key Identifier: keyid:52:70:78:6F:17:C4:1B:D0:16:26:F7:2D:B2:39:F2:08:B5:18:9B:B0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UnB4bxfEG9AWJvctsjnyCLUYm7A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9d43cb-841c-40f2-9d9f-75f47f07c4e3/1/UnB4bxfEG9AWJvctsjnyCLUYm7A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/34/9d43cb-841c-40f2-9d9f-75f47f07c4e3/1/UnB4bxfEG9AWJvctsjnyCLUYm7A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 08:31:b9:1a:ee:b3:e4:2c:2c:6e:af:1d:3c:62:88:64:2a:97: 16:51:ab:92:b6:e4:f3:1f:e0:90:bb:bf:b4:19:99:f7:f4:a7: 51:1e:01:11:d9:db:05:76:5a:66:20:fa:4c:f4:0c:ab:3c:0b: 73:36:db:19:1b:0c:5d:b5:18:ed:7b:b5:64:20:75:4c:32:a8: df:6f:b1:13:20:b1:10:9a:da:b4:17:eb:81:36:91:cc:4a:88: 06:da:44:de:bf:55:f3:f3:b9:ac:50:26:96:05:fc:54:30:c7: ba:74:ca:00:00:54:06:7c:27:76:6c:8d:07:64:ac:b2:56:bd: 0e:9a:e1:3f:33:8d:f6:ab:e9:a5:b6:3b:c1:50:27:5e:62:94: bf:6f:37:86:d1:88:9c:58:b1:11:97:9c:8c:bb:35:a2:1d:e4: 4b:60:e3:a3:11:a0:9c:e6:c2:36:e8:d8:1c:60:72:7d:38:39: 73:8e:5c:a4:85:b8:6d:19:40:d5:78:07:71:6b:a8:9d:3f:7a: 42:41:81:f3:69:5f:d5:4b:29:7d:91:dd:54:60:74:ec:d0:2f: de:77:9b:b5:be:de:01:9f:67:67:0a:30:77:7f:33:66:2b:01: 73:92:1a:d6:9c:ea:dd:98:0f:23:a6:9c:2e:1a:63:4f:bc:26: 14:6d:94:9d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtaiMb9Xq1j5bLTAadKqNwkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyNzA3ODZmMTdjNDFiZDAxNjI2ZjcyZGIyMzlmMjA4YjUx ODliYjAwHhcNMjUxMjI2MTIwMTExWhcNMjUxMjI3MTIwMTExWjAzMTEwLwYDVQQD EyhkMDQ3NGYxNWRmOGM3Y2U3MjliMTQ3NWQ1OTIyMGRjNmU4MzVhNjliMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyT8HdShhKH7sG0UKMiNKA2kR+mLv SxNS44ZiJDnjql+Q46KbVYhjyAM2YRp/qhKPvSScHe2LDZzkdX3imkv62Q2Op3DR If4+ORDEwukAySoQOeqoAlZR4uO5zvnktTgZH3UxqeLUdzTpf04swRz6IyUp98sH HCXRkgI5NI/XYjRMm8DnoS7xXgjsqcCDGBU9avBSL6R6Sa+nEN2A6t9ac4LIocuS lYrEuIVihjDG9dZMsZcl0mWPSyFUsggqqLjaLVNJeTQ2PCSUYirf0Q9z4+EHja8g zfHjQ4qBi4h9thZCMs/x+MtRnoPebIPqUkdKxTiZgIFIXW0Vkvt4OD1G/QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNBHTxXfjHznKbFHXVkiDcboNaabMB8GA1UdIwQY MBaAFFJweG8XxBvQFib3LbI58gi1GJuwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVW5CNGJ4ZkVHOUFXSnZjdHNqbnlDTFVZbTdBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC85ZDQzY2ItODQxYy00MGYyLTlkOWYt NzVmNDdmMDdjNGUzLzEvVW5CNGJ4ZkVHOUFXSnZjdHNqbnlDTFVZbTdBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNC85ZDQzY2ItODQxYy00MGYyLTlkOWYtNzVmNDdmMDdjNGUz LzEvVW5CNGJ4ZkVHOUFXSnZjdHNqbnlDTFVZbTdBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACDG5Gu6z 5Cwsbq8dPGKIZCqXFlGrkrbk8x/gkLu/tBmZ9/SnUR4BEdnbBXZaZiD6TPQMqzwL czbbGRsMXbUY7Xu1ZCB1TDKo32+xEyCxEJratBfrgTaRzEqIBtpE3r9V8/O5rFAm lgX8VDDHunTKAABUBnwndmyNB2Sssla9DprhPzON9qvppbY7wVAnXmKUv283htGI nFixEZecjLs1oh3kS2DjoxGgnObCNujYHGByfTg5c45cpIW4bRlA1XgHcWuonT96 QkGB82lf1UspfZHdVGB07NAv3nebtb7eAZ9nZwowd38zZisBc5Ia1pzq3ZgPI6ac LhpjT7wmFG2UnQ== -----END CERTIFICATE-----Generated at Fri Dec 26 15:45:25 2025 by rpki-client