This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.mft File: uohh4X6-1XlQ_zLHs3f8QwQT2-Q.mft (raw, json) Hash identifier: RwGudhUGtTZygyDpGHGzvSDc16vdBxbdDJeXLv1zhV0= Subject key identifier: 97:1D:D0:06:52:2D:C0:54:5B:62:F4:3A:A5:0A:18:E5:4C:D6:91:12 Authority key identifier: BA:88:61:E1:7E:BE:D5:79:50:FF:32:C7:B3:77:FC:43:04:13:DB:E4 Certificate issuer: /CN=ba8861e17ebed57950ff32c7b377fc430413dbe4 Certificate serial: 019AACF134955403EE9179A94CA6F762BDC7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.mft Manifest number: 0E66 Signing time: Sat 22 Nov 2025 19:01:20 +0000 Manifest this update: Sat 22 Nov 2025 19:01:20 +0000 Manifest next update: Sun 23 Nov 2025 19:01:20 +0000 Files and hashes: 1: 3eC8nP2y0M7Dk50w-cz0uqTipws.roa (hash: oL1pIlz/bhILnljMZOEBWQ6dy5AQHNGyWJuSJLm2sWA=) 2: DKKUdW46_6zXz80AQeVOjRiUJ4A.roa (hash: xKACAtSTQQnsNmsto4dOmpcxKzakaVi9kzieeQlXs5g=) 3: mj78j7-0AeevMahy3Oa3oEUR37o.roa (hash: GV37V8PynELJMOdG95g3RGrNY37XlDLhQkTKeFw+n+A=) 4: uohh4X6-1XlQ_zLHs3f8QwQT2-Q.crl (hash: xc7uGGnhdB850+hKjhIryrj1Gt38XeI54ua6eZGwM+4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.crl rsync://rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.mft rsync://rpki.ripe.net/repository/DEFAULT/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 23 Nov 2025 12:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:ac:f1:34:95:54:03:ee:91:79:a9:4c:a6:f7:62:bd:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba8861e17ebed57950ff32c7b377fc430413dbe4 Validity Not Before: Nov 22 19:01:20 2025 GMT Not After : Nov 23 19:01:20 2025 GMT Subject: CN=971dd006522dc0545b62f43aa50a18e54cd69112 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:19:53:98:64:be:ad:c4:00:77:de:c7:f4:63: 54:aa:66:89:28:03:b2:67:38:e3:e1:74:2e:68:2d: 11:c7:94:93:08:72:81:00:fe:43:27:4e:d6:fd:8b: be:cb:04:e5:1d:6a:88:fb:f8:51:66:ef:89:23:d2: 60:e2:b3:d3:17:6f:d0:ef:24:c5:c3:30:29:4b:c0: 4d:5e:49:33:9b:fa:5d:ae:2d:21:ad:95:ce:b8:83: 8c:38:42:78:6c:bf:c0:33:0e:ed:0a:dc:cc:15:68: be:c0:f1:a6:d0:3e:3a:92:e0:e1:2b:c0:6b:f7:94: c0:f5:eb:d0:ca:47:1d:2d:52:8c:ce:b7:62:32:82: 20:dd:2c:40:39:55:d5:35:ef:a7:fd:68:b3:3a:cd: f5:34:f5:8b:5a:6d:b5:e5:f0:17:5d:cc:9d:9b:31: 19:0a:69:69:3e:ad:72:de:45:a8:31:35:88:63:5c: c4:09:ab:4c:9a:49:d5:35:65:8c:d7:27:1d:82:7d: 74:39:65:86:13:45:0b:b6:c3:52:51:9f:ab:b1:96: e4:2f:bc:92:8a:e7:da:43:4e:de:fe:c9:e2:60:3d: 5d:ec:e0:15:a2:94:39:f9:fb:6f:65:0b:b3:ee:fb: 8a:3b:ea:fa:af:ee:e8:79:5a:c9:15:7d:8d:88:40: 49:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:1D:D0:06:52:2D:C0:54:5B:62:F4:3A:A5:0A:18:E5:4C:D6:91:12 X509v3 Authority Key Identifier: keyid:BA:88:61:E1:7E:BE:D5:79:50:FF:32:C7:B3:77:FC:43:04:13:DB:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:6c:30:d7:3c:e0:ab:91:91:55:d8:b5:a5:44:52:15:91:4c: b9:ee:70:bf:1c:9d:14:ae:63:2c:c5:33:46:b7:02:94:51:be: f4:d8:6c:f4:c6:e9:d4:53:fd:49:36:79:31:a2:60:a6:51:45: bf:f7:09:70:05:b8:23:fc:97:fb:10:48:bb:2b:85:e0:c2:f6: 08:ac:d1:31:d8:a2:d4:bb:dd:f9:17:2c:e6:5b:96:e1:0e:08: 7a:72:c7:80:50:0a:fe:2e:27:ca:82:8d:2e:c4:d0:25:12:00: 9d:cc:98:40:20:14:6d:03:38:fc:6c:27:37:af:31:b8:51:b0: 7e:58:32:10:da:b5:05:55:01:54:a1:84:66:56:33:aa:33:6a: b0:be:57:9e:51:6b:70:c3:ff:2d:bf:62:c8:4e:61:dc:44:86: 10:73:e2:ae:88:5a:88:ef:74:23:d6:2e:1a:29:08:2a:bc:94: 58:29:41:04:66:54:46:a8:2a:19:b0:a3:41:55:38:13:5b:44: 40:9c:b7:4c:d4:07:41:4e:98:43:c2:22:54:fa:ef:11:7c:fe: 83:00:96:7e:26:32:2f:f8:19:d4:e4:fd:60:5d:2e:1d:8a:73: 51:dc:26:b6:d6:cb:3a:9f:e4:f6:05:2f:b2:5c:87:da:0b:61: 8e:3c:8d:7b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZqs8TSVVAPukXmpTKb3Yr3HMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhODg2MWUxN2ViZWQ1Nzk1MGZmMzJjN2IzNzdmYzQzMDQx M2RiZTQwHhcNMjUxMTIyMTkwMTIwWhcNMjUxMTIzMTkwMTIwWjAzMTEwLwYDVQQD Eyg5NzFkZDAwNjUyMmRjMDU0NWI2MmY0M2FhNTBhMThlNTRjZDY5MTEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxxlTmGS+rcQAd97H9GNUqmaJKAOy Zzjj4XQuaC0Rx5STCHKBAP5DJ07W/Yu+ywTlHWqI+/hRZu+JI9Jg4rPTF2/Q7yTF wzApS8BNXkkzm/pdri0hrZXOuIOMOEJ4bL/AMw7tCtzMFWi+wPGm0D46kuDhK8Br 95TA9evQykcdLVKMzrdiMoIg3SxAOVXVNe+n/WizOs31NPWLWm215fAXXcydmzEZ CmlpPq1y3kWoMTWIY1zECatMmknVNWWM1ycdgn10OWWGE0ULtsNSUZ+rsZbkL7yS iufaQ07e/sniYD1d7OAVopQ5+ftvZQuz7vuKO+r6r+7oeVrJFX2NiEBJ8wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJcd0AZSLcBUW2L0OqUKGOVM1pESMB8GA1UdIwQY MBaAFLqIYeF+vtV5UP8yx7N3/EMEE9vkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdW9oaDRYNi0xWGxRX3pMSHMzZjhRd1FUMi1RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi8xMGQxNTMtYzNjMy00MDExLTk3Y2Yt MTBmZGNhMzg1ZWE0LzEvdW9oaDRYNi0xWGxRX3pMSHMzZjhRd1FUMi1RLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYi8xMGQxNTMtYzNjMy00MDExLTk3Y2YtMTBmZGNhMzg1ZWE0 LzEvdW9oaDRYNi0xWGxRX3pMSHMzZjhRd1FUMi1RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJmww1zzg q5GRVdi1pURSFZFMue5wvxydFK5jLMUzRrcClFG+9Nhs9Mbp1FP9STZ5MaJgplFF v/cJcAW4I/yX+xBIuyuF4ML2CKzRMdii1Lvd+Rcs5luW4Q4IenLHgFAK/i4nyoKN LsTQJRIAncyYQCAUbQM4/GwnN68xuFGwflgyENq1BVUBVKGEZlYzqjNqsL5XnlFr cMP/Lb9iyE5h3ESGEHPirohaiO90I9YuGikIKryUWClBBGZURqgqGbCjQVU4E1tE QJy3TNQHQU6YQ8IiVPrvEXz+gwCWfiYyL/gZ1OT9YF0uHYpzUdwmttbLOp/k9gUv slyH2gthjjyNew== -----END CERTIFICATE-----Generated at Sat Nov 22 21:44:27 2025 by rpki-client