This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/43bb94-94c6-4dad-a372-5fcfa421975c/1/u7hl_W36q6dxJJt-uujr1SgKDJc.mft File: u7hl_W36q6dxJJt-uujr1SgKDJc.mft (raw, json) Hash identifier: CrRwbac0pmaZiozPbLwfGrxKAU9RntGcuO7kyImZQKc= Subject key identifier: D6:59:6B:D6:77:F5:5D:50:3B:14:8D:6F:C4:90:82:B0:CC:33:2D:69 Authority key identifier: BB:B8:65:FD:6D:FA:AB:A7:71:24:9B:7E:BA:E8:EB:D5:28:0A:0C:97 Certificate issuer: /CN=bbb865fd6dfaaba771249b7ebae8ebd5280a0c97 Certificate serial: 019B5A513AEE43A4A89D205B24CC46D8D72C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u7hl_W36q6dxJJt-uujr1SgKDJc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/43bb94-94c6-4dad-a372-5fcfa421975c/1/u7hl_W36q6dxJJt-uujr1SgKDJc.mft Manifest number: 12E2 Signing time: Fri 26 Dec 2025 11:00:31 +0000 Manifest this update: Fri 26 Dec 2025 11:00:31 +0000 Manifest next update: Sat 27 Dec 2025 11:00:31 +0000 Files and hashes: 1: kr3FPTrUbvprQB5gOzb6Xm9In9I.roa (hash: hZOcB5l1wSRFBsah9a6wwCM7j6k84PdiP/Urp0eSJlg=) 2: u7hl_W36q6dxJJt-uujr1SgKDJc.crl (hash: rqf22ukGKJU5cHe9aqrPN0KfGYCd1iT3Gr91+5fkums=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/43bb94-94c6-4dad-a372-5fcfa421975c/1/u7hl_W36q6dxJJt-uujr1SgKDJc.crl rsync://rpki.ripe.net/repository/DEFAULT/4a/43bb94-94c6-4dad-a372-5fcfa421975c/1/u7hl_W36q6dxJJt-uujr1SgKDJc.mft rsync://rpki.ripe.net/repository/DEFAULT/u7hl_W36q6dxJJt-uujr1SgKDJc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 11:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:51:3a:ee:43:a4:a8:9d:20:5b:24:cc:46:d8:d7:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bbb865fd6dfaaba771249b7ebae8ebd5280a0c97 Validity Not Before: Dec 26 11:00:31 2025 GMT Not After : Dec 27 11:00:31 2025 GMT Subject: CN=d6596bd677f55d503b148d6fc49082b0cc332d69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b2:3b:18:45:dd:bd:9d:00:cf:ad:70:ac:2c: df:bd:7f:6b:85:e2:19:4c:54:af:8d:f0:72:3c:bc: 5e:a1:ff:ac:6e:bd:20:82:f0:8e:cd:f9:ab:86:df: 26:94:47:ed:24:08:0b:4e:b7:4f:b0:40:ea:33:ea: 1b:33:f8:c5:51:64:a2:c8:00:56:7d:af:e5:dc:e3: db:1c:3d:1d:0a:f7:f5:30:81:82:a6:03:75:ab:ca: 18:c3:27:04:97:02:bd:f5:89:fb:ef:7d:5a:e6:92: 0f:b6:a4:b8:9a:4c:bc:01:91:21:b1:8f:aa:42:91: 66:0a:44:24:3c:64:98:22:b3:21:15:a7:83:ab:f8: 08:3b:5d:d8:3f:1d:8b:2f:48:f2:20:0b:b7:da:ca: 87:90:4e:f7:64:90:9d:06:b4:0d:b9:a9:55:b7:66: 83:9e:6f:e2:a8:37:61:63:d2:3b:ee:77:1a:14:fb: 4a:c3:96:2d:97:a5:17:d5:10:58:f7:ec:95:ff:ac: af:69:47:3f:f0:e6:d5:72:6f:66:b5:65:f3:85:91: 58:03:29:6c:bc:47:e8:6e:e1:cc:44:84:bf:00:be: 60:29:e1:d3:ab:b0:8e:51:31:27:1a:5f:35:9f:ba: d0:47:69:9c:0c:b4:dd:5a:5f:d9:c5:a5:c5:eb:16: aa:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:59:6B:D6:77:F5:5D:50:3B:14:8D:6F:C4:90:82:B0:CC:33:2D:69 X509v3 Authority Key Identifier: keyid:BB:B8:65:FD:6D:FA:AB:A7:71:24:9B:7E:BA:E8:EB:D5:28:0A:0C:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u7hl_W36q6dxJJt-uujr1SgKDJc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/43bb94-94c6-4dad-a372-5fcfa421975c/1/u7hl_W36q6dxJJt-uujr1SgKDJc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/43bb94-94c6-4dad-a372-5fcfa421975c/1/u7hl_W36q6dxJJt-uujr1SgKDJc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a8:7b:9b:9d:0c:b8:39:11:20:e3:11:e5:24:e3:85:9c:22:7c: c9:a3:25:6b:c1:ee:c6:34:71:a4:ff:6b:96:a7:b6:7f:5b:94: 4b:de:be:2d:02:92:31:19:41:d9:b0:8b:df:77:b1:bd:3d:af: 52:e9:f3:cf:50:04:da:db:15:c4:76:da:c8:2d:81:6f:ba:24: c8:34:21:e0:f4:f5:dd:63:76:20:c6:e0:e8:a4:b2:cc:58:35: 6d:87:05:b2:a5:e7:d1:de:84:cb:d0:57:12:e4:e5:b5:37:7d: c1:55:09:6a:5d:3d:b3:b2:e5:9a:59:2c:bc:11:6c:e7:ce:74: 42:f2:f8:fe:92:3a:aa:7b:61:ec:0e:03:fe:24:2b:78:c3:c0: f3:59:76:3f:e5:fc:a8:39:05:9e:22:99:27:4c:bf:c5:f9:08: c9:df:a6:53:07:ac:fa:16:f0:b4:54:dc:12:5f:36:01:9c:7c: 80:48:fd:99:57:5a:ae:d9:91:4f:27:77:64:10:da:50:bd:42: 9f:1b:c3:47:19:d0:4e:17:be:7f:45:f0:5a:f5:eb:35:47:f6: 7c:fd:4a:20:0c:4d:58:cc:a5:c9:12:40:5b:92:84:e3:4c:b5: f2:4f:27:8a:7a:b9:67:4d:ff:6d:ba:0c:a4:05:34:b1:4c:94: 6f:93:da:b6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtaUTruQ6SonSBbJMxG2NcsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJiYjg2NWZkNmRmYWFiYTc3MTI0OWI3ZWJhZThlYmQ1Mjgw YTBjOTcwHhcNMjUxMjI2MTEwMDMxWhcNMjUxMjI3MTEwMDMxWjAzMTEwLwYDVQQD EyhkNjU5NmJkNjc3ZjU1ZDUwM2IxNDhkNmZjNDkwODJiMGNjMzMyZDY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwbI7GEXdvZ0Az61wrCzfvX9rheIZ TFSvjfByPLxeof+sbr0ggvCOzfmrht8mlEftJAgLTrdPsEDqM+obM/jFUWSiyABW fa/l3OPbHD0dCvf1MIGCpgN1q8oYwycElwK99Yn7731a5pIPtqS4mky8AZEhsY+q QpFmCkQkPGSYIrMhFaeDq/gIO13YPx2LL0jyIAu32sqHkE73ZJCdBrQNualVt2aD nm/iqDdhY9I77ncaFPtKw5Ytl6UX1RBY9+yV/6yvaUc/8ObVcm9mtWXzhZFYAyls vEfobuHMRIS/AL5gKeHTq7COUTEnGl81n7rQR2mcDLTdWl/ZxaXF6xaqgQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNZZa9Z39V1QOxSNb8SQgrDMMy1pMB8GA1UdIwQY MBaAFLu4Zf1t+quncSSbfrro69UoCgyXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdTdobF9XMzZxNmR4Skp0LXV1anIxU2dLREpjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS80M2JiOTQtOTRjNi00ZGFkLWEzNzIt NWZjZmE0MjE5NzVjLzEvdTdobF9XMzZxNmR4Skp0LXV1anIxU2dLREpjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80YS80M2JiOTQtOTRjNi00ZGFkLWEzNzItNWZjZmE0MjE5NzVj LzEvdTdobF9XMzZxNmR4Skp0LXV1anIxU2dLREpjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqHubnQy4 OREg4xHlJOOFnCJ8yaMla8HuxjRxpP9rlqe2f1uUS96+LQKSMRlB2bCL33exvT2v Uunzz1AE2tsVxHbayC2Bb7okyDQh4PT13WN2IMbg6KSyzFg1bYcFsqXn0d6Ey9BX EuTltTd9wVUJal09s7LlmlksvBFs5850QvL4/pI6qnth7A4D/iQreMPA81l2P+X8 qDkFniKZJ0y/xfkIyd+mUwes+hbwtFTcEl82AZx8gEj9mVdartmRTyd3ZBDaUL1C nxvDRxnQThe+f0XwWvXrNUf2fP1KIAxNWMylyRJAW5KE40y18k8ninq5Z03/bboM pAU0sUyUb5Patg== -----END CERTIFICATE-----Generated at Fri Dec 26 17:44:52 2025 by rpki-client