This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft File: U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft (raw, json) Hash identifier: xV7B4HuT385+bwaP0RAgiNWJI9TRqEPsUBipAlZaoiQ= Subject key identifier: CB:48:86:9C:10:99:7B:33:CC:CD:7C:1F:C6:69:F2:87:C2:22:96:28 Authority key identifier: 53:49:C2:D0:0B:A4:6B:E9:24:4B:76:19:4B:AA:10:F3:3C:E3:46:2C Certificate issuer: /CN=5349c2d00ba46be9244b76194baa10f33ce3462c Certificate serial: 019B126FD2E71F3D3172309A6C8FCCB69B8D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U0nC0Auka-kkS3YZS6oQ8zzjRiw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft Manifest number: 07FF Signing time: Fri 12 Dec 2025 12:01:16 +0000 Manifest this update: Fri 12 Dec 2025 12:01:16 +0000 Manifest next update: Sat 13 Dec 2025 12:01:16 +0000 Files and hashes: 1: U0nC0Auka-kkS3YZS6oQ8zzjRiw.crl (hash: rQ9Win9pzEjTQ6gyho5DW89fKWKpbeHgpnvVJuQWQE8=) 2: kDLhfcy8YHG9d7r3ZyKyTCN67dU.roa (hash: FHssmQ805uZ/Wtb94rUn/bLQZUQ10hPffXrOYDXFnpE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.crl rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft rsync://rpki.ripe.net/repository/DEFAULT/U0nC0Auka-kkS3YZS6oQ8zzjRiw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Dec 2025 08:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:12:6f:d2:e7:1f:3d:31:72:30:9a:6c:8f:cc:b6:9b:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5349c2d00ba46be9244b76194baa10f33ce3462c Validity Not Before: Dec 12 12:01:16 2025 GMT Not After : Dec 13 12:01:16 2025 GMT Subject: CN=cb48869c10997b33cccd7c1fc669f287c2229628 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:eb:e5:7a:43:79:d7:94:5c:97:89:db:de:e4: 22:92:f0:e4:b4:c1:2b:39:7f:af:99:da:28:58:41: 4e:7a:cd:83:7b:be:93:2c:04:fb:7e:80:79:9d:ed: 05:8a:e1:83:c6:db:f6:71:9f:bf:c3:23:ed:f8:42: 63:e8:b1:63:78:c0:37:cd:e7:bb:97:8c:60:2d:a8: 02:79:30:52:f4:4d:ff:c9:d4:13:9e:2c:5c:95:a2: af:e6:15:4e:9d:ae:80:77:1b:65:3f:b6:89:f3:3c: cd:01:8e:92:e5:02:81:a5:60:c7:33:8d:f8:bc:3c: 1f:27:b6:4c:d8:fd:10:c1:7a:18:76:a4:ac:85:d9: 93:ea:76:5b:a0:4b:40:9f:55:ba:cc:94:05:81:b7: 3b:54:33:ba:b6:dd:1d:c9:0a:64:2b:61:a8:52:a1: 49:16:cb:9f:49:82:bd:45:b4:d7:73:aa:b9:8d:3e: d3:57:78:95:9c:cd:a7:c5:f0:3a:6b:cb:ed:2f:22: 16:d4:1c:a5:91:a2:b1:6b:0e:44:cb:3e:5b:e7:37: 06:f6:3f:af:60:8d:fc:f5:fd:9e:25:80:12:81:2c: 97:73:30:20:a7:25:18:4a:34:30:e3:7b:e0:c8:4b: 8f:5b:13:a6:f2:50:c6:fc:a9:91:21:67:5e:1a:bb: c9:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:48:86:9C:10:99:7B:33:CC:CD:7C:1F:C6:69:F2:87:C2:22:96:28 X509v3 Authority Key Identifier: keyid:53:49:C2:D0:0B:A4:6B:E9:24:4B:76:19:4B:AA:10:F3:3C:E3:46:2C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U0nC0Auka-kkS3YZS6oQ8zzjRiw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f8ae47-0ed4-4681-9c12-fa1260850709/1/U0nC0Auka-kkS3YZS6oQ8zzjRiw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 55:82:1c:c1:0d:68:cf:44:aa:33:8d:ba:8e:ab:bd:7f:83:97: 93:32:41:71:79:d2:eb:ed:5f:ca:e6:57:81:b6:89:f8:0c:aa: f8:94:42:00:e8:da:13:20:60:40:29:5f:a1:fe:d5:5e:20:8f: ff:2c:82:19:6a:a5:47:63:40:5c:6c:16:07:b1:76:e4:48:88: ec:ca:84:c1:07:66:d4:27:15:5f:5a:fe:b0:31:d5:dc:90:bb: 78:f0:ff:42:49:8a:4c:12:0a:c9:23:c8:f2:76:ef:ce:50:56: 17:f1:30:10:c8:6f:fb:0a:6c:51:73:e7:af:fc:58:44:3a:e5: 0c:3d:a7:4c:d7:43:f1:43:cd:e6:b4:bc:62:c8:4c:53:e2:66: 3c:97:a8:de:35:43:db:d9:4f:e5:31:5c:3d:2e:a1:50:7f:17: 68:e9:15:8c:c7:fa:e2:20:72:a9:e8:76:d8:c6:7c:7d:f6:d9: e5:88:c2:5f:6e:c0:b1:9b:74:cd:81:e6:d8:7f:de:8b:ad:90: f4:d9:dc:8f:58:76:b7:96:fc:10:8e:44:df:43:cc:cb:ef:c7: c1:2d:7a:a3:74:f6:3b:ef:3b:91:a5:57:27:47:46:f7:f1:14: 49:ec:b8:2d:28:31:d7:9c:8d:fd:ef:e7:27:74:6b:42:45:69: c0:5f:90:37 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsSb9LnHz0xcjCabI/MtpuNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzNDljMmQwMGJhNDZiZTkyNDRiNzYxOTRiYWExMGYzM2Nl MzQ2MmMwHhcNMjUxMjEyMTIwMTE2WhcNMjUxMjEzMTIwMTE2WjAzMTEwLwYDVQQD EyhjYjQ4ODY5YzEwOTk3YjMzY2NjZDdjMWZjNjY5ZjI4N2MyMjI5NjI4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjuvlekN515Rcl4nb3uQikvDktMEr OX+vmdooWEFOes2De76TLAT7foB5ne0FiuGDxtv2cZ+/wyPt+EJj6LFjeMA3zee7 l4xgLagCeTBS9E3/ydQTnixclaKv5hVOna6AdxtlP7aJ8zzNAY6S5QKBpWDHM434 vDwfJ7ZM2P0QwXoYdqSshdmT6nZboEtAn1W6zJQFgbc7VDO6tt0dyQpkK2GoUqFJ FsufSYK9RbTXc6q5jT7TV3iVnM2nxfA6a8vtLyIW1BylkaKxaw5Eyz5b5zcG9j+v YI389f2eJYASgSyXczAgpyUYSjQw43vgyEuPWxOm8lDG/KmRIWdeGrvJtwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMtIhpwQmXszzM18H8Zp8ofCIpYoMB8GA1UdIwQY MBaAFFNJwtALpGvpJEt2GUuqEPM840YsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVTBuQzBBdWthLWtrUzNZWlM2b1E4enpqUml3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS9mOGFlNDctMGVkNC00NjgxLTljMTIt ZmExMjYwODUwNzA5LzEvVTBuQzBBdWthLWtrUzNZWlM2b1E4enpqUml3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NS9mOGFlNDctMGVkNC00NjgxLTljMTItZmExMjYwODUwNzA5 LzEvVTBuQzBBdWthLWtrUzNZWlM2b1E4enpqUml3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVYIcwQ1o z0SqM426jqu9f4OXkzJBcXnS6+1fyuZXgbaJ+Ayq+JRCAOjaEyBgQClfof7VXiCP /yyCGWqlR2NAXGwWB7F25EiI7MqEwQdm1CcVX1r+sDHV3JC7ePD/QkmKTBIKySPI 8nbvzlBWF/EwEMhv+wpsUXPnr/xYRDrlDD2nTNdD8UPN5rS8YshMU+JmPJeo3jVD 29lP5TFcPS6hUH8XaOkVjMf64iByqeh22MZ8ffbZ5YjCX27AsZt0zYHm2H/ei62Q 9Nncj1h2t5b8EI5E30PMy+/HwS16o3T2O+87kaVXJ0dG9/EUSey4LSgx15yN/e/n J3RrQkVpwF+QNw== -----END CERTIFICATE-----Generated at Fri Dec 12 17:55:19 2025 by rpki-client