This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.mft File: rUZjafOSfaDIn7X0s-qeMk-SioQ.mft (raw, json) Hash identifier: T76NR4mwOMx+ysCTTSD5LJKAwD5FCJaWdKY8KWdcWHo= Subject key identifier: A8:42:77:A8:95:F8:4C:C7:37:0D:31:CB:9F:0A:29:C8:04:D0:B3:D0 Authority key identifier: AD:46:63:69:F3:92:7D:A0:C8:9F:B5:F4:B3:EA:9E:32:4F:92:8A:84 Certificate issuer: /CN=ad466369f3927da0c89fb5f4b3ea9e324f928a84 Certificate serial: 019B24E4096A4AD2C4C7014B1B2261304E2E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rUZjafOSfaDIn7X0s-qeMk-SioQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.mft Manifest number: 0792 Signing time: Tue 16 Dec 2025 02:01:22 +0000 Manifest this update: Tue 16 Dec 2025 02:01:22 +0000 Manifest next update: Wed 17 Dec 2025 02:01:22 +0000 Files and hashes: 1: e2krXZzkR-AkHScvd476IUHzrz0.roa (hash: KJC7yZeLdAZIJXLO5En/1DBnqhI+LO45sglWIneobpg=) 2: rUZjafOSfaDIn7X0s-qeMk-SioQ.crl (hash: VKKdL+/lfdK/cckpHQQPvdRG5FoxvQ2N3dGMERB63Dg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.mft rsync://rpki.ripe.net/repository/DEFAULT/rUZjafOSfaDIn7X0s-qeMk-SioQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:24:e4:09:6a:4a:d2:c4:c7:01:4b:1b:22:61:30:4e:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ad466369f3927da0c89fb5f4b3ea9e324f928a84 Validity Not Before: Dec 16 02:01:22 2025 GMT Not After : Dec 17 02:01:22 2025 GMT Subject: CN=a84277a895f84cc7370d31cb9f0a29c804d0b3d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:3d:52:5a:4c:36:b6:e2:b9:31:9f:d8:8b:2e: 87:58:db:5b:c4:5c:a9:98:b2:f6:c5:d3:74:da:58: aa:72:b5:aa:b3:56:f5:76:f7:57:c8:17:dd:ec:7d: 02:b3:64:7e:1b:d7:3b:dd:e4:2d:6a:cd:aa:17:f2: f0:33:eb:3b:74:20:62:7a:f9:9d:78:80:0e:0b:57: 1f:80:bf:24:c1:de:7f:7b:e9:33:3a:c8:7a:b5:04: d0:f0:7c:26:f9:89:83:24:16:cb:14:b3:ca:56:36: e1:42:f0:76:fc:cf:5a:4a:9d:a7:31:5a:5d:55:98: 67:f2:3f:2c:69:d4:37:09:66:1f:33:09:dd:fb:12: 0b:65:35:6c:09:82:9d:f3:63:c9:00:af:b2:bd:2f: 7a:5a:2e:b7:55:1c:75:91:08:7b:98:48:92:35:b7: 50:1d:04:49:88:56:4f:4a:27:db:4c:ac:a2:13:e7: 86:fd:2e:a0:e0:b4:aa:a6:10:8f:6d:10:4a:f2:c0: bc:da:c1:dd:55:76:23:90:35:d2:d3:97:35:17:75: e1:a1:1f:aa:36:36:6f:1e:9d:3e:13:3f:f8:49:02: 5b:b4:e7:81:5a:4c:81:d7:6f:df:1e:a2:7b:88:84: 79:f7:4a:3e:ed:c2:ba:48:77:a4:83:f7:d0:a2:8a: 32:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:42:77:A8:95:F8:4C:C7:37:0D:31:CB:9F:0A:29:C8:04:D0:B3:D0 X509v3 Authority Key Identifier: keyid:AD:46:63:69:F3:92:7D:A0:C8:9F:B5:F4:B3:EA:9E:32:4F:92:8A:84 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rUZjafOSfaDIn7X0s-qeMk-SioQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/27c6a1-1c94-4a49-8e3d-9fd503970ff0/1/rUZjafOSfaDIn7X0s-qeMk-SioQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 01:81:02:0a:9f:5f:e5:80:08:c7:e5:da:fd:c8:d2:b2:7d:e0: 99:85:64:82:cc:85:f6:61:f9:1d:b5:68:ec:4e:af:b5:94:5e: 1f:95:09:82:47:ad:20:54:00:0e:f4:52:fe:ab:92:e5:af:1e: ff:2e:69:7a:3e:90:c0:85:a8:16:e0:46:f2:ad:d7:81:f1:7d: 6e:08:ca:eb:e2:bf:3a:a3:2b:8a:bf:9b:8f:43:7f:a6:c0:13: 40:39:9a:8c:b0:6f:a8:57:27:ab:0a:b9:57:e0:be:df:96:53: ac:43:54:8b:8a:40:38:09:d1:99:11:0d:3a:07:6b:7a:35:d7: 9e:41:d3:96:98:3a:6e:f8:c7:0a:76:10:a5:b9:4d:c3:a2:9b: cb:af:a1:18:f7:bb:80:24:a5:e2:68:6e:f9:2d:9f:a8:7d:c6: 72:f5:38:20:07:07:4e:5d:01:af:c4:de:9c:46:34:77:6d:b4: 38:c5:cd:c0:f4:0f:6b:eb:e4:a9:73:a0:e3:ab:32:d5:fe:d6: 56:4b:e0:dc:c5:f4:96:96:29:7d:cb:ae:5e:e4:6f:73:a8:3c: 89:fa:d6:67:10:db:11:20:87:7a:51:e9:2d:dc:57:d4:71:32: 5d:7e:3f:fd:5e:e7:09:b1:22:27:8d:80:62:fb:41:33:5f:8d: 83:5b:77:4a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsk5AlqStLExwFLGyJhME4uMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkNDY2MzY5ZjM5MjdkYTBjODlmYjVmNGIzZWE5ZTMyNGY5 MjhhODQwHhcNMjUxMjE2MDIwMTIyWhcNMjUxMjE3MDIwMTIyWjAzMTEwLwYDVQQD EyhhODQyNzdhODk1Zjg0Y2M3MzcwZDMxY2I5ZjBhMjljODA0ZDBiM2QwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkz1SWkw2tuK5MZ/Yiy6HWNtbxFyp mLL2xdN02liqcrWqs1b1dvdXyBfd7H0Cs2R+G9c73eQtas2qF/LwM+s7dCBievmd eIAOC1cfgL8kwd5/e+kzOsh6tQTQ8Hwm+YmDJBbLFLPKVjbhQvB2/M9aSp2nMVpd VZhn8j8sadQ3CWYfMwnd+xILZTVsCYKd82PJAK+yvS96Wi63VRx1kQh7mEiSNbdQ HQRJiFZPSifbTKyiE+eG/S6g4LSqphCPbRBK8sC82sHdVXYjkDXS05c1F3XhoR+q NjZvHp0+Ez/4SQJbtOeBWkyB12/fHqJ7iIR590o+7cK6SHekg/fQoooy5wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKhCd6iV+EzHNw0xy58KKcgE0LPQMB8GA1UdIwQY MBaAFK1GY2nzkn2gyJ+19LPqnjJPkoqEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvclVaamFmT1NmYURJbjdYMHMtcWVNay1TaW9RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi8yN2M2YTEtMWM5NC00YTQ5LThlM2Qt OWZkNTAzOTcwZmYwLzEvclVaamFmT1NmYURJbjdYMHMtcWVNay1TaW9RLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi8yN2M2YTEtMWM5NC00YTQ5LThlM2QtOWZkNTAzOTcwZmYw LzEvclVaamFmT1NmYURJbjdYMHMtcWVNay1TaW9RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAYECCp9f 5YAIx+Xa/cjSsn3gmYVkgsyF9mH5HbVo7E6vtZReH5UJgketIFQADvRS/quS5a8e /y5pej6QwIWoFuBG8q3XgfF9bgjK6+K/OqMrir+bj0N/psATQDmajLBvqFcnqwq5 V+C+35ZTrENUi4pAOAnRmRENOgdrejXXnkHTlpg6bvjHCnYQpblNw6Kby6+hGPe7 gCSl4mhu+S2fqH3GcvU4IAcHTl0Br8TenEY0d220OMXNwPQPa+vkqXOg46sy1f7W Vkvg3MX0lpYpfcuuXuRvc6g8ifrWZxDbESCHelHpLdxX1HEyXX4//V7nCbEiJ42A YvtBM1+Ng1t3Sg== -----END CERTIFICATE-----Generated at Tue Dec 16 06:39:50 2025 by rpki-client