This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.mft File: uFnbfywuOzq9i_QV8M4f_zNDKew.mft (raw, json) Hash identifier: mG3K02FqkY2BUc8IyfcLsRDXvg/8FycUNGnB6L73cOw= Subject key identifier: A5:5E:6F:3A:31:0B:B5:02:97:0F:5C:8E:EA:4B:75:87:0C:FD:43:5B Authority key identifier: B8:59:DB:7F:2C:2E:3B:3A:BD:8B:F4:15:F0:CE:1F:FF:33:43:29:EC Certificate issuer: /CN=b859db7f2c2e3b3abd8bf415f0ce1fff334329ec Certificate serial: 019B0E5BEB0771F02D92C69ED3DED54AB36E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uFnbfywuOzq9i_QV8M4f_zNDKew.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.mft Manifest number: 0ECB Signing time: Thu 11 Dec 2025 17:01:03 +0000 Manifest this update: Thu 11 Dec 2025 17:01:03 +0000 Manifest next update: Fri 12 Dec 2025 17:01:03 +0000 Files and hashes: 1: KrWaj3PmGUr__R-XWPo-LvjSSzE.roa (hash: D32/8FWqAF1z0NVQywtDopSVNiH+dneRDeaovNlaE+U=) 2: uFnbfywuOzq9i_QV8M4f_zNDKew.crl (hash: /04NdDin8m/QkV/4oGyuK2w2aq6TdIEKZep5pIXuaik=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.mft rsync://rpki.ripe.net/repository/DEFAULT/uFnbfywuOzq9i_QV8M4f_zNDKew.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 17:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0e:5b:eb:07:71:f0:2d:92:c6:9e:d3:de:d5:4a:b3:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b859db7f2c2e3b3abd8bf415f0ce1fff334329ec Validity Not Before: Dec 11 17:01:03 2025 GMT Not After : Dec 12 17:01:03 2025 GMT Subject: CN=a55e6f3a310bb502970f5c8eea4b75870cfd435b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a7:87:52:de:c2:38:a0:dd:99:22:04:ca:9c: 28:46:9b:43:9b:19:47:d9:8f:0b:57:7a:11:c4:50: 9b:21:90:57:18:0a:ec:8e:29:23:25:05:89:b0:21: 0b:c8:33:23:a4:9b:21:82:b8:8c:16:83:60:95:75: de:6b:88:8f:19:b8:64:a6:d0:11:9b:ef:e6:83:97: d9:44:3c:bc:1c:50:2c:f5:e6:56:2a:fb:56:5d:0c: 03:4a:c6:0c:e5:86:ce:56:ea:29:23:c2:73:95:b3: 02:87:7f:64:9b:c4:f0:e4:04:96:f4:6c:fd:b0:b6: ea:b3:6a:4d:b9:f9:0b:fc:4b:23:5c:67:fc:a4:7a: 62:91:83:78:d0:89:54:4a:62:ac:61:b2:52:ab:29: 96:e1:27:7e:4e:17:d8:be:55:c7:12:44:5f:66:38: 01:74:95:96:1f:1b:db:7d:a0:1f:b1:b9:e1:cf:c9: 7a:df:dc:ac:b3:09:3d:65:85:0e:83:0b:d5:bc:4c: cc:23:75:0e:a9:ca:94:a3:e3:2f:a5:a4:55:21:77: 0b:40:b4:cb:f9:76:96:fe:25:87:17:96:ed:8e:bc: 1d:95:2c:61:14:6f:41:b0:e7:17:02:d5:c6:cf:87: 02:af:85:93:9d:d5:11:fc:e5:d4:ce:2a:42:f6:6f: 8d:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:5E:6F:3A:31:0B:B5:02:97:0F:5C:8E:EA:4B:75:87:0C:FD:43:5B X509v3 Authority Key Identifier: keyid:B8:59:DB:7F:2C:2E:3B:3A:BD:8B:F4:15:F0:CE:1F:FF:33:43:29:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uFnbfywuOzq9i_QV8M4f_zNDKew.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 92:e9:fc:9d:d1:ea:ab:f3:f6:8a:07:b0:9d:61:4a:91:69:0a: d2:66:6b:f9:4e:7b:23:e9:2f:1f:83:e5:e4:1b:b0:57:45:cc: 5d:ed:1a:87:05:d8:7e:21:a6:99:3e:86:72:06:2d:e1:78:5e: 86:17:06:f1:9d:f7:5b:ca:41:b2:8f:d2:bf:d4:c3:8b:ca:eb: dc:02:7b:d6:0b:5d:66:1b:8a:83:6c:3a:4e:f7:79:44:d1:62: 45:08:85:5a:b6:93:a0:77:16:a5:8b:11:42:3c:f0:bb:ff:13: 8c:8a:cb:de:19:4d:4d:8d:1f:1c:c9:60:6b:fa:8f:f0:95:f3: c6:bd:f5:e5:25:df:8d:62:9c:51:34:be:49:c3:3d:0c:c0:e9: f7:eb:a4:2e:d1:1b:d5:53:55:4d:19:7a:17:55:98:fe:a1:ff: 14:43:36:08:5c:9e:56:4a:bc:04:d0:94:ef:5d:88:d8:36:91: b7:b0:91:cc:e4:fe:c3:c1:22:2f:f6:2f:e0:c9:05:ba:aa:11: 86:7e:f8:1e:82:d7:ac:c2:d0:07:a8:63:f1:d8:a1:91:07:17: d2:23:47:b4:80:73:58:5c:7b:99:ec:e4:5e:50:7c:70:5e:66: 79:68:d4:43:0c:81:59:9c:af:cb:1a:c5:f2:43:42:d6:eb:1b: 17:a6:79:5e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsOW+sHcfAtksae097VSrNuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI4NTlkYjdmMmMyZTNiM2FiZDhiZjQxNWYwY2UxZmZmMzM0 MzI5ZWMwHhcNMjUxMjExMTcwMTAzWhcNMjUxMjEyMTcwMTAzWjAzMTEwLwYDVQQD EyhhNTVlNmYzYTMxMGJiNTAyOTcwZjVjOGVlYTRiNzU4NzBjZmQ0MzViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqqeHUt7COKDdmSIEypwoRptDmxlH 2Y8LV3oRxFCbIZBXGArsjikjJQWJsCELyDMjpJshgriMFoNglXXea4iPGbhkptAR m+/mg5fZRDy8HFAs9eZWKvtWXQwDSsYM5YbOVuopI8JzlbMCh39km8Tw5ASW9Gz9 sLbqs2pNufkL/EsjXGf8pHpikYN40IlUSmKsYbJSqymW4Sd+ThfYvlXHEkRfZjgB dJWWHxvbfaAfsbnhz8l639ysswk9ZYUOgwvVvEzMI3UOqcqUo+MvpaRVIXcLQLTL +XaW/iWHF5btjrwdlSxhFG9BsOcXAtXGz4cCr4WTndUR/OXUzipC9m+NSwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKVebzoxC7UClw9cjupLdYcM/UNbMB8GA1UdIwQY MBaAFLhZ238sLjs6vYv0FfDOH/8zQynsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdUZuYmZ5d3VPenE5aV9RVjhNNGZfek5ES2V3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi83ZWI3YzMtZTM0YS00ZmJjLTkyNzIt NGMxYzU3YTgxZmZkLzEvdUZuYmZ5d3VPenE5aV9RVjhNNGZfek5ES2V3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi83ZWI3YzMtZTM0YS00ZmJjLTkyNzItNGMxYzU3YTgxZmZk LzEvdUZuYmZ5d3VPenE5aV9RVjhNNGZfek5ES2V3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkun8ndHq q/P2igewnWFKkWkK0mZr+U57I+kvH4Pl5BuwV0XMXe0ahwXYfiGmmT6GcgYt4Xhe hhcG8Z33W8pBso/Sv9TDi8rr3AJ71gtdZhuKg2w6Tvd5RNFiRQiFWraToHcWpYsR Qjzwu/8TjIrL3hlNTY0fHMlga/qP8JXzxr315SXfjWKcUTS+ScM9DMDp9+ukLtEb 1VNVTRl6F1WY/qH/FEM2CFyeVkq8BNCU712I2DaRt7CRzOT+w8EiL/Yv4MkFuqoR hn74HoLXrMLQB6hj8dihkQcX0iNHtIBzWFx7mezkXlB8cF5meWjUQwyBWZyvyxrF 8kNC1usbF6Z5Xg== -----END CERTIFICATE-----Generated at Fri Dec 12 00:11:36 2025 by rpki-client