This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/71f439-2b1b-4ef0-b6a5-8fcaa6936c6c/1/uqpkzSnJTM3hREj2GhcsdjseQFA.mft File: uqpkzSnJTM3hREj2GhcsdjseQFA.mft (raw, json) Hash identifier: saCgwpdX4ljZMkKE+gXEe8oV2b9nrvrcwfhTI0iZoEk= Subject key identifier: 2F:2A:0F:8D:AD:77:25:BA:86:11:E3:BB:0D:94:41:10:7C:02:6B:6C Authority key identifier: BA:AA:64:CD:29:C9:4C:CD:E1:44:48:F6:1A:17:2C:76:3B:1E:40:50 Certificate issuer: /CN=baaa64cd29c94ccde14448f61a172c763b1e4050 Certificate serial: 019B1EAADCD2E889544F1EB08DBACCAE3727 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uqpkzSnJTM3hREj2GhcsdjseQFA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/71f439-2b1b-4ef0-b6a5-8fcaa6936c6c/1/uqpkzSnJTM3hREj2GhcsdjseQFA.mft Manifest number: 07D1 Signing time: Sun 14 Dec 2025 21:01:12 +0000 Manifest this update: Sun 14 Dec 2025 21:01:12 +0000 Manifest next update: Mon 15 Dec 2025 21:01:12 +0000 Files and hashes: 1: SS2CXlahSk9By0fRlVm-SmedwzE.roa (hash: aUQz3cYQAl8T2KPX+MNKNABDFzPqs6nBTTE1ZfNC7QE=) 2: uqpkzSnJTM3hREj2GhcsdjseQFA.crl (hash: 26SUUBwu/AhZOHcuA90lMOJscc5KMSHV6bQ7P74cLh0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/71f439-2b1b-4ef0-b6a5-8fcaa6936c6c/1/uqpkzSnJTM3hREj2GhcsdjseQFA.crl rsync://rpki.ripe.net/repository/DEFAULT/71/71f439-2b1b-4ef0-b6a5-8fcaa6936c6c/1/uqpkzSnJTM3hREj2GhcsdjseQFA.mft rsync://rpki.ripe.net/repository/DEFAULT/uqpkzSnJTM3hREj2GhcsdjseQFA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 21:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1e:aa:dc:d2:e8:89:54:4f:1e:b0:8d:ba:cc:ae:37:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=baaa64cd29c94ccde14448f61a172c763b1e4050 Validity Not Before: Dec 14 21:01:12 2025 GMT Not After : Dec 15 21:01:12 2025 GMT Subject: CN=2f2a0f8dad7725ba8611e3bb0d9441107c026b6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:34:41:ce:77:96:5d:c5:bc:90:dd:d8:82:ca: 7b:e0:3d:57:f4:0e:49:f5:50:63:7a:5c:3f:c1:e1: 48:6a:22:02:ad:dc:62:88:24:13:bc:d9:ef:a2:46: a4:22:bb:d7:9c:9b:a3:45:09:9c:87:7d:40:a0:a3: 12:68:61:91:c3:93:54:c6:da:9b:e5:d1:1b:ab:13: 1a:09:9c:78:99:c1:cb:18:6e:29:ca:99:a5:bc:9d: 7b:87:11:9e:03:40:98:d6:1b:fc:97:ac:71:1c:47: 86:ac:13:82:6f:23:96:9b:e6:60:f8:0d:3f:8c:8d: ff:bb:20:d2:c9:5f:4b:5e:12:29:91:3c:89:a7:70: e9:bc:f4:5b:d4:b9:c5:cf:8c:7a:89:96:20:30:8d: 88:30:e7:b5:ea:2f:c7:d0:e4:09:ce:0c:23:94:95: 0e:af:6b:c7:20:f6:49:fb:52:90:4f:c5:a0:3c:aa: fd:7d:d1:76:c3:cf:b3:f6:cf:7f:2a:96:ec:ee:91: 67:e8:87:4b:dc:d9:8b:c7:b0:9f:3e:f4:c1:5f:a6: cb:eb:ce:58:fe:7d:55:b4:3f:22:ee:7f:69:d4:a7: 15:a7:87:d5:cd:f8:80:06:77:35:11:77:4e:3a:78: 8e:5b:f5:f8:00:6e:1d:75:a2:af:7d:29:76:42:59: f9:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:2A:0F:8D:AD:77:25:BA:86:11:E3:BB:0D:94:41:10:7C:02:6B:6C X509v3 Authority Key Identifier: keyid:BA:AA:64:CD:29:C9:4C:CD:E1:44:48:F6:1A:17:2C:76:3B:1E:40:50 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqpkzSnJTM3hREj2GhcsdjseQFA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/71f439-2b1b-4ef0-b6a5-8fcaa6936c6c/1/uqpkzSnJTM3hREj2GhcsdjseQFA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/71/71f439-2b1b-4ef0-b6a5-8fcaa6936c6c/1/uqpkzSnJTM3hREj2GhcsdjseQFA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:c2:96:bc:bd:0d:1a:64:cb:8c:48:37:5d:f0:a2:a3:2f:00: ff:31:e8:88:76:79:d0:70:a0:19:02:a5:fb:2a:b9:c7:3f:d1: 36:17:ba:6c:0f:3e:83:bf:c2:29:1a:8c:56:e8:d4:4d:32:7b: 64:8e:22:cc:7a:3f:49:a3:7e:c2:ad:a5:fe:8d:f3:25:20:a6: f1:09:2f:e7:3c:a8:3f:d4:3c:ab:7e:9e:5f:3c:f1:0d:56:14: cc:8e:23:86:71:74:42:c4:a6:8a:b7:5f:53:4b:4d:59:16:58: 66:a6:42:b5:cb:f0:d1:aa:44:a6:09:33:d6:81:f7:ab:6a:1a: 8b:04:43:9d:5f:6a:09:68:96:a8:09:9b:ff:54:2d:73:d2:53: 9d:75:8a:f8:d2:a1:17:eb:4f:5e:c6:87:b0:59:de:58:36:9c: 3e:d8:a2:72:0f:4c:7d:41:08:4c:53:9e:25:df:30:23:80:ee: 6c:40:19:4b:37:a8:a3:7e:48:2f:7f:85:93:c3:56:0c:ee:25: d7:35:18:be:df:71:f6:4a:67:ea:96:dd:d3:4e:50:ef:96:cf: 27:ec:04:0a:0e:90:db:ba:5d:16:24:b1:e5:d7:d8:65:dd:22: 37:70:04:4a:60:25:c3:6d:8a:6b:6c:54:36:dd:71:f8:32:57: b6:54:37:7f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZseqtzS6IlUTx6wjbrMrjcnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhYWE2NGNkMjljOTRjY2RlMTQ0NDhmNjFhMTcyYzc2M2Ix ZTQwNTAwHhcNMjUxMjE0MjEwMTEyWhcNMjUxMjE1MjEwMTEyWjAzMTEwLwYDVQQD EygyZjJhMGY4ZGFkNzcyNWJhODYxMWUzYmIwZDk0NDExMDdjMDI2YjZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9TRBzneWXcW8kN3Ygsp74D1X9A5J 9VBjelw/weFIaiICrdxiiCQTvNnvokakIrvXnJujRQmch31AoKMSaGGRw5NUxtqb 5dEbqxMaCZx4mcHLGG4pypmlvJ17hxGeA0CY1hv8l6xxHEeGrBOCbyOWm+Zg+A0/ jI3/uyDSyV9LXhIpkTyJp3DpvPRb1LnFz4x6iZYgMI2IMOe16i/H0OQJzgwjlJUO r2vHIPZJ+1KQT8WgPKr9fdF2w8+z9s9/Kpbs7pFn6IdL3NmLx7CfPvTBX6bL685Y /n1VtD8i7n9p1KcVp4fVzfiABnc1EXdOOniOW/X4AG4ddaKvfSl2Qln52QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC8qD42tdyW6hhHjuw2UQRB8AmtsMB8GA1UdIwQY MBaAFLqqZM0pyUzN4URI9hoXLHY7HkBQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdXFwa3pTbkpUTTNoUkVqMkdoY3NkanNlUUZBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS83MWY0MzktMmIxYi00ZWYwLWI2YTUt OGZjYWE2OTM2YzZjLzEvdXFwa3pTbkpUTTNoUkVqMkdoY3NkanNlUUZBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MS83MWY0MzktMmIxYi00ZWYwLWI2YTUtOGZjYWE2OTM2YzZj LzEvdXFwa3pTbkpUTTNoUkVqMkdoY3NkanNlUUZBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAsKWvL0N GmTLjEg3XfCioy8A/zHoiHZ50HCgGQKl+yq5xz/RNhe6bA8+g7/CKRqMVujUTTJ7 ZI4izHo/SaN+wq2l/o3zJSCm8Qkv5zyoP9Q8q36eXzzxDVYUzI4jhnF0QsSmirdf U0tNWRZYZqZCtcvw0apEpgkz1oH3q2oaiwRDnV9qCWiWqAmb/1Qtc9JTnXWK+NKh F+tPXsaHsFneWDacPtiicg9MfUEITFOeJd8wI4DubEAZSzeoo35IL3+Fk8NWDO4l 1zUYvt9x9kpn6pbd005Q75bPJ+wECg6Q27pdFiSx5dfYZd0iN3AESmAlw22Ka2xU Nt1x+DJXtlQ3fw== -----END CERTIFICATE-----Generated at Mon Dec 15 03:36:47 2025 by rpki-client