This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft File: u4rmO3V9oa95DyD1nGNIEe7rG8w.mft (raw, json) Hash identifier: SvByYKbpNS/IgEhsseldD35hUtEcaQJmMGccRzJBbbY= Subject key identifier: 84:F0:3A:3F:B9:D8:A4:2F:37:71:80:F9:55:0C:8F:B7:86:9A:0F:84 Authority key identifier: BB:8A:E6:3B:75:7D:A1:AF:79:0F:20:F5:9C:63:48:11:EE:EB:1B:CC Certificate issuer: /CN=bb8ae63b757da1af790f20f59c634811eeeb1bcc Certificate serial: 019B5B661A63DA0D0282737D1E9586799299 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4rmO3V9oa95DyD1nGNIEe7rG8w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft Manifest number: 0C39 Signing time: Fri 26 Dec 2025 16:02:56 +0000 Manifest this update: Fri 26 Dec 2025 16:02:56 +0000 Manifest next update: Sat 27 Dec 2025 16:02:56 +0000 Files and hashes: 1: DIYIrtOVCh0oZUgoHnsBzDVYRgk.roa (hash: 9ygbw2KxTYEdLBVrIZpBTqLv2Fu0lBk+DuBHrlgf8dM=) 2: u4rmO3V9oa95DyD1nGNIEe7rG8w.crl (hash: M4w2CUPh35LsMCzglRBxZWW4/I7oeTtZHsYVqwfri5k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.crl rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft rsync://rpki.ripe.net/repository/DEFAULT/u4rmO3V9oa95DyD1nGNIEe7rG8w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 11:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5b:66:1a:63:da:0d:02:82:73:7d:1e:95:86:79:92:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bb8ae63b757da1af790f20f59c634811eeeb1bcc Validity Not Before: Dec 26 16:02:56 2025 GMT Not After : Dec 27 16:02:56 2025 GMT Subject: CN=84f03a3fb9d8a42f377180f9550c8fb7869a0f84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:dc:e9:5a:a5:e1:c4:2a:cc:6e:15:03:77:a4: 7b:05:a0:e1:be:e1:9c:a1:a0:b0:a0:77:cb:84:f3: f0:b4:6f:ba:ff:a3:a6:a6:06:a7:23:f7:cf:f7:13: 01:3c:7f:48:20:f2:a4:71:3e:f3:6a:47:6e:49:03: 72:68:74:39:bc:71:cc:e3:a2:50:70:03:6f:6a:bc: a4:69:63:90:62:6b:ac:6a:05:c9:8c:12:6a:4c:32: ff:0f:0a:67:0a:69:2b:a5:bf:c2:38:fb:7b:f0:29: 6e:86:aa:7a:e1:97:52:72:05:8e:f7:d6:b0:00:9f: e6:ee:34:7e:f1:85:25:d3:23:28:af:38:c8:35:dc: 98:e5:20:e5:2a:39:10:c6:eb:06:45:89:8c:6f:67: cb:1a:5d:44:15:05:b8:05:9d:6a:23:5a:88:f4:8a: 27:aa:02:15:53:26:5e:c1:f6:9b:9f:50:bf:5e:09: 54:b2:c6:f7:a9:5d:4f:20:eb:96:21:16:c2:8a:9f: e3:57:72:2d:b4:bf:7f:55:06:6a:c0:e0:25:b8:ad: 9e:d6:de:2e:69:80:74:f5:03:16:fa:cf:cf:2a:90: ce:b2:eb:3f:ab:de:42:76:ff:38:f6:96:66:e3:65: 67:73:91:2e:66:d9:4f:ec:a7:da:43:79:5e:44:3f: 6e:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:F0:3A:3F:B9:D8:A4:2F:37:71:80:F9:55:0C:8F:B7:86:9A:0F:84 X509v3 Authority Key Identifier: keyid:BB:8A:E6:3B:75:7D:A1:AF:79:0F:20:F5:9C:63:48:11:EE:EB:1B:CC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4rmO3V9oa95DyD1nGNIEe7rG8w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0c:2c:e8:99:6f:e1:5b:b9:83:9f:2d:67:79:83:be:a2:93:27: 48:7c:88:67:5e:15:62:76:a8:22:5a:3a:c4:6e:8d:68:29:2c: bf:35:cb:95:b8:09:f9:93:9c:2f:85:75:9c:49:3c:1b:7c:e5: 4e:69:eb:34:31:04:b2:d0:6c:ce:1b:bd:65:bc:76:3f:84:25: 49:36:4d:03:05:00:41:9c:35:77:da:35:15:bb:a9:90:f4:a5: b0:7e:ba:73:06:d6:8a:35:d1:d2:b8:49:12:dd:7f:e2:14:af: c3:2a:bf:f6:c0:f3:96:94:7a:4b:11:07:c4:d8:61:3a:38:03: 49:ec:1e:0d:8e:9e:f8:07:fb:04:98:1a:54:32:b1:cd:ee:3e: 7b:d8:6d:a7:33:b5:7d:7c:f3:4a:2b:67:ca:16:17:87:dd:bb: a3:bb:1f:3e:00:41:41:73:e9:67:fa:01:fe:39:1d:64:ef:2f: 18:be:9b:3d:b1:44:d1:65:7b:d3:53:fd:8b:cd:35:86:7a:8b: 22:4a:73:19:05:fd:38:49:17:46:68:8f:87:ba:37:e6:3b:b5: ca:92:9a:fb:78:e3:da:53:6d:ec:e8:27:78:63:8f:1b:b3:e9: 80:58:dd:81:72:10:4f:fa:4e:ec:b9:de:48:ba:6f:30:88:eb: dc:87:59:ac -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtbZhpj2g0CgnN9HpWGeZKZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJiOGFlNjNiNzU3ZGExYWY3OTBmMjBmNTljNjM0ODExZWVl YjFiY2MwHhcNMjUxMjI2MTYwMjU2WhcNMjUxMjI3MTYwMjU2WjAzMTEwLwYDVQQD Eyg4NGYwM2EzZmI5ZDhhNDJmMzc3MTgwZjk1NTBjOGZiNzg2OWEwZjg0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr9zpWqXhxCrMbhUDd6R7BaDhvuGc oaCwoHfLhPPwtG+6/6OmpganI/fP9xMBPH9IIPKkcT7zakduSQNyaHQ5vHHM46JQ cANvarykaWOQYmusagXJjBJqTDL/DwpnCmkrpb/COPt78Cluhqp64ZdScgWO99aw AJ/m7jR+8YUl0yMorzjINdyY5SDlKjkQxusGRYmMb2fLGl1EFQW4BZ1qI1qI9Ion qgIVUyZewfabn1C/XglUssb3qV1PIOuWIRbCip/jV3IttL9/VQZqwOAluK2e1t4u aYB09QMW+s/PKpDOsus/q95Cdv849pZm42Vnc5EuZtlP7KfaQ3leRD9uZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFITwOj+52KQvN3GA+VUMj7eGmg+EMB8GA1UdIwQY MBaAFLuK5jt1faGveQ8g9ZxjSBHu6xvMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdTRybU8zVjlvYTk1RHlEMW5HTklFZTdyRzh3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC8xMmM2NmQtYWM2My00M2ZjLTg4OTQt YWIwODdmNDNiNTk1LzEvdTRybU8zVjlvYTk1RHlEMW5HTklFZTdyRzh3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMC8xMmM2NmQtYWM2My00M2ZjLTg4OTQtYWIwODdmNDNiNTk1 LzEvdTRybU8zVjlvYTk1RHlEMW5HTklFZTdyRzh3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADCzomW/h W7mDny1neYO+opMnSHyIZ14VYnaoIlo6xG6NaCksvzXLlbgJ+ZOcL4V1nEk8G3zl TmnrNDEEstBszhu9Zbx2P4QlSTZNAwUAQZw1d9o1FbupkPSlsH66cwbWijXR0rhJ Et1/4hSvwyq/9sDzlpR6SxEHxNhhOjgDSeweDY6e+Af7BJgaVDKxze4+e9htpzO1 fXzzSitnyhYXh927o7sfPgBBQXPpZ/oB/jkdZO8vGL6bPbFE0WV701P9i801hnqL IkpzGQX9OEkXRmiPh7o35ju1ypKa+3jj2lNt7OgneGOPG7PpgFjdgXIQT/pO7Lne SLpvMIjr3IdZrA== -----END CERTIFICATE-----Generated at Fri Dec 26 19:29:45 2025 by rpki-client