This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/fbd382-10d0-4684-8836-eed1d0967078/1/0uuxFmwGDbJd-U8CvS-PnabE3Us.mft File: 0uuxFmwGDbJd-U8CvS-PnabE3Us.mft (raw, json) Hash identifier: bZ91BLMQAJBL4cI9iXahDxwkdXMZ4vIqTbeMql4Pz1U= Subject key identifier: 59:BE:80:16:37:23:51:E3:F1:4D:A5:C9:A0:DF:BE:73:73:A1:C9:51 Authority key identifier: D2:EB:B1:16:6C:06:0D:B2:5D:F9:4F:02:BD:2F:8F:9D:A6:C4:DD:4B Certificate issuer: /CN=d2ebb1166c060db25df94f02bd2f8f9da6c4dd4b Certificate serial: 019B59E37A9702F84B9E961B8F17CCCB85FD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0uuxFmwGDbJd-U8CvS-PnabE3Us.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/fbd382-10d0-4684-8836-eed1d0967078/1/0uuxFmwGDbJd-U8CvS-PnabE3Us.mft Manifest number: 1352 Signing time: Fri 26 Dec 2025 09:00:38 +0000 Manifest this update: Fri 26 Dec 2025 09:00:38 +0000 Manifest next update: Sat 27 Dec 2025 09:00:38 +0000 Files and hashes: 1: 0uuxFmwGDbJd-U8CvS-PnabE3Us.crl (hash: J5TiCZVmyRdGw4NSBYFamSjqXSOG4DWNCQFkTHNjc/g=) 2: LdFx4O_axkyLwKBn8hayXhVuuTY.roa (hash: +qJwhkRCeLKYqE6tG+1RNrXKKNfgmZMWphTwQtobs60=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/fbd382-10d0-4684-8836-eed1d0967078/1/0uuxFmwGDbJd-U8CvS-PnabE3Us.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/fbd382-10d0-4684-8836-eed1d0967078/1/0uuxFmwGDbJd-U8CvS-PnabE3Us.mft rsync://rpki.ripe.net/repository/DEFAULT/0uuxFmwGDbJd-U8CvS-PnabE3Us.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:e3:7a:97:02:f8:4b:9e:96:1b:8f:17:cc:cb:85:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d2ebb1166c060db25df94f02bd2f8f9da6c4dd4b Validity Not Before: Dec 26 09:00:38 2025 GMT Not After : Dec 27 09:00:38 2025 GMT Subject: CN=59be8016372351e3f14da5c9a0dfbe7373a1c951 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:82:50:eb:96:35:d8:00:c3:42:0f:ea:28:1c: ed:9f:8e:cb:dc:2d:54:bb:f5:13:e6:41:ec:63:bb: 89:de:08:74:84:71:97:e3:f9:db:65:76:ef:d6:60: aa:97:fd:b3:f9:8f:02:db:c4:7b:8e:32:9a:7a:9b: be:64:5f:bd:41:cf:ae:d3:60:c8:a5:02:c5:48:c7: ee:4b:20:4a:32:33:63:32:9e:d9:cd:93:37:9b:e2: 3c:28:20:b7:13:c7:44:e4:a6:3e:73:50:47:88:6c: 07:e4:79:7e:fe:bb:54:95:68:9a:56:22:69:29:a9: e9:a4:fb:dd:35:a4:cd:85:a9:69:07:d3:39:bb:52: 53:87:25:cf:4c:b0:8c:b6:80:ef:29:69:72:b4:85: 35:e7:69:d6:bc:10:29:53:c6:29:64:d8:89:d9:e3: 4b:17:91:95:0f:4d:54:3d:e4:3c:27:0b:44:49:d9: a4:74:ef:b1:fb:78:e1:69:3a:83:fc:d3:48:12:f2: 93:44:5a:87:00:4b:b3:10:84:88:94:21:62:d1:d9: 5d:6b:c9:c4:84:50:fc:35:01:e7:ff:ca:8d:0c:6b: ce:e6:cf:06:7f:a3:12:2d:d7:35:05:b6:8b:7e:fb: 4d:07:97:26:91:ab:e4:62:7d:0b:ba:40:8e:44:71: 75:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:BE:80:16:37:23:51:E3:F1:4D:A5:C9:A0:DF:BE:73:73:A1:C9:51 X509v3 Authority Key Identifier: keyid:D2:EB:B1:16:6C:06:0D:B2:5D:F9:4F:02:BD:2F:8F:9D:A6:C4:DD:4B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0uuxFmwGDbJd-U8CvS-PnabE3Us.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/fbd382-10d0-4684-8836-eed1d0967078/1/0uuxFmwGDbJd-U8CvS-PnabE3Us.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/fbd382-10d0-4684-8836-eed1d0967078/1/0uuxFmwGDbJd-U8CvS-PnabE3Us.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 80:51:96:4e:74:29:ca:93:2f:6e:79:f8:21:66:86:c8:1a:cb: 98:b9:20:4f:1a:f7:08:b2:e2:c6:f6:a3:bb:fa:c2:11:cb:29: f0:af:95:8c:90:84:22:86:0f:51:47:b5:f6:b1:53:a7:21:cc: 55:36:a1:d8:e5:3c:d4:a5:7b:d2:fa:8a:db:fc:69:25:95:a2: af:60:8d:5d:0b:bb:2a:46:30:73:9d:91:dd:01:1d:97:11:33: a9:13:cb:2b:27:6b:a9:91:eb:7d:b2:b2:f1:90:39:b4:77:5a: ed:d3:ee:21:6a:22:42:76:4d:5f:6c:95:36:27:7a:d8:04:98: bf:e8:97:a0:05:a2:b8:6b:73:c8:00:3c:a5:a6:fd:02:27:f6: 39:60:eb:a1:97:3e:8d:3b:f7:45:16:11:ea:98:13:d0:e3:8b: 09:52:49:1b:16:69:86:69:fd:25:03:1f:4f:bf:de:8f:5b:5a: b2:e1:f4:51:66:a3:68:93:6b:a1:51:55:57:ff:64:f2:0d:4f: 4c:2f:83:73:ab:e6:e1:fa:3e:43:d6:6a:a8:ac:06:42:9e:6c: be:5d:b7:c3:04:6e:e9:46:01:20:91:ce:f6:fa:88:3e:5f:a3: 39:d0:5d:d9:b2:84:a8:84:b1:b1:1a:fb:1b:cd:33:c1:06:c2: e3:c0:54:c6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZ43qXAvhLnpYbjxfMy4X9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyZWJiMTE2NmMwNjBkYjI1ZGY5NGYwMmJkMmY4ZjlkYTZj NGRkNGIwHhcNMjUxMjI2MDkwMDM4WhcNMjUxMjI3MDkwMDM4WjAzMTEwLwYDVQQD Eyg1OWJlODAxNjM3MjM1MWUzZjE0ZGE1YzlhMGRmYmU3MzczYTFjOTUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAloJQ65Y12ADDQg/qKBztn47L3C1U u/UT5kHsY7uJ3gh0hHGX4/nbZXbv1mCql/2z+Y8C28R7jjKaepu+ZF+9Qc+u02DI pQLFSMfuSyBKMjNjMp7ZzZM3m+I8KCC3E8dE5KY+c1BHiGwH5Hl+/rtUlWiaViJp KanppPvdNaTNhalpB9M5u1JThyXPTLCMtoDvKWlytIU152nWvBApU8YpZNiJ2eNL F5GVD01UPeQ8JwtESdmkdO+x+3jhaTqD/NNIEvKTRFqHAEuzEISIlCFi0dlda8nE hFD8NQHn/8qNDGvO5s8Gf6MSLdc1BbaLfvtNB5cmkavkYn0LukCORHF1FQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFm+gBY3I1Hj8U2lyaDfvnNzoclRMB8GA1UdIwQY MBaAFNLrsRZsBg2yXflPAr0vj52mxN1LMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMHV1eEZtd0dEYkpkLVU4Q3ZTLVBuYWJFM1VzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy9mYmQzODItMTBkMC00Njg0LTg4MzYt ZWVkMWQwOTY3MDc4LzEvMHV1eEZtd0dEYkpkLVU4Q3ZTLVBuYWJFM1VzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy9mYmQzODItMTBkMC00Njg0LTg4MzYtZWVkMWQwOTY3MDc4 LzEvMHV1eEZtd0dEYkpkLVU4Q3ZTLVBuYWJFM1VzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgFGWTnQp ypMvbnn4IWaGyBrLmLkgTxr3CLLixvaju/rCEcsp8K+VjJCEIoYPUUe19rFTpyHM VTah2OU81KV70vqK2/xpJZWir2CNXQu7KkYwc52R3QEdlxEzqRPLKydrqZHrfbKy 8ZA5tHda7dPuIWoiQnZNX2yVNid62ASYv+iXoAWiuGtzyAA8pab9Aif2OWDroZc+ jTv3RRYR6pgT0OOLCVJJGxZphmn9JQMfT7/ej1tasuH0UWajaJNroVFVV/9k8g1P TC+Dc6vm4fo+Q9ZqqKwGQp5svl23wwRu6UYBIJHO9vqIPl+jOdBd2bKEqISxsRr7 G80zwQbC48BUxg== -----END CERTIFICATE-----Generated at Fri Dec 26 14:18:19 2025 by rpki-client