This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/64c2fa-df54-47ff-a8c9-bfe0ccb79fcc/1/ug4SZOB7Nwi8udtaFOfMknCGOVg.mft File: ug4SZOB7Nwi8udtaFOfMknCGOVg.mft (raw, json) Hash identifier: o5sPPF/PHbPGKwU5bGy1jXyV4EB7GrA1rGIOAb+2KqA= Subject key identifier: 2A:56:EC:61:A2:6E:71:B8:98:36:75:96:DA:1D:31:82:EC:7F:87:93 Authority key identifier: BA:0E:12:64:E0:7B:37:08:BC:B9:DB:5A:14:E7:CC:92:70:86:39:58 Certificate issuer: /CN=ba0e1264e07b3708bcb9db5a14e7cc9270863958 Certificate serial: 019B59E3702EEF4581F7CC8DB890206429B5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ug4SZOB7Nwi8udtaFOfMknCGOVg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/64c2fa-df54-47ff-a8c9-bfe0ccb79fcc/1/ug4SZOB7Nwi8udtaFOfMknCGOVg.mft Manifest number: 179E Signing time: Fri 26 Dec 2025 09:00:36 +0000 Manifest this update: Fri 26 Dec 2025 09:00:36 +0000 Manifest next update: Sat 27 Dec 2025 09:00:36 +0000 Files and hashes: 1: ug4SZOB7Nwi8udtaFOfMknCGOVg.crl (hash: aRe8y+JX1lRnNjzjzubZRXQmnXWNRdn3Bm8Q38HZc7c=) 2: xXvm8v3Fqzu_dszdmjsgqNl1Hcw.roa (hash: Nh/ftcdTWsREAPkqBZbyfany4F8e1nXpYHmf8szSz/Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/64c2fa-df54-47ff-a8c9-bfe0ccb79fcc/1/ug4SZOB7Nwi8udtaFOfMknCGOVg.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/64c2fa-df54-47ff-a8c9-bfe0ccb79fcc/1/ug4SZOB7Nwi8udtaFOfMknCGOVg.mft rsync://rpki.ripe.net/repository/DEFAULT/ug4SZOB7Nwi8udtaFOfMknCGOVg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 09:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:e3:70:2e:ef:45:81:f7:cc:8d:b8:90:20:64:29:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba0e1264e07b3708bcb9db5a14e7cc9270863958 Validity Not Before: Dec 26 09:00:36 2025 GMT Not After : Dec 27 09:00:36 2025 GMT Subject: CN=2a56ec61a26e71b898367596da1d3182ec7f8793 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:73:9a:88:cf:34:a1:96:63:1d:0a:8a:40:1c: b6:75:96:d7:1e:b7:85:e0:b3:90:72:fa:32:5d:d0: 1a:64:d0:f3:e8:90:cb:f8:c3:2b:f4:ee:54:6a:1f: 2a:7d:a5:42:fd:83:3d:45:ff:b1:64:30:e6:65:92: 66:f5:6b:ca:5b:f9:bf:7c:b3:e5:ef:3e:c2:6e:2f: fc:e5:2c:43:f9:db:8b:a4:72:4c:1e:45:8b:80:8d: 3f:17:9b:f2:3b:88:fe:1b:ae:f8:0f:36:82:4d:17: 10:09:4f:61:4b:18:99:db:4f:23:e7:3f:12:ab:b5: db:ca:65:13:2f:62:ef:ec:35:31:58:b9:b0:45:ec: a0:de:c8:b8:f5:27:2c:97:2a:cc:78:ef:fa:d4:1b: 20:df:72:84:1c:99:09:c4:59:a7:9f:71:c0:14:14: 1c:32:42:81:6d:6f:76:af:2b:fa:89:71:48:a7:13: 31:30:2d:80:38:56:ef:75:8e:e5:f5:83:4b:35:f9: 9d:a1:36:62:24:c6:93:0f:a1:6b:e0:82:63:85:94: f2:34:e3:38:67:ce:af:d9:71:74:f4:49:4a:9c:2e: 93:29:39:7a:cd:81:2e:8a:e1:6e:9d:0c:d4:90:3b: 1f:e0:b1:83:bd:d6:14:21:53:c7:35:3f:b5:52:9f: c4:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:56:EC:61:A2:6E:71:B8:98:36:75:96:DA:1D:31:82:EC:7F:87:93 X509v3 Authority Key Identifier: keyid:BA:0E:12:64:E0:7B:37:08:BC:B9:DB:5A:14:E7:CC:92:70:86:39:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ug4SZOB7Nwi8udtaFOfMknCGOVg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/64c2fa-df54-47ff-a8c9-bfe0ccb79fcc/1/ug4SZOB7Nwi8udtaFOfMknCGOVg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/64c2fa-df54-47ff-a8c9-bfe0ccb79fcc/1/ug4SZOB7Nwi8udtaFOfMknCGOVg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5a:a2:45:b5:80:e5:55:ce:a3:04:2e:93:f4:7b:3f:83:eb:c6: 3b:78:b8:84:45:7f:f2:4d:0c:08:a5:13:cc:1c:6c:21:22:e5: aa:40:2b:79:93:43:3d:cd:21:d3:0b:83:b4:e1:d1:5e:cd:e9: 38:f7:ac:14:40:59:84:ae:e3:0c:d1:86:56:43:4e:9a:a9:ed: 92:a9:ca:f6:18:06:7a:b4:f1:52:fb:66:e0:e4:28:50:e3:a3: 83:c5:f6:72:fa:b1:ac:be:f5:7d:a2:6a:27:4f:2b:66:38:c5: a7:0e:7b:ef:e0:af:61:fa:c7:10:7f:47:39:63:8f:09:e1:16: ca:2a:e3:10:7b:44:7a:a0:a9:07:0e:cc:6d:9e:fd:fe:55:a8: 9a:70:77:e6:bf:5b:40:1b:cb:61:87:23:fb:40:95:50:c8:d4: 70:a1:ae:05:70:ef:9a:98:a1:05:53:7e:76:20:a9:c4:db:6a: a7:a5:b7:87:f8:d3:3d:1e:98:00:27:53:0c:c0:89:ce:f5:44: 62:04:97:20:23:5f:2c:d0:b8:4c:76:87:56:fd:87:95:c8:66: ce:53:4c:19:7f:36:7d:21:a7:78:d5:c2:89:a7:16:4b:08:a9: 16:b4:1b:ea:41:57:5c:94:d6:e4:c5:77:46:dc:29:61:25:b5: 9a:e7:b4:bd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZ43Au70WB98yNuJAgZCm1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhMGUxMjY0ZTA3YjM3MDhiY2I5ZGI1YTE0ZTdjYzkyNzA4 NjM5NTgwHhcNMjUxMjI2MDkwMDM2WhcNMjUxMjI3MDkwMDM2WjAzMTEwLwYDVQQD EygyYTU2ZWM2MWEyNmU3MWI4OTgzNjc1OTZkYTFkMzE4MmVjN2Y4NzkzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy3OaiM80oZZjHQqKQBy2dZbXHreF 4LOQcvoyXdAaZNDz6JDL+MMr9O5Uah8qfaVC/YM9Rf+xZDDmZZJm9WvKW/m/fLPl 7z7Cbi/85SxD+duLpHJMHkWLgI0/F5vyO4j+G674DzaCTRcQCU9hSxiZ208j5z8S q7XbymUTL2Lv7DUxWLmwReyg3si49ScslyrMeO/61Bsg33KEHJkJxFmnn3HAFBQc MkKBbW92ryv6iXFIpxMxMC2AOFbvdY7l9YNLNfmdoTZiJMaTD6Fr4IJjhZTyNOM4 Z86v2XF09ElKnC6TKTl6zYEuiuFunQzUkDsf4LGDvdYUIVPHNT+1Up/ExQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCpW7GGibnG4mDZ1ltodMYLsf4eTMB8GA1UdIwQY MBaAFLoOEmTgezcIvLnbWhTnzJJwhjlYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdWc0U1pPQjdOd2k4dWR0YUZPZk1rbkNHT1ZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS82NGMyZmEtZGY1NC00N2ZmLWE4Yzkt YmZlMGNjYjc5ZmNjLzEvdWc0U1pPQjdOd2k4dWR0YUZPZk1rbkNHT1ZnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS82NGMyZmEtZGY1NC00N2ZmLWE4YzktYmZlMGNjYjc5ZmNj LzEvdWc0U1pPQjdOd2k4dWR0YUZPZk1rbkNHT1ZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWqJFtYDl Vc6jBC6T9Hs/g+vGO3i4hEV/8k0MCKUTzBxsISLlqkAreZNDPc0h0wuDtOHRXs3p OPesFEBZhK7jDNGGVkNOmqntkqnK9hgGerTxUvtm4OQoUOOjg8X2cvqxrL71faJq J08rZjjFpw577+CvYfrHEH9HOWOPCeEWyirjEHtEeqCpBw7MbZ79/lWomnB35r9b QBvLYYcj+0CVUMjUcKGuBXDvmpihBVN+diCpxNtqp6W3h/jTPR6YACdTDMCJzvVE YgSXICNfLNC4THaHVv2HlchmzlNMGX82fSGneNXCiacWSwipFrQb6kFXXJTW5MV3 RtwpYSW1mue0vQ== -----END CERTIFICATE-----Generated at Fri Dec 26 17:40:26 2025 by rpki-client