This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/fe07b7-f464-4e67-8299-ca5e685438a2/1/uXK9SdVRtK2lvWu2lWGKeUUa004.mft File: uXK9SdVRtK2lvWu2lWGKeUUa004.mft (raw, json) Hash identifier: TkeC/OaWtsABTdhwTQaVrCejBL8mPZBg0ObVIFNDOfo= Subject key identifier: 4D:46:37:30:60:91:15:E6:69:AF:F9:29:FF:BB:DF:F9:18:C9:E8:AF Authority key identifier: B9:72:BD:49:D5:51:B4:AD:A5:BD:6B:B6:95:61:8A:79:45:1A:D3:4E Certificate issuer: /CN=b972bd49d551b4ada5bd6bb695618a79451ad34e Certificate serial: 019B1CBBE714D2031F8A5C9CD568B3318C35 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uXK9SdVRtK2lvWu2lWGKeUUa004.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/fe07b7-f464-4e67-8299-ca5e685438a2/1/uXK9SdVRtK2lvWu2lWGKeUUa004.mft Manifest number: 09D8 Signing time: Sun 14 Dec 2025 12:00:35 +0000 Manifest this update: Sun 14 Dec 2025 12:00:35 +0000 Manifest next update: Mon 15 Dec 2025 12:00:35 +0000 Files and hashes: 1: WLPv_kiHkV3foWtvEt3ca8XVjG4.roa (hash: 485f4Pk93SekykKHn/Aq62sR6+/AvJghjHie2NYKlhI=) 2: hcpelkMB3HLp2KFjx3F4u7p7QiA.roa (hash: 61+3xEVQzTEIYSViuJWqNAx3iaX+tJlcGs9MEnOKcRg=) 3: uXK9SdVRtK2lvWu2lWGKeUUa004.crl (hash: itolGqpTzCFthti/o56aZA3Y04y9AKIE/1msuFzXdTs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/fe07b7-f464-4e67-8299-ca5e685438a2/1/uXK9SdVRtK2lvWu2lWGKeUUa004.crl rsync://rpki.ripe.net/repository/DEFAULT/ad/fe07b7-f464-4e67-8299-ca5e685438a2/1/uXK9SdVRtK2lvWu2lWGKeUUa004.mft rsync://rpki.ripe.net/repository/DEFAULT/uXK9SdVRtK2lvWu2lWGKeUUa004.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 11:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1c:bb:e7:14:d2:03:1f:8a:5c:9c:d5:68:b3:31:8c:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b972bd49d551b4ada5bd6bb695618a79451ad34e Validity Not Before: Dec 14 12:00:35 2025 GMT Not After : Dec 15 12:00:35 2025 GMT Subject: CN=4d463730609115e669aff929ffbbdff918c9e8af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:b6:c2:ef:4f:26:38:ea:66:8a:0a:2f:96:31: c4:51:76:f2:31:2c:e3:ac:6e:ed:4b:14:9d:c7:8b: 0d:f9:a6:43:d1:dd:03:45:4e:40:86:04:8c:e3:4c: 3f:33:9f:c9:65:52:54:c5:01:73:b7:42:20:e4:06: 74:58:06:62:13:74:89:21:36:18:0c:ee:65:58:32: e7:3c:d9:05:b5:6d:6a:4d:da:7f:3d:60:d3:50:02: 24:96:dd:e0:c5:1f:91:8b:be:ac:87:72:0c:cc:6a: ae:47:cf:6b:b9:35:2a:7e:cb:06:c4:59:eb:cf:ed: 0f:6d:4f:58:b9:76:73:42:68:b1:73:89:06:84:fc: 62:b4:89:52:fd:f7:6a:4d:f3:ee:dc:57:88:ff:c7: 95:98:c0:39:90:0f:5b:1f:c3:06:cf:2b:3f:7d:2c: 3b:a2:7e:37:d4:4e:b0:40:2d:62:8f:14:92:0f:b5: bc:ec:6d:e8:f7:40:79:b4:91:07:08:0d:23:a9:c7: a3:2a:86:50:76:51:81:f5:48:df:73:7a:d2:59:82: e4:07:1c:21:45:1f:86:66:fa:63:bf:36:14:fb:cd: 47:5c:ab:8b:6b:b8:6f:25:56:ec:1b:73:b6:6a:b7: 12:24:b5:c9:1b:19:60:b8:c2:22:8b:65:49:0c:fd: c2:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:46:37:30:60:91:15:E6:69:AF:F9:29:FF:BB:DF:F9:18:C9:E8:AF X509v3 Authority Key Identifier: keyid:B9:72:BD:49:D5:51:B4:AD:A5:BD:6B:B6:95:61:8A:79:45:1A:D3:4E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uXK9SdVRtK2lvWu2lWGKeUUa004.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/fe07b7-f464-4e67-8299-ca5e685438a2/1/uXK9SdVRtK2lvWu2lWGKeUUa004.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/fe07b7-f464-4e67-8299-ca5e685438a2/1/uXK9SdVRtK2lvWu2lWGKeUUa004.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 74:ed:70:76:92:24:72:2d:f5:ad:07:6a:e6:ed:4d:c9:7b:7a: 85:e5:59:9e:a1:1e:39:04:87:08:28:ab:38:96:26:09:53:f6: 29:86:bc:96:28:f6:7e:b0:6f:a5:35:93:cb:fb:8e:6f:d6:97: b2:9c:7d:d6:a2:4e:66:82:14:e5:4e:5c:a7:f8:87:9c:e1:7c: ee:6c:c8:11:32:dc:b6:4a:25:c6:aa:57:1b:43:ba:80:7d:08: d3:5d:67:2e:b0:6c:f0:4f:8b:44:e4:57:af:57:1d:77:e4:da: 8d:69:ef:2f:15:b7:7c:12:5e:45:10:a4:bb:4f:1c:82:2e:5f: 0a:5f:78:a5:cb:94:cd:87:ac:38:99:dd:66:08:84:33:08:d6: db:04:89:99:03:4d:6e:f4:e5:a5:b2:50:fa:55:19:5e:e2:12: 61:e9:15:e4:3f:d6:f6:36:10:1b:8f:1c:37:d0:e8:62:74:3c: d5:75:38:33:85:d1:3a:49:09:01:54:62:26:26:5c:44:68:dd: 0c:64:33:9b:40:5c:50:af:b9:f9:f3:45:ad:00:ea:24:61:a6: 37:a7:cd:e6:76:9f:f8:4a:72:a7:33:91:c3:dd:19:78:c7:41: ff:fe:a9:e2:fa:fc:19:db:91:1f:01:23:e3:a2:75:76:1b:d2: 4f:71:dc:bc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZscu+cU0gMfilyc1WizMYw1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI5NzJiZDQ5ZDU1MWI0YWRhNWJkNmJiNjk1NjE4YTc5NDUx YWQzNGUwHhcNMjUxMjE0MTIwMDM1WhcNMjUxMjE1MTIwMDM1WjAzMTEwLwYDVQQD Eyg0ZDQ2MzczMDYwOTExNWU2NjlhZmY5MjlmZmJiZGZmOTE4YzllOGFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm7bC708mOOpmigovljHEUXbyMSzj rG7tSxSdx4sN+aZD0d0DRU5AhgSM40w/M5/JZVJUxQFzt0Ig5AZ0WAZiE3SJITYY DO5lWDLnPNkFtW1qTdp/PWDTUAIklt3gxR+Ri76sh3IMzGquR89ruTUqfssGxFnr z+0PbU9YuXZzQmixc4kGhPxitIlS/fdqTfPu3FeI/8eVmMA5kA9bH8MGzys/fSw7 on431E6wQC1ijxSSD7W87G3o90B5tJEHCA0jqcejKoZQdlGB9Ujfc3rSWYLkBxwh RR+GZvpjvzYU+81HXKuLa7hvJVbsG3O2arcSJLXJGxlguMIii2VJDP3CKQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE1GNzBgkRXmaa/5Kf+73/kYyeivMB8GA1UdIwQY MBaAFLlyvUnVUbStpb1rtpVhinlFGtNOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdVhLOVNkVlJ0SzJsdld1MmxXR0tlVVVhMDA0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC9mZTA3YjctZjQ2NC00ZTY3LTgyOTkt Y2E1ZTY4NTQzOGEyLzEvdVhLOVNkVlJ0SzJsdld1MmxXR0tlVVVhMDA0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZC9mZTA3YjctZjQ2NC00ZTY3LTgyOTktY2E1ZTY4NTQzOGEy LzEvdVhLOVNkVlJ0SzJsdld1MmxXR0tlVVVhMDA0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdO1wdpIk ci31rQdq5u1NyXt6heVZnqEeOQSHCCirOJYmCVP2KYa8lij2frBvpTWTy/uOb9aX spx91qJOZoIU5U5cp/iHnOF87mzIETLctkolxqpXG0O6gH0I011nLrBs8E+LRORX r1cdd+TajWnvLxW3fBJeRRCku08cgi5fCl94pcuUzYesOJndZgiEMwjW2wSJmQNN bvTlpbJQ+lUZXuISYekV5D/W9jYQG48cN9DoYnQ81XU4M4XROkkJAVRiJiZcRGjd DGQzm0BcUK+5+fNFrQDqJGGmN6fN5naf+EpypzORw90ZeMdB//6p4vr8GduRHwEj 46J1dhvST3HcvA== -----END CERTIFICATE-----Generated at Sun Dec 14 19:49:38 2025 by rpki-client