This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.mft File: uMaM2mX2aWLMuWg_FVDRTlYQego.mft (raw, json) Hash identifier: PztyIZI3VK92IVI3JTLHh0emCUfdtaEcMaf7NmNdm4s= Subject key identifier: 8C:A6:11:BA:B4:87:AD:A7:7B:1D:3A:7C:2D:8A:BA:F3:C0:C6:55:6F Authority key identifier: B8:C6:8C:DA:65:F6:69:62:CC:B9:68:3F:15:50:D1:4E:56:10:7A:0A Certificate issuer: /CN=b8c68cda65f66962ccb9683f1550d14e56107a0a Certificate serial: 019B4B15892BCE18E42558E9E0E9D0C1C463 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uMaM2mX2aWLMuWg_FVDRTlYQego.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.mft Manifest number: 089E Signing time: Tue 23 Dec 2025 12:01:01 +0000 Manifest this update: Tue 23 Dec 2025 12:01:01 +0000 Manifest next update: Wed 24 Dec 2025 12:01:01 +0000 Files and hashes: 1: sIDOXg67yEuo_7naS_BfCVLmcEk.roa (hash: d8agrpVd7dmHrJl/IhvjPgn5Td9Dpm4TU3p5w1Cxjt0=) 2: uMaM2mX2aWLMuWg_FVDRTlYQego.crl (hash: 8AXKPCbmX5Mf7cq7MQzgYlrVgghoyehbtS1OmVYAogc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.mft rsync://rpki.ripe.net/repository/DEFAULT/uMaM2mX2aWLMuWg_FVDRTlYQego.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 24 Dec 2025 09:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4b:15:89:2b:ce:18:e4:25:58:e9:e0:e9:d0:c1:c4:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b8c68cda65f66962ccb9683f1550d14e56107a0a Validity Not Before: Dec 23 12:01:01 2025 GMT Not After : Dec 24 12:01:01 2025 GMT Subject: CN=8ca611bab487ada77b1d3a7c2d8abaf3c0c6556f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:59:5c:68:9c:f4:15:4f:03:66:a6:5f:11:43: e2:a5:e2:6e:cf:3b:56:c1:61:8b:e5:2e:5c:1c:c1: 56:0d:0a:2a:3f:a9:c3:8d:fc:f9:b4:b4:2a:47:00: 8c:78:73:b7:2d:92:c6:6e:0b:e8:d8:eb:d8:46:56: 31:46:c5:a4:75:80:51:c8:0d:aa:02:05:7d:54:80: e2:e6:5f:32:75:dd:11:82:eb:92:e8:58:2c:15:7a: b3:e3:65:13:e9:1b:2e:3c:dd:ec:22:df:ee:5f:56: 33:11:ed:d6:fc:d5:a3:1d:a0:c5:61:9d:65:79:ae: 36:8d:60:83:61:6c:c0:b2:3c:6b:6f:4a:da:ad:64: ba:58:26:e2:87:15:81:91:53:4d:e2:fa:28:a6:05: 7b:a3:23:4c:27:5b:2e:e5:21:b5:62:ca:dc:87:45: 43:82:e7:57:7a:f0:bc:bf:74:d7:24:8e:e2:83:1e: e0:dd:4f:33:ec:df:e5:9a:4a:79:73:83:06:e1:f4: a0:3a:80:0f:87:98:3f:49:e4:18:4d:63:c9:b8:cd: f6:9b:a1:3d:ad:c8:4a:4a:75:fc:7e:f9:43:e2:15: 58:18:fc:c3:be:26:aa:8d:e0:d6:12:fa:30:ac:db: 55:dc:54:46:41:7e:ad:5d:f9:28:8f:ba:d6:a5:29: df:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:A6:11:BA:B4:87:AD:A7:7B:1D:3A:7C:2D:8A:BA:F3:C0:C6:55:6F X509v3 Authority Key Identifier: keyid:B8:C6:8C:DA:65:F6:69:62:CC:B9:68:3F:15:50:D1:4E:56:10:7A:0A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uMaM2mX2aWLMuWg_FVDRTlYQego.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 03:c0:27:14:87:44:c9:e3:5b:9e:e3:ed:c9:be:66:54:c4:ec: b8:81:68:3d:7d:33:a5:11:74:56:41:b4:c7:78:e9:3f:cc:05: 53:15:29:97:03:fb:7d:c3:c1:b2:e9:cc:14:69:c9:82:c7:78: 15:a4:7b:d9:92:30:72:00:f8:64:21:aa:5d:e5:b8:6c:cf:eb: 89:00:32:38:42:91:67:f4:28:47:ba:06:c6:21:30:3b:91:0c: 62:f6:4f:1c:cc:b0:d4:d4:f5:09:22:c9:b8:c8:3a:84:42:99: 2e:38:02:10:7a:85:fc:22:83:fb:8a:cb:be:a8:3a:15:c1:2a: 20:03:36:00:2a:23:71:4d:16:e6:06:e5:ac:cc:a6:6a:c6:56: 29:41:c4:01:0c:85:f5:02:ed:a9:a7:2a:23:99:60:29:52:f4: 71:0e:13:b9:c4:dc:b9:62:07:90:5e:77:cd:66:15:ea:15:bb: 52:8e:81:61:f0:d3:49:5b:48:1d:c1:8f:65:67:21:19:f3:72: 84:16:24:12:ea:05:fb:0d:14:d3:b0:ae:22:8c:b5:9f:5b:8b: e0:0c:9a:b4:99:18:06:b6:de:3c:49:83:d5:f0:78:6a:00:ad: b0:db:ae:82:e4:25:ab:39:af:c8:cb:57:b1:f7:47:13:a3:90: 02:87:d6:50 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtLFYkrzhjkJVjp4OnQwcRjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI4YzY4Y2RhNjVmNjY5NjJjY2I5NjgzZjE1NTBkMTRlNTYx MDdhMGEwHhcNMjUxMjIzMTIwMTAxWhcNMjUxMjI0MTIwMTAxWjAzMTEwLwYDVQQD Eyg4Y2E2MTFiYWI0ODdhZGE3N2IxZDNhN2MyZDhhYmFmM2MwYzY1NTZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo1lcaJz0FU8DZqZfEUPipeJuzztW wWGL5S5cHMFWDQoqP6nDjfz5tLQqRwCMeHO3LZLGbgvo2OvYRlYxRsWkdYBRyA2q AgV9VIDi5l8ydd0RguuS6FgsFXqz42UT6RsuPN3sIt/uX1YzEe3W/NWjHaDFYZ1l ea42jWCDYWzAsjxrb0rarWS6WCbihxWBkVNN4voopgV7oyNMJ1su5SG1Ysrch0VD gudXevC8v3TXJI7igx7g3U8z7N/lmkp5c4MG4fSgOoAPh5g/SeQYTWPJuM32m6E9 rchKSnX8fvlD4hVYGPzDviaqjeDWEvowrNtV3FRGQX6tXfkoj7rWpSnfawIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIymEbq0h62nex06fC2KuvPAxlVvMB8GA1UdIwQY MBaAFLjGjNpl9mlizLloPxVQ0U5WEHoKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdU1hTTJtWDJhV0xNdVdnX0ZWRFJUbFlRZWdvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC8xMDc3ODgtODUwMi00NTQxLTk0ODAt OGY0OGEzNzAyZjkwLzEvdU1hTTJtWDJhV0xNdVdnX0ZWRFJUbFlRZWdvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC8xMDc3ODgtODUwMi00NTQxLTk0ODAtOGY0OGEzNzAyZjkw LzEvdU1hTTJtWDJhV0xNdVdnX0ZWRFJUbFlRZWdvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAA8AnFIdE yeNbnuPtyb5mVMTsuIFoPX0zpRF0VkG0x3jpP8wFUxUplwP7fcPBsunMFGnJgsd4 FaR72ZIwcgD4ZCGqXeW4bM/riQAyOEKRZ/QoR7oGxiEwO5EMYvZPHMyw1NT1CSLJ uMg6hEKZLjgCEHqF/CKD+4rLvqg6FcEqIAM2ACojcU0W5gblrMymasZWKUHEAQyF 9QLtqacqI5lgKVL0cQ4TucTcuWIHkF53zWYV6hW7Uo6BYfDTSVtIHcGPZWchGfNy hBYkEuoF+w0U07CuIoy1n1uL4AyatJkYBrbePEmD1fB4agCtsNuuguQlqzmvyMtX sfdHE6OQAofWUA== -----END CERTIFICATE-----Generated at Tue Dec 23 14:39:55 2025 by rpki-client