This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/U8DiB45PPrpfh5UD_dgJw4O7dig.mft File: U8DiB45PPrpfh5UD_dgJw4O7dig.mft (raw, json) Hash identifier: IC97YkMkx2ivPmKPpFj5jgxEOKcEUGqut9gj18AhIGQ= Subject key identifier: 9A:39:B4:5F:55:D0:EA:3F:2C:41:37:65:21:2A:15:3B:81:82:79:5C Authority key identifier: 53:C0:E2:07:8E:4F:3E:BA:5F:87:95:03:FD:D8:09:C3:83:BB:76:28 Certificate issuer: /CN=53c0e2078e4f3eba5f879503fdd809c383bb7628 Certificate serial: 019B4A7116653F3A186C3145802A9D808794 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U8DiB45PPrpfh5UD_dgJw4O7dig.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/U8DiB45PPrpfh5UD_dgJw4O7dig.mft Manifest number: 118C Signing time: Tue 23 Dec 2025 09:01:23 +0000 Manifest this update: Tue 23 Dec 2025 09:01:23 +0000 Manifest next update: Wed 24 Dec 2025 09:01:23 +0000 Files and hashes: 1: U8DiB45PPrpfh5UD_dgJw4O7dig.crl (hash: YiC0ncrETEibh0m5GENHz+aM+iwSHj3O6IfurOwFimg=) 2: XOqVL4Qlgd2qj_R2o35sDNSHJkw.roa (hash: Vhjo7o5u3C511AphXSnY5EBALpIpM0HGnrEGYenlVkk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/U8DiB45PPrpfh5UD_dgJw4O7dig.crl rsync://rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/U8DiB45PPrpfh5UD_dgJw4O7dig.mft rsync://rpki.ripe.net/repository/DEFAULT/U8DiB45PPrpfh5UD_dgJw4O7dig.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 24 Dec 2025 09:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4a:71:16:65:3f:3a:18:6c:31:45:80:2a:9d:80:87:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53c0e2078e4f3eba5f879503fdd809c383bb7628 Validity Not Before: Dec 23 09:01:23 2025 GMT Not After : Dec 24 09:01:23 2025 GMT Subject: CN=9a39b45f55d0ea3f2c413765212a153b8182795c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:10:99:cf:b8:c0:d8:9e:ed:dd:c4:4b:df:f7: 2f:c3:43:65:54:c2:0c:d5:8d:4d:59:22:23:17:0c: 0c:d8:fd:86:ea:d9:24:c7:1d:4c:69:ac:bd:7d:eb: 68:66:db:3f:2d:e4:d7:c8:a5:01:d0:d5:1f:69:30: 09:b2:1c:cc:79:0d:6a:83:37:c9:91:8a:f3:5b:a9: 5d:55:a2:91:90:b8:5b:1e:27:12:35:bb:1d:0f:21: ef:96:28:75:d6:7a:bd:98:2b:7f:3a:20:4f:f3:d0: f3:e9:96:32:9e:57:ab:ec:3e:84:78:a4:c6:03:db: 94:44:76:5b:be:34:73:81:7a:33:55:e5:18:64:04: 67:8e:94:f2:ec:64:4e:a1:53:1c:66:79:c8:c8:43: a8:37:cc:e2:f5:30:a9:3c:73:0b:ac:14:28:dd:8b: 69:9b:1e:3b:96:27:c3:16:a7:51:4b:17:1b:4d:51: 59:71:df:ec:03:dd:55:77:12:e6:95:6e:2d:24:7b: 08:81:60:1b:f6:06:f2:e0:49:3f:63:29:51:27:c8: ec:96:93:09:cf:ab:96:39:79:24:f9:cc:73:27:e8: d2:0c:69:4e:f7:0f:d8:36:c9:18:50:ae:a0:fa:a8: 4e:46:fc:62:b2:24:e1:56:56:06:8c:c2:9e:03:77: 7c:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:39:B4:5F:55:D0:EA:3F:2C:41:37:65:21:2A:15:3B:81:82:79:5C X509v3 Authority Key Identifier: keyid:53:C0:E2:07:8E:4F:3E:BA:5F:87:95:03:FD:D8:09:C3:83:BB:76:28 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U8DiB45PPrpfh5UD_dgJw4O7dig.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/U8DiB45PPrpfh5UD_dgJw4O7dig.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/U8DiB45PPrpfh5UD_dgJw4O7dig.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 60:17:8f:83:ca:58:62:f0:1d:29:98:4b:43:ee:d9:1e:be:84: 4a:73:32:81:c5:28:a8:a9:4d:3d:ab:c9:a4:e8:91:8c:bf:25: 90:51:9a:ba:d2:12:f4:f9:a3:fe:c4:47:0d:36:e3:06:d1:81: 02:d1:72:d9:9c:74:39:83:cb:f6:88:58:14:21:a5:ad:f9:64: 9d:91:48:6a:4b:a6:14:86:36:3a:3c:55:c7:6a:38:fb:4f:e8: 1c:76:0d:be:45:04:df:93:c7:87:ad:ea:32:c8:d0:4a:fb:cb: f7:aa:5e:a0:e8:95:09:5a:8c:16:25:29:0f:cb:9d:8b:45:2a: 0b:17:89:de:d3:a4:44:3a:a9:c4:74:b7:bd:ca:aa:e3:96:cc: 32:5d:5b:8f:63:0a:30:bf:93:f5:30:c9:36:bd:c2:f6:fd:7f: 46:03:a2:fc:d2:62:ed:10:1c:20:72:b7:ad:b9:46:18:e1:54: 4d:e1:8c:79:8b:4a:72:5e:47:fa:ea:59:68:5f:e2:e5:93:74: a9:2f:6b:b3:ee:b8:9f:c6:cc:fb:24:bf:62:89:d5:3f:cd:ab: 33:43:b3:ce:80:ad:6d:26:00:8a:a1:bd:32:53:c2:19:1d:61: ec:70:e1:ff:a6:8a:6c:cb:79:9b:0d:ec:da:0b:0b:5f:f1:0c: e5:40:31:28 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtKcRZlPzoYbDFFgCqdgIeUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzYzBlMjA3OGU0ZjNlYmE1Zjg3OTUwM2ZkZDgwOWMzODNi Yjc2MjgwHhcNMjUxMjIzMDkwMTIzWhcNMjUxMjI0MDkwMTIzWjAzMTEwLwYDVQQD Eyg5YTM5YjQ1ZjU1ZDBlYTNmMmM0MTM3NjUyMTJhMTUzYjgxODI3OTVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvRCZz7jA2J7t3cRL3/cvw0NlVMIM 1Y1NWSIjFwwM2P2G6tkkxx1Maay9fetoZts/LeTXyKUB0NUfaTAJshzMeQ1qgzfJ kYrzW6ldVaKRkLhbHicSNbsdDyHvlih11nq9mCt/OiBP89Dz6ZYynler7D6EeKTG A9uURHZbvjRzgXozVeUYZARnjpTy7GROoVMcZnnIyEOoN8zi9TCpPHMLrBQo3Ytp mx47lifDFqdRSxcbTVFZcd/sA91VdxLmlW4tJHsIgWAb9gby4Ek/YylRJ8jslpMJ z6uWOXkk+cxzJ+jSDGlO9w/YNskYUK6g+qhORvxisiThVlYGjMKeA3d8VwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJo5tF9V0Oo/LEE3ZSEqFTuBgnlcMB8GA1UdIwQY MBaAFFPA4geOTz66X4eVA/3YCcODu3YoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVThEaUI0NVBQcnBmaDVVRF9kZ0p3NE83ZGlnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi9iMzY2MzYtMzMwNi00NDhmLThlY2Yt NTY0ODJiMzkwNjc4LzEvVThEaUI0NVBQcnBmaDVVRF9kZ0p3NE83ZGlnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMi9iMzY2MzYtMzMwNi00NDhmLThlY2YtNTY0ODJiMzkwNjc4 LzEvVThEaUI0NVBQcnBmaDVVRF9kZ0p3NE83ZGlnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYBePg8pY YvAdKZhLQ+7ZHr6ESnMygcUoqKlNPavJpOiRjL8lkFGautIS9Pmj/sRHDTbjBtGB AtFy2Zx0OYPL9ohYFCGlrflknZFIakumFIY2OjxVx2o4+0/oHHYNvkUE35PHh63q MsjQSvvL96peoOiVCVqMFiUpD8udi0UqCxeJ3tOkRDqpxHS3vcqq45bMMl1bj2MK ML+T9TDJNr3C9v1/RgOi/NJi7RAcIHK3rblGGOFUTeGMeYtKcl5H+upZaF/i5ZN0 qS9rs+64n8bM+yS/YonVP82rM0OzzoCtbSYAiqG9MlPCGR1h7HDh/6aKbMt5mw3s 2gsLX/EM5UAxKA== -----END CERTIFICATE-----Generated at Tue Dec 23 15:25:07 2025 by rpki-client