This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/9760c6-3fce-42bd-bbc8-49fbc30a8f61/1/UKiPmoNBAa34dwN6UcgdEzqpRuw.mft File: UKiPmoNBAa34dwN6UcgdEzqpRuw.mft (raw, json) Hash identifier: wQja/Bbl11yQ1i6oc2kW+56c//bDq6hmDWBeN0uXQbk= Subject key identifier: 2F:09:35:A6:9A:3D:0C:C8:65:28:74:15:5F:D5:5D:D6:72:10:BC:A7 Authority key identifier: 50:A8:8F:9A:83:41:01:AD:F8:77:03:7A:51:C8:1D:13:3A:A9:46:EC Certificate issuer: /CN=50a88f9a834101adf877037a51c81d133aa946ec Certificate serial: 019B59779B22BC4AFF90E46F45E0090CBD41 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UKiPmoNBAa34dwN6UcgdEzqpRuw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/9760c6-3fce-42bd-bbc8-49fbc30a8f61/1/UKiPmoNBAa34dwN6UcgdEzqpRuw.mft Manifest number: 0F22 Signing time: Fri 26 Dec 2025 07:02:49 +0000 Manifest this update: Fri 26 Dec 2025 07:02:49 +0000 Manifest next update: Sat 27 Dec 2025 07:02:49 +0000 Files and hashes: 1: UKiPmoNBAa34dwN6UcgdEzqpRuw.crl (hash: BvoaB5pLai/Xai113L3mDlW19jsIsOZo11c6ploGfc4=) 2: kc-RSMe4Oew5F8NEK8PnK5Ztook.roa (hash: RrPN8D12kwMiREonpEUwGrZPp2WKXYrir6fymPU5Gvs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/9760c6-3fce-42bd-bbc8-49fbc30a8f61/1/UKiPmoNBAa34dwN6UcgdEzqpRuw.crl rsync://rpki.ripe.net/repository/DEFAULT/df/9760c6-3fce-42bd-bbc8-49fbc30a8f61/1/UKiPmoNBAa34dwN6UcgdEzqpRuw.mft rsync://rpki.ripe.net/repository/DEFAULT/UKiPmoNBAa34dwN6UcgdEzqpRuw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:77:9b:22:bc:4a:ff:90:e4:6f:45:e0:09:0c:bd:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=50a88f9a834101adf877037a51c81d133aa946ec Validity Not Before: Dec 26 07:02:49 2025 GMT Not After : Dec 27 07:02:49 2025 GMT Subject: CN=2f0935a69a3d0cc8652874155fd55dd67210bca7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:2e:25:f3:10:5a:5a:d9:d3:e5:17:ae:75:0b: ce:c9:f7:c9:88:a1:17:0a:4a:a0:5f:8c:aa:11:34: 6c:79:5f:4b:b8:74:a8:7e:8f:59:58:16:60:46:c3: ab:b2:21:f2:22:2f:0b:03:70:75:12:c0:10:85:44: ee:37:94:3f:fd:f9:67:5b:4d:33:40:91:59:4b:8a: 3c:07:c6:64:64:5d:58:ee:31:36:55:5f:fd:8a:b7: f4:79:d2:d7:48:83:5e:dd:41:f3:e5:ba:8f:aa:33: 9d:bc:c5:f2:32:c0:04:4d:31:c2:64:a0:fa:c7:b9: 45:89:a9:73:5c:74:71:47:0f:7f:a1:7c:e1:d8:8b: 41:6d:1b:17:2f:85:f4:22:3a:ce:b2:8c:05:fb:d4: e0:f6:74:c9:95:7c:fc:3a:70:58:6d:ca:dc:85:14: 88:23:2f:c1:09:93:d3:5c:ec:bc:9c:d4:6a:b1:61: e5:40:59:b8:ab:84:ad:20:56:3d:30:c8:4a:9b:fb: e3:1f:b2:09:09:5d:28:e0:db:d3:00:cc:6c:9b:2f: d7:5f:65:77:44:ab:93:82:6e:bd:4c:6f:ac:c6:ce: 48:3e:ed:17:ce:63:7e:d6:03:e9:6c:2c:9e:bd:ff: 07:66:dc:73:d6:4a:30:0e:1c:07:9f:ed:a3:12:96: d8:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:09:35:A6:9A:3D:0C:C8:65:28:74:15:5F:D5:5D:D6:72:10:BC:A7 X509v3 Authority Key Identifier: keyid:50:A8:8F:9A:83:41:01:AD:F8:77:03:7A:51:C8:1D:13:3A:A9:46:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UKiPmoNBAa34dwN6UcgdEzqpRuw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/9760c6-3fce-42bd-bbc8-49fbc30a8f61/1/UKiPmoNBAa34dwN6UcgdEzqpRuw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/9760c6-3fce-42bd-bbc8-49fbc30a8f61/1/UKiPmoNBAa34dwN6UcgdEzqpRuw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:e4:31:99:ce:fa:84:2f:eb:82:7e:80:f1:ad:4c:0d:f4:a2: bb:2e:9d:d5:99:08:5d:3f:82:d5:70:d1:f0:cd:fe:a4:1d:8d: 29:17:a7:43:79:43:88:7e:0e:ce:01:dc:dc:d6:23:49:ac:f6: 17:67:a3:84:85:9f:03:ae:e5:d5:f2:a8:c8:d2:d4:16:ff:d9: df:23:08:95:ce:62:fe:cf:f1:01:65:3e:27:2c:d4:10:05:45: 3b:8c:0c:9a:8e:43:54:07:f5:47:56:c0:93:dc:af:cc:c8:ce: 1a:2f:89:f3:ca:f3:2d:f5:ac:04:41:44:db:67:31:c2:65:54: 31:6f:3d:01:84:d6:68:ac:aa:b7:e7:ef:41:03:e7:f0:c8:9f: 24:3e:1a:8e:f8:bf:fb:70:a5:0a:1c:b5:3a:04:31:9e:aa:57: 1e:07:44:3f:af:5c:4b:84:4e:4f:e6:81:33:a9:07:a0:d6:6f: 40:43:16:a2:2e:20:50:76:e0:2e:c1:b8:2e:77:b2:8e:e7:77: f5:66:82:2b:c9:23:24:91:e6:2e:dc:d5:71:fe:de:64:2b:4e: f5:43:82:7c:82:94:b6:39:08:ac:14:53:ac:c6:01:8e:9e:5c: 52:62:3f:af:b3:79:59:37:fe:0e:be:6c:ce:2a:11:bd:c5:93: a5:12:3e:f4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZd5sivEr/kORvReAJDL1BMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUwYTg4ZjlhODM0MTAxYWRmODc3MDM3YTUxYzgxZDEzM2Fh OTQ2ZWMwHhcNMjUxMjI2MDcwMjQ5WhcNMjUxMjI3MDcwMjQ5WjAzMTEwLwYDVQQD EygyZjA5MzVhNjlhM2QwY2M4NjUyODc0MTU1ZmQ1NWRkNjcyMTBiY2E3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnS4l8xBaWtnT5ReudQvOyffJiKEX CkqgX4yqETRseV9LuHSofo9ZWBZgRsOrsiHyIi8LA3B1EsAQhUTuN5Q//flnW00z QJFZS4o8B8ZkZF1Y7jE2VV/9irf0edLXSINe3UHz5bqPqjOdvMXyMsAETTHCZKD6 x7lFialzXHRxRw9/oXzh2ItBbRsXL4X0IjrOsowF+9Tg9nTJlXz8OnBYbcrchRSI Iy/BCZPTXOy8nNRqsWHlQFm4q4StIFY9MMhKm/vjH7IJCV0o4NvTAMxsmy/XX2V3 RKuTgm69TG+sxs5IPu0XzmN+1gPpbCyevf8HZtxz1kowDhwHn+2jEpbY6wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC8JNaaaPQzIZSh0FV/VXdZyELynMB8GA1UdIwQY MBaAFFCoj5qDQQGt+HcDelHIHRM6qUbsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVUtpUG1vTkJBYTM0ZHdONlVjZ2RFenFwUnV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi85NzYwYzYtM2ZjZS00MmJkLWJiYzgt NDlmYmMzMGE4ZjYxLzEvVUtpUG1vTkJBYTM0ZHdONlVjZ2RFenFwUnV3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi85NzYwYzYtM2ZjZS00MmJkLWJiYzgtNDlmYmMzMGE4ZjYx LzEvVUtpUG1vTkJBYTM0ZHdONlVjZ2RFenFwUnV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKuQxmc76 hC/rgn6A8a1MDfSiuy6d1ZkIXT+C1XDR8M3+pB2NKRenQ3lDiH4OzgHc3NYjSaz2 F2ejhIWfA67l1fKoyNLUFv/Z3yMIlc5i/s/xAWU+JyzUEAVFO4wMmo5DVAf1R1bA k9yvzMjOGi+J88rzLfWsBEFE22cxwmVUMW89AYTWaKyqt+fvQQPn8MifJD4ajvi/ +3ClChy1OgQxnqpXHgdEP69cS4ROT+aBM6kHoNZvQEMWoi4gUHbgLsG4Lneyjud3 9WaCK8kjJJHmLtzVcf7eZCtO9UOCfIKUtjkIrBRTrMYBjp5cUmI/r7N5WTf+Dr5s zioRvcWTpRI+9A== -----END CERTIFICATE-----Generated at Fri Dec 26 16:05:43 2025 by rpki-client