This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.mft File: ubDTNDLsp3wFTo-ocHJI2k5H2ws.mft (raw, json) Hash identifier: FN79wbzrwKTClS6PBaaAohIZZBIt1BKr3CNPNYi5IvQ= Subject key identifier: F7:67:FD:44:E0:67:5C:6A:FD:00:58:55:33:46:17:31:41:7E:62:37 Authority key identifier: B9:B0:D3:34:32:EC:A7:7C:05:4E:8F:A8:70:72:48:DA:4E:47:DB:0B Certificate issuer: /CN=b9b0d33432eca77c054e8fa8707248da4e47db0b Certificate serial: 019B0F6EF7D8BD761902F8138C27DA87B28D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ubDTNDLsp3wFTo-ocHJI2k5H2ws.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.mft Manifest number: 0940 Signing time: Thu 11 Dec 2025 22:01:29 +0000 Manifest this update: Thu 11 Dec 2025 22:01:29 +0000 Manifest next update: Fri 12 Dec 2025 22:01:29 +0000 Files and hashes: 1: 9qqw5-kT_WV_X39A7wZIImdbzHo.roa (hash: /+5dGBlEHLXX+0YtcqdadMo/w6B/YFbkAqy9tbmNdEg=) 2: D-sLa7SP7XelLhZGOPS-ls06iHQ.roa (hash: O/tqtREZzKy5oPDokpycb2qRKRocKJlF54vVhaheJr4=) 3: XI8GYNvzBktqANN3ULY6yNPZsp4.roa (hash: 0Mxp84Xa3ZGuCVESuvLHwIOTltEO7ZBfIp1LcrOP0ho=) 4: eRUACPCXV-4Ib9JOJdpUbWI_TYw.roa (hash: h9bviEq7QynmkHeqFVqOAhXJmtcEK3L94GyVb2n9ZXc=) 5: hJkdSoDXpzIKTUPp93OLm4_CfgM.roa (hash: GAALV0VthJPoxa0vb/cdFv6fAU1JjHbthL2uNWZeyCc=) 6: ubDTNDLsp3wFTo-ocHJI2k5H2ws.crl (hash: m16oq16Z4P8HXIQRAtwlPNNRkQqtyPeHg2z3S4kURL8=) 7: yLW-Wxb-WEK3SlgHfRgcFULgwtU.roa (hash: 47c/8wbrDeeCgPSJoS7prqWBSvhn47quuwVKT8eb4AA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.crl rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.mft rsync://rpki.ripe.net/repository/DEFAULT/ubDTNDLsp3wFTo-ocHJI2k5H2ws.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 19:27:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0f:6e:f7:d8:bd:76:19:02:f8:13:8c:27:da:87:b2:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b9b0d33432eca77c054e8fa8707248da4e47db0b Validity Not Before: Dec 11 22:01:29 2025 GMT Not After : Dec 12 22:01:29 2025 GMT Subject: CN=f767fd44e0675c6afd00585533461731417e6237 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:1e:e8:1c:6e:ab:70:c4:7f:0b:87:40:c2:07: 20:7e:76:cf:cf:59:b3:ae:42:56:60:4e:d7:f9:fc: 04:8a:38:ac:c7:0c:b8:b6:59:da:c4:6e:ea:08:0c: f0:d5:42:48:c6:d4:2f:e3:e2:f4:62:66:f5:67:d5: 50:80:2f:69:f7:e2:25:c0:01:00:85:5f:57:72:45: 53:78:e0:27:f8:c4:8f:32:96:a3:5b:46:68:68:9c: 45:85:2a:8d:f4:5d:64:f4:18:79:60:a8:b4:18:f5: 7a:f0:ed:91:4e:f2:79:87:67:ca:83:6d:5f:0a:4f: 14:5c:77:01:71:c9:09:0e:d6:61:77:67:f8:04:fc: b2:86:8d:8a:c1:c4:49:95:a8:33:81:ef:72:84:ec: dd:ac:2a:13:8c:d7:f6:65:a3:e0:fc:e9:1e:68:f0: 05:f5:4b:a7:ba:4e:89:42:e1:e8:a2:31:f4:bf:45: de:e0:b4:62:af:0a:6d:4b:09:50:fd:24:25:9d:b3: f7:ae:e9:5c:7c:7a:1f:27:ce:41:c5:49:c6:b6:c3: 9b:6a:68:00:52:f5:25:1a:75:77:b9:c9:9f:40:9e: a8:d4:cd:96:01:ea:89:dd:76:a2:a2:32:43:9f:c9: 04:a0:ee:5e:8b:44:41:59:0e:19:04:51:04:fc:a6: b2:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:67:FD:44:E0:67:5C:6A:FD:00:58:55:33:46:17:31:41:7E:62:37 X509v3 Authority Key Identifier: keyid:B9:B0:D3:34:32:EC:A7:7C:05:4E:8F:A8:70:72:48:DA:4E:47:DB:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ubDTNDLsp3wFTo-ocHJI2k5H2ws.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 67:e2:25:ce:5a:a8:e2:e9:b8:cd:22:91:07:2c:00:63:71:89: f7:59:34:5a:02:35:7f:c3:8b:20:8e:d9:89:3e:43:db:ae:7e: 1e:6e:a3:59:26:3f:0f:58:b0:e2:aa:6a:a8:cc:c3:4b:2e:8e: 60:95:c4:4f:b1:8e:d8:81:dd:10:d2:dc:34:53:be:2f:1f:c7: dc:7e:97:32:2b:43:92:ad:d6:d0:b2:93:00:a0:7a:b0:0a:c5: 8e:58:2f:01:97:80:4d:63:fe:b6:d0:a5:2c:5a:c5:9b:bd:c4: e6:7d:bf:ec:2a:59:7e:13:49:5b:08:b0:24:68:22:5e:cd:8c: 11:ce:74:36:58:78:45:cb:dc:38:69:79:38:b1:43:1f:c9:2f: 98:8d:c5:b2:a4:12:2c:d8:2d:ed:a3:83:bf:d5:44:dd:5b:02: ad:6a:10:ef:f5:17:62:81:7f:d2:bc:7b:aa:a7:70:c8:04:dc: d2:e3:7f:2d:7a:b5:c2:97:f1:31:7f:fd:a4:88:87:b3:50:3c: e5:03:fa:25:8c:25:f6:b2:5d:cf:88:18:a9:73:29:25:b6:9a: fc:79:e9:76:af:bf:65:a2:43:2e:33:85:a4:77:18:95:a2:40: a4:8e:21:0f:78:3f:9d:86:22:51:e0:44:7c:ff:4e:ea:c6:3f: c8:41:bb:21 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsPbvfYvXYZAvgTjCfah7KNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI5YjBkMzM0MzJlY2E3N2MwNTRlOGZhODcwNzI0OGRhNGU0 N2RiMGIwHhcNMjUxMjExMjIwMTI5WhcNMjUxMjEyMjIwMTI5WjAzMTEwLwYDVQQD EyhmNzY3ZmQ0NGUwNjc1YzZhZmQwMDU4NTUzMzQ2MTczMTQxN2U2MjM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqB7oHG6rcMR/C4dAwgcgfnbPz1mz rkJWYE7X+fwEijisxwy4tlnaxG7qCAzw1UJIxtQv4+L0Ymb1Z9VQgC9p9+IlwAEA hV9XckVTeOAn+MSPMpajW0ZoaJxFhSqN9F1k9Bh5YKi0GPV68O2RTvJ5h2fKg21f Ck8UXHcBcckJDtZhd2f4BPyyho2KwcRJlagzge9yhOzdrCoTjNf2ZaPg/OkeaPAF 9Uunuk6JQuHoojH0v0Xe4LRirwptSwlQ/SQlnbP3rulcfHofJ85BxUnGtsObamgA UvUlGnV3ucmfQJ6o1M2WAeqJ3XaiojJDn8kEoO5ei0RBWQ4ZBFEE/KayRQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPdn/UTgZ1xq/QBYVTNGFzFBfmI3MB8GA1UdIwQY MBaAFLmw0zQy7Kd8BU6PqHBySNpOR9sLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdWJEVE5ETHNwM3dGVG8tb2NISkkyazVIMndzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC9iNDMxY2EtNTI3NS00MmI1LThkNTQt ZDE5NmY5MjkxNzMyLzEvdWJEVE5ETHNwM3dGVG8tb2NISkkyazVIMndzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNC9iNDMxY2EtNTI3NS00MmI1LThkNTQtZDE5NmY5MjkxNzMy LzEvdWJEVE5ETHNwM3dGVG8tb2NISkkyazVIMndzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZ+Ilzlqo 4um4zSKRBywAY3GJ91k0WgI1f8OLII7ZiT5D265+Hm6jWSY/D1iw4qpqqMzDSy6O YJXET7GO2IHdENLcNFO+Lx/H3H6XMitDkq3W0LKTAKB6sArFjlgvAZeATWP+ttCl LFrFm73E5n2/7CpZfhNJWwiwJGgiXs2MEc50Nlh4RcvcOGl5OLFDH8kvmI3FsqQS LNgt7aODv9VE3VsCrWoQ7/UXYoF/0rx7qqdwyATc0uN/LXq1wpfxMX/9pIiHs1A8 5QP6JYwl9rJdz4gYqXMpJbaa/Hnpdq+/ZaJDLjOFpHcYlaJApI4hD3g/nYYiUeBE fP9O6sY/yEG7IQ== -----END CERTIFICATE-----Generated at Fri Dec 12 00:15:55 2025 by rpki-client