This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/06f9a3-8fca-414e-b5ad-ca36d98b3c4d/1/U_8iLUoiYwLL8QBoyqb0xB97scs.mft File: U_8iLUoiYwLL8QBoyqb0xB97scs.mft (raw, json) Hash identifier: MIiH6w3fRocxSR3OKc+h0ULD8EpZ/V0wBuvM+w3AfNM= Subject key identifier: 66:19:DF:FA:6E:74:13:35:33:A3:B0:87:0F:1E:33:5E:25:C1:6A:6A Authority key identifier: 53:FF:22:2D:4A:22:63:02:CB:F1:00:68:CA:A6:F4:C4:1F:7B:B1:CB Certificate issuer: /CN=53ff222d4a226302cbf10068caa6f4c41f7bb1cb Certificate serial: 019B1F875CC95A0A557554AD7DCC67C427EB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U_8iLUoiYwLL8QBoyqb0xB97scs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/06f9a3-8fca-414e-b5ad-ca36d98b3c4d/1/U_8iLUoiYwLL8QBoyqb0xB97scs.mft Manifest number: 031F Signing time: Mon 15 Dec 2025 01:02:03 +0000 Manifest this update: Mon 15 Dec 2025 01:02:03 +0000 Manifest next update: Tue 16 Dec 2025 01:02:03 +0000 Files and hashes: 1: U_8iLUoiYwLL8QBoyqb0xB97scs.crl (hash: D3ZTdCuERhMpP5NqjWFBtO1z8QR8HLVoYRAdpR0/6is=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/06f9a3-8fca-414e-b5ad-ca36d98b3c4d/1/U_8iLUoiYwLL8QBoyqb0xB97scs.crl rsync://rpki.ripe.net/repository/DEFAULT/e5/06f9a3-8fca-414e-b5ad-ca36d98b3c4d/1/U_8iLUoiYwLL8QBoyqb0xB97scs.mft rsync://rpki.ripe.net/repository/DEFAULT/U_8iLUoiYwLL8QBoyqb0xB97scs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1f:87:5c:c9:5a:0a:55:75:54:ad:7d:cc:67:c4:27:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53ff222d4a226302cbf10068caa6f4c41f7bb1cb Validity Not Before: Dec 15 01:02:03 2025 GMT Not After : Dec 16 01:02:03 2025 GMT Subject: CN=6619dffa6e74133533a3b0870f1e335e25c16a6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:86:0b:11:8d:c1:9b:8e:9f:d1:0c:de:93:8f: fc:8e:af:1b:51:7d:e1:a1:89:00:95:a6:87:b2:ac: 89:b2:b7:77:05:7f:96:7f:fe:de:d6:2f:6a:83:21: 79:21:16:1d:27:db:fe:cd:66:11:fc:42:00:e3:2f: 0a:c5:8b:87:dc:86:c8:06:80:07:2d:c9:8e:8f:a9: 00:23:ef:9a:55:67:b2:95:5b:13:c5:c0:d7:ad:98: 8c:ff:a1:0b:c9:cb:50:e4:51:b4:4b:1b:ed:da:72: 60:c4:45:3b:60:20:ba:c5:f1:f5:18:90:3d:97:90: 6b:84:4a:c6:ba:e9:21:c5:e7:8c:f7:9c:bf:33:70: 1e:92:a8:83:aa:bf:27:ad:c8:3e:af:e0:27:e8:7e: 10:33:14:d8:6b:35:07:58:fb:ba:f8:8c:a6:72:29: 9d:07:2e:d9:e3:16:9e:05:12:e3:44:2c:c8:9c:a1: 79:91:a3:25:f2:22:02:ee:c0:2c:3f:2d:1c:36:03: 32:8f:f0:fe:02:07:72:04:13:77:75:c4:2c:fc:b5: 7e:7b:f8:8b:b4:bc:f3:d5:68:7f:d6:32:c1:e5:c2: ba:18:a0:ad:2c:af:f1:4c:9d:7f:0d:18:45:96:f4: d9:9d:81:fe:30:0a:6c:01:3a:c5:dc:a0:c4:f6:8f: 2b:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:19:DF:FA:6E:74:13:35:33:A3:B0:87:0F:1E:33:5E:25:C1:6A:6A X509v3 Authority Key Identifier: keyid:53:FF:22:2D:4A:22:63:02:CB:F1:00:68:CA:A6:F4:C4:1F:7B:B1:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U_8iLUoiYwLL8QBoyqb0xB97scs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/06f9a3-8fca-414e-b5ad-ca36d98b3c4d/1/U_8iLUoiYwLL8QBoyqb0xB97scs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/06f9a3-8fca-414e-b5ad-ca36d98b3c4d/1/U_8iLUoiYwLL8QBoyqb0xB97scs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 66:71:73:77:e7:e6:41:85:eb:85:8f:ac:29:00:43:ab:c6:0d: f0:e7:a8:6c:af:6e:7f:39:1f:f8:2f:c0:46:50:63:02:0f:14: 24:e7:38:dd:8d:af:97:52:0d:40:2e:9e:de:da:4b:19:01:fd: 41:3a:ab:0d:6e:27:9a:62:2a:34:1a:65:8c:58:7e:94:47:a1: 8a:0a:e2:df:a9:40:c1:97:e1:9b:9d:80:c9:e8:ba:36:35:10: 9a:a0:b1:6c:ef:65:a0:f0:13:a1:c4:9f:0f:1e:e4:27:d8:aa: 6c:98:c2:4d:42:bd:a4:10:d9:d7:8a:76:c4:d8:95:fb:4c:6c: 8a:3f:05:9b:ba:9f:03:2e:8b:77:1a:4c:2e:78:08:a4:2f:08: a0:12:c1:2c:8d:aa:ff:09:85:1d:a4:e1:11:bb:5a:04:c5:41: 8c:2b:35:fb:18:d5:e0:f5:be:2b:43:22:5a:3b:5a:fc:eb:7d: 92:3d:13:29:68:64:7a:bd:5b:51:f1:72:bc:19:c4:6f:a4:7a: 4e:06:24:2c:a3:ad:fa:36:44:1c:80:50:24:70:2d:16:8f:cb: b8:6e:e5:24:6a:70:50:3c:34:80:2d:cf:36:eb:4c:e4:e9:94: ad:97:8c:3e:90:c0:eb:68:7d:46:4a:73:10:49:9e:85:65:16: 6f:40:4e:4e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsfh1zJWgpVdVStfcxnxCfrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzZmYyMjJkNGEyMjYzMDJjYmYxMDA2OGNhYTZmNGM0MWY3 YmIxY2IwHhcNMjUxMjE1MDEwMjAzWhcNMjUxMjE2MDEwMjAzWjAzMTEwLwYDVQQD Eyg2NjE5ZGZmYTZlNzQxMzM1MzNhM2IwODcwZjFlMzM1ZTI1YzE2YTZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArIYLEY3Bm46f0Qzek4/8jq8bUX3h oYkAlaaHsqyJsrd3BX+Wf/7e1i9qgyF5IRYdJ9v+zWYR/EIA4y8KxYuH3IbIBoAH LcmOj6kAI++aVWeylVsTxcDXrZiM/6ELyctQ5FG0Sxvt2nJgxEU7YCC6xfH1GJA9 l5BrhErGuukhxeeM95y/M3AekqiDqr8nrcg+r+An6H4QMxTYazUHWPu6+Iymcimd By7Z4xaeBRLjRCzInKF5kaMl8iIC7sAsPy0cNgMyj/D+AgdyBBN3dcQs/LV+e/iL tLzz1Wh/1jLB5cK6GKCtLK/xTJ1/DRhFlvTZnYH+MApsATrF3KDE9o8rVQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGYZ3/pudBM1M6Owhw8eM14lwWpqMB8GA1UdIwQY MBaAFFP/Ii1KImMCy/EAaMqm9MQfe7HLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVV84aUxVb2lZd0xMOFFCb3lxYjB4Qjk3c2NzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS8wNmY5YTMtOGZjYS00MTRlLWI1YWQt Y2EzNmQ5OGIzYzRkLzEvVV84aUxVb2lZd0xMOFFCb3lxYjB4Qjk3c2NzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNS8wNmY5YTMtOGZjYS00MTRlLWI1YWQtY2EzNmQ5OGIzYzRk LzEvVV84aUxVb2lZd0xMOFFCb3lxYjB4Qjk3c2NzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZnFzd+fm QYXrhY+sKQBDq8YN8OeobK9ufzkf+C/ARlBjAg8UJOc43Y2vl1INQC6e3tpLGQH9 QTqrDW4nmmIqNBpljFh+lEehigri36lAwZfhm52Ayei6NjUQmqCxbO9loPATocSf Dx7kJ9iqbJjCTUK9pBDZ14p2xNiV+0xsij8Fm7qfAy6LdxpMLngIpC8IoBLBLI2q /wmFHaThEbtaBMVBjCs1+xjV4PW+K0MiWjta/Ot9kj0TKWhker1bUfFyvBnEb6R6 TgYkLKOt+jZEHIBQJHAtFo/LuG7lJGpwUDw0gC3PNutM5OmUrZeMPpDA62h9Rkpz EEmehWUWb0BOTg== -----END CERTIFICATE-----Generated at Mon Dec 15 04:52:42 2025 by rpki-client