This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft File: umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft (raw, json) Hash identifier: JWe3BddTRevke+af3Zg52nCSbPJPN6c7Q9rZolgerz4= Subject key identifier: 99:9E:4D:26:C6:CE:3B:7B:A1:D0:57:18:2F:23:BC:FD:97:D0:AD:7F Authority key identifier: BA:68:59:59:97:90:0D:ED:30:0E:99:25:70:9D:A6:27:E9:3F:36:3A Certificate issuer: /CN=ba68595997900ded300e9925709da627e93f363a Certificate serial: 019B104A73766A179F82C434DC021686E239 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft Manifest number: 100E Signing time: Fri 12 Dec 2025 02:01:13 +0000 Manifest this update: Fri 12 Dec 2025 02:01:13 +0000 Manifest next update: Sat 13 Dec 2025 02:01:13 +0000 Files and hashes: 1: Vevc9vrQGyVF5o4NzN0QFHnZAiA.roa (hash: AOWcNE88wNCBWfSzm2+MmaRV4c7usJ5kQGrhyE8Gj6M=) 2: umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl (hash: CtK7GYRAdb60qlWF19nuRr+mRwCJPxR1Ykxmzm2xi5w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 19:27:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:10:4a:73:76:6a:17:9f:82:c4:34:dc:02:16:86:e2:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba68595997900ded300e9925709da627e93f363a Validity Not Before: Dec 12 02:01:13 2025 GMT Not After : Dec 13 02:01:13 2025 GMT Subject: CN=999e4d26c6ce3b7ba1d057182f23bcfd97d0ad7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:06:0b:2f:e3:b3:7a:3b:e0:04:1d:18:e2:76: ee:c4:7b:b8:f3:45:aa:1f:fb:e8:93:07:6d:9c:6b: 7a:94:69:f5:35:50:ec:26:37:34:88:ec:6a:4c:83: c2:1d:c4:49:d1:b9:f5:6b:52:71:54:b1:74:a2:62: c4:43:d1:39:0f:31:8f:f1:f2:2a:56:a5:8f:e1:5c: 4a:65:aa:bd:6a:9f:95:40:6e:80:1a:1c:9e:4e:f2: af:04:db:ce:3a:9d:8a:38:e3:a6:01:08:a6:7b:34: e4:40:b8:e3:cf:99:ed:e8:5d:a8:80:b2:4d:63:c5: e1:03:51:b0:7c:e8:e7:b1:65:a4:e5:27:e3:82:ae: e5:a1:de:7a:07:06:ba:78:66:c2:3a:57:db:01:19: 55:e9:ea:73:2c:18:dc:bd:49:94:42:b6:9d:24:7c: ff:24:2b:88:14:5a:04:95:56:a0:b6:2a:d6:bb:fb: 1a:a5:28:cf:1d:ea:bf:ba:17:62:df:bd:57:56:eb: a9:83:d4:80:bd:a1:aa:f0:c1:b3:5e:14:66:b0:cd: 33:8b:6d:5c:2f:a4:71:46:e4:f4:5e:2e:0a:14:54: 4b:b2:a9:aa:66:dc:24:66:fe:22:df:82:6d:b3:fa: 56:72:9a:74:f1:a7:a0:2f:8a:cf:5f:63:9b:a4:f5: 49:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:9E:4D:26:C6:CE:3B:7B:A1:D0:57:18:2F:23:BC:FD:97:D0:AD:7F X509v3 Authority Key Identifier: keyid:BA:68:59:59:97:90:0D:ED:30:0E:99:25:70:9D:A6:27:E9:3F:36:3A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 99:99:cf:cb:bb:2c:b2:83:23:ea:90:3f:34:76:1d:2e:bf:9b: 75:20:01:99:5c:45:89:c9:75:bd:84:72:bf:12:b3:45:cc:ac: 6a:83:ef:60:90:d7:45:94:4d:3b:82:77:ec:f5:7a:ab:85:0c: 0f:67:47:6f:5d:84:43:5e:48:88:5b:35:6a:d7:51:76:0e:4e: cc:59:0f:fe:0e:2e:3f:5d:3b:d4:3e:e0:61:2a:61:70:4b:48: 94:3d:88:b0:22:70:9d:0b:76:39:5a:25:59:ca:00:0d:93:77: cc:b0:19:45:2b:02:f9:a2:2e:4c:95:e9:94:eb:b3:41:ab:ae: 03:17:bb:8e:5f:63:a3:53:d8:25:f0:80:47:bf:e7:a0:b8:fe: 0f:f4:d7:2b:1e:01:b3:cd:33:36:2c:53:14:5b:be:97:d4:fc: cb:99:92:88:7b:b4:56:2a:4f:06:db:b3:3b:31:95:6e:e6:c4: 2f:8c:e0:eb:02:80:a6:5b:59:00:5c:53:9e:08:99:89:de:77: 8e:e6:92:23:ef:a5:bd:6f:da:ef:b6:e9:e1:6b:49:b4:4b:f2: 4a:76:1d:b7:8a:f5:ef:8a:85:61:32:b1:6d:ac:1d:1b:ff:c4: 8f:be:71:00:83:d2:d9:c8:2d:3d:c7:b1:63:1e:11:84:6f:6f: 51:8f:d1:e6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsQSnN2ahefgsQ03AIWhuI5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhNjg1OTU5OTc5MDBkZWQzMDBlOTkyNTcwOWRhNjI3ZTkz ZjM2M2EwHhcNMjUxMjEyMDIwMTEzWhcNMjUxMjEzMDIwMTEzWjAzMTEwLwYDVQQD Eyg5OTllNGQyNmM2Y2UzYjdiYTFkMDU3MTgyZjIzYmNmZDk3ZDBhZDdmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqAYLL+OzejvgBB0Y4nbuxHu480Wq H/vokwdtnGt6lGn1NVDsJjc0iOxqTIPCHcRJ0bn1a1JxVLF0omLEQ9E5DzGP8fIq VqWP4VxKZaq9ap+VQG6AGhyeTvKvBNvOOp2KOOOmAQimezTkQLjjz5nt6F2ogLJN Y8XhA1GwfOjnsWWk5Sfjgq7lod56Bwa6eGbCOlfbARlV6epzLBjcvUmUQradJHz/ JCuIFFoElVagtirWu/sapSjPHeq/uhdi371XVuupg9SAvaGq8MGzXhRmsM0zi21c L6RxRuT0Xi4KFFRLsqmqZtwkZv4i34Jts/pWcpp08aegL4rPX2ObpPVJQQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJmeTSbGzjt7odBXGC8jvP2X0K1/MB8GA1UdIwQY MBaAFLpoWVmXkA3tMA6ZJXCdpifpPzY6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdW1oWldaZVFEZTB3RHBrbGNKMm1KLWtfTmpvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS80NzJhNGQtZmNhZS00NDU0LTk5Njct MDJkZWQ5YjJlMGM5LzEvdW1oWldaZVFEZTB3RHBrbGNKMm1KLWtfTmpvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZS80NzJhNGQtZmNhZS00NDU0LTk5NjctMDJkZWQ5YjJlMGM5 LzEvdW1oWldaZVFEZTB3RHBrbGNKMm1KLWtfTmpvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmZnPy7ss soMj6pA/NHYdLr+bdSABmVxFicl1vYRyvxKzRcysaoPvYJDXRZRNO4J37PV6q4UM D2dHb12EQ15IiFs1atdRdg5OzFkP/g4uP1071D7gYSphcEtIlD2IsCJwnQt2OVol WcoADZN3zLAZRSsC+aIuTJXplOuzQauuAxe7jl9jo1PYJfCAR7/noLj+D/TXKx4B s80zNixTFFu+l9T8y5mSiHu0VipPBtuzOzGVbubEL4zg6wKApltZAFxTngiZid53 juaSI++lvW/a77bp4WtJtEvySnYdt4r174qFYTKxbawdG//Ej75xAIPS2cgtPcex Yx4RhG9vUY/R5g== -----END CERTIFICATE-----Generated at Fri Dec 12 04:02:11 2025 by rpki-client