This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft File: umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft (raw, json) Hash identifier: //TwhuRbtLlfNmIfq+Sg9gr2tRq5w48C1SJcW8+7xZg= Subject key identifier: D7:1B:28:95:AB:64:BC:5B:F7:B9:F6:28:87:D8:50:E6:41:09:5D:3A Authority key identifier: BA:68:59:59:97:90:0D:ED:30:0E:99:25:70:9D:A6:27:E9:3F:36:3A Certificate issuer: /CN=ba68595997900ded300e9925709da627e93f363a Certificate serial: 019B330D04A230E02283EA8920F2A091A04F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft Manifest number: 1020 Signing time: Thu 18 Dec 2025 20:00:49 +0000 Manifest this update: Thu 18 Dec 2025 20:00:49 +0000 Manifest next update: Fri 19 Dec 2025 20:00:49 +0000 Files and hashes: 1: Vevc9vrQGyVF5o4NzN0QFHnZAiA.roa (hash: AOWcNE88wNCBWfSzm2+MmaRV4c7usJ5kQGrhyE8Gj6M=) 2: umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl (hash: TihKjvNKET+FA3iVhSOAGXNRGz+1vQGz3sGHmi9boHU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 20:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:33:0d:04:a2:30:e0:22:83:ea:89:20:f2:a0:91:a0:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba68595997900ded300e9925709da627e93f363a Validity Not Before: Dec 18 20:00:49 2025 GMT Not After : Dec 19 20:00:49 2025 GMT Subject: CN=d71b2895ab64bc5bf7b9f62887d850e641095d3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:c9:75:27:3b:45:e1:70:b8:d5:52:8f:d5:c1: 99:ec:86:4d:71:21:68:6b:b6:1c:dc:bf:39:ba:81: 4e:6c:72:be:91:4f:42:29:1d:ab:f1:f1:d5:8d:85: 6e:02:4d:c5:07:f8:c4:51:dd:82:07:02:e4:5f:0e: 83:c4:a9:4d:de:15:88:b0:79:0e:a3:03:84:ee:f1: 0c:59:15:f2:1f:45:5b:3a:31:2e:29:f6:ab:59:f3: 4b:17:cc:c1:78:75:22:12:20:51:b9:6a:43:16:d1: d3:93:cc:83:ca:c8:e8:9e:82:06:69:41:6e:b6:aa: d8:c2:50:d0:76:eb:ae:1f:89:19:a0:01:e9:2a:cd: d4:40:53:b5:a1:4d:c9:29:e2:af:9f:d8:bf:65:45: 29:6e:29:d7:84:7e:bc:e4:fa:0a:0b:f8:90:73:6b: 83:4c:ea:ad:cf:8a:e6:8d:11:d0:0d:bf:b8:ea:14: 6f:76:54:66:25:9f:da:c2:5c:14:3c:06:2e:be:a6: 0d:a0:f1:9e:70:c6:5e:a1:55:20:ef:49:bc:a4:3f: b4:11:42:a4:24:38:1f:08:2c:86:56:98:b7:bc:b3: 3a:48:8a:82:bc:75:f1:95:d8:e5:d7:21:4b:87:25: 92:0c:7b:23:52:15:6b:a9:2a:63:db:b1:21:0e:bd: bd:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:1B:28:95:AB:64:BC:5B:F7:B9:F6:28:87:D8:50:E6:41:09:5D:3A X509v3 Authority Key Identifier: keyid:BA:68:59:59:97:90:0D:ED:30:0E:99:25:70:9D:A6:27:E9:3F:36:3A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/umhZWZeQDe0wDpklcJ2mJ-k_Njo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/472a4d-fcae-4454-9967-02ded9b2e0c9/1/umhZWZeQDe0wDpklcJ2mJ-k_Njo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 20:68:02:92:b4:8b:92:a7:02:c7:48:50:d0:1f:56:57:02:60: 9b:a5:82:e4:71:c3:4d:9f:c5:3c:6f:4a:26:7d:c8:10:2f:bd: 0d:a7:8c:df:48:21:08:50:25:1b:0a:9c:ce:98:d0:bb:b1:55: fb:e6:c5:01:3e:c9:63:79:20:2a:d5:a8:52:b7:21:72:2c:55: 9f:16:63:96:dc:97:4b:cb:ed:03:05:ec:b8:60:8d:65:3e:36: c3:58:11:29:21:32:69:06:2e:2b:b4:80:5a:d1:c1:83:16:af: 66:f5:78:ad:7b:4f:60:88:29:f5:08:b1:36:63:d9:e1:95:bb: 26:43:07:2c:a7:52:31:80:af:de:b6:74:26:74:0b:49:9f:c8: 1f:91:e1:26:0b:47:b1:c9:cb:58:04:d5:1c:0f:9e:17:d0:d5: a7:45:2c:b6:0d:4a:13:10:2e:7e:88:85:df:51:5d:ed:b3:71: e9:32:7f:70:86:12:0e:76:f2:85:0a:2c:0a:c0:b4:5b:22:39: 16:fc:1c:79:cd:cf:8f:d6:c0:cf:d9:49:59:65:10:3b:01:a1: 0a:d7:ff:53:53:1d:d7:74:43:b7:7b:5f:fd:34:f0:c8:80:e1: 86:54:a9:8f:1f:00:55:68:c6:ea:9e:e2:d4:35:b3:54:40:8b: e3:06:d9:5c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZszDQSiMOAig+qJIPKgkaBPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhNjg1OTU5OTc5MDBkZWQzMDBlOTkyNTcwOWRhNjI3ZTkz ZjM2M2EwHhcNMjUxMjE4MjAwMDQ5WhcNMjUxMjE5MjAwMDQ5WjAzMTEwLwYDVQQD EyhkNzFiMjg5NWFiNjRiYzViZjdiOWY2Mjg4N2Q4NTBlNjQxMDk1ZDNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt8l1JztF4XC41VKP1cGZ7IZNcSFo a7Yc3L85uoFObHK+kU9CKR2r8fHVjYVuAk3FB/jEUd2CBwLkXw6DxKlN3hWIsHkO owOE7vEMWRXyH0VbOjEuKfarWfNLF8zBeHUiEiBRuWpDFtHTk8yDysjonoIGaUFu tqrYwlDQduuuH4kZoAHpKs3UQFO1oU3JKeKvn9i/ZUUpbinXhH685PoKC/iQc2uD TOqtz4rmjRHQDb+46hRvdlRmJZ/awlwUPAYuvqYNoPGecMZeoVUg70m8pD+0EUKk JDgfCCyGVpi3vLM6SIqCvHXxldjl1yFLhyWSDHsjUhVrqSpj27EhDr29HQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNcbKJWrZLxb97n2KIfYUOZBCV06MB8GA1UdIwQY MBaAFLpoWVmXkA3tMA6ZJXCdpifpPzY6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdW1oWldaZVFEZTB3RHBrbGNKMm1KLWtfTmpvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS80NzJhNGQtZmNhZS00NDU0LTk5Njct MDJkZWQ5YjJlMGM5LzEvdW1oWldaZVFEZTB3RHBrbGNKMm1KLWtfTmpvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZS80NzJhNGQtZmNhZS00NDU0LTk5NjctMDJkZWQ5YjJlMGM5 LzEvdW1oWldaZVFEZTB3RHBrbGNKMm1KLWtfTmpvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIGgCkrSL kqcCx0hQ0B9WVwJgm6WC5HHDTZ/FPG9KJn3IEC+9DaeM30ghCFAlGwqczpjQu7FV ++bFAT7JY3kgKtWoUrchcixVnxZjltyXS8vtAwXsuGCNZT42w1gRKSEyaQYuK7SA WtHBgxavZvV4rXtPYIgp9QixNmPZ4ZW7JkMHLKdSMYCv3rZ0JnQLSZ/IH5HhJgtH scnLWATVHA+eF9DVp0Ustg1KExAufoiF31Fd7bNx6TJ/cIYSDnbyhQosCsC0WyI5 Fvwcec3Pj9bAz9lJWWUQOwGhCtf/U1Md13RDt3tf/TTwyIDhhlSpjx8AVWjG6p7i 1DWzVECL4wbZXA== -----END CERTIFICATE-----Generated at Thu Dec 18 23:28:10 2025 by rpki-client