This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/ubNQoK4y5z5mDEFsPxQG7dNhX4I.mft File: ubNQoK4y5z5mDEFsPxQG7dNhX4I.mft (raw, json) Hash identifier: kJ6dhjnlBE9csQyYsM687WINWxSTH15Gp7kV3AuaCKI= Subject key identifier: 0D:F3:1D:75:17:A6:4C:96:9B:CF:79:B6:5D:33:56:BA:C5:66:DB:58 Authority key identifier: B9:B3:50:A0:AE:32:E7:3E:66:0C:41:6C:3F:14:06:ED:D3:61:5F:82 Certificate issuer: /CN=b9b350a0ae32e73e660c416c3f1406edd3615f82 Certificate serial: 019AF20935933C6EFAA4CF3E9AFD8D49DF57 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ubNQoK4y5z5mDEFsPxQG7dNhX4I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/ubNQoK4y5z5mDEFsPxQG7dNhX4I.mft Manifest number: 1763 Signing time: Sat 06 Dec 2025 05:01:21 +0000 Manifest this update: Sat 06 Dec 2025 05:01:21 +0000 Manifest next update: Sun 07 Dec 2025 05:01:21 +0000 Files and hashes: 1: 1-Ww6_zY-cf4_pNxKQtK1P8fP1C0.roa (hash: 0TcdfQeJAJLEnkaZYWVb8FupumHFnMsYWXGkxyczS0s=) 2: 83sJuzNcyjAJmIRil7l88NYWBMA.roa (hash: MJ5oBVNNCDLPnHeShHSTHYAAvYpJCfm/fRpbcBOIwJQ=) 3: AH8YfsuwJx0af1H6sw2nAIpol7g.roa (hash: QB8f2OrNQnT+GeqYmkp8zb67UdxInw+pNReppkRi83M=) 4: GqlBEeTH2BeoRvE11HJ8GrZqFDE.roa (hash: naav5Y+vpoLFfuKrSX9+iKGyQaheX7homqtPr9pYrkM=) 5: NJ2TGhxbE7k4-OWyg3tajojbLFw.roa (hash: CTFiHd29yRwltG28gbz8+HiRp4EgXhGthGX6E8wzrhc=) 6: sqZ6AtAoscTLuSbJUsk3W14dTDk.roa (hash: 5N6Dz7LxTX6s/W6RwvFwXOBJJhCL1Lo6JqWUSH17UMs=) 7: ubNQoK4y5z5mDEFsPxQG7dNhX4I.crl (hash: 1lQRDV2P6jkVYAka3mWZ1GbKyjpO8B/tYBGGxL8CPJc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/ubNQoK4y5z5mDEFsPxQG7dNhX4I.crl rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/ubNQoK4y5z5mDEFsPxQG7dNhX4I.mft rsync://rpki.ripe.net/repository/DEFAULT/ubNQoK4y5z5mDEFsPxQG7dNhX4I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:35:93:3c:6e:fa:a4:cf:3e:9a:fd:8d:49:df:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b9b350a0ae32e73e660c416c3f1406edd3615f82 Validity Not Before: Dec 6 05:01:21 2025 GMT Not After : Dec 7 05:01:21 2025 GMT Subject: CN=0df31d7517a64c969bcf79b65d3356bac566db58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ea:c1:d3:6e:02:22:58:a9:4c:2e:ea:8c:b0: 10:cc:57:1d:99:9a:ff:ff:65:e2:31:46:6a:b3:8d: 27:67:29:17:12:e8:9b:4c:a1:ce:4b:4d:66:57:52: b8:67:92:a8:db:42:cd:b6:7e:75:55:83:2c:3b:11: d2:69:3a:d5:60:aa:92:09:64:e4:0f:99:ac:04:0f: 23:7d:75:0f:74:46:85:5e:21:cc:35:e5:2c:5c:57: 23:13:96:3a:20:f2:f2:3c:c5:bf:8e:92:3f:a9:91: 6e:af:19:83:b0:ac:a5:31:c6:90:ff:36:3d:62:49: cc:22:01:0b:99:95:6a:26:7b:e2:9d:a1:74:da:40: ab:45:5e:a6:61:f1:b3:bb:1c:bf:b1:82:13:10:fb: 57:c4:62:81:ef:ac:59:b0:96:5e:57:5a:47:b3:b0: 61:ef:47:e6:3e:cf:ca:55:a5:c4:b1:25:8c:7d:c4: 6b:ee:bc:af:2c:eb:23:0e:8a:ba:df:0d:95:a8:87: 25:e3:f3:34:63:43:62:16:e0:a0:28:ed:e8:fe:ef: 5d:dd:51:21:98:7b:60:92:08:f6:05:9c:3c:2e:4f: 9d:f5:bc:7a:be:61:da:a0:62:ee:c1:97:d1:04:20: 3a:73:ae:95:df:ba:85:ad:96:c4:11:c5:94:f6:cc: 9f:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:F3:1D:75:17:A6:4C:96:9B:CF:79:B6:5D:33:56:BA:C5:66:DB:58 X509v3 Authority Key Identifier: keyid:B9:B3:50:A0:AE:32:E7:3E:66:0C:41:6C:3F:14:06:ED:D3:61:5F:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ubNQoK4y5z5mDEFsPxQG7dNhX4I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/ubNQoK4y5z5mDEFsPxQG7dNhX4I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/ubNQoK4y5z5mDEFsPxQG7dNhX4I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3e:c5:ca:91:05:c6:1b:b6:f7:47:39:74:b2:1f:8c:ef:36:e7: 15:b2:fd:37:a2:54:d9:d9:8f:40:29:69:81:46:ea:3f:05:b1: 47:fd:dc:fa:6c:ef:1c:86:a9:c0:8d:6a:94:f7:62:ad:b1:e0: 78:e7:d5:bb:38:42:04:49:bb:6a:5a:90:07:65:d4:c2:9b:74: 24:6c:5c:94:da:c3:a3:3a:ad:5b:fc:9b:11:ea:4f:4f:6b:f6: 4c:43:9a:30:f0:e1:03:20:9b:c3:cd:9e:37:dd:57:40:20:fe: a8:3e:a4:82:61:90:a3:ab:ff:35:6a:fa:d3:24:33:2d:19:1b: 11:f9:95:91:83:0c:30:7e:88:49:56:4e:b6:c9:82:81:c0:e7: 57:9b:91:00:13:3f:03:4e:f8:36:41:15:78:83:ef:7d:cd:b5: b5:e2:08:e2:e9:b2:47:5a:fe:6e:0d:ca:82:c7:9c:00:a4:5a: e8:bb:54:82:e8:4f:cc:ce:a5:8a:c4:b7:e4:7b:10:dd:99:01: 33:38:bd:5f:8a:09:ed:1c:cb:d6:30:e6:28:41:60:34:b3:05: 70:4f:10:b2:99:62:94:0a:8b:4e:51:e5:3c:16:6e:cf:4b:20: 8d:a4:07:8e:94:3f:1d:d7:c8:96:53:4e:f0:e7:2b:c7:57:46: 86:3c:ef:fc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCTWTPG76pM8+mv2NSd9XMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI5YjM1MGEwYWUzMmU3M2U2NjBjNDE2YzNmMTQwNmVkZDM2 MTVmODIwHhcNMjUxMjA2MDUwMTIxWhcNMjUxMjA3MDUwMTIxWjAzMTEwLwYDVQQD EygwZGYzMWQ3NTE3YTY0Yzk2OWJjZjc5YjY1ZDMzNTZiYWM1NjZkYjU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyurB024CIlipTC7qjLAQzFcdmZr/ /2XiMUZqs40nZykXEuibTKHOS01mV1K4Z5Ko20LNtn51VYMsOxHSaTrVYKqSCWTk D5msBA8jfXUPdEaFXiHMNeUsXFcjE5Y6IPLyPMW/jpI/qZFurxmDsKylMcaQ/zY9 YknMIgELmZVqJnvinaF02kCrRV6mYfGzuxy/sYITEPtXxGKB76xZsJZeV1pHs7Bh 70fmPs/KVaXEsSWMfcRr7ryvLOsjDoq63w2VqIcl4/M0Y0NiFuCgKO3o/u9d3VEh mHtgkgj2BZw8Lk+d9bx6vmHaoGLuwZfRBCA6c66V37qFrZbEEcWU9syfrQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA3zHXUXpkyWm895tl0zVrrFZttYMB8GA1UdIwQY MBaAFLmzUKCuMuc+ZgxBbD8UBu3TYV+CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdWJOUW9LNHk1ejVtREVGc1B4UUc3ZE5oWDRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS82MjdlNjAtMDBhNi00ZDI2LWI5M2Et ZWY3M2I3YjRjYTNjLzEvdWJOUW9LNHk1ejVtREVGc1B4UUc3ZE5oWDRJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMS82MjdlNjAtMDBhNi00ZDI2LWI5M2EtZWY3M2I3YjRjYTNj LzEvdWJOUW9LNHk1ejVtREVGc1B4UUc3ZE5oWDRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPsXKkQXG G7b3Rzl0sh+M7zbnFbL9N6JU2dmPQClpgUbqPwWxR/3c+mzvHIapwI1qlPdirbHg eOfVuzhCBEm7alqQB2XUwpt0JGxclNrDozqtW/ybEepPT2v2TEOaMPDhAyCbw82e N91XQCD+qD6kgmGQo6v/NWr60yQzLRkbEfmVkYMMMH6ISVZOtsmCgcDnV5uRABM/ A074NkEVeIPvfc21teII4umyR1r+bg3KgsecAKRa6LtUguhPzM6lisS35HsQ3ZkB Mzi9X4oJ7RzL1jDmKEFgNLMFcE8QsplilAqLTlHlPBZuz0sgjaQHjpQ/HdfIllNO 8Ocrx1dGhjzv/A== -----END CERTIFICATE-----Generated at Sat Dec 6 11:22:18 2025 by rpki-client