This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/688ce0-10ec-4937-9443-1b20454a2862/1/ulPKGOOgSNWfps9ZZnz9OaBXlz4.mft File: ulPKGOOgSNWfps9ZZnz9OaBXlz4.mft (raw, json) Hash identifier: DuTBtbUmyJ5cCGSQ9hRHMubBzYAbgxGqgV8GhqeOGYE= Subject key identifier: A3:76:D5:87:70:6D:3A:69:A2:38:24:81:4A:2D:BC:88:8D:C5:C6:60 Authority key identifier: BA:53:CA:18:E3:A0:48:D5:9F:A6:CF:59:66:7C:FD:39:A0:57:97:3E Certificate issuer: /CN=ba53ca18e3a048d59fa6cf59667cfd39a057973e Certificate serial: 019AF12E50C3A3D55B24F8693B794CE9572C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ulPKGOOgSNWfps9ZZnz9OaBXlz4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/688ce0-10ec-4937-9443-1b20454a2862/1/ulPKGOOgSNWfps9ZZnz9OaBXlz4.mft Manifest number: 111E Signing time: Sat 06 Dec 2025 01:02:15 +0000 Manifest this update: Sat 06 Dec 2025 01:02:15 +0000 Manifest next update: Sun 07 Dec 2025 01:02:15 +0000 Files and hashes: 1: ulPKGOOgSNWfps9ZZnz9OaBXlz4.crl (hash: xag2MA4nNflMoDUaBxrDLYC7mvR6V8LFTUjb2eNc4sc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/688ce0-10ec-4937-9443-1b20454a2862/1/ulPKGOOgSNWfps9ZZnz9OaBXlz4.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/688ce0-10ec-4937-9443-1b20454a2862/1/ulPKGOOgSNWfps9ZZnz9OaBXlz4.mft rsync://rpki.ripe.net/repository/DEFAULT/ulPKGOOgSNWfps9ZZnz9OaBXlz4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:50:c3:a3:d5:5b:24:f8:69:3b:79:4c:e9:57:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba53ca18e3a048d59fa6cf59667cfd39a057973e Validity Not Before: Dec 6 01:02:15 2025 GMT Not After : Dec 7 01:02:15 2025 GMT Subject: CN=a376d587706d3a69a23824814a2dbc888dc5c660 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:92:30:8f:c7:d8:16:b1:28:9f:64:be:bd:8a: f9:a0:b3:20:55:bc:98:c0:3c:9d:dc:94:fe:cf:81: 3f:c4:b0:26:bf:9a:2d:30:0e:09:cd:19:d2:96:cc: f1:1d:4e:aa:cb:b9:ed:27:bb:60:07:83:2e:ea:5d: f4:5e:a9:07:74:dc:55:2b:ee:d6:72:c1:1a:7f:45: 43:32:da:cd:08:8f:dd:49:21:21:70:a0:34:85:8c: 90:77:6e:f2:dc:3a:86:b0:40:b5:20:f7:61:5b:d5: 1b:a1:d2:c9:e3:1d:7b:4f:f7:7c:8d:ac:06:d8:83: 92:68:f5:82:f1:7a:6a:0a:03:6d:75:d5:c8:7a:05: 3b:87:0b:30:de:50:1e:bd:92:58:0b:9e:54:d7:fb: f3:c1:4a:a8:0f:b6:2f:16:b1:d2:97:f8:6a:ef:b3: 7f:3e:65:f8:1e:64:36:d5:3a:51:50:68:81:78:8e: ca:01:9c:13:b4:a0:5c:06:0b:9a:c5:a0:ea:5b:da: d9:ce:a8:d5:e0:f4:a6:4e:04:ce:15:7d:b1:e4:24: 7b:d4:67:e2:a5:77:de:47:02:43:d5:35:85:85:2c: fc:2a:ec:3e:d9:a8:7d:f6:c2:90:f9:2c:e2:de:e4: 96:39:90:5c:e6:34:2e:a8:77:61:a0:3b:9b:56:00: 11:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:76:D5:87:70:6D:3A:69:A2:38:24:81:4A:2D:BC:88:8D:C5:C6:60 X509v3 Authority Key Identifier: keyid:BA:53:CA:18:E3:A0:48:D5:9F:A6:CF:59:66:7C:FD:39:A0:57:97:3E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ulPKGOOgSNWfps9ZZnz9OaBXlz4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/688ce0-10ec-4937-9443-1b20454a2862/1/ulPKGOOgSNWfps9ZZnz9OaBXlz4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/688ce0-10ec-4937-9443-1b20454a2862/1/ulPKGOOgSNWfps9ZZnz9OaBXlz4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2d:b5:c2:fc:bb:2c:c3:93:45:1e:01:62:95:af:91:fc:f7:54: 7b:d6:c7:76:03:3c:f6:b4:43:92:00:ed:e8:e3:81:0b:2c:56: bc:f4:65:8c:19:ee:50:eb:82:fa:dd:7c:66:54:78:ea:e6:f3: 4e:24:e2:30:dc:ca:f0:4f:9d:13:d9:b9:f7:a5:bd:2d:d5:6e: e0:f7:87:99:c6:27:32:e5:7d:e4:52:9c:77:91:f7:92:5c:e6: a8:71:16:fe:db:64:0c:dc:46:83:b5:c2:a7:ad:dc:16:d0:fb: 97:18:9b:21:0f:b4:a1:5a:93:92:f3:d1:73:d7:38:d7:ab:1d: de:7d:22:c0:79:2e:6d:45:77:27:a2:b7:20:a0:fb:ae:a0:32: 15:6e:ee:cb:cb:8b:c1:05:90:36:a9:4d:5c:bf:dc:d9:9b:ed: d5:f6:fd:7d:b7:9c:59:fe:36:ac:2c:17:4e:f7:bd:a4:a3:d0: 79:f2:09:fb:e2:73:6f:bf:d5:de:c3:45:03:d2:e4:dd:d7:2b: 45:f0:d7:d3:80:48:d6:ee:57:3c:ba:ca:01:6b:0f:5b:09:85: d4:d8:94:94:20:da:1d:fc:5d:e0:34:f1:e7:51:6e:dc:bf:bc: e2:a9:03:e1:26:93:cd:94:1e:6c:28:70:ee:e3:de:73:49:ef: 04:8e:d5:76 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLlDDo9VbJPhpO3lM6VcsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhNTNjYTE4ZTNhMDQ4ZDU5ZmE2Y2Y1OTY2N2NmZDM5YTA1 Nzk3M2UwHhcNMjUxMjA2MDEwMjE1WhcNMjUxMjA3MDEwMjE1WjAzMTEwLwYDVQQD EyhhMzc2ZDU4NzcwNmQzYTY5YTIzODI0ODE0YTJkYmM4ODhkYzVjNjYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtZIwj8fYFrEon2S+vYr5oLMgVbyY wDyd3JT+z4E/xLAmv5otMA4JzRnSlszxHU6qy7ntJ7tgB4Mu6l30XqkHdNxVK+7W csEaf0VDMtrNCI/dSSEhcKA0hYyQd27y3DqGsEC1IPdhW9UbodLJ4x17T/d8jawG 2IOSaPWC8XpqCgNtddXIegU7hwsw3lAevZJYC55U1/vzwUqoD7YvFrHSl/hq77N/ PmX4HmQ21TpRUGiBeI7KAZwTtKBcBguaxaDqW9rZzqjV4PSmTgTOFX2x5CR71Gfi pXfeRwJD1TWFhSz8Kuw+2ah99sKQ+Szi3uSWOZBc5jQuqHdhoDubVgARXQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKN21YdwbTppojgkgUotvIiNxcZgMB8GA1UdIwQY MBaAFLpTyhjjoEjVn6bPWWZ8/TmgV5c+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdWxQS0dPT2dTTldmcHM5WlpuejlPYUJYbHo0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS82ODhjZTAtMTBlYy00OTM3LTk0NDMt MWIyMDQ1NGEyODYyLzEvdWxQS0dPT2dTTldmcHM5WlpuejlPYUJYbHo0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS82ODhjZTAtMTBlYy00OTM3LTk0NDMtMWIyMDQ1NGEyODYy LzEvdWxQS0dPT2dTTldmcHM5WlpuejlPYUJYbHo0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALbXC/Lss w5NFHgFila+R/PdUe9bHdgM89rRDkgDt6OOBCyxWvPRljBnuUOuC+t18ZlR46ubz TiTiMNzK8E+dE9m596W9LdVu4PeHmcYnMuV95FKcd5H3klzmqHEW/ttkDNxGg7XC p63cFtD7lxibIQ+0oVqTkvPRc9c416sd3n0iwHkubUV3J6K3IKD7rqAyFW7uy8uL wQWQNqlNXL/c2Zvt1fb9fbecWf42rCwXTve9pKPQefIJ++Jzb7/V3sNFA9Lk3dcr RfDX04BI1u5XPLrKAWsPWwmF1NiUlCDaHfxd4DTx51Fu3L+84qkD4SaTzZQebChw 7uPec0nvBI7Vdg== -----END CERTIFICATE-----Generated at Sat Dec 6 08:31:07 2025 by rpki-client