This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.mft File: uv5tfV8eRHjRoCUXHaawObJjAR8.mft (raw, json) Hash identifier: 5pMwVp+RBBM9HYTUn7R/jbH+BmFBZ6TpHBxoeqwduio= Subject key identifier: 0B:83:7D:B3:91:8D:D1:C2:8A:97:F8:7D:1D:13:E5:9B:11:E1:44:BA Authority key identifier: BA:FE:6D:7D:5F:1E:44:78:D1:A0:25:17:1D:A6:B0:39:B2:63:01:1F Certificate issuer: /CN=bafe6d7d5f1e4478d1a025171da6b039b263011f Certificate serial: 019AF31C3FBFEC1AFC7EABD720D15DFD432F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uv5tfV8eRHjRoCUXHaawObJjAR8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.mft Manifest number: 0B05 Signing time: Sat 06 Dec 2025 10:01:45 +0000 Manifest this update: Sat 06 Dec 2025 10:01:45 +0000 Manifest next update: Sun 07 Dec 2025 10:01:45 +0000 Files and hashes: 1: uv5tfV8eRHjRoCUXHaawObJjAR8.crl (hash: +ay/+ftqakDZfpYDAK+H4+S/2kdbM6gI44FUA8MdrpY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.crl rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.mft rsync://rpki.ripe.net/repository/DEFAULT/uv5tfV8eRHjRoCUXHaawObJjAR8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1c:3f:bf:ec:1a:fc:7e:ab:d7:20:d1:5d:fd:43:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bafe6d7d5f1e4478d1a025171da6b039b263011f Validity Not Before: Dec 6 10:01:45 2025 GMT Not After : Dec 7 10:01:45 2025 GMT Subject: CN=0b837db3918dd1c28a97f87d1d13e59b11e144ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:2a:40:9b:a7:98:fa:44:5c:77:0e:75:13:bc: d1:10:88:5e:df:a3:32:c0:21:b1:70:be:58:fb:26: 3e:22:03:df:03:b9:e0:2d:91:fe:ac:1f:2f:02:ee: 8a:f0:16:af:9b:12:df:5b:e9:3c:f7:6b:f0:dd:ba: cb:f1:d0:e1:5a:7c:58:6c:6b:25:36:27:fd:d4:2b: 36:7a:15:18:35:d8:d9:9a:02:59:6f:7a:d6:c0:e4: d2:81:81:b7:81:c6:25:ec:17:57:68:51:ea:a8:19: ec:3b:2e:bb:19:be:97:67:60:8c:51:a1:ca:ff:33: 90:fc:d7:dd:93:86:47:b3:3c:72:38:48:54:72:6d: 7a:d8:eb:41:14:05:e9:e4:60:c6:73:76:29:3f:f6: d3:14:e9:cc:7d:19:aa:27:11:27:fc:56:f7:c5:15: 48:f5:7d:d5:3c:28:38:85:bd:fb:33:e7:35:a2:7c: 10:e1:1a:e5:5d:59:64:7f:78:39:de:cd:f9:c9:31: 05:c6:64:e5:ba:f2:0f:37:70:f7:6b:bc:fa:d2:28: 01:28:6e:92:63:5c:67:37:83:b6:2e:14:70:e1:f3: 96:c6:1a:db:45:fd:1f:6a:4b:b5:71:67:d8:2d:3f: 6e:cf:db:a0:22:63:46:12:4f:0d:d0:08:cb:47:db: fb:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:83:7D:B3:91:8D:D1:C2:8A:97:F8:7D:1D:13:E5:9B:11:E1:44:BA X509v3 Authority Key Identifier: keyid:BA:FE:6D:7D:5F:1E:44:78:D1:A0:25:17:1D:A6:B0:39:B2:63:01:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uv5tfV8eRHjRoCUXHaawObJjAR8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 52:a7:cb:4e:72:d2:4a:85:44:29:cd:1d:f9:9a:67:df:75:7c: 38:90:1e:43:1f:8d:ea:5a:9c:9d:8a:e7:08:58:77:3b:fd:e6: 23:20:0e:89:28:70:a1:21:d0:00:89:8d:9f:22:5f:fd:f8:e5: 95:8d:52:2b:2e:b6:e4:9d:24:a3:e2:b7:11:b1:42:fb:83:6c: 28:93:4d:3e:49:f4:54:52:dc:9b:c6:37:84:4d:e1:19:84:5e: 0b:b1:0a:96:14:54:42:4e:5a:df:a0:3d:25:8c:53:2d:71:3d: 31:9b:d2:f3:2e:e7:84:f1:e8:a0:16:6d:cf:10:c9:5a:aa:02: e1:c0:97:6c:dd:a8:e6:8c:02:f5:a9:b4:44:9a:a6:6d:6d:e6: 99:44:ea:18:a5:3f:59:f4:4f:fc:22:68:6d:40:63:b7:92:26: b2:0b:0c:a7:c7:2a:85:54:8f:0b:82:62:6c:c4:a0:6c:bb:81: bf:bd:ea:17:8c:41:b9:6e:db:2b:3d:e1:9d:00:3b:62:94:79: 31:7b:49:28:d3:ca:ec:22:78:ca:47:f0:6f:9d:72:f7:2a:01: e5:35:51:3f:2a:6d:15:c7:ca:4b:2d:f8:4f:8e:4c:de:9b:ae: 83:f1:4d:ca:dd:08:fc:c0:3c:d2:82:3d:ca:4d:68:07:28:5a: 7a:99:e7:04 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHD+/7Br8fqvXINFd/UMvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhZmU2ZDdkNWYxZTQ0NzhkMWEwMjUxNzFkYTZiMDM5YjI2 MzAxMWYwHhcNMjUxMjA2MTAwMTQ1WhcNMjUxMjA3MTAwMTQ1WjAzMTEwLwYDVQQD EygwYjgzN2RiMzkxOGRkMWMyOGE5N2Y4N2QxZDEzZTU5YjExZTE0NGJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqSpAm6eY+kRcdw51E7zREIhe36My wCGxcL5Y+yY+IgPfA7ngLZH+rB8vAu6K8BavmxLfW+k892vw3brL8dDhWnxYbGsl Nif91Cs2ehUYNdjZmgJZb3rWwOTSgYG3gcYl7BdXaFHqqBnsOy67Gb6XZ2CMUaHK /zOQ/Nfdk4ZHszxyOEhUcm162OtBFAXp5GDGc3YpP/bTFOnMfRmqJxEn/Fb3xRVI 9X3VPCg4hb37M+c1onwQ4RrlXVlkf3g53s35yTEFxmTluvIPN3D3a7z60igBKG6S Y1xnN4O2LhRw4fOWxhrbRf0faku1cWfYLT9uz9ugImNGEk8N0AjLR9v7+wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAuDfbORjdHCipf4fR0T5ZsR4US6MB8GA1UdIwQY MBaAFLr+bX1fHkR40aAlFx2msDmyYwEfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdXY1dGZWOGVSSGpSb0NVWEhhYXdPYkpqQVI4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS85ZmY4NmMtMWY3Yi00YmM3LTk3NmEt ZGZiNzliYmExYjY4LzEvdXY1dGZWOGVSSGpSb0NVWEhhYXdPYkpqQVI4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS85ZmY4NmMtMWY3Yi00YmM3LTk3NmEtZGZiNzliYmExYjY4 LzEvdXY1dGZWOGVSSGpSb0NVWEhhYXdPYkpqQVI4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUqfLTnLS SoVEKc0d+Zpn33V8OJAeQx+N6lqcnYrnCFh3O/3mIyAOiShwoSHQAImNnyJf/fjl lY1SKy625J0ko+K3EbFC+4NsKJNNPkn0VFLcm8Y3hE3hGYReC7EKlhRUQk5a36A9 JYxTLXE9MZvS8y7nhPHooBZtzxDJWqoC4cCXbN2o5owC9am0RJqmbW3mmUTqGKU/ WfRP/CJobUBjt5ImsgsMp8cqhVSPC4JibMSgbLuBv73qF4xBuW7bKz3hnQA7YpR5 MXtJKNPK7CJ4ykfwb51y9yoB5TVRPyptFcfKSy34T45M3puug/FNyt0I/MA80oI9 yk1oByhaepnnBA== -----END CERTIFICATE-----Generated at Sat Dec 6 14:59:30 2025 by rpki-client