This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.mft File: unnFAIApfLnMDMk07jifUMPnPUo.mft (raw, json) Hash identifier: uctnao9BDGHywBE+l0yuCViLQVvc//aizg+BtCx/Mm4= Subject key identifier: F3:C0:BB:96:87:ED:46:89:56:93:B2:D1:B5:5E:33:01:B1:1D:22:62 Authority key identifier: BA:79:C5:00:80:29:7C:B9:CC:0C:C9:34:EE:38:9F:50:C3:E7:3D:4A Certificate issuer: /CN=ba79c50080297cb9cc0cc934ee389f50c3e73d4a Certificate serial: 019AF50A970592A5744834D64B6961A8A78E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/unnFAIApfLnMDMk07jifUMPnPUo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.mft Manifest number: 0631 Signing time: Sat 06 Dec 2025 19:01:43 +0000 Manifest this update: Sat 06 Dec 2025 19:01:43 +0000 Manifest next update: Sun 07 Dec 2025 19:01:43 +0000 Files and hashes: 1: CpPRk_TNW4CH4jbImpFoaI2OcL4.roa (hash: eYYsy6V5aRdmdwv40uWtw/bgoED55t23eDlp8kMf818=) 2: unnFAIApfLnMDMk07jifUMPnPUo.crl (hash: ujSGHSME0QJT/nUrQA84cHVpgwik9f5S8BLSeSpx8lE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.crl rsync://rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.mft rsync://rpki.ripe.net/repository/DEFAULT/unnFAIApfLnMDMk07jifUMPnPUo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 19:01:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:0a:97:05:92:a5:74:48:34:d6:4b:69:61:a8:a7:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba79c50080297cb9cc0cc934ee389f50c3e73d4a Validity Not Before: Dec 6 19:01:43 2025 GMT Not After : Dec 7 19:01:43 2025 GMT Subject: CN=f3c0bb9687ed46895693b2d1b55e3301b11d2262 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:65:b6:62:3d:81:51:f2:95:19:b6:5d:ef:fd: b2:42:47:25:f3:0b:25:fb:0f:fc:75:ab:bf:ba:63: 52:86:81:8c:02:5a:66:7e:f3:bf:a6:f5:93:f1:b7: e7:75:1a:98:19:fc:cf:42:cb:b7:73:fb:06:a5:67: 1f:7a:ed:d9:8a:4b:6d:ad:1f:1e:7e:2b:81:7a:de: be:76:86:f4:41:d7:68:bf:5c:f8:ea:d1:8c:ee:9b: 24:fb:51:cc:64:0b:0a:dd:d0:ec:53:15:b6:1b:12: 19:d6:3f:c0:9b:27:ed:24:2a:51:d0:53:88:29:e1: 98:bd:f8:7a:3c:bd:6e:68:16:b4:58:20:e8:cf:3a: cd:0a:df:f6:b6:a5:8a:c7:42:6e:9e:e1:f4:70:6d: b1:16:e3:8e:cf:d2:56:53:5b:4e:38:02:f2:81:29: bb:b0:63:21:d4:26:c0:09:d1:1e:08:ec:33:ba:ff: 58:c3:35:2a:b3:b8:68:e2:ef:11:0d:79:f6:e7:a7: 99:f4:8d:6f:ff:19:b4:bd:8e:ba:ed:43:58:d3:60: 85:ac:87:9b:00:75:83:6e:3c:e4:65:b7:07:64:7c: 30:46:b1:d3:24:0e:00:78:a4:75:94:54:ac:f3:4b: af:61:a9:7f:1d:34:3a:15:c0:f3:1f:2d:68:a3:a7: 4e:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:C0:BB:96:87:ED:46:89:56:93:B2:D1:B5:5E:33:01:B1:1D:22:62 X509v3 Authority Key Identifier: keyid:BA:79:C5:00:80:29:7C:B9:CC:0C:C9:34:EE:38:9F:50:C3:E7:3D:4A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/unnFAIApfLnMDMk07jifUMPnPUo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a621a8-e079-4a14-98ba-e36a9793ea6d/1/unnFAIApfLnMDMk07jifUMPnPUo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 92:8f:7b:40:a0:f8:9e:88:40:49:36:41:c9:25:f8:27:c2:bc: 29:6f:ac:b4:21:6e:bb:bc:7f:6a:a5:3a:8b:2d:94:fb:29:a3: 13:3a:10:46:bb:27:d6:2d:18:d6:1c:8d:87:3b:e6:f2:7c:3c: 45:ef:08:c8:a9:ac:d2:ce:c6:7a:82:cf:a8:21:a7:53:b8:46: 26:bd:89:77:e9:11:78:8b:a6:8e:42:48:ab:24:56:24:eb:15: 6c:ea:e5:3a:38:bc:fe:26:12:3c:de:3a:68:55:c8:31:e7:cf: 74:47:ad:eb:ff:12:ef:16:ef:ba:a7:9d:fb:48:59:bb:0d:a4: 6a:0c:c0:21:3c:54:75:62:58:b9:a1:5e:a5:51:7a:59:33:3c: 71:a4:ed:8f:ef:3e:c4:c0:40:dc:7b:60:d7:96:77:1f:62:fd: 38:de:12:a7:81:04:a6:9b:f1:48:e4:68:8c:88:36:fa:2a:3d: 77:3d:5c:5b:33:ac:12:a5:53:fe:56:de:46:32:77:36:20:ae: 72:b6:f5:79:b9:fb:ef:39:73:11:ac:0b:b0:33:61:10:d8:eb: 5a:c9:68:0f:cf:95:3c:68:02:f9:11:ce:cf:c6:35:32:06:43: c8:43:26:3f:01:92:35:f3:4e:6a:b6:7f:e2:0e:d9:b9:9a:46: f1:39:bf:87 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1CpcFkqV0SDTWS2lhqKeOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhNzljNTAwODAyOTdjYjljYzBjYzkzNGVlMzg5ZjUwYzNl NzNkNGEwHhcNMjUxMjA2MTkwMTQzWhcNMjUxMjA3MTkwMTQzWjAzMTEwLwYDVQQD EyhmM2MwYmI5Njg3ZWQ0Njg5NTY5M2IyZDFiNTVlMzMwMWIxMWQyMjYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8mW2Yj2BUfKVGbZd7/2yQkcl8wsl +w/8dau/umNShoGMAlpmfvO/pvWT8bfndRqYGfzPQsu3c/sGpWcfeu3ZikttrR8e fiuBet6+dob0Qddov1z46tGM7psk+1HMZAsK3dDsUxW2GxIZ1j/AmyftJCpR0FOI KeGYvfh6PL1uaBa0WCDozzrNCt/2tqWKx0JunuH0cG2xFuOOz9JWU1tOOALygSm7 sGMh1CbACdEeCOwzuv9YwzUqs7ho4u8RDXn256eZ9I1v/xm0vY667UNY02CFrIeb AHWDbjzkZbcHZHwwRrHTJA4AeKR1lFSs80uvYal/HTQ6FcDzHy1oo6dODQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPPAu5aH7UaJVpOy0bVeMwGxHSJiMB8GA1UdIwQY MBaAFLp5xQCAKXy5zAzJNO44n1DD5z1KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdW5uRkFJQXBmTG5NRE1rMDdqaWZVTVBuUFVvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9hNjIxYTgtZTA3OS00YTE0LTk4YmEt ZTM2YTk3OTNlYTZkLzEvdW5uRkFJQXBmTG5NRE1rMDdqaWZVTVBuUFVvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS9hNjIxYTgtZTA3OS00YTE0LTk4YmEtZTM2YTk3OTNlYTZk LzEvdW5uRkFJQXBmTG5NRE1rMDdqaWZVTVBuUFVvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAko97QKD4 nohASTZBySX4J8K8KW+stCFuu7x/aqU6iy2U+ymjEzoQRrsn1i0Y1hyNhzvm8nw8 Re8IyKms0s7GeoLPqCGnU7hGJr2Jd+kReIumjkJIqyRWJOsVbOrlOji8/iYSPN46 aFXIMefPdEet6/8S7xbvuqed+0hZuw2kagzAITxUdWJYuaFepVF6WTM8caTtj+8+ xMBA3Htg15Z3H2L9ON4Sp4EEppvxSORojIg2+io9dz1cWzOsEqVT/lbeRjJ3NiCu crb1ebn77zlzEawLsDNhENjrWsloD8+VPGgC+RHOz8Y1MgZDyEMmPwGSNfNOarZ/ 4g7ZuZpG8Tm/hw== -----END CERTIFICATE-----Generated at Sun Dec 7 00:31:49 2025 by rpki-client