This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/4707ec-d3df-4470-92a9-69980eebc20c/1/pUqeJ1xcF4Cbj8-MD-C19jKc7u8.mft File: pUqeJ1xcF4Cbj8-MD-C19jKc7u8.mft (raw, json) Hash identifier: 6hNLpo3mFZ3itbzvCyhFLLOApwJntlmuquDVZTi2RpM= Subject key identifier: 5C:DA:A4:22:CB:45:A5:B0:E5:76:93:59:A4:B5:7E:C9:E8:A2:57:46 Authority key identifier: A5:4A:9E:27:5C:5C:17:80:9B:8F:CF:8C:0F:E0:B5:F6:32:9C:EE:EF Certificate issuer: /CN=a54a9e275c5c17809b8fcf8c0fe0b5f6329ceeef Certificate serial: 019AF31CC4883A220057B5C5A7810BCBF31C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pUqeJ1xcF4Cbj8-MD-C19jKc7u8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/4707ec-d3df-4470-92a9-69980eebc20c/1/pUqeJ1xcF4Cbj8-MD-C19jKc7u8.mft Manifest number: 107F Signing time: Sat 06 Dec 2025 10:02:19 +0000 Manifest this update: Sat 06 Dec 2025 10:02:19 +0000 Manifest next update: Sun 07 Dec 2025 10:02:19 +0000 Files and hashes: 1: pUqeJ1xcF4Cbj8-MD-C19jKc7u8.crl (hash: lOT5mlvLpGKiiY1gHCpidi3XoEqyIN+5nAPuEKFn66o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/4707ec-d3df-4470-92a9-69980eebc20c/1/pUqeJ1xcF4Cbj8-MD-C19jKc7u8.crl rsync://rpki.ripe.net/repository/DEFAULT/14/4707ec-d3df-4470-92a9-69980eebc20c/1/pUqeJ1xcF4Cbj8-MD-C19jKc7u8.mft rsync://rpki.ripe.net/repository/DEFAULT/pUqeJ1xcF4Cbj8-MD-C19jKc7u8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 10:02:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1c:c4:88:3a:22:00:57:b5:c5:a7:81:0b:cb:f3:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a54a9e275c5c17809b8fcf8c0fe0b5f6329ceeef Validity Not Before: Dec 6 10:02:19 2025 GMT Not After : Dec 7 10:02:19 2025 GMT Subject: CN=5cdaa422cb45a5b0e5769359a4b57ec9e8a25746 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:76:c4:0e:e4:df:db:9f:35:b8:0b:aa:96:b2: 41:1c:19:14:83:ec:2d:fe:00:35:5c:1c:4d:6a:64: 56:35:f6:68:ea:c3:66:0d:84:e5:4a:48:2e:3a:fd: bf:80:16:60:45:41:39:92:0c:8b:b5:93:6f:22:86: 8b:66:3b:17:6a:0d:45:50:ab:0b:d3:f1:7a:51:bf: b4:f6:59:fb:78:df:26:f3:a6:9b:a1:8c:df:21:11: 39:fa:a1:0a:af:7a:b3:7e:a3:38:26:7e:4e:d8:87: 08:44:87:37:a5:ab:76:de:d8:dc:cc:ce:38:a4:15: ea:36:d3:41:8f:6b:ba:89:cd:9f:1b:c8:95:89:ee: 88:e0:cc:39:ab:8b:97:ac:30:e1:2f:21:90:6c:89: 36:c4:90:47:da:a0:66:2f:b6:70:cc:37:77:89:ee: 9b:a5:d5:88:36:3e:19:77:86:df:ab:c3:7f:48:db: 3c:e6:2b:72:b2:6e:22:c5:af:93:56:45:28:a3:9c: da:75:16:e5:66:d4:69:2e:4d:bb:fd:85:e9:40:a4: 3d:48:11:21:2c:1a:a5:04:73:d1:00:b6:d9:0c:58: a9:b5:1a:24:7d:2f:ed:5b:16:91:0d:9d:59:32:26: 66:5b:48:fa:d6:fd:90:c1:6a:5c:a3:ac:0a:aa:7d: 85:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:DA:A4:22:CB:45:A5:B0:E5:76:93:59:A4:B5:7E:C9:E8:A2:57:46 X509v3 Authority Key Identifier: keyid:A5:4A:9E:27:5C:5C:17:80:9B:8F:CF:8C:0F:E0:B5:F6:32:9C:EE:EF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pUqeJ1xcF4Cbj8-MD-C19jKc7u8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/4707ec-d3df-4470-92a9-69980eebc20c/1/pUqeJ1xcF4Cbj8-MD-C19jKc7u8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/4707ec-d3df-4470-92a9-69980eebc20c/1/pUqeJ1xcF4Cbj8-MD-C19jKc7u8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 30:bb:8c:b8:66:c1:a4:35:9a:8e:14:4f:7a:ba:dd:70:bc:0b: fe:2e:d0:1b:a9:ff:bc:00:d7:1b:59:bd:b4:01:da:df:3a:38: 9a:39:60:c3:46:b5:53:dd:28:1d:28:64:da:de:77:2e:86:93: aa:b4:8a:ac:96:5b:2a:c5:54:0a:22:08:01:74:88:6f:71:52: c2:84:3e:a5:f5:83:bc:e1:ca:a4:03:27:0e:bf:6e:13:0b:90: a4:4d:4e:6b:64:f8:a3:a6:4e:9e:3e:15:76:cc:59:23:7d:f6: 36:c7:a7:b8:2b:d3:36:36:6a:62:56:05:85:23:05:a9:71:2f: 93:d0:34:da:fe:bb:90:60:cf:03:13:67:74:48:1f:a4:ca:6c: 18:96:5d:f2:b3:83:6f:bc:64:93:9e:fa:7c:b9:d7:a6:dc:46: d0:4b:94:70:2c:8e:b0:39:f0:00:47:cb:3d:68:9a:71:09:87: e6:70:e0:19:16:cf:c1:19:85:1a:5b:62:fc:42:5e:9c:2e:55: 70:82:72:ab:ae:6d:f8:f5:e6:bd:49:3f:48:67:9e:81:8a:72: 2f:4e:34:a2:02:48:c0:c9:4f:23:b8:ac:dc:8f:3f:7d:a6:7a: ad:69:5e:c0:58:97:07:6b:67:75:12:04:d4:0d:ff:7f:cf:05: 95:b7:74:f4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHMSIOiIAV7XFp4ELy/McMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE1NGE5ZTI3NWM1YzE3ODA5YjhmY2Y4YzBmZTBiNWY2MzI5 Y2VlZWYwHhcNMjUxMjA2MTAwMjE5WhcNMjUxMjA3MTAwMjE5WjAzMTEwLwYDVQQD Eyg1Y2RhYTQyMmNiNDVhNWIwZTU3NjkzNTlhNGI1N2VjOWU4YTI1NzQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxnbEDuTf2581uAuqlrJBHBkUg+wt /gA1XBxNamRWNfZo6sNmDYTlSkguOv2/gBZgRUE5kgyLtZNvIoaLZjsXag1FUKsL 0/F6Ub+09ln7eN8m86aboYzfIRE5+qEKr3qzfqM4Jn5O2IcIRIc3pat23tjczM44 pBXqNtNBj2u6ic2fG8iVie6I4Mw5q4uXrDDhLyGQbIk2xJBH2qBmL7ZwzDd3ie6b pdWINj4Zd4bfq8N/SNs85itysm4ixa+TVkUoo5zadRblZtRpLk27/YXpQKQ9SBEh LBqlBHPRALbZDFiptRokfS/tWxaRDZ1ZMiZmW0j61v2QwWpco6wKqn2FsQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFzapCLLRaWw5XaTWaS1fsnooldGMB8GA1UdIwQY MBaAFKVKnidcXBeAm4/PjA/gtfYynO7vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcFVxZUoxeGNGNENiajgtTUQtQzE5aktjN3U4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC80NzA3ZWMtZDNkZi00NDcwLTkyYTkt Njk5ODBlZWJjMjBjLzEvcFVxZUoxeGNGNENiajgtTUQtQzE5aktjN3U4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC80NzA3ZWMtZDNkZi00NDcwLTkyYTktNjk5ODBlZWJjMjBj LzEvcFVxZUoxeGNGNENiajgtTUQtQzE5aktjN3U4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMLuMuGbB pDWajhRPerrdcLwL/i7QG6n/vADXG1m9tAHa3zo4mjlgw0a1U90oHShk2t53LoaT qrSKrJZbKsVUCiIIAXSIb3FSwoQ+pfWDvOHKpAMnDr9uEwuQpE1Oa2T4o6ZOnj4V dsxZI332NsenuCvTNjZqYlYFhSMFqXEvk9A02v67kGDPAxNndEgfpMpsGJZd8rOD b7xkk576fLnXptxG0EuUcCyOsDnwAEfLPWiacQmH5nDgGRbPwRmFGlti/EJenC5V cIJyq65t+PXmvUk/SGeegYpyL040ogJIwMlPI7is3I8/faZ6rWlewFiXB2tndRIE 1A3/f88Flbd09A== -----END CERTIFICATE-----Generated at Sat Dec 6 19:12:10 2025 by rpki-client