This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/e6ccc7-d1e5-4f07-8dab-506a4934cad5/1/UNlf0yarPwj3bczGVrs-Hia03Fc.mft File: UNlf0yarPwj3bczGVrs-Hia03Fc.mft (raw, json) Hash identifier: 9DnamsAdz6K8Z0TGdWqknLEFzqbviUiqvO48HxiZWfE= Subject key identifier: 83:F4:F7:8D:C4:CC:B8:E5:40:BC:D5:50:78:15:EE:6E:3F:DB:62:40 Authority key identifier: 50:D9:5F:D3:26:AB:3F:08:F7:6D:CC:C6:56:BB:3E:1E:26:B4:DC:57 Certificate issuer: /CN=50d95fd326ab3f08f76dccc656bb3e1e26b4dc57 Certificate serial: 019AF19AF0A9C9C0BA6CE4F619DD203A175E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UNlf0yarPwj3bczGVrs-Hia03Fc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/e6ccc7-d1e5-4f07-8dab-506a4934cad5/1/UNlf0yarPwj3bczGVrs-Hia03Fc.mft Manifest number: 0308 Signing time: Sat 06 Dec 2025 03:00:54 +0000 Manifest this update: Sat 06 Dec 2025 03:00:54 +0000 Manifest next update: Sun 07 Dec 2025 03:00:54 +0000 Files and hashes: 1: UNlf0yarPwj3bczGVrs-Hia03Fc.crl (hash: 9ehmevdERuyLceYsikD+jopFeIk7BxCoQKemcjY7G3Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/e6ccc7-d1e5-4f07-8dab-506a4934cad5/1/UNlf0yarPwj3bczGVrs-Hia03Fc.crl rsync://rpki.ripe.net/repository/DEFAULT/1d/e6ccc7-d1e5-4f07-8dab-506a4934cad5/1/UNlf0yarPwj3bczGVrs-Hia03Fc.mft rsync://rpki.ripe.net/repository/DEFAULT/UNlf0yarPwj3bczGVrs-Hia03Fc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9a:f0:a9:c9:c0:ba:6c:e4:f6:19:dd:20:3a:17:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=50d95fd326ab3f08f76dccc656bb3e1e26b4dc57 Validity Not Before: Dec 6 03:00:54 2025 GMT Not After : Dec 7 03:00:54 2025 GMT Subject: CN=83f4f78dc4ccb8e540bcd5507815ee6e3fdb6240 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:7c:32:d4:87:27:6b:43:c1:9d:e0:8c:bd:09: 71:7a:b7:9c:98:91:4d:9d:8e:b4:cc:b3:30:61:c6: 56:9d:fd:a9:58:27:91:bf:9d:46:5a:1c:68:ab:1f: a9:4d:3a:29:51:db:33:b9:26:4e:15:9b:5d:05:77: ef:02:9d:e2:37:b9:30:b1:6a:7e:7e:86:2c:8c:d1: fc:96:4b:e5:5a:c1:13:a2:b6:69:2a:95:f9:41:9f: 12:23:74:7f:d6:c2:1d:4a:6f:74:77:db:5d:4d:ba: 66:04:bf:6d:dd:04:4c:43:47:f2:3a:2a:fe:64:99: 35:6c:5f:8d:dd:a8:95:61:60:3d:c7:48:7e:e9:df: 7b:7d:2f:60:c6:24:40:7c:4c:80:c8:c9:fc:16:79: f6:83:59:fe:c6:92:ed:ce:27:e2:f9:19:38:1d:82: 3a:f0:17:70:51:a9:18:95:5f:2c:b8:82:8f:94:de: 25:4c:47:9b:e5:be:86:d8:91:3f:95:57:54:c9:fc: 7e:97:4d:fa:ad:70:04:d4:f7:f3:4c:ff:dd:91:60: 55:ac:e6:57:e4:4e:c2:53:b9:a9:4c:1c:a9:b5:e6: 87:42:70:82:8a:cb:5a:0a:ae:a5:87:10:7e:78:c1: 28:93:fa:6a:73:5b:e0:d2:2a:f3:fd:da:52:8a:a8: d5:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:F4:F7:8D:C4:CC:B8:E5:40:BC:D5:50:78:15:EE:6E:3F:DB:62:40 X509v3 Authority Key Identifier: keyid:50:D9:5F:D3:26:AB:3F:08:F7:6D:CC:C6:56:BB:3E:1E:26:B4:DC:57 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UNlf0yarPwj3bczGVrs-Hia03Fc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e6ccc7-d1e5-4f07-8dab-506a4934cad5/1/UNlf0yarPwj3bczGVrs-Hia03Fc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e6ccc7-d1e5-4f07-8dab-506a4934cad5/1/UNlf0yarPwj3bczGVrs-Hia03Fc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9f:63:2d:6b:39:a0:ef:db:a7:a7:cb:3c:55:51:a1:63:3c:67: b6:0b:ac:92:86:a5:6c:12:bf:e2:88:9b:2d:08:4e:62:d7:fd: fe:5f:a1:dc:05:77:68:3d:3a:9c:db:ba:f1:ea:b5:85:12:c3: 44:d8:d9:59:10:0a:0b:41:49:e3:48:49:ab:9f:72:b6:0e:1c: 77:7b:62:d2:e7:96:3f:e9:e7:4a:04:a9:49:72:b8:c5:3e:82: 1b:32:8a:11:1c:36:95:b2:f5:f7:fd:84:ba:67:a4:48:cb:20: d8:ea:7c:63:dd:3b:f7:04:f5:ae:a7:5a:91:18:c5:06:a5:02: ae:24:de:a9:a1:1f:be:83:2b:7e:80:69:f2:cd:15:b6:8f:34: a2:86:5c:de:cd:dc:5f:6c:9b:32:59:ca:9f:24:c7:1b:4e:ca: 97:3a:c0:ce:e1:bf:7c:e7:a4:3a:f5:a7:b8:b1:e6:6f:af:c6: 78:9e:70:a7:37:f2:f3:1d:3f:69:2a:9a:6c:25:c9:d2:55:38: 62:bf:4e:e1:5f:f4:79:2a:03:94:1d:68:af:07:e3:1c:78:ee: cd:22:93:db:76:f2:03:f1:21:c1:42:0e:3d:73:d2:c1:a9:2f: 14:7e:56:ce:3b:f2:71:21:97:b3:b6:12:d4:80:24:ba:66:fe: 15:b9:22:d9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmvCpycC6bOT2Gd0gOhdeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUwZDk1ZmQzMjZhYjNmMDhmNzZkY2NjNjU2YmIzZTFlMjZi NGRjNTcwHhcNMjUxMjA2MDMwMDU0WhcNMjUxMjA3MDMwMDU0WjAzMTEwLwYDVQQD Eyg4M2Y0Zjc4ZGM0Y2NiOGU1NDBiY2Q1NTA3ODE1ZWU2ZTNmZGI2MjQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtXwy1Icna0PBneCMvQlxerecmJFN nY60zLMwYcZWnf2pWCeRv51GWhxoqx+pTTopUdszuSZOFZtdBXfvAp3iN7kwsWp+ foYsjNH8lkvlWsETorZpKpX5QZ8SI3R/1sIdSm90d9tdTbpmBL9t3QRMQ0fyOir+ ZJk1bF+N3aiVYWA9x0h+6d97fS9gxiRAfEyAyMn8Fnn2g1n+xpLtzifi+Rk4HYI6 8BdwUakYlV8suIKPlN4lTEeb5b6G2JE/lVdUyfx+l036rXAE1PfzTP/dkWBVrOZX 5E7CU7mpTBypteaHQnCCistaCq6lhxB+eMEok/pqc1vg0irz/dpSiqjVhwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIP0943EzLjlQLzVUHgV7m4/22JAMB8GA1UdIwQY MBaAFFDZX9Mmqz8I923Mxla7Ph4mtNxXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVU5sZjB5YXJQd2ozYmN6R1Zycy1IaWEwM0ZjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC9lNmNjYzctZDFlNS00ZjA3LThkYWIt NTA2YTQ5MzRjYWQ1LzEvVU5sZjB5YXJQd2ozYmN6R1Zycy1IaWEwM0ZjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZC9lNmNjYzctZDFlNS00ZjA3LThkYWItNTA2YTQ5MzRjYWQ1 LzEvVU5sZjB5YXJQd2ozYmN6R1Zycy1IaWEwM0ZjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAn2Mtazmg 79unp8s8VVGhYzxntguskoalbBK/4oibLQhOYtf9/l+h3AV3aD06nNu68eq1hRLD RNjZWRAKC0FJ40hJq59ytg4cd3ti0ueWP+nnSgSpSXK4xT6CGzKKERw2lbL19/2E umekSMsg2Op8Y9079wT1rqdakRjFBqUCriTeqaEfvoMrfoBp8s0Vto80ooZc3s3c X2ybMlnKnyTHG07KlzrAzuG/fOekOvWnuLHmb6/GeJ5wpzfy8x0/aSqabCXJ0lU4 Yr9O4V/0eSoDlB1orwfjHHjuzSKT23byA/EhwUIOPXPSwakvFH5WzjvycSGXs7YS 1IAkumb+Fbki2Q== -----END CERTIFICATE-----Generated at Sat Dec 6 09:56:36 2025 by rpki-client