This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft File: U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft (raw, json) Hash identifier: jOs6vSoBQ845GxnDZoc2y8OKcOpepgREwR7vdJJDdmk= Subject key identifier: A3:08:F0:20:49:C7:3D:B0:15:CF:CF:12:F9:92:38:FB:F7:16:97:72 Authority key identifier: 53:46:C4:D2:00:FE:50:35:C6:1B:0C:89:4B:94:54:E7:2D:27:C9:1F Certificate issuer: /CN=5346c4d200fe5035c61b0c894b9454e72d27c91f Certificate serial: 019AF1D24485889E90837518C674DA16FF18 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U0bE0gD-UDXGGwyJS5RU5y0nyR8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft Manifest number: 1763 Signing time: Sat 06 Dec 2025 04:01:20 +0000 Manifest this update: Sat 06 Dec 2025 04:01:20 +0000 Manifest next update: Sun 07 Dec 2025 04:01:20 +0000 Files and hashes: 1: ECD7apX3eHOOfrh7KlF7PFjYZG4.roa (hash: 71V9g38SO7JBAaQym2ThymDLgJtxxyPJi6oj0bVn0zY=) 2: U0bE0gD-UDXGGwyJS5RU5y0nyR8.crl (hash: riU/ByZge4u85tayg4A+FsUICkxRUb+XwxLye+4PGnI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.crl rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft rsync://rpki.ripe.net/repository/DEFAULT/U0bE0gD-UDXGGwyJS5RU5y0nyR8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 04:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d2:44:85:88:9e:90:83:75:18:c6:74:da:16:ff:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5346c4d200fe5035c61b0c894b9454e72d27c91f Validity Not Before: Dec 6 04:01:20 2025 GMT Not After : Dec 7 04:01:20 2025 GMT Subject: CN=a308f02049c73db015cfcf12f99238fbf7169772 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:5d:fd:8b:1c:87:95:6f:9a:ed:eb:88:94:3e: 4b:76:8e:db:cd:97:be:1c:c0:c5:90:a2:d0:d6:3c: b5:4c:2b:48:c0:99:95:63:67:f1:8e:65:cb:f5:f1: f6:98:32:d6:a0:3f:36:91:4c:48:0d:d7:d8:13:46: 85:14:d5:a7:52:ec:f5:43:57:e9:1f:3b:bd:a3:9f: f6:f9:bb:0a:06:36:5e:38:76:e7:33:40:42:6b:4f: f0:86:9c:bf:e1:f7:a7:80:4f:34:49:3d:00:2f:2a: 31:1b:75:84:74:3b:be:b4:54:5d:6d:3b:56:88:76: 96:f2:3b:3a:0b:35:70:05:03:01:7e:fb:4e:c4:d4: db:a0:1b:c2:b1:26:c3:8d:08:20:bd:42:87:41:b2: e8:4a:73:be:31:20:5d:9a:af:ee:14:e7:00:14:bd: 18:ce:58:f2:6a:e8:38:89:e4:3c:a4:5a:53:64:65: 7b:20:b6:e9:7c:3f:06:8f:e6:08:35:01:05:03:da: 73:4a:3e:be:08:93:26:bd:e6:b9:bd:ff:94:c1:75: 98:3b:cc:22:c5:18:06:f5:90:30:dc:fb:b1:51:16: 1e:bf:56:96:4c:0c:98:81:71:69:ff:8e:60:32:d2: 47:af:1f:ef:bf:13:cc:05:f3:7c:79:6e:cb:dc:87: 73:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:08:F0:20:49:C7:3D:B0:15:CF:CF:12:F9:92:38:FB:F7:16:97:72 X509v3 Authority Key Identifier: keyid:53:46:C4:D2:00:FE:50:35:C6:1B:0C:89:4B:94:54:E7:2D:27:C9:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U0bE0gD-UDXGGwyJS5RU5y0nyR8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 29:0f:8a:02:61:b1:1b:66:df:a0:3b:28:48:39:4f:ff:03:13: bd:91:34:5c:2e:6f:9c:32:4b:65:e7:df:52:1b:dd:68:e1:e3: f3:57:b3:3b:e6:5f:87:76:f6:d7:70:9f:f6:7a:93:d3:de:4c: e3:66:af:a2:69:01:fa:11:a5:83:20:26:fe:8b:2c:e3:ca:d4: 6d:21:98:b0:d0:7a:26:e7:15:23:96:0b:6b:65:9e:89:5a:10: 6d:6f:62:02:22:d7:f5:16:a5:5f:cf:52:18:ae:a8:8b:fe:cf: 68:eb:b2:42:69:cf:f9:15:10:73:ec:e9:9b:d8:92:61:19:6c: 13:2d:98:65:89:ce:bd:87:aa:25:61:e4:53:d5:5d:84:75:0c: b8:60:19:14:fb:c6:d5:52:0b:ef:4b:0a:31:ec:df:a5:d1:89: 96:30:db:7c:de:bf:93:2e:4b:3f:7b:40:a8:76:cc:c8:a0:c6: 78:63:4b:6a:07:60:01:2a:ec:f3:e7:e0:05:80:9a:48:0f:d4: 75:de:57:ad:03:86:98:b8:a5:d2:03:27:a2:21:56:ea:38:1f: 81:87:b8:23:cc:fb:a9:ef:20:5e:f2:37:8a:20:f8:0b:df:c6: eb:c2:71:d5:0a:60:f5:d7:85:69:b3:84:1c:fb:08:07:f7:57: 98:f4:99:00 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0kSFiJ6Qg3UYxnTaFv8YMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzNDZjNGQyMDBmZTUwMzVjNjFiMGM4OTRiOTQ1NGU3MmQy N2M5MWYwHhcNMjUxMjA2MDQwMTIwWhcNMjUxMjA3MDQwMTIwWjAzMTEwLwYDVQQD EyhhMzA4ZjAyMDQ5YzczZGIwMTVjZmNmMTJmOTkyMzhmYmY3MTY5NzcyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7139ixyHlW+a7euIlD5Ldo7bzZe+ HMDFkKLQ1jy1TCtIwJmVY2fxjmXL9fH2mDLWoD82kUxIDdfYE0aFFNWnUuz1Q1fp Hzu9o5/2+bsKBjZeOHbnM0BCa0/whpy/4fengE80ST0ALyoxG3WEdDu+tFRdbTtW iHaW8js6CzVwBQMBfvtOxNTboBvCsSbDjQggvUKHQbLoSnO+MSBdmq/uFOcAFL0Y zljyaug4ieQ8pFpTZGV7ILbpfD8Gj+YINQEFA9pzSj6+CJMmvea5vf+UwXWYO8wi xRgG9ZAw3PuxURYev1aWTAyYgXFp/45gMtJHrx/vvxPMBfN8eW7L3IdzMQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKMI8CBJxz2wFc/PEvmSOPv3FpdyMB8GA1UdIwQY MBaAFFNGxNIA/lA1xhsMiUuUVOctJ8kfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVTBiRTBnRC1VRFhHR3d5SlM1UlU1eTBueVI4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS81ODdhNzktMWI2Yy00YzJhLWIxMzkt MjRhYWI0NGYyNTM5LzEvVTBiRTBnRC1VRFhHR3d5SlM1UlU1eTBueVI4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNS81ODdhNzktMWI2Yy00YzJhLWIxMzktMjRhYWI0NGYyNTM5 LzEvVTBiRTBnRC1VRFhHR3d5SlM1UlU1eTBueVI4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKQ+KAmGx G2bfoDsoSDlP/wMTvZE0XC5vnDJLZeffUhvdaOHj81ezO+Zfh3b213Cf9nqT095M 42avomkB+hGlgyAm/oss48rUbSGYsNB6JucVI5YLa2WeiVoQbW9iAiLX9RalX89S GK6oi/7PaOuyQmnP+RUQc+zpm9iSYRlsEy2YZYnOvYeqJWHkU9VdhHUMuGAZFPvG 1VIL70sKMezfpdGJljDbfN6/ky5LP3tAqHbMyKDGeGNLagdgASrs8+fgBYCaSA/U dd5XrQOGmLil0gMnoiFW6jgfgYe4I8z7qe8gXvI3iiD4C9/G68Jx1Qpg9deFabOE HPsIB/dXmPSZAA== -----END CERTIFICATE-----Generated at Sat Dec 6 11:43:44 2025 by rpki-client