This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/0fe7a3-6fce-42b6-8a18-251867bdc13f/1/ULhDqNkbFYJOYOLNaJpvRR4lal4.mft File: ULhDqNkbFYJOYOLNaJpvRR4lal4.mft (raw, json) Hash identifier: WZIHraQjnVuAkR+EtekaoiyZ36YgSzPq4dNCXLYavaM= Subject key identifier: EA:ED:B0:26:64:27:31:54:80:D8:E8:0E:B3:82:5A:54:CF:FF:4C:7F Authority key identifier: 50:B8:43:A8:D9:1B:15:82:4E:60:E2:CD:68:9A:6F:45:1E:25:6A:5E Certificate issuer: /CN=50b843a8d91b15824e60e2cd689a6f451e256a5e Certificate serial: 019AF2ADE1E54167191A85CCB5E2F480D892 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ULhDqNkbFYJOYOLNaJpvRR4lal4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/0fe7a3-6fce-42b6-8a18-251867bdc13f/1/ULhDqNkbFYJOYOLNaJpvRR4lal4.mft Manifest number: 04D3 Signing time: Sat 06 Dec 2025 08:01:13 +0000 Manifest this update: Sat 06 Dec 2025 08:01:13 +0000 Manifest next update: Sun 07 Dec 2025 08:01:13 +0000 Files and hashes: 1: ULhDqNkbFYJOYOLNaJpvRR4lal4.crl (hash: wBa3pKHhgleXWwGwImkiMclKja2jGCee5Vncz2PK+j0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/0fe7a3-6fce-42b6-8a18-251867bdc13f/1/ULhDqNkbFYJOYOLNaJpvRR4lal4.crl rsync://rpki.ripe.net/repository/DEFAULT/26/0fe7a3-6fce-42b6-8a18-251867bdc13f/1/ULhDqNkbFYJOYOLNaJpvRR4lal4.mft rsync://rpki.ripe.net/repository/DEFAULT/ULhDqNkbFYJOYOLNaJpvRR4lal4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:e1:e5:41:67:19:1a:85:cc:b5:e2:f4:80:d8:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=50b843a8d91b15824e60e2cd689a6f451e256a5e Validity Not Before: Dec 6 08:01:13 2025 GMT Not After : Dec 7 08:01:13 2025 GMT Subject: CN=eaedb0266427315480d8e80eb3825a54cfff4c7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:73:ea:8a:b5:fc:86:0f:7b:6c:7c:e4:16:fe: 74:83:6b:88:be:5e:67:29:7f:67:93:b0:6c:0f:39: 03:df:2f:c2:01:41:70:f0:8f:8a:84:56:90:41:99: 26:61:98:e1:97:b1:19:c9:01:d8:25:7f:69:2f:d7: 02:5a:fd:94:3a:f9:b3:ab:ee:f2:8f:3d:8b:88:f3: 46:c6:9a:d8:b6:28:e5:0f:fd:ca:54:bb:62:cf:70: 72:c4:50:d4:f8:69:fe:a5:98:c1:46:1e:c1:50:61: 80:2f:24:7b:7c:07:e5:15:cd:f4:ae:05:6e:03:04: 74:e5:b6:e0:ab:c6:9a:7d:1c:d2:e8:6c:b9:94:02: 10:0b:2b:fa:ec:c6:3b:d3:80:5c:bc:72:d5:cb:25: 78:79:ee:f7:05:49:fa:ac:e6:78:0f:13:31:e8:13: d7:ff:04:9a:90:0c:d4:61:7a:38:1d:11:f4:a4:a6: 91:4e:1f:27:19:b1:20:76:b5:8d:e2:f5:ca:38:6f: 49:bc:7d:ed:cf:be:75:60:61:f4:d6:f5:69:07:87: 56:b6:bf:e3:f1:7b:5f:37:ae:8a:06:02:b5:9b:72: a9:9a:52:97:41:b1:36:46:0f:4b:aa:44:a1:cb:6d: aa:74:75:17:d6:cf:1f:db:e2:f9:26:13:8c:b0:fb: 13:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:ED:B0:26:64:27:31:54:80:D8:E8:0E:B3:82:5A:54:CF:FF:4C:7F X509v3 Authority Key Identifier: keyid:50:B8:43:A8:D9:1B:15:82:4E:60:E2:CD:68:9A:6F:45:1E:25:6A:5E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ULhDqNkbFYJOYOLNaJpvRR4lal4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/0fe7a3-6fce-42b6-8a18-251867bdc13f/1/ULhDqNkbFYJOYOLNaJpvRR4lal4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/26/0fe7a3-6fce-42b6-8a18-251867bdc13f/1/ULhDqNkbFYJOYOLNaJpvRR4lal4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8a:aa:d9:1d:25:e2:82:cc:f4:8b:af:27:61:06:de:34:11:e3: e8:b1:61:23:14:68:91:e4:8f:23:18:94:a3:18:b1:09:4e:9e: 68:f6:9f:18:02:3b:70:b0:36:18:0c:49:9e:23:e4:44:42:78: 7d:30:9a:d3:50:a8:15:91:8f:8f:f9:7b:7f:84:e0:ce:3e:08: eb:a1:d1:72:6e:47:5a:fa:b1:dd:07:29:e5:ab:ff:f3:51:bc: 41:73:bd:a0:eb:65:aa:2e:e8:6e:3d:e9:6d:35:b1:1b:eb:2d: ab:86:cd:70:9e:37:13:b4:95:52:ae:a7:eb:28:81:20:f0:1a: bb:40:92:9e:16:15:f8:f2:5c:37:e4:1b:00:c1:09:14:d7:34: b2:c5:db:5e:d0:b4:a6:05:fa:4a:a4:a5:e3:08:37:69:08:f0: a9:df:1f:7b:21:d2:1e:82:b5:81:17:80:7c:dd:4c:55:dd:78: 78:ff:b3:20:65:e1:d3:7f:3d:eb:9e:f5:3c:14:48:eb:d9:cd: 84:ed:0b:ea:4b:30:b6:ee:5c:6b:6c:2e:71:8d:1c:14:d3:f8: 6d:93:7e:c2:f2:89:0f:fb:05:e0:84:9a:34:00:70:39:47:39: 2c:5d:c6:a3:c9:f0:fb:bb:c0:12:7e:7d:fd:2a:0d:63:16:32: 1f:e7:70:fa -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryreHlQWcZGoXMteL0gNiSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUwYjg0M2E4ZDkxYjE1ODI0ZTYwZTJjZDY4OWE2ZjQ1MWUy NTZhNWUwHhcNMjUxMjA2MDgwMTEzWhcNMjUxMjA3MDgwMTEzWjAzMTEwLwYDVQQD EyhlYWVkYjAyNjY0MjczMTU0ODBkOGU4MGViMzgyNWE1NGNmZmY0YzdmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy3PqirX8hg97bHzkFv50g2uIvl5n KX9nk7BsDzkD3y/CAUFw8I+KhFaQQZkmYZjhl7EZyQHYJX9pL9cCWv2UOvmzq+7y jz2LiPNGxprYtijlD/3KVLtiz3ByxFDU+Gn+pZjBRh7BUGGALyR7fAflFc30rgVu AwR05bbgq8aafRzS6Gy5lAIQCyv67MY704BcvHLVyyV4ee73BUn6rOZ4DxMx6BPX /wSakAzUYXo4HRH0pKaRTh8nGbEgdrWN4vXKOG9JvH3tz751YGH01vVpB4dWtr/j 8XtfN66KBgK1m3KpmlKXQbE2Rg9LqkShy22qdHUX1s8f2+L5JhOMsPsT5QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOrtsCZkJzFUgNjoDrOCWlTP/0x/MB8GA1UdIwQY MBaAFFC4Q6jZGxWCTmDizWiab0UeJWpeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVUxoRHFOa2JGWUpPWU9MTmFKcHZSUjRsYWw0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi8wZmU3YTMtNmZjZS00MmI2LThhMTgt MjUxODY3YmRjMTNmLzEvVUxoRHFOa2JGWUpPWU9MTmFKcHZSUjRsYWw0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNi8wZmU3YTMtNmZjZS00MmI2LThhMTgtMjUxODY3YmRjMTNm LzEvVUxoRHFOa2JGWUpPWU9MTmFKcHZSUjRsYWw0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiqrZHSXi gsz0i68nYQbeNBHj6LFhIxRokeSPIxiUoxixCU6eaPafGAI7cLA2GAxJniPkREJ4 fTCa01CoFZGPj/l7f4Tgzj4I66HRcm5HWvqx3Qcp5av/81G8QXO9oOtlqi7obj3p bTWxG+stq4bNcJ43E7SVUq6n6yiBIPAau0CSnhYV+PJcN+QbAMEJFNc0ssXbXtC0 pgX6SqSl4wg3aQjwqd8feyHSHoK1gReAfN1MVd14eP+zIGXh03896571PBRI69nN hO0L6kswtu5ca2wucY0cFNP4bZN+wvKJD/sF4ISaNABwOUc5LF3Go8nw+7vAEn59 /SoNYxYyH+dw+g== -----END CERTIFICATE-----Generated at Sat Dec 6 11:09:32 2025 by rpki-client