This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/16453d-28d0-46dd-8577-bdd57751c673/1/UNorr8N6OYjdKUyROuUiDgONuWQ.mft File: UNorr8N6OYjdKUyROuUiDgONuWQ.mft (raw, json) Hash identifier: sPGBzCcmMEVDiQMvaEcANbggF9IBrDHdiEu5CRRFj6M= Subject key identifier: 5E:09:6E:1F:95:66:E2:F6:0B:31:E5:DE:40:AF:40:E3:91:5D:D3:36 Authority key identifier: 50:DA:2B:AF:C3:7A:39:88:DD:29:4C:91:3A:E5:22:0E:03:8D:B9:64 Certificate issuer: /CN=50da2bafc37a3988dd294c913ae5220e038db964 Certificate serial: 019AF088039141E05301F696A005897DC3AB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UNorr8N6OYjdKUyROuUiDgONuWQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/16453d-28d0-46dd-8577-bdd57751c673/1/UNorr8N6OYjdKUyROuUiDgONuWQ.mft Manifest number: 16AD Signing time: Fri 05 Dec 2025 22:00:36 +0000 Manifest this update: Fri 05 Dec 2025 22:00:36 +0000 Manifest next update: Sat 06 Dec 2025 22:00:36 +0000 Files and hashes: 1: UNorr8N6OYjdKUyROuUiDgONuWQ.crl (hash: Z82g6aw9sL/nM5JN1Q2UUEBPGbccOFdALKi0N9I254U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/16453d-28d0-46dd-8577-bdd57751c673/1/UNorr8N6OYjdKUyROuUiDgONuWQ.crl rsync://rpki.ripe.net/repository/DEFAULT/26/16453d-28d0-46dd-8577-bdd57751c673/1/UNorr8N6OYjdKUyROuUiDgONuWQ.mft rsync://rpki.ripe.net/repository/DEFAULT/UNorr8N6OYjdKUyROuUiDgONuWQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 22:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:88:03:91:41:e0:53:01:f6:96:a0:05:89:7d:c3:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=50da2bafc37a3988dd294c913ae5220e038db964 Validity Not Before: Dec 5 22:00:36 2025 GMT Not After : Dec 6 22:00:36 2025 GMT Subject: CN=5e096e1f9566e2f60b31e5de40af40e3915dd336 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c9:f8:04:12:73:7a:88:04:66:9f:b4:09:98: 68:3d:da:cf:27:53:63:b3:e2:b0:56:23:4d:d2:f8: 5d:c5:8a:f0:26:6a:ba:ce:41:07:69:a1:d9:6f:25: 61:79:48:f4:62:8e:85:13:a6:6d:66:60:14:db:18: f4:09:00:00:b7:83:d5:95:78:ff:b2:29:33:1b:ae: 52:16:bc:93:12:a6:e9:5a:4b:74:b4:65:98:43:d8: db:1c:5e:d4:b9:09:58:39:91:ac:e7:90:2b:ee:50: 1d:be:66:f0:59:a7:69:ca:95:49:62:27:c2:3b:ec: d4:78:d4:75:17:b9:32:2c:a8:a4:6f:13:20:ee:d8: 73:a6:cb:28:60:bd:35:a1:a6:9b:06:9e:51:32:94: 80:81:8d:fe:20:bc:31:b0:68:37:6f:dd:a9:ff:b6: b4:0a:2b:ed:fd:66:7d:2c:84:c3:c4:b8:c8:6f:c0: bb:74:b2:7c:8d:0a:c6:32:29:89:81:84:84:31:21: 75:e3:45:3d:34:5e:a3:0d:c3:f5:75:2e:39:12:ca: 0b:4c:f5:ab:aa:80:ef:68:01:6f:e7:88:1d:9b:75: 55:c2:55:e0:40:37:4a:8f:b8:04:2b:11:ee:9b:fb: 08:ec:ae:83:29:93:9b:d2:0e:83:4d:a8:15:58:ea: 10:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:09:6E:1F:95:66:E2:F6:0B:31:E5:DE:40:AF:40:E3:91:5D:D3:36 X509v3 Authority Key Identifier: keyid:50:DA:2B:AF:C3:7A:39:88:DD:29:4C:91:3A:E5:22:0E:03:8D:B9:64 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UNorr8N6OYjdKUyROuUiDgONuWQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/16453d-28d0-46dd-8577-bdd57751c673/1/UNorr8N6OYjdKUyROuUiDgONuWQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/26/16453d-28d0-46dd-8577-bdd57751c673/1/UNorr8N6OYjdKUyROuUiDgONuWQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 75:a5:ae:d0:b3:3c:cb:61:ef:4d:13:a7:45:5d:54:ff:44:28: 43:9d:0e:8b:21:31:69:1a:a8:c7:7b:80:06:75:d1:97:74:27: d6:6c:d0:b5:a3:5f:8f:99:c0:a0:c0:9d:4a:2e:c3:33:da:ca: 7d:15:ba:a1:d4:4e:e3:25:e8:60:f2:dc:29:27:53:56:7d:b5: 00:b5:1d:d2:60:f0:1a:91:c7:1b:68:d8:7d:90:f6:e3:f0:92: 96:1d:ba:2c:89:59:ae:86:2a:00:09:4a:12:e0:02:5a:a6:68: 4c:bd:20:dd:34:1e:41:19:5c:a4:c4:11:e4:7e:09:36:b3:14: 46:db:fb:a5:10:fc:bd:01:b9:41:b0:3a:09:77:52:e7:7c:aa: 29:a7:f1:81:a9:a6:f6:66:45:b7:d8:8d:7f:3b:0e:5c:21:40: 22:d4:02:55:36:44:f2:90:98:f3:7d:83:82:d9:ca:c7:d5:ba: d5:1c:4c:39:6a:11:35:9d:2b:43:87:6b:2b:67:50:77:00:79: c2:10:0a:d2:65:c8:5f:be:46:63:1a:76:b9:4b:a2:8c:9c:ff: 0d:6c:0a:bc:a1:1f:7f:5b:e8:8f:77:00:ab:d0:12:e7:1c:21: 6b:03:17:ff:82:99:5e:85:b7:3e:a4:90:e5:8f:0b:30:58:5a: 8c:2a:be:a7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwiAORQeBTAfaWoAWJfcOrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUwZGEyYmFmYzM3YTM5ODhkZDI5NGM5MTNhZTUyMjBlMDM4 ZGI5NjQwHhcNMjUxMjA1MjIwMDM2WhcNMjUxMjA2MjIwMDM2WjAzMTEwLwYDVQQD Eyg1ZTA5NmUxZjk1NjZlMmY2MGIzMWU1ZGU0MGFmNDBlMzkxNWRkMzM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs8n4BBJzeogEZp+0CZhoPdrPJ1Nj s+KwViNN0vhdxYrwJmq6zkEHaaHZbyVheUj0Yo6FE6ZtZmAU2xj0CQAAt4PVlXj/ sikzG65SFryTEqbpWkt0tGWYQ9jbHF7UuQlYOZGs55Ar7lAdvmbwWadpypVJYifC O+zUeNR1F7kyLKikbxMg7thzpssoYL01oaabBp5RMpSAgY3+ILwxsGg3b92p/7a0 Civt/WZ9LITDxLjIb8C7dLJ8jQrGMimJgYSEMSF140U9NF6jDcP1dS45EsoLTPWr qoDvaAFv54gdm3VVwlXgQDdKj7gEKxHum/sI7K6DKZOb0g6DTagVWOoQ3QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF4Jbh+VZuL2CzHl3kCvQOORXdM2MB8GA1UdIwQY MBaAFFDaK6/DejmI3SlMkTrlIg4DjblkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVU5vcnI4TjZPWWpkS1V5Uk91VWlEZ09OdVdRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi8xNjQ1M2QtMjhkMC00NmRkLTg1Nzct YmRkNTc3NTFjNjczLzEvVU5vcnI4TjZPWWpkS1V5Uk91VWlEZ09OdVdRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNi8xNjQ1M2QtMjhkMC00NmRkLTg1NzctYmRkNTc3NTFjNjcz LzEvVU5vcnI4TjZPWWpkS1V5Uk91VWlEZ09OdVdRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdaWu0LM8 y2HvTROnRV1U/0QoQ50OiyExaRqox3uABnXRl3Qn1mzQtaNfj5nAoMCdSi7DM9rK fRW6odRO4yXoYPLcKSdTVn21ALUd0mDwGpHHG2jYfZD24/CSlh26LIlZroYqAAlK EuACWqZoTL0g3TQeQRlcpMQR5H4JNrMURtv7pRD8vQG5QbA6CXdS53yqKafxgamm 9mZFt9iNfzsOXCFAItQCVTZE8pCY832DgtnKx9W61RxMOWoRNZ0rQ4drK2dQdwB5 whAK0mXIX75GYxp2uUuijJz/DWwKvKEff1voj3cAq9AS5xwhawMX/4KZXoW3PqSQ 5Y8LMFhajCq+pw== -----END CERTIFICATE-----Generated at Sat Dec 6 07:55:47 2025 by rpki-client