This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft File: ui1f0wndbMbPeIYEHl6cLBomzqs.mft (raw, json) Hash identifier: L8KM+HveVwoq36/zpgeeEHjUQxGuDTNUc5Wg2IwnlC8= Subject key identifier: 45:2B:E5:AD:38:72:3B:A1:0A:55:8E:08:E4:A0:DF:B9:69:70:CE:D0 Authority key identifier: BA:2D:5F:D3:09:DD:6C:C6:CF:78:86:04:1E:5E:9C:2C:1A:26:CE:AB Certificate issuer: /CN=ba2d5fd309dd6cc6cf7886041e5e9c2c1a26ceab Certificate serial: 019B2AAEE85DBFA5DE7F3FE52450AC67752B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ui1f0wndbMbPeIYEHl6cLBomzqs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft Manifest number: 1712 Signing time: Wed 17 Dec 2025 05:01:04 +0000 Manifest this update: Wed 17 Dec 2025 05:01:04 +0000 Manifest next update: Thu 18 Dec 2025 05:01:04 +0000 Files and hashes: 1: Kp9T4yQ0BWzmIgTW27o6VMb8qh4.roa (hash: 8tmSpbSEt6oRRtmXjjT27qxLy0bdW3q5K1nXAwi0cxU=) 2: ui1f0wndbMbPeIYEHl6cLBomzqs.crl (hash: VWDgU5vwe0Ts1WibxmR5EFitVT/7dvjSHkVH8V6gB94=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft rsync://rpki.ripe.net/repository/DEFAULT/ui1f0wndbMbPeIYEHl6cLBomzqs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 05:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2a:ae:e8:5d:bf:a5:de:7f:3f:e5:24:50:ac:67:75:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba2d5fd309dd6cc6cf7886041e5e9c2c1a26ceab Validity Not Before: Dec 17 05:01:04 2025 GMT Not After : Dec 18 05:01:04 2025 GMT Subject: CN=452be5ad38723ba10a558e08e4a0dfb96970ced0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:8b:bc:91:1e:ab:86:33:b2:33:d9:ff:29:ea: 24:48:0a:79:ca:b7:f3:ad:d8:b0:05:8b:1e:6b:fa: 3e:d8:e7:30:63:ee:21:5f:dd:3c:e4:6b:bf:d9:1e: 8a:84:9b:1d:e8:43:fa:02:99:72:1b:03:ce:37:1c: 58:fe:bb:f1:24:3a:3c:d0:19:0e:71:c0:09:16:72: 1d:a1:0b:a3:e6:b7:7f:63:68:cd:c0:07:91:e2:e5: 13:66:65:2a:3f:39:a1:87:62:63:50:2a:c2:3c:ec: ba:c2:70:b1:7c:0b:df:1c:3c:37:1e:4c:98:5d:d6: a7:f1:80:7e:f4:82:3d:f0:9d:97:8e:57:8b:47:e8: 9f:4e:45:1d:32:65:44:d5:04:d6:cf:31:73:60:18: fb:fc:40:1d:cf:64:21:dd:1f:90:8d:8e:a9:f9:89: 58:12:ae:7d:70:2a:49:90:b6:20:25:c8:df:4f:57: b1:5e:58:74:54:9c:e6:86:db:2a:c6:3c:2e:30:e9: d4:40:f6:34:6f:8d:51:85:fd:42:80:09:0e:cd:a5: c0:e5:df:1a:da:2b:f7:57:5b:fb:f4:14:fd:a8:77: 21:cc:49:e1:e6:5f:10:a9:98:d3:34:4a:72:16:a6: dd:41:bd:e8:79:0e:8c:6d:d2:38:ff:27:5c:25:83: 78:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:2B:E5:AD:38:72:3B:A1:0A:55:8E:08:E4:A0:DF:B9:69:70:CE:D0 X509v3 Authority Key Identifier: keyid:BA:2D:5F:D3:09:DD:6C:C6:CF:78:86:04:1E:5E:9C:2C:1A:26:CE:AB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ui1f0wndbMbPeIYEHl6cLBomzqs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0c:2e:eb:68:53:b8:82:eb:35:84:da:d5:5f:7b:52:f1:de:3f: 68:88:e3:24:1e:82:e1:a3:39:77:f1:58:e7:ba:90:e3:95:6b: d1:50:a9:a1:72:15:2e:2d:f5:b6:b5:9f:d5:8d:6f:04:d6:b7: be:0b:69:2b:a3:83:10:7b:31:de:73:93:91:4e:7c:55:e4:8b: fa:cd:bd:ea:c2:dd:ad:c6:83:97:77:0f:ba:b4:17:60:ba:f8: a7:75:94:1c:95:4d:6c:23:c6:6a:cf:9b:20:fa:97:8e:80:c2: ab:e5:74:5d:bb:d0:8f:ed:d7:4b:16:6f:f0:f8:eb:64:13:1c: 6b:ac:99:ca:65:06:77:ed:e2:22:58:9e:34:fc:5e:ad:d2:27: ea:1e:b4:d0:8a:b6:be:2d:c5:0a:4c:bf:67:39:90:57:cb:2d: e6:ba:b6:a2:1e:ba:57:20:eb:88:17:6d:c8:d6:8d:ca:3a:8c: b1:62:1f:d1:17:26:87:41:0e:ae:33:7c:9f:ef:31:bb:06:d2: 9d:af:99:80:e0:41:bd:6a:70:ee:11:5c:b8:43:bb:68:41:88: 68:ed:ea:25:e9:fc:11:c3:be:0b:a9:af:da:37:e0:00:ac:ec: 3d:dc:9e:9c:5b:e6:b6:8d:33:c7:34:ee:67:8c:4e:4d:bf:97: 86:5f:2a:dc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsqruhdv6Xefz/lJFCsZ3UrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhMmQ1ZmQzMDlkZDZjYzZjZjc4ODYwNDFlNWU5YzJjMWEy NmNlYWIwHhcNMjUxMjE3MDUwMTA0WhcNMjUxMjE4MDUwMTA0WjAzMTEwLwYDVQQD Eyg0NTJiZTVhZDM4NzIzYmExMGE1NThlMDhlNGEwZGZiOTY5NzBjZWQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuIu8kR6rhjOyM9n/KeokSAp5yrfz rdiwBYsea/o+2OcwY+4hX9085Gu/2R6KhJsd6EP6AplyGwPONxxY/rvxJDo80BkO ccAJFnIdoQuj5rd/Y2jNwAeR4uUTZmUqPzmhh2JjUCrCPOy6wnCxfAvfHDw3HkyY Xdan8YB+9II98J2XjleLR+ifTkUdMmVE1QTWzzFzYBj7/EAdz2Qh3R+QjY6p+YlY Eq59cCpJkLYgJcjfT1exXlh0VJzmhtsqxjwuMOnUQPY0b41Rhf1CgAkOzaXA5d8a 2iv3V1v79BT9qHchzEnh5l8QqZjTNEpyFqbdQb3oeQ6MbdI4/ydcJYN4TwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEUr5a04cjuhClWOCOSg37lpcM7QMB8GA1UdIwQY MBaAFLotX9MJ3WzGz3iGBB5enCwaJs6rMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdWkxZjB3bmRiTWJQZUlZRUhsNmNMQm9tenFzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi8yY2JkZTktODQ4MC00NDBkLWFiY2Yt NmQ3NTUwNTJiYjI0LzEvdWkxZjB3bmRiTWJQZUlZRUhsNmNMQm9tenFzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi8yY2JkZTktODQ4MC00NDBkLWFiY2YtNmQ3NTUwNTJiYjI0 LzEvdWkxZjB3bmRiTWJQZUlZRUhsNmNMQm9tenFzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADC7raFO4 gus1hNrVX3tS8d4/aIjjJB6C4aM5d/FY57qQ45Vr0VCpoXIVLi31trWf1Y1vBNa3 vgtpK6ODEHsx3nOTkU58VeSL+s296sLdrcaDl3cPurQXYLr4p3WUHJVNbCPGas+b IPqXjoDCq+V0XbvQj+3XSxZv8PjrZBMca6yZymUGd+3iIlieNPxerdIn6h600Iq2 vi3FCky/ZzmQV8st5rq2oh66VyDriBdtyNaNyjqMsWIf0Rcmh0EOrjN8n+8xuwbS na+ZgOBBvWpw7hFcuEO7aEGIaO3qJen8EcO+C6mv2jfgAKzsPdyenFvmto0zxzTu Z4xOTb+Xhl8q3A== -----END CERTIFICATE-----Generated at Wed Dec 17 13:45:05 2025 by rpki-client