This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft File: ui1f0wndbMbPeIYEHl6cLBomzqs.mft (raw, json) Hash identifier: 350cJ7jMJQJtABs/YIj/PHQNglRAzJRcRwmYOaPlQ2E= Subject key identifier: 5D:A5:9B:03:88:68:9D:10:76:1A:C0:A2:5A:DB:FA:72:8A:19:36:70 Authority key identifier: BA:2D:5F:D3:09:DD:6C:C6:CF:78:86:04:1E:5E:9C:2C:1A:26:CE:AB Certificate issuer: /CN=ba2d5fd309dd6cc6cf7886041e5e9c2c1a26ceab Certificate serial: 019AF2ADCCD5EEC5166BCBCDADC18FD08CFF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ui1f0wndbMbPeIYEHl6cLBomzqs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft Manifest number: 16F5 Signing time: Sat 06 Dec 2025 08:01:07 +0000 Manifest this update: Sat 06 Dec 2025 08:01:07 +0000 Manifest next update: Sun 07 Dec 2025 08:01:07 +0000 Files and hashes: 1: Kp9T4yQ0BWzmIgTW27o6VMb8qh4.roa (hash: 8tmSpbSEt6oRRtmXjjT27qxLy0bdW3q5K1nXAwi0cxU=) 2: ui1f0wndbMbPeIYEHl6cLBomzqs.crl (hash: 5XkzKSqjCDZCrO1uB4uhHGyU3TJO6a5MGJk7h231MWo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft rsync://rpki.ripe.net/repository/DEFAULT/ui1f0wndbMbPeIYEHl6cLBomzqs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:cc:d5:ee:c5:16:6b:cb:cd:ad:c1:8f:d0:8c:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba2d5fd309dd6cc6cf7886041e5e9c2c1a26ceab Validity Not Before: Dec 6 08:01:07 2025 GMT Not After : Dec 7 08:01:07 2025 GMT Subject: CN=5da59b0388689d10761ac0a25adbfa728a193670 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:f3:8b:ec:af:5a:66:e6:d0:4d:73:c4:7d:17: da:9f:4a:ec:f0:91:50:1c:13:16:a4:e8:84:51:98: 8b:cc:c3:14:86:fc:c8:13:4c:5a:9f:07:65:c8:75: 54:54:83:10:1a:88:6b:9a:d0:fb:60:1a:eb:61:a9: ff:4d:34:a1:f1:75:15:53:c0:d0:93:bd:a5:b6:e5: e3:2e:63:ee:47:7d:22:d7:cb:fc:15:e6:ba:30:2f: 4f:1d:c6:b4:a9:30:0b:99:60:75:0f:2b:60:40:e6: 43:2e:b1:32:48:b8:ce:84:99:e6:b8:07:a9:c2:d3: 1e:6b:d7:35:7b:cc:b1:d5:b5:27:8b:9d:cb:eb:6a: 02:d8:43:b5:f5:74:ac:9e:55:f4:18:bb:ee:60:cc: e2:8d:17:05:d7:d9:47:0c:98:e0:03:77:20:b5:82: 0a:42:1a:c9:13:f6:de:22:b1:0b:24:6a:bf:b4:eb: db:32:83:03:9a:7e:da:19:83:41:33:a9:72:3b:26: ed:46:d1:aa:72:af:10:ed:93:95:15:eb:92:31:9f: a4:53:7d:20:d2:19:dd:97:f5:2e:55:c7:4e:d5:be: 8a:ad:e2:ab:dd:c5:54:87:e8:af:17:6e:46:bb:57: 91:99:67:5b:53:2e:a7:87:d7:1c:f4:46:49:c5:89: d1:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:A5:9B:03:88:68:9D:10:76:1A:C0:A2:5A:DB:FA:72:8A:19:36:70 X509v3 Authority Key Identifier: keyid:BA:2D:5F:D3:09:DD:6C:C6:CF:78:86:04:1E:5E:9C:2C:1A:26:CE:AB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ui1f0wndbMbPeIYEHl6cLBomzqs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/2cbde9-8480-440d-abcf-6d755052bb24/1/ui1f0wndbMbPeIYEHl6cLBomzqs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0a:93:7a:a5:ad:e8:93:8a:cb:2b:42:6c:22:ff:4f:5c:47:8d: dd:4e:07:76:06:25:43:dd:1f:97:6d:00:83:8f:f9:7e:3d:9f: fe:58:60:ae:36:82:83:89:01:aa:12:45:ec:40:33:42:32:ed: 86:1a:2a:79:90:9b:b8:b9:5b:33:03:f9:6f:aa:1e:39:df:84: 66:57:0d:53:0e:11:43:4b:e8:93:01:bb:eb:18:39:0e:a2:ca: d2:4f:2a:78:38:0d:1d:fa:70:6f:d5:56:aa:58:9e:11:9c:40: eb:db:56:92:7a:74:52:57:42:ea:eb:ae:24:14:31:58:8c:c7: 0d:9e:8a:a8:80:31:24:28:6d:5f:15:3a:28:e3:3a:2e:00:a3: 78:79:0d:61:59:19:6c:39:8b:5d:d8:97:a8:9d:11:82:cb:7e: f1:86:d7:17:52:a3:d3:c5:15:e8:fd:30:03:48:f8:22:e6:5d: ae:82:0b:33:e0:8a:16:16:87:8f:77:91:a8:2c:83:84:4b:fb: fd:7a:2a:59:04:7e:d8:b5:eb:d7:bc:80:90:1b:63:f8:f4:14: 67:94:e4:1f:c2:0d:ad:5f:33:6f:7d:b0:f4:ba:45:9d:19:8e: 6f:63:01:73:1e:98:ca:b5:9d:05:8e:ca:b6:63:d2:a8:2a:76: 49:4a:77:bb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryrczV7sUWa8vNrcGP0Iz/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhMmQ1ZmQzMDlkZDZjYzZjZjc4ODYwNDFlNWU5YzJjMWEy NmNlYWIwHhcNMjUxMjA2MDgwMTA3WhcNMjUxMjA3MDgwMTA3WjAzMTEwLwYDVQQD Eyg1ZGE1OWIwMzg4Njg5ZDEwNzYxYWMwYTI1YWRiZmE3MjhhMTkzNjcwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8fOL7K9aZubQTXPEfRfan0rs8JFQ HBMWpOiEUZiLzMMUhvzIE0xanwdlyHVUVIMQGohrmtD7YBrrYan/TTSh8XUVU8DQ k72ltuXjLmPuR30i18v8Fea6MC9PHca0qTALmWB1DytgQOZDLrEySLjOhJnmuAep wtMea9c1e8yx1bUni53L62oC2EO19XSsnlX0GLvuYMzijRcF19lHDJjgA3cgtYIK QhrJE/beIrELJGq/tOvbMoMDmn7aGYNBM6lyOybtRtGqcq8Q7ZOVFeuSMZ+kU30g 0hndl/UuVcdO1b6KreKr3cVUh+ivF25Gu1eRmWdbUy6nh9cc9EZJxYnRgwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF2lmwOIaJ0QdhrAolrb+nKKGTZwMB8GA1UdIwQY MBaAFLotX9MJ3WzGz3iGBB5enCwaJs6rMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdWkxZjB3bmRiTWJQZUlZRUhsNmNMQm9tenFzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi8yY2JkZTktODQ4MC00NDBkLWFiY2Yt NmQ3NTUwNTJiYjI0LzEvdWkxZjB3bmRiTWJQZUlZRUhsNmNMQm9tenFzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi8yY2JkZTktODQ4MC00NDBkLWFiY2YtNmQ3NTUwNTJiYjI0 LzEvdWkxZjB3bmRiTWJQZUlZRUhsNmNMQm9tenFzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACpN6pa3o k4rLK0JsIv9PXEeN3U4HdgYlQ90fl20Ag4/5fj2f/lhgrjaCg4kBqhJF7EAzQjLt hhoqeZCbuLlbMwP5b6oeOd+EZlcNUw4RQ0vokwG76xg5DqLK0k8qeDgNHfpwb9VW qlieEZxA69tWknp0UldC6uuuJBQxWIzHDZ6KqIAxJChtXxU6KOM6LgCjeHkNYVkZ bDmLXdiXqJ0Rgst+8YbXF1Kj08UV6P0wA0j4IuZdroILM+CKFhaHj3eRqCyDhEv7 /XoqWQR+2LXr17yAkBtj+PQUZ5TkH8INrV8zb32w9LpFnRmOb2MBcx6YyrWdBY7K tmPSqCp2SUp3uw== -----END CERTIFICATE-----Generated at Sat Dec 6 12:48:33 2025 by rpki-client