This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/3b2bb3-fdb6-46af-b3d2-be11c14db6e0/1/uxBfoysrF18Y3VkI3ScZFbv0444.mft File: uxBfoysrF18Y3VkI3ScZFbv0444.mft (raw, json) Hash identifier: oL3htnTKd4ZE1J5J8FYg7ZeOjS2vad6nBalcO/xhh00= Subject key identifier: 51:64:80:45:DC:B1:BF:8D:2F:ED:C3:C3:63:32:0F:91:D6:A3:B8:02 Authority key identifier: BB:10:5F:A3:2B:2B:17:5F:18:DD:59:08:DD:27:19:15:BB:F4:E3:8E Certificate issuer: /CN=bb105fa32b2b175f18dd5908dd271915bbf4e38e Certificate serial: 019AF1D1F8248E443CBCF0E1937AE08B3998 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uxBfoysrF18Y3VkI3ScZFbv0444.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/3b2bb3-fdb6-46af-b3d2-be11c14db6e0/1/uxBfoysrF18Y3VkI3ScZFbv0444.mft Manifest number: 016C Signing time: Sat 06 Dec 2025 04:01:00 +0000 Manifest this update: Sat 06 Dec 2025 04:01:00 +0000 Manifest next update: Sun 07 Dec 2025 04:01:00 +0000 Files and hashes: 1: DH5lWnRu4VKIIyGckr7F-ImJh8g.roa (hash: h8GN1vDvRKFfkC5MTFTkZWf2BqZtBn12n/5FdI8mvIA=) 2: uxBfoysrF18Y3VkI3ScZFbv0444.crl (hash: sNFu0avrsw6zGFc4qGq5umRqgxB76PmtXl4t0qGijGc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/3b2bb3-fdb6-46af-b3d2-be11c14db6e0/1/uxBfoysrF18Y3VkI3ScZFbv0444.crl rsync://rpki.ripe.net/repository/DEFAULT/34/3b2bb3-fdb6-46af-b3d2-be11c14db6e0/1/uxBfoysrF18Y3VkI3ScZFbv0444.mft rsync://rpki.ripe.net/repository/DEFAULT/uxBfoysrF18Y3VkI3ScZFbv0444.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d1:f8:24:8e:44:3c:bc:f0:e1:93:7a:e0:8b:39:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bb105fa32b2b175f18dd5908dd271915bbf4e38e Validity Not Before: Dec 6 04:01:00 2025 GMT Not After : Dec 7 04:01:00 2025 GMT Subject: CN=51648045dcb1bf8d2fedc3c363320f91d6a3b802 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:0d:08:45:75:47:a1:81:c6:27:d5:c2:4f:dd: 04:5f:61:98:32:cd:71:c4:01:95:d4:30:f0:d7:b1: a5:a8:96:af:e8:8e:fd:b8:87:05:bb:5b:ca:e8:3a: d2:26:28:0b:ce:32:5d:23:3b:d4:e0:d1:f4:24:42: e7:6f:84:eb:47:f0:84:07:fc:78:00:c7:5b:bc:db: a0:fa:07:c4:27:41:6b:98:18:ce:73:26:b1:97:f5: 6d:bd:f3:99:b2:85:48:6e:da:d1:29:fa:50:c4:bc: cd:72:aa:d4:75:1c:6b:bc:ea:d3:3f:f9:24:d1:1f: f1:fb:bc:5c:f4:12:46:15:29:d5:94:3d:93:50:ba: c9:d3:3d:96:85:6e:97:57:9d:b5:a8:9c:02:51:4a: 23:31:a3:7c:b4:ef:e0:21:c3:33:cb:47:9a:98:3d: e1:0c:3c:d4:b0:f1:9d:aa:a0:ee:67:96:eb:b5:91: f1:4a:12:e2:3a:89:4c:97:47:7d:ad:d8:72:b6:b8: 1b:43:90:4a:e7:95:8a:85:f2:fe:51:8b:31:06:2d: d9:99:68:79:20:b7:8a:52:6d:e6:17:15:c2:74:16: 90:1c:b4:7d:e5:e1:8a:27:bc:9b:c3:b7:0e:46:a5: a4:b5:ad:ea:f3:69:86:8c:88:e6:dd:12:af:c5:c9: e2:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:64:80:45:DC:B1:BF:8D:2F:ED:C3:C3:63:32:0F:91:D6:A3:B8:02 X509v3 Authority Key Identifier: keyid:BB:10:5F:A3:2B:2B:17:5F:18:DD:59:08:DD:27:19:15:BB:F4:E3:8E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uxBfoysrF18Y3VkI3ScZFbv0444.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/3b2bb3-fdb6-46af-b3d2-be11c14db6e0/1/uxBfoysrF18Y3VkI3ScZFbv0444.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/34/3b2bb3-fdb6-46af-b3d2-be11c14db6e0/1/uxBfoysrF18Y3VkI3ScZFbv0444.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4f:52:c4:99:67:0e:4e:4d:a0:50:1b:f2:ac:76:e8:a3:fc:a9: fd:43:ff:da:9e:14:60:7e:1e:28:c8:92:27:61:65:e5:bb:f7: 30:53:b0:8e:67:81:aa:a0:70:65:3a:c5:5a:63:ca:93:15:80: 80:06:b6:fd:50:be:ea:f7:eb:86:a6:19:1f:5a:9a:2e:0e:84: 06:e4:b0:ee:a2:53:2d:26:b7:8f:77:eb:55:84:80:e2:8f:1b: 78:ba:a6:51:7d:7e:a5:1f:26:ee:36:ca:9c:79:f7:2b:91:20: db:0d:20:cf:b1:d0:7c:b6:c1:bb:ed:1f:2d:67:22:c5:d5:7b: db:07:db:0f:c4:65:1a:7c:36:cf:8a:c7:84:4d:cb:3c:db:45: a8:4a:4a:da:89:dc:c7:e5:81:46:fa:4d:29:34:4a:01:80:91: 47:41:4c:da:2f:39:f8:d2:4c:6b:12:5e:75:d5:63:68:4b:d7: 08:4a:8e:c2:3b:4d:80:27:35:24:33:ad:dc:6b:3f:d6:c4:4f: d1:ba:fb:f1:f6:03:6f:36:87:d5:eb:26:46:34:99:10:59:76: 82:88:8e:b5:f0:0c:43:b5:15:89:1b:26:9b:cd:99:24:0b:ba: e7:7c:0e:92:66:41:63:a7:31:b4:e9:1c:fa:0d:cc:da:41:c2: 43:ca:36:3c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0fgkjkQ8vPDhk3rgizmYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJiMTA1ZmEzMmIyYjE3NWYxOGRkNTkwOGRkMjcxOTE1YmJm NGUzOGUwHhcNMjUxMjA2MDQwMTAwWhcNMjUxMjA3MDQwMTAwWjAzMTEwLwYDVQQD Eyg1MTY0ODA0NWRjYjFiZjhkMmZlZGMzYzM2MzMyMGY5MWQ2YTNiODAyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3Q0IRXVHoYHGJ9XCT90EX2GYMs1x xAGV1DDw17GlqJav6I79uIcFu1vK6DrSJigLzjJdIzvU4NH0JELnb4TrR/CEB/x4 AMdbvNug+gfEJ0FrmBjOcyaxl/VtvfOZsoVIbtrRKfpQxLzNcqrUdRxrvOrTP/kk 0R/x+7xc9BJGFSnVlD2TULrJ0z2WhW6XV521qJwCUUojMaN8tO/gIcMzy0eamD3h DDzUsPGdqqDuZ5brtZHxShLiOolMl0d9rdhytrgbQ5BK55WKhfL+UYsxBi3ZmWh5 ILeKUm3mFxXCdBaQHLR95eGKJ7ybw7cORqWkta3q82mGjIjm3RKvxcnizwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFFkgEXcsb+NL+3Dw2MyD5HWo7gCMB8GA1UdIwQY MBaAFLsQX6MrKxdfGN1ZCN0nGRW79OOOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdXhCZm95c3JGMThZM1ZrSTNTY1pGYnYwNDQ0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC8zYjJiYjMtZmRiNi00NmFmLWIzZDIt YmUxMWMxNGRiNmUwLzEvdXhCZm95c3JGMThZM1ZrSTNTY1pGYnYwNDQ0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNC8zYjJiYjMtZmRiNi00NmFmLWIzZDItYmUxMWMxNGRiNmUw LzEvdXhCZm95c3JGMThZM1ZrSTNTY1pGYnYwNDQ0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT1LEmWcO Tk2gUBvyrHboo/yp/UP/2p4UYH4eKMiSJ2Fl5bv3MFOwjmeBqqBwZTrFWmPKkxWA gAa2/VC+6vfrhqYZH1qaLg6EBuSw7qJTLSa3j3frVYSA4o8beLqmUX1+pR8m7jbK nHn3K5Eg2w0gz7HQfLbBu+0fLWcixdV72wfbD8RlGnw2z4rHhE3LPNtFqEpK2onc x+WBRvpNKTRKAYCRR0FM2i85+NJMaxJeddVjaEvXCEqOwjtNgCc1JDOt3Gs/1sRP 0br78fYDbzaH1esmRjSZEFl2goiOtfAMQ7UViRsmm82ZJAu653wOkmZBY6cxtOkc +g3M2kHCQ8o2PA== -----END CERTIFICATE-----Generated at Sat Dec 6 07:26:25 2025 by rpki-client