This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/fbbf8d-2c43-429d-b5cd-fcc220644558/1/UpNDI1WBz0EEGQ2noMoXS5wNC9U.mft File: UpNDI1WBz0EEGQ2noMoXS5wNC9U.mft (raw, json) Hash identifier: wB60HfyVYTPZi39jptgewPC9u708+RnND3IvZCwHhsw= Subject key identifier: 88:80:90:06:2A:AC:83:69:53:DC:8A:23:44:A1:F5:23:8C:6E:61:A3 Authority key identifier: 52:93:43:23:55:81:CF:41:04:19:0D:A7:A0:CA:17:4B:9C:0D:0B:D5 Certificate issuer: /CN=529343235581cf4104190da7a0ca174b9c0d0bd5 Certificate serial: 019AF19B8222DA208CD23A16D5B3AAE4B220 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UpNDI1WBz0EEGQ2noMoXS5wNC9U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/fbbf8d-2c43-429d-b5cd-fcc220644558/1/UpNDI1WBz0EEGQ2noMoXS5wNC9U.mft Manifest number: 0FC1 Signing time: Sat 06 Dec 2025 03:01:31 +0000 Manifest this update: Sat 06 Dec 2025 03:01:31 +0000 Manifest next update: Sun 07 Dec 2025 03:01:31 +0000 Files and hashes: 1: 6O-rdAPfJL5ja0fsAq0cDrxpBv4.roa (hash: 6xTcUx7aYzPFSdoIn+1iA2U6ilYMmAiW4t3gwfarhms=) 2: UpNDI1WBz0EEGQ2noMoXS5wNC9U.crl (hash: yk9iFZpg8ESBPy3IYoCTZm5d6qu/Bbrc5n8XM1pEpXI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/fbbf8d-2c43-429d-b5cd-fcc220644558/1/UpNDI1WBz0EEGQ2noMoXS5wNC9U.crl rsync://rpki.ripe.net/repository/DEFAULT/46/fbbf8d-2c43-429d-b5cd-fcc220644558/1/UpNDI1WBz0EEGQ2noMoXS5wNC9U.mft rsync://rpki.ripe.net/repository/DEFAULT/UpNDI1WBz0EEGQ2noMoXS5wNC9U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:82:22:da:20:8c:d2:3a:16:d5:b3:aa:e4:b2:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=529343235581cf4104190da7a0ca174b9c0d0bd5 Validity Not Before: Dec 6 03:01:31 2025 GMT Not After : Dec 7 03:01:31 2025 GMT Subject: CN=888090062aac836953dc8a2344a1f5238c6e61a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:11:8a:6d:35:06:3d:6a:dc:4c:bc:27:49:74: 49:6a:a0:0a:43:47:64:c6:5e:1d:10:76:f6:50:77: 78:f8:83:6d:03:ac:27:be:f6:2f:26:78:da:29:36: a0:97:ae:c8:52:e4:90:c7:25:a8:b2:c7:0f:87:52: 21:ec:74:f8:a7:9a:06:53:b9:91:31:c9:b1:81:ee: f8:e3:ae:a7:5e:bd:4d:8f:8b:5d:0c:8a:32:84:17: 6b:17:5d:74:7c:d7:0d:76:d2:cc:b5:a6:c6:2f:f2: 2e:a2:e0:1a:da:4a:1a:3c:a3:0a:51:19:cc:a2:03: 0b:70:5b:00:42:20:0d:a7:be:e9:c2:6c:6c:77:a2: a1:4d:53:41:81:e7:50:68:c5:97:50:cb:9b:36:25: 70:0a:e3:19:fb:5c:57:8e:f0:78:4c:f4:9f:cb:27: 68:77:dc:f3:23:2b:9b:d6:38:49:d0:56:44:6c:57: 47:c9:d5:33:04:79:01:be:07:5e:24:f5:93:31:3e: 90:44:91:33:49:4c:e3:e0:d1:75:13:3e:18:9f:a5: 02:23:0b:7c:f9:53:1c:ef:a8:15:48:17:3f:8c:b6: bb:45:cf:52:8d:8a:e0:1f:af:ee:2c:1e:9a:9a:d9: 8b:54:9b:e9:95:37:6b:1b:64:cf:e4:d2:fd:a7:be: d8:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:80:90:06:2A:AC:83:69:53:DC:8A:23:44:A1:F5:23:8C:6E:61:A3 X509v3 Authority Key Identifier: keyid:52:93:43:23:55:81:CF:41:04:19:0D:A7:A0:CA:17:4B:9C:0D:0B:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UpNDI1WBz0EEGQ2noMoXS5wNC9U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/fbbf8d-2c43-429d-b5cd-fcc220644558/1/UpNDI1WBz0EEGQ2noMoXS5wNC9U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/46/fbbf8d-2c43-429d-b5cd-fcc220644558/1/UpNDI1WBz0EEGQ2noMoXS5wNC9U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:d0:3a:34:26:77:ef:90:b5:28:db:aa:e3:45:fc:fa:f4:ee: 87:50:b6:91:b6:85:ba:08:f0:2d:0c:ae:b9:8e:96:c0:9d:bb: 37:61:47:5b:61:62:d5:96:b7:7c:c0:9d:65:fa:9a:d9:13:c0: 00:93:08:91:74:25:0d:71:e1:62:10:01:2e:46:73:ea:dd:5c: 58:10:9c:75:2e:d8:70:59:13:af:cd:0e:de:dd:ab:17:ff:6c: 52:e2:51:cd:9b:08:e1:5b:47:b7:65:94:07:cb:e7:42:a1:10: 30:83:e2:f1:2d:6b:59:0d:e8:7c:0a:55:a4:c1:7e:56:7f:a7: d6:85:bf:0a:18:b3:20:de:fd:5b:8a:8c:31:51:33:6c:98:41: 30:46:e1:b2:95:4f:0d:c4:7d:f7:e4:e8:9a:41:2d:a7:ce:68: 2b:48:8a:52:2e:98:48:08:ec:80:fc:6e:c9:19:88:80:d4:69: c9:7d:47:a5:6b:28:18:f1:a5:67:ff:f1:0d:0e:15:2d:08:e0: 3a:b9:31:96:7c:a1:82:10:04:aa:53:2d:df:50:3f:2b:6a:33: 58:2f:97:31:9f:68:5e:f5:3a:4b:cf:05:07:45:a7:47:00:1d: a8:7a:69:a1:bf:11:86:54:58:4a:99:24:f2:f8:5a:e9:21:1d: 4f:93:58:ae -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm4Ii2iCM0joW1bOq5LIgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyOTM0MzIzNTU4MWNmNDEwNDE5MGRhN2EwY2ExNzRiOWMw ZDBiZDUwHhcNMjUxMjA2MDMwMTMxWhcNMjUxMjA3MDMwMTMxWjAzMTEwLwYDVQQD Eyg4ODgwOTAwNjJhYWM4MzY5NTNkYzhhMjM0NGExZjUyMzhjNmU2MWEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApBGKbTUGPWrcTLwnSXRJaqAKQ0dk xl4dEHb2UHd4+INtA6wnvvYvJnjaKTagl67IUuSQxyWosscPh1Ih7HT4p5oGU7mR Mcmxge74466nXr1Nj4tdDIoyhBdrF110fNcNdtLMtabGL/IuouAa2koaPKMKURnM ogMLcFsAQiANp77pwmxsd6KhTVNBgedQaMWXUMubNiVwCuMZ+1xXjvB4TPSfyydo d9zzIyub1jhJ0FZEbFdHydUzBHkBvgdeJPWTMT6QRJEzSUzj4NF1Ez4Yn6UCIwt8 +VMc76gVSBc/jLa7Rc9SjYrgH6/uLB6amtmLVJvplTdrG2TP5NL9p77Y7wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIiAkAYqrINpU9yKI0Sh9SOMbmGjMB8GA1UdIwQY MBaAFFKTQyNVgc9BBBkNp6DKF0ucDQvVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXBOREkxV0J6MEVFR1Eybm9Nb1hTNXdOQzlVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni9mYmJmOGQtMmM0My00MjlkLWI1Y2Qt ZmNjMjIwNjQ0NTU4LzEvVXBOREkxV0J6MEVFR1Eybm9Nb1hTNXdOQzlVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ni9mYmJmOGQtMmM0My00MjlkLWI1Y2QtZmNjMjIwNjQ0NTU4 LzEvVXBOREkxV0J6MEVFR1Eybm9Nb1hTNXdOQzlVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAF9A6NCZ3 75C1KNuq40X8+vTuh1C2kbaFugjwLQyuuY6WwJ27N2FHW2Fi1Za3fMCdZfqa2RPA AJMIkXQlDXHhYhABLkZz6t1cWBCcdS7YcFkTr80O3t2rF/9sUuJRzZsI4VtHt2WU B8vnQqEQMIPi8S1rWQ3ofApVpMF+Vn+n1oW/ChizIN79W4qMMVEzbJhBMEbhspVP DcR99+TomkEtp85oK0iKUi6YSAjsgPxuyRmIgNRpyX1HpWsoGPGlZ//xDQ4VLQjg OrkxlnyhghAEqlMt31A/K2ozWC+XMZ9oXvU6S88FB0WnRwAdqHppob8RhlRYSpkk 8vha6SEdT5NYrg== -----END CERTIFICATE-----Generated at Sat Dec 6 07:26:39 2025 by rpki-client