This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.mft File: uIF3qaNGnbOs8QqY9sA5MeNVFfo.mft (raw, json) Hash identifier: +iOi26rzPgudTPEw87qxym5kd6j/KzGlZU+HmIJBqlc= Subject key identifier: D4:AF:D3:E9:AD:C8:9C:E0:62:F3:C4:F7:67:46:00:34:43:5A:A5:C6 Authority key identifier: B8:81:77:A9:A3:46:9D:B3:AC:F1:0A:98:F6:C0:39:31:E3:55:15:FA Certificate issuer: /CN=b88177a9a3469db3acf10a98f6c03931e35515fa Certificate serial: 019AF38A20657577CF37D2B647EF7414A8FE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uIF3qaNGnbOs8QqY9sA5MeNVFfo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.mft Manifest number: 06FB Signing time: Sat 06 Dec 2025 12:01:46 +0000 Manifest this update: Sat 06 Dec 2025 12:01:46 +0000 Manifest next update: Sun 07 Dec 2025 12:01:46 +0000 Files and hashes: 1: uIF3qaNGnbOs8QqY9sA5MeNVFfo.crl (hash: R/HqiYA5aL2kxTkd1B83Y4eizn603cdbZ7WtcdDORoA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.mft rsync://rpki.ripe.net/repository/DEFAULT/uIF3qaNGnbOs8QqY9sA5MeNVFfo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 12:01:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:8a:20:65:75:77:cf:37:d2:b6:47:ef:74:14:a8:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b88177a9a3469db3acf10a98f6c03931e35515fa Validity Not Before: Dec 6 12:01:46 2025 GMT Not After : Dec 7 12:01:46 2025 GMT Subject: CN=d4afd3e9adc89ce062f3c4f767460034435aa5c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:01:4f:fc:94:9f:5e:4b:ac:6a:4e:a0:d2:e2: ab:5a:04:e5:d9:e0:2b:fe:d2:72:25:f5:f4:c8:f5: 6c:01:18:01:bb:be:b8:74:f8:68:03:f3:a5:1b:49: e5:50:1a:64:27:eb:99:8b:2e:a4:2d:5e:90:b1:4b: 03:a1:1e:41:73:cd:bf:87:4a:40:a4:f5:18:60:cc: 2e:d8:f6:f5:ef:dd:71:88:25:03:9d:b1:53:83:28: f1:d9:5c:d0:62:c8:56:95:a0:63:37:f5:66:d8:5b: c8:32:4c:cf:36:71:dd:ed:14:42:46:39:cc:d4:6d: 64:00:90:91:72:95:85:73:21:1e:1e:24:84:4e:84: 7b:45:e9:29:92:6e:51:b0:54:65:1f:ef:89:58:f2: a4:fe:f7:29:a9:71:78:ab:9e:f2:b4:87:f2:e4:9f: 73:53:9f:17:a8:df:3f:37:9f:dd:c3:3b:4a:23:6a: 74:86:b7:f3:e1:ad:c8:f0:a1:31:d9:57:a7:43:e7: 4d:db:b0:69:aa:c8:7b:a8:61:7b:1d:1d:8e:6a:12: 01:5e:a2:5e:43:bc:00:10:35:68:57:c6:24:ec:ab: 62:92:ee:01:a5:df:e9:6f:cc:07:d5:93:b6:46:29: a2:69:cc:de:4f:ff:63:cf:07:2a:35:ea:37:d1:46: a9:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:AF:D3:E9:AD:C8:9C:E0:62:F3:C4:F7:67:46:00:34:43:5A:A5:C6 X509v3 Authority Key Identifier: keyid:B8:81:77:A9:A3:46:9D:B3:AC:F1:0A:98:F6:C0:39:31:E3:55:15:FA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uIF3qaNGnbOs8QqY9sA5MeNVFfo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/23c0a9-68b1-40fd-a1e7-eb0885b9003e/1/uIF3qaNGnbOs8QqY9sA5MeNVFfo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:e3:69:86:8d:50:98:cf:7b:97:d4:d3:22:e4:e9:82:c5:b8: 57:a7:9c:7b:dc:65:8e:13:42:b8:ae:a5:ee:5a:5a:41:01:c9: c4:d3:29:48:ed:7a:d8:a4:e1:61:a6:fd:3c:cb:09:9e:f5:46: b6:c4:a5:f6:ac:23:71:41:8a:62:e4:b7:ab:23:6b:63:5e:26: 91:85:28:a8:8b:82:aa:6a:5a:dd:29:0c:40:73:82:fc:aa:b5: 98:91:94:a1:2f:21:7d:63:4e:17:da:13:30:63:e6:f7:ab:6a: 73:8a:85:01:d9:f6:9a:06:67:69:fc:1c:67:41:20:ec:ad:9e: 06:38:ba:82:13:83:8d:f9:ae:37:5a:e5:b7:e3:86:d3:00:bc: 1b:55:78:b4:61:a8:c1:34:55:35:c6:16:0c:a8:62:f2:01:97: 34:51:e2:97:90:f8:2b:55:93:bc:20:bb:f6:03:36:10:cc:70: ff:19:7d:f6:ce:c4:87:47:5b:48:61:2f:a5:32:89:db:d2:53: a7:d3:d0:f6:23:85:24:97:58:2b:d6:2c:76:42:b6:ac:cd:10: 61:ab:b3:7e:d7:8c:ac:9b:ed:bf:ec:b0:d9:7b:cb:43:c0:39: 34:1f:92:17:94:f9:60:63:ac:c8:1d:8e:5b:0a:35:5c:c8:fe: c2:ea:67:dd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrziiBldXfPN9K2R+90FKj+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI4ODE3N2E5YTM0NjlkYjNhY2YxMGE5OGY2YzAzOTMxZTM1 NTE1ZmEwHhcNMjUxMjA2MTIwMTQ2WhcNMjUxMjA3MTIwMTQ2WjAzMTEwLwYDVQQD EyhkNGFmZDNlOWFkYzg5Y2UwNjJmM2M0Zjc2NzQ2MDAzNDQzNWFhNWM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzAFP/JSfXkusak6g0uKrWgTl2eAr /tJyJfX0yPVsARgBu764dPhoA/OlG0nlUBpkJ+uZiy6kLV6QsUsDoR5Bc82/h0pA pPUYYMwu2Pb1791xiCUDnbFTgyjx2VzQYshWlaBjN/Vm2FvIMkzPNnHd7RRCRjnM 1G1kAJCRcpWFcyEeHiSEToR7Rekpkm5RsFRlH++JWPKk/vcpqXF4q57ytIfy5J9z U58XqN8/N5/dwztKI2p0hrfz4a3I8KEx2VenQ+dN27Bpqsh7qGF7HR2OahIBXqJe Q7wAEDVoV8Yk7Ktiku4Bpd/pb8wH1ZO2RimiaczeT/9jzwcqNeo30Uap6wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNSv0+mtyJzgYvPE92dGADRDWqXGMB8GA1UdIwQY MBaAFLiBd6mjRp2zrPEKmPbAOTHjVRX6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdUlGM3FhTkduYk9zOFFxWTlzQTVNZU5WRmZvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS8yM2MwYTktNjhiMS00MGZkLWExZTct ZWIwODg1YjkwMDNlLzEvdUlGM3FhTkduYk9zOFFxWTlzQTVNZU5WRmZvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS8yM2MwYTktNjhiMS00MGZkLWExZTctZWIwODg1YjkwMDNl LzEvdUlGM3FhTkduYk9zOFFxWTlzQTVNZU5WRmZvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK+Npho1Q mM97l9TTIuTpgsW4V6ece9xljhNCuK6l7lpaQQHJxNMpSO162KThYab9PMsJnvVG tsSl9qwjcUGKYuS3qyNrY14mkYUoqIuCqmpa3SkMQHOC/Kq1mJGUoS8hfWNOF9oT MGPm96tqc4qFAdn2mgZnafwcZ0Eg7K2eBji6ghODjfmuN1rlt+OG0wC8G1V4tGGo wTRVNcYWDKhi8gGXNFHil5D4K1WTvCC79gM2EMxw/xl99s7Eh0dbSGEvpTKJ29JT p9PQ9iOFJJdYK9YsdkK2rM0QYauzfteMrJvtv+yw2XvLQ8A5NB+SF5T5YGOsyB2O Wwo1XMj+wupn3Q== -----END CERTIFICATE-----Generated at Sat Dec 6 17:22:15 2025 by rpki-client