This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/7a53ec-56d7-45cd-bab8-b32adf61ab47/1/ucN059N57ajbliAKTu_lvBwok58.mft File: ucN059N57ajbliAKTu_lvBwok58.mft (raw, json) Hash identifier: mg0azEuobiIP0hoTgaGrkIZcDErm/ZJ/VqSPJn3tan8= Subject key identifier: 78:91:06:D2:D3:D5:D6:F9:B8:A0:8A:AE:D7:54:50:AB:5A:4F:0D:08 Authority key identifier: B9:C3:74:E7:D3:79:ED:A8:DB:96:20:0A:4E:EF:E5:BC:1C:28:93:9F Certificate issuer: /CN=b9c374e7d379eda8db96200a4eefe5bc1c28939f Certificate serial: 019AF12DE98923833BDE71F06DF34F95EA01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ucN059N57ajbliAKTu_lvBwok58.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/7a53ec-56d7-45cd-bab8-b32adf61ab47/1/ucN059N57ajbliAKTu_lvBwok58.mft Manifest number: 0E18 Signing time: Sat 06 Dec 2025 01:01:49 +0000 Manifest this update: Sat 06 Dec 2025 01:01:49 +0000 Manifest next update: Sun 07 Dec 2025 01:01:49 +0000 Files and hashes: 1: ucN059N57ajbliAKTu_lvBwok58.crl (hash: VYD6AKAFywmLXziunGsKOUNENFrE07E2X2dRoojr558=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/7a53ec-56d7-45cd-bab8-b32adf61ab47/1/ucN059N57ajbliAKTu_lvBwok58.crl rsync://rpki.ripe.net/repository/DEFAULT/64/7a53ec-56d7-45cd-bab8-b32adf61ab47/1/ucN059N57ajbliAKTu_lvBwok58.mft rsync://rpki.ripe.net/repository/DEFAULT/ucN059N57ajbliAKTu_lvBwok58.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:e9:89:23:83:3b:de:71:f0:6d:f3:4f:95:ea:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b9c374e7d379eda8db96200a4eefe5bc1c28939f Validity Not Before: Dec 6 01:01:49 2025 GMT Not After : Dec 7 01:01:49 2025 GMT Subject: CN=789106d2d3d5d6f9b8a08aaed75450ab5a4f0d08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ac:68:8e:8a:26:f9:f1:4b:bf:8c:69:2e:f4: 2d:46:73:0c:f3:f0:0e:7a:ea:8a:14:c5:71:b3:f3: b0:35:0d:02:16:bd:1f:32:32:4a:ff:4e:df:52:d1: 7c:04:c0:a6:28:1d:f5:3e:b2:63:72:89:08:ec:9d: bc:0f:d1:50:14:dd:3a:b6:40:d0:bd:aa:fe:44:16: 20:d4:43:eb:c2:59:54:62:3e:ff:92:dc:c9:ec:b4: bf:4b:33:c3:b1:25:2d:fc:8d:2d:49:82:35:1e:64: e6:e4:78:5c:a5:4c:7e:73:6e:ba:1c:62:ce:0d:1b: e7:da:ec:42:92:9d:6c:a9:4b:28:52:84:c3:cc:ef: e6:91:0b:62:b1:4c:6a:23:74:5a:b3:6c:c5:7f:ee: 6b:ca:e5:d9:da:fc:e8:55:26:72:af:67:0d:62:6b: a7:10:30:52:f3:2d:9f:dc:32:2d:99:ba:fe:fa:56: 9e:6e:d0:9f:0c:31:84:d7:7b:8c:9b:c3:59:08:bc: 9c:9e:03:72:de:b2:9a:92:2f:06:97:90:7b:78:a6: c7:84:a4:ac:13:07:04:70:72:bb:4f:4d:90:f8:4d: df:82:37:57:a1:f2:53:61:93:7f:bf:43:16:99:7e: 0d:f2:0b:bb:c5:36:a7:63:35:5f:85:ac:03:b2:bb: 56:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:91:06:D2:D3:D5:D6:F9:B8:A0:8A:AE:D7:54:50:AB:5A:4F:0D:08 X509v3 Authority Key Identifier: keyid:B9:C3:74:E7:D3:79:ED:A8:DB:96:20:0A:4E:EF:E5:BC:1C:28:93:9F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ucN059N57ajbliAKTu_lvBwok58.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/7a53ec-56d7-45cd-bab8-b32adf61ab47/1/ucN059N57ajbliAKTu_lvBwok58.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/7a53ec-56d7-45cd-bab8-b32adf61ab47/1/ucN059N57ajbliAKTu_lvBwok58.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:62:e6:1f:9a:d4:b2:fd:aa:8c:99:f4:a4:a1:f2:59:aa:62: 8a:64:8b:ac:fa:67:54:05:20:e2:1f:02:80:2f:69:1c:87:57: fa:c3:c1:d7:cb:ef:4e:49:a0:42:c8:07:78:03:a7:31:1a:74: ba:ee:a1:47:97:41:93:e7:8c:fb:34:1b:68:c0:64:75:96:77: 4f:75:c2:ae:96:3e:f3:85:e1:18:5e:6c:93:95:c3:db:e4:33: 7d:90:da:3f:26:3e:19:4d:6f:a7:1c:7d:29:b5:b4:96:e4:42: 87:06:c4:54:dc:d4:fd:a4:56:b1:be:d5:0e:f2:e5:bd:94:78: 7e:8d:57:09:0b:2d:03:ee:e2:f3:80:68:89:74:86:30:1e:ed: 7e:a6:32:50:c8:15:3b:f3:1f:17:18:c9:3c:8b:32:23:d2:fd: 10:de:38:d4:f4:2a:be:cd:a2:ed:30:c6:1d:bc:0b:a1:2a:c3: 2b:d9:c4:c5:85:62:54:a1:5b:cb:35:c5:79:ab:af:d6:a2:5e: cf:6b:0d:d1:ec:9b:df:d9:66:36:67:0f:62:37:9a:1f:a0:22: e6:07:b4:59:91:d1:50:42:b3:03:14:7b:09:db:55:29:a1:2d: 21:fc:97:89:e7:a4:e2:78:43:7a:f1:cc:7d:4a:6e:8c:98:5d: a9:1b:bb:9e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLemJI4M73nHwbfNPleoBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI5YzM3NGU3ZDM3OWVkYThkYjk2MjAwYTRlZWZlNWJjMWMy ODkzOWYwHhcNMjUxMjA2MDEwMTQ5WhcNMjUxMjA3MDEwMTQ5WjAzMTEwLwYDVQQD Eyg3ODkxMDZkMmQzZDVkNmY5YjhhMDhhYWVkNzU0NTBhYjVhNGYwZDA4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqqxojoom+fFLv4xpLvQtRnMM8/AO euqKFMVxs/OwNQ0CFr0fMjJK/07fUtF8BMCmKB31PrJjcokI7J28D9FQFN06tkDQ var+RBYg1EPrwllUYj7/ktzJ7LS/SzPDsSUt/I0tSYI1HmTm5HhcpUx+c266HGLO DRvn2uxCkp1sqUsoUoTDzO/mkQtisUxqI3Ras2zFf+5ryuXZ2vzoVSZyr2cNYmun EDBS8y2f3DItmbr++laebtCfDDGE13uMm8NZCLycngNy3rKaki8Gl5B7eKbHhKSs EwcEcHK7T02Q+E3fgjdXofJTYZN/v0MWmX4N8gu7xTanYzVfhawDsrtWawIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHiRBtLT1db5uKCKrtdUUKtaTw0IMB8GA1UdIwQY MBaAFLnDdOfTee2o25YgCk7v5bwcKJOfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdWNOMDU5TjU3YWpibGlBS1R1X2x2QndvazU4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC83YTUzZWMtNTZkNy00NWNkLWJhYjgt YjMyYWRmNjFhYjQ3LzEvdWNOMDU5TjU3YWpibGlBS1R1X2x2QndvazU4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC83YTUzZWMtNTZkNy00NWNkLWJhYjgtYjMyYWRmNjFhYjQ3 LzEvdWNOMDU5TjU3YWpibGlBS1R1X2x2QndvazU4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbmLmH5rU sv2qjJn0pKHyWapiimSLrPpnVAUg4h8CgC9pHIdX+sPB18vvTkmgQsgHeAOnMRp0 uu6hR5dBk+eM+zQbaMBkdZZ3T3XCrpY+84XhGF5sk5XD2+QzfZDaPyY+GU1vpxx9 KbW0luRChwbEVNzU/aRWsb7VDvLlvZR4fo1XCQstA+7i84BoiXSGMB7tfqYyUMgV O/MfFxjJPIsyI9L9EN441PQqvs2i7TDGHbwLoSrDK9nExYViVKFbyzXFeauv1qJe z2sN0eyb39lmNmcPYjeaH6Ai5ge0WZHRUEKzAxR7CdtVKaEtIfyXieek4nhDevHM fUpujJhdqRu7ng== -----END CERTIFICATE-----Generated at Sat Dec 6 09:30:23 2025 by rpki-client