This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.mft File: UIqaCKvvdNzFEAT0-uAmbWIDleM.mft (raw, json) Hash identifier: szjNpXUCkB/i309lUZ/xExiXBrrVPZLuv+piyo3xyqM= Subject key identifier: 84:9D:BF:04:C0:3D:F6:86:3A:23:AB:0C:8A:E0:00:FD:43:5E:9B:8D Authority key identifier: 50:8A:9A:08:AB:EF:74:DC:C5:10:04:F4:FA:E0:26:6D:62:03:95:E3 Certificate issuer: /CN=508a9a08abef74dcc51004f4fae0266d620395e3 Certificate serial: 019B27AD7AA569BDD3A8B6E73AD50E9C0916 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UIqaCKvvdNzFEAT0-uAmbWIDleM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.mft Manifest number: 0F71 Signing time: Tue 16 Dec 2025 15:00:39 +0000 Manifest this update: Tue 16 Dec 2025 15:00:39 +0000 Manifest next update: Wed 17 Dec 2025 15:00:39 +0000 Files and hashes: 1: 8CmFhnWxaCeDeglOctNQZC1ZN84.roa (hash: mRPJMJZCvcTnlYvn8UFVdthp3gWoolEvhKxuWOWcGDk=) 2: UIqaCKvvdNzFEAT0-uAmbWIDleM.crl (hash: hIedJYkNpcDtgNfK0brW0Twail1NsoY+1UX8IdQgZEo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.crl rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.mft rsync://rpki.ripe.net/repository/DEFAULT/UIqaCKvvdNzFEAT0-uAmbWIDleM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 14:45:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:27:ad:7a:a5:69:bd:d3:a8:b6:e7:3a:d5:0e:9c:09:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=508a9a08abef74dcc51004f4fae0266d620395e3 Validity Not Before: Dec 16 15:00:39 2025 GMT Not After : Dec 17 15:00:39 2025 GMT Subject: CN=849dbf04c03df6863a23ab0c8ae000fd435e9b8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:7c:99:00:6e:16:68:16:da:b8:42:1f:3c:00: a2:eb:75:79:ca:8b:f1:8a:86:fd:16:06:10:b4:d5: 98:72:68:e8:2a:fa:47:36:75:88:ec:3a:f2:75:85: 33:dc:93:46:e3:b5:29:02:e6:5b:6d:2a:2c:f1:3b: de:c2:08:d8:ef:3a:24:10:5d:64:ab:3a:73:a3:67: 1d:49:2b:33:5b:fe:58:aa:00:54:46:a5:5a:84:7a: 1c:07:93:2d:82:65:fd:92:c0:58:68:89:6b:69:8d: cf:34:43:e7:8a:46:e4:20:0f:b2:ac:02:4a:68:d7: 4c:44:f2:9d:62:2d:57:74:fb:da:27:31:5e:1e:f1: 61:f9:ae:a1:ba:1a:9d:17:16:09:c6:7c:55:d2:79: 16:05:73:a8:a9:60:5b:42:4b:2f:c0:83:f1:04:34: 88:4a:62:0b:d9:ee:69:36:f5:73:78:8a:07:8f:d1: 28:25:54:44:89:6a:95:5a:a7:16:71:52:2b:24:8f: bf:fa:1a:c7:c2:f5:f8:d0:8d:23:6e:a7:52:a5:27: ef:fb:5b:c9:a1:ce:05:62:25:33:95:fb:93:4d:05: 06:21:b7:93:27:57:78:58:b5:c5:fb:58:04:2c:cf: 10:46:74:66:ef:e0:09:01:83:81:6f:fd:15:77:fa: da:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:9D:BF:04:C0:3D:F6:86:3A:23:AB:0C:8A:E0:00:FD:43:5E:9B:8D X509v3 Authority Key Identifier: keyid:50:8A:9A:08:AB:EF:74:DC:C5:10:04:F4:FA:E0:26:6D:62:03:95:E3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UIqaCKvvdNzFEAT0-uAmbWIDleM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0d:50:40:8c:4a:6c:c7:34:a9:c5:ba:22:2f:79:89:fa:1a:fc: 71:9c:88:1b:2d:b3:db:11:d0:fb:ec:30:6f:be:d2:3a:5b:d3: b3:bd:da:58:20:bb:cf:fd:58:d9:f3:cd:f0:b7:28:59:23:34: b8:95:d8:c9:f1:d2:33:fc:f5:eb:da:51:5b:1e:57:1a:3b:ee: d2:bc:1f:ab:82:6d:4f:38:11:fa:64:e3:95:12:63:09:dc:2c: 2c:93:e0:6c:c6:96:a6:75:0e:8a:d4:45:61:31:15:67:39:0b: 05:f9:f1:52:e6:e1:62:e7:ab:a7:18:ce:c7:09:63:85:a4:04: 77:77:d3:7b:dd:76:d8:28:66:df:7c:f6:89:ee:84:95:8c:85: c5:c5:b7:99:fb:d0:84:17:e3:b9:b8:29:33:e9:c0:2a:01:d1: ee:e1:23:04:c6:9c:ec:9a:71:09:b3:12:8b:0a:37:62:2c:9f: 78:47:7f:74:4e:48:33:60:ef:23:c6:10:c2:e0:f0:af:bf:e5: 62:28:73:8f:00:f0:3a:ea:28:bc:7a:a8:13:85:c7:5d:c4:3f: 18:51:95:78:8e:1e:a8:1f:7a:09:8a:5f:8e:d3:b9:32:bd:92: 5d:eb:3c:b3:bc:72:ea:3f:3e:e3:00:09:e4:f1:58:f5:a8:70: 1f:bc:8a:a4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsnrXqlab3TqLbnOtUOnAkWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUwOGE5YTA4YWJlZjc0ZGNjNTEwMDRmNGZhZTAyNjZkNjIw Mzk1ZTMwHhcNMjUxMjE2MTUwMDM5WhcNMjUxMjE3MTUwMDM5WjAzMTEwLwYDVQQD Eyg4NDlkYmYwNGMwM2RmNjg2M2EyM2FiMGM4YWUwMDBmZDQzNWU5YjhkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo3yZAG4WaBbauEIfPACi63V5yovx iob9FgYQtNWYcmjoKvpHNnWI7DrydYUz3JNG47UpAuZbbSos8TvewgjY7zokEF1k qzpzo2cdSSszW/5YqgBURqVahHocB5MtgmX9ksBYaIlraY3PNEPnikbkIA+yrAJK aNdMRPKdYi1XdPvaJzFeHvFh+a6huhqdFxYJxnxV0nkWBXOoqWBbQksvwIPxBDSI SmIL2e5pNvVzeIoHj9EoJVREiWqVWqcWcVIrJI+/+hrHwvX40I0jbqdSpSfv+1vJ oc4FYiUzlfuTTQUGIbeTJ1d4WLXF+1gELM8QRnRm7+AJAYOBb/0Vd/rasQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFISdvwTAPfaGOiOrDIrgAP1DXpuNMB8GA1UdIwQY MBaAFFCKmgir73TcxRAE9PrgJm1iA5XjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVUlxYUNLdnZkTnpGRUFUMC11QW1iV0lEbGVNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC9kZWNhMGUtZGQ0Yy00NGVmLWJmNzct MDVkYmUzZGY5OGY2LzEvVUlxYUNLdnZkTnpGRUFUMC11QW1iV0lEbGVNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC9kZWNhMGUtZGQ0Yy00NGVmLWJmNzctMDVkYmUzZGY5OGY2 LzEvVUlxYUNLdnZkTnpGRUFUMC11QW1iV0lEbGVNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADVBAjEps xzSpxboiL3mJ+hr8cZyIGy2z2xHQ++wwb77SOlvTs73aWCC7z/1Y2fPN8LcoWSM0 uJXYyfHSM/z169pRWx5XGjvu0rwfq4JtTzgR+mTjlRJjCdwsLJPgbMaWpnUOitRF YTEVZzkLBfnxUubhYuerpxjOxwljhaQEd3fTe9122Chm33z2ie6ElYyFxcW3mfvQ hBfjubgpM+nAKgHR7uEjBMac7JpxCbMSiwo3YiyfeEd/dE5IM2DvI8YQwuDwr7/l YihzjwDwOuoovHqoE4XHXcQ/GFGVeI4eqB96CYpfjtO5Mr2SXes8s7xy6j8+4wAJ 5PFY9ahwH7yKpA== -----END CERTIFICATE-----Generated at Tue Dec 16 17:55:16 2025 by rpki-client