This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.mft File: UIqaCKvvdNzFEAT0-uAmbWIDleM.mft (raw, json) Hash identifier: yfs0CBzVB8zN7qsPtynFAhWJ5Dwp9dB2OJlm9lnh+BM= Subject key identifier: 6E:B9:B4:80:8E:83:BC:95:76:DB:25:4F:61:46:76:0E:A4:84:8C:23 Authority key identifier: 50:8A:9A:08:AB:EF:74:DC:C5:10:04:F4:FA:E0:26:6D:62:03:95:E3 Certificate issuer: /CN=508a9a08abef74dcc51004f4fae0266d620395e3 Certificate serial: 019AF19AA6C234941A2AE437F48B0FEEBCE4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UIqaCKvvdNzFEAT0-uAmbWIDleM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.mft Manifest number: 0F55 Signing time: Sat 06 Dec 2025 03:00:35 +0000 Manifest this update: Sat 06 Dec 2025 03:00:35 +0000 Manifest next update: Sun 07 Dec 2025 03:00:35 +0000 Files and hashes: 1: 8CmFhnWxaCeDeglOctNQZC1ZN84.roa (hash: mRPJMJZCvcTnlYvn8UFVdthp3gWoolEvhKxuWOWcGDk=) 2: UIqaCKvvdNzFEAT0-uAmbWIDleM.crl (hash: Daqcc0nOqGf0KX8vjkTiwIXvb2f0x7yM0PQBTSrf17c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.crl rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.mft rsync://rpki.ripe.net/repository/DEFAULT/UIqaCKvvdNzFEAT0-uAmbWIDleM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9a:a6:c2:34:94:1a:2a:e4:37:f4:8b:0f:ee:bc:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=508a9a08abef74dcc51004f4fae0266d620395e3 Validity Not Before: Dec 6 03:00:35 2025 GMT Not After : Dec 7 03:00:35 2025 GMT Subject: CN=6eb9b4808e83bc9576db254f6146760ea4848c23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:12:b1:64:ef:dc:1e:24:f8:14:2b:36:6e:a0: a6:1b:55:8d:b8:1c:ff:68:e6:ac:82:46:cc:2d:55: 3d:ed:48:a3:45:c5:ef:49:ec:21:b0:a3:af:4a:ce: 89:d4:23:59:fb:1e:1e:5d:55:e2:72:2c:87:b3:41: 9e:5d:6e:ef:79:c3:65:bb:0a:52:cb:ec:e6:39:8e: 77:30:07:3d:01:9f:e5:0c:c7:95:67:f4:31:6c:fb: 27:59:e6:ce:f9:08:7c:9f:9c:5b:8f:99:e3:4a:c5: b4:37:df:1c:47:4c:34:5d:fa:52:6d:b6:42:82:8c: 5d:4e:bc:ff:0c:cd:4b:27:b8:c3:ba:85:87:46:5d: ac:2f:f1:37:05:94:37:90:e6:31:a4:37:6a:c4:ee: 1c:27:3f:46:c1:2f:9b:85:59:92:83:6e:36:cc:00: 7b:dd:3d:f8:05:dc:89:4e:1a:e2:0b:4c:38:b1:a6: 57:f1:f9:a6:42:a9:af:12:b4:60:1c:60:31:82:a6: ba:63:3f:ff:09:14:45:0a:92:a9:1c:54:3c:2b:a2: 57:e0:bd:0b:1a:61:bf:2d:9d:9a:17:0d:67:9b:c5: 5d:83:c6:8b:6d:2e:2c:b6:06:6c:64:8d:ea:53:24: 05:a0:a8:a9:c4:9f:81:ee:b8:cb:55:a7:5d:50:3a: 8d:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:B9:B4:80:8E:83:BC:95:76:DB:25:4F:61:46:76:0E:A4:84:8C:23 X509v3 Authority Key Identifier: keyid:50:8A:9A:08:AB:EF:74:DC:C5:10:04:F4:FA:E0:26:6D:62:03:95:E3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UIqaCKvvdNzFEAT0-uAmbWIDleM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:65:a7:5f:11:18:a5:c8:11:c6:97:a2:81:57:05:22:1f:99: 7f:85:3f:1b:52:78:ec:29:36:d5:81:d1:5e:41:21:5c:68:6f: a8:76:ce:b1:0e:05:53:8b:c3:ad:9e:28:b4:a2:38:fc:ed:93: b2:96:ba:67:a1:65:e7:70:23:aa:0b:a7:50:2d:00:5c:be:81: 75:ed:d1:cb:3c:ed:a2:6c:d0:c8:2d:65:bb:7f:74:cd:dc:8f: 74:6f:49:e0:8e:6f:a8:11:00:fd:79:1a:3f:a9:96:9f:e7:75: a3:0b:27:45:10:b1:d0:b1:6e:e9:eb:ca:7a:a0:bf:47:86:13: 2a:8d:04:93:92:15:3e:cf:fc:b7:5b:b4:b5:85:3a:b3:bb:41: 0c:04:3d:7a:53:fb:0d:cd:1b:d7:08:77:0a:44:15:53:89:a1: 8b:a6:5e:1d:e1:74:3a:81:56:f2:b4:81:5b:c9:41:90:a2:fb: 5e:44:37:4c:53:aa:f6:cd:05:6c:46:53:65:01:7f:c2:5d:5f: 54:8d:4d:5d:b0:8e:5d:2d:39:18:c0:63:34:81:00:a4:66:d8: f6:31:3f:d0:20:41:6b:51:19:18:0a:56:72:d7:44:ff:7a:c8: ab:8f:3b:30:c3:2b:47:f8:ac:28:af:75:90:bc:0e:5a:57:7a: 82:31:78:69 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmqbCNJQaKuQ39IsP7rzkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUwOGE5YTA4YWJlZjc0ZGNjNTEwMDRmNGZhZTAyNjZkNjIw Mzk1ZTMwHhcNMjUxMjA2MDMwMDM1WhcNMjUxMjA3MDMwMDM1WjAzMTEwLwYDVQQD Eyg2ZWI5YjQ4MDhlODNiYzk1NzZkYjI1NGY2MTQ2NzYwZWE0ODQ4YzIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0xKxZO/cHiT4FCs2bqCmG1WNuBz/ aOasgkbMLVU97UijRcXvSewhsKOvSs6J1CNZ+x4eXVXiciyHs0GeXW7vecNluwpS y+zmOY53MAc9AZ/lDMeVZ/QxbPsnWebO+Qh8n5xbj5njSsW0N98cR0w0XfpSbbZC goxdTrz/DM1LJ7jDuoWHRl2sL/E3BZQ3kOYxpDdqxO4cJz9GwS+bhVmSg242zAB7 3T34BdyJThriC0w4saZX8fmmQqmvErRgHGAxgqa6Yz//CRRFCpKpHFQ8K6JX4L0L GmG/LZ2aFw1nm8Vdg8aLbS4stgZsZI3qUyQFoKipxJ+B7rjLVaddUDqNowIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG65tICOg7yVdtslT2FGdg6khIwjMB8GA1UdIwQY MBaAFFCKmgir73TcxRAE9PrgJm1iA5XjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVUlxYUNLdnZkTnpGRUFUMC11QW1iV0lEbGVNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC9kZWNhMGUtZGQ0Yy00NGVmLWJmNzct MDVkYmUzZGY5OGY2LzEvVUlxYUNLdnZkTnpGRUFUMC11QW1iV0lEbGVNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC9kZWNhMGUtZGQ0Yy00NGVmLWJmNzctMDVkYmUzZGY5OGY2 LzEvVUlxYUNLdnZkTnpGRUFUMC11QW1iV0lEbGVNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAf2WnXxEY pcgRxpeigVcFIh+Zf4U/G1J47Ck21YHRXkEhXGhvqHbOsQ4FU4vDrZ4otKI4/O2T spa6Z6Fl53AjqgunUC0AXL6Bde3RyzztomzQyC1lu390zdyPdG9J4I5vqBEA/Xka P6mWn+d1owsnRRCx0LFu6evKeqC/R4YTKo0Ek5IVPs/8t1u0tYU6s7tBDAQ9elP7 Dc0b1wh3CkQVU4mhi6ZeHeF0OoFW8rSBW8lBkKL7XkQ3TFOq9s0FbEZTZQF/wl1f VI1NXbCOXS05GMBjNIEApGbY9jE/0CBBa1EZGApWctdE/3rIq487MMMrR/isKK91 kLwOWld6gjF4aQ== -----END CERTIFICATE-----Generated at Sat Dec 6 06:57:21 2025 by rpki-client