This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/6e02a9-08ad-4743-b538-f3029c39b66e/1/u-BbYYon9sEO-Zm8ltmqDL0UraU.mft File: u-BbYYon9sEO-Zm8ltmqDL0UraU.mft (raw, json) Hash identifier: i83eZSUIoLoDWo4ZtGMw3JduMSS//Hx5tpVLimGTriY= Subject key identifier: A2:C4:1A:67:64:5E:74:E0:D4:B6:66:B6:9A:A5:B4:5A:CD:8D:58:5B Authority key identifier: BB:E0:5B:61:8A:27:F6:C1:0E:F9:99:BC:96:D9:AA:0C:BD:14:AD:A5 Certificate issuer: /CN=bbe05b618a27f6c10ef999bc96d9aa0cbd14ada5 Certificate serial: 019AF208D0B128A7CCF4DEC5E485A7260A00 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u-BbYYon9sEO-Zm8ltmqDL0UraU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/6e02a9-08ad-4743-b538-f3029c39b66e/1/u-BbYYon9sEO-Zm8ltmqDL0UraU.mft Manifest number: 02E3 Signing time: Sat 06 Dec 2025 05:00:55 +0000 Manifest this update: Sat 06 Dec 2025 05:00:55 +0000 Manifest next update: Sun 07 Dec 2025 05:00:55 +0000 Files and hashes: 1: u-BbYYon9sEO-Zm8ltmqDL0UraU.crl (hash: 7OGDO3IwRNhAtPyS+oJbE8Bss8dgAMckE5rS/hvxpts=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/6e02a9-08ad-4743-b538-f3029c39b66e/1/u-BbYYon9sEO-Zm8ltmqDL0UraU.crl rsync://rpki.ripe.net/repository/DEFAULT/71/6e02a9-08ad-4743-b538-f3029c39b66e/1/u-BbYYon9sEO-Zm8ltmqDL0UraU.mft rsync://rpki.ripe.net/repository/DEFAULT/u-BbYYon9sEO-Zm8ltmqDL0UraU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:08:d0:b1:28:a7:cc:f4:de:c5:e4:85:a7:26:0a:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bbe05b618a27f6c10ef999bc96d9aa0cbd14ada5 Validity Not Before: Dec 6 05:00:55 2025 GMT Not After : Dec 7 05:00:55 2025 GMT Subject: CN=a2c41a67645e74e0d4b666b69aa5b45acd8d585b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:43:a1:93:7b:66:00:f5:db:f1:bf:c4:93:87: 8d:a0:0b:f4:ef:0e:20:2b:c9:34:f3:30:5a:9c:8c: 29:e6:10:c6:b1:f8:b9:59:06:43:dd:b8:95:45:85: c9:85:72:3e:a7:78:21:23:6e:63:46:9b:b8:90:81: fe:85:0c:c3:e4:70:ef:40:80:ef:b8:3e:72:40:88: a9:f2:bd:59:5a:46:8a:33:dd:be:7e:f1:be:80:8a: b6:2e:1d:78:7c:d4:7d:fd:70:04:22:61:c9:4b:d5: 49:ef:8a:2c:a5:a8:65:bb:d3:02:76:4a:e8:6d:0d: a9:54:52:2d:fd:50:8c:35:67:6a:59:31:60:76:e4: c2:05:a2:90:4a:0f:2c:7f:9a:db:c8:b7:e1:18:08: 19:15:e4:38:ec:c7:4a:50:2f:8d:54:0e:c8:cf:09: 3e:ce:55:9e:ad:19:83:cb:4d:41:38:3a:89:39:cd: 0e:b7:20:02:62:e1:1b:70:48:57:ae:8d:32:28:ff: 28:91:9e:fb:7d:c1:22:38:13:58:54:d4:ae:b9:a5: ac:c2:e7:a4:12:1d:de:3f:9e:5c:1d:36:ac:fe:19: 5b:9a:d8:a3:d9:de:78:18:ab:ce:af:fb:01:e3:07: 3d:9c:95:2c:52:d9:ea:04:8b:2f:21:40:79:a7:67: 75:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:C4:1A:67:64:5E:74:E0:D4:B6:66:B6:9A:A5:B4:5A:CD:8D:58:5B X509v3 Authority Key Identifier: keyid:BB:E0:5B:61:8A:27:F6:C1:0E:F9:99:BC:96:D9:AA:0C:BD:14:AD:A5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u-BbYYon9sEO-Zm8ltmqDL0UraU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/6e02a9-08ad-4743-b538-f3029c39b66e/1/u-BbYYon9sEO-Zm8ltmqDL0UraU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/71/6e02a9-08ad-4743-b538-f3029c39b66e/1/u-BbYYon9sEO-Zm8ltmqDL0UraU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0d:73:c7:28:c3:d4:77:9c:34:e5:bc:b0:41:db:f9:bd:d7:63: 2b:88:92:33:02:69:ed:47:6f:42:00:64:b1:f4:4e:d7:4c:2f: b0:12:ea:51:8d:9d:c3:3a:90:09:2b:96:c4:ca:ab:27:e2:b3: e1:99:f9:2e:31:b1:4f:47:a1:90:44:bf:3f:76:81:16:f1:c1: f7:f6:4e:da:42:24:b5:13:50:79:dd:af:0b:c5:7c:1b:49:57: 29:4c:cf:71:0e:7b:6a:71:22:3e:ee:c2:50:b3:75:a1:51:5b: 4d:58:26:29:be:f0:9b:62:df:4f:18:e8:cd:1e:71:f9:c6:5a: 16:71:4b:2a:d9:ca:88:ab:e2:38:52:62:24:e0:87:7e:ed:3a: e8:74:04:8f:4d:51:1e:04:36:81:00:d2:09:f2:65:cc:08:71: e4:88:68:bc:41:3a:74:f2:85:4b:02:2c:a7:a8:52:23:56:31: b6:ed:23:86:b3:5d:9f:9e:00:ac:1d:0d:a4:65:bb:d7:79:4e: 2d:96:d8:84:88:3e:e5:05:bf:68:d3:42:58:32:af:2f:81:6f: a7:af:a8:73:fb:58:71:52:3f:67:6a:88:61:2e:ab:dd:84:eb: 2d:c5:04:d2:25:47:1b:5b:01:ca:dc:79:89:06:a8:48:a8:aa: a8:51:da:5b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCNCxKKfM9N7F5IWnJgoAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJiZTA1YjYxOGEyN2Y2YzEwZWY5OTliYzk2ZDlhYTBjYmQx NGFkYTUwHhcNMjUxMjA2MDUwMDU1WhcNMjUxMjA3MDUwMDU1WjAzMTEwLwYDVQQD EyhhMmM0MWE2NzY0NWU3NGUwZDRiNjY2YjY5YWE1YjQ1YWNkOGQ1ODViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkUOhk3tmAPXb8b/Ek4eNoAv07w4g K8k08zBanIwp5hDGsfi5WQZD3biVRYXJhXI+p3ghI25jRpu4kIH+hQzD5HDvQIDv uD5yQIip8r1ZWkaKM92+fvG+gIq2Lh14fNR9/XAEImHJS9VJ74ospahlu9MCdkro bQ2pVFIt/VCMNWdqWTFgduTCBaKQSg8sf5rbyLfhGAgZFeQ47MdKUC+NVA7Izwk+ zlWerRmDy01BODqJOc0OtyACYuEbcEhXro0yKP8okZ77fcEiOBNYVNSuuaWswuek Eh3eP55cHTas/hlbmtij2d54GKvOr/sB4wc9nJUsUtnqBIsvIUB5p2d1VQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKLEGmdkXnTg1LZmtpqltFrNjVhbMB8GA1UdIwQY MBaAFLvgW2GKJ/bBDvmZvJbZqgy9FK2lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdS1CYllZb245c0VPLVptOGx0bXFETDBVcmFVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS82ZTAyYTktMDhhZC00NzQzLWI1Mzgt ZjMwMjljMzliNjZlLzEvdS1CYllZb245c0VPLVptOGx0bXFETDBVcmFVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MS82ZTAyYTktMDhhZC00NzQzLWI1MzgtZjMwMjljMzliNjZl LzEvdS1CYllZb245c0VPLVptOGx0bXFETDBVcmFVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADXPHKMPU d5w05bywQdv5vddjK4iSMwJp7UdvQgBksfRO10wvsBLqUY2dwzqQCSuWxMqrJ+Kz 4Zn5LjGxT0ehkES/P3aBFvHB9/ZO2kIktRNQed2vC8V8G0lXKUzPcQ57anEiPu7C ULN1oVFbTVgmKb7wm2LfTxjozR5x+cZaFnFLKtnKiKviOFJiJOCHfu066HQEj01R HgQ2gQDSCfJlzAhx5IhovEE6dPKFSwIsp6hSI1Yxtu0jhrNdn54ArB0NpGW713lO LZbYhIg+5QW/aNNCWDKvL4Fvp6+oc/tYcVI/Z2qIYS6r3YTrLcUE0iVHG1sBytx5 iQaoSKiqqFHaWw== -----END CERTIFICATE-----Generated at Sat Dec 6 08:13:13 2025 by rpki-client