This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/d13526-c1ac-45e4-bebc-66f4167f83b2/1/u03_X665REU6fISwl-V8ccBPEfw.mft File: u03_X665REU6fISwl-V8ccBPEfw.mft (raw, json) Hash identifier: qo8pcvFqJLmoTdisZPJCsG8ABDY89RPGGqRFk9gUGOM= Subject key identifier: F0:28:4C:F2:0A:EA:E8:2B:A5:68:8C:36:28:40:0F:F7:92:A9:BB:B6 Authority key identifier: BB:4D:FF:5F:AE:B9:44:45:3A:7C:84:B0:97:E5:7C:71:C0:4F:11:FC Certificate issuer: /CN=bb4dff5faeb944453a7c84b097e57c71c04f11fc Certificate serial: 019AF23F6AB06A4B39628BD3510C1128ABD9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u03_X665REU6fISwl-V8ccBPEfw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/d13526-c1ac-45e4-bebc-66f4167f83b2/1/u03_X665REU6fISwl-V8ccBPEfw.mft Manifest number: 0AA0 Signing time: Sat 06 Dec 2025 06:00:33 +0000 Manifest this update: Sat 06 Dec 2025 06:00:33 +0000 Manifest next update: Sun 07 Dec 2025 06:00:33 +0000 Files and hashes: 1: bmGSZIhDZ7omF5TcuRC3GMr8vZo.roa (hash: aa2GJMxBcb4lhY3ULNNCLoGJ/YB3WqwaeozmQDkZLmk=) 2: u03_X665REU6fISwl-V8ccBPEfw.crl (hash: cMageEpNAVumzPU1e689/Ib6U3kON1QBTTRR5UT638o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/d13526-c1ac-45e4-bebc-66f4167f83b2/1/u03_X665REU6fISwl-V8ccBPEfw.crl rsync://rpki.ripe.net/repository/DEFAULT/74/d13526-c1ac-45e4-bebc-66f4167f83b2/1/u03_X665REU6fISwl-V8ccBPEfw.mft rsync://rpki.ripe.net/repository/DEFAULT/u03_X665REU6fISwl-V8ccBPEfw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:6a:b0:6a:4b:39:62:8b:d3:51:0c:11:28:ab:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bb4dff5faeb944453a7c84b097e57c71c04f11fc Validity Not Before: Dec 6 06:00:33 2025 GMT Not After : Dec 7 06:00:33 2025 GMT Subject: CN=f0284cf20aeae82ba5688c3628400ff792a9bbb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:7c:c8:76:cf:94:6e:9b:1d:7a:dc:20:a7:4c: bf:7d:41:44:c7:90:99:40:4e:24:2c:db:db:14:9a: 79:f2:5f:fb:6b:40:74:4c:78:a4:a7:8d:cf:e6:06: a5:63:be:97:a7:2f:61:ad:2c:fd:26:14:7f:a7:64: 70:9b:b3:ae:19:c3:17:ba:9e:58:e3:1e:33:e0:7e: 0a:4b:36:1e:b7:7c:16:d9:d4:fe:19:c9:82:e2:ef: ad:81:67:be:d2:4d:ec:47:67:83:56:4d:aa:d4:ca: ca:ab:37:c8:68:12:5d:87:63:61:ae:48:44:b9:34: 72:b2:f6:9b:aa:18:50:81:5f:80:cf:b6:62:c3:0c: a4:e1:21:0c:e4:0a:b3:10:18:72:67:c4:10:40:2b: be:47:b4:6d:bc:67:9d:5e:db:29:11:f2:56:e7:6f: 40:18:e0:84:82:25:44:75:c9:83:68:c0:47:c0:04: a5:bf:fa:3a:3c:5e:94:21:d4:38:67:b7:b1:03:6c: 70:93:dc:8e:32:30:63:22:d4:40:fd:e0:39:15:d8: 63:de:d6:68:85:4a:96:65:68:06:88:c1:9f:33:b1: 40:b0:13:b2:03:0c:5f:e8:b8:d9:13:fe:75:cb:03: 61:f2:2b:42:7b:16:74:74:f7:8c:ba:e4:50:61:2c: 22:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:28:4C:F2:0A:EA:E8:2B:A5:68:8C:36:28:40:0F:F7:92:A9:BB:B6 X509v3 Authority Key Identifier: keyid:BB:4D:FF:5F:AE:B9:44:45:3A:7C:84:B0:97:E5:7C:71:C0:4F:11:FC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u03_X665REU6fISwl-V8ccBPEfw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/d13526-c1ac-45e4-bebc-66f4167f83b2/1/u03_X665REU6fISwl-V8ccBPEfw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/74/d13526-c1ac-45e4-bebc-66f4167f83b2/1/u03_X665REU6fISwl-V8ccBPEfw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:3d:bf:8f:1c:bc:90:f5:22:06:82:51:ac:99:b7:f3:43:c6: a6:d0:47:71:dc:ad:88:18:1d:5d:a0:f8:8f:b1:93:4f:a5:a1: 0c:68:47:fd:65:e0:bc:b2:a8:dd:bd:14:d0:e6:8b:77:fc:28: ac:7d:72:51:bb:01:76:0d:a1:57:15:34:8b:4a:0f:d4:69:51: da:68:e1:a2:57:aa:8b:6d:ce:be:71:22:e4:9b:5d:7e:4d:a2: db:dd:67:22:93:a4:9c:6a:3f:b9:1d:38:0c:b1:ea:2b:83:f3: ad:fd:35:76:66:60:ca:99:7b:9b:0f:63:ff:de:bf:ff:27:b3: bb:e4:6d:1f:75:3c:df:a9:66:38:21:4c:61:6f:08:ca:e5:6f: 79:bf:4a:4b:f8:c3:ef:d8:a5:d5:ae:b3:3a:84:cc:df:bd:52: 7c:2d:3b:34:c8:d9:bb:df:de:4c:2a:ae:cb:11:9d:66:0b:62: 51:b6:05:ba:26:e6:0e:96:f1:30:b7:d8:18:a7:59:2b:bd:7e: 61:69:ee:90:24:c9:e2:1d:61:43:87:89:85:27:f8:c5:db:34: b4:7c:8c:e3:08:e0:be:93:7e:c2:ee:39:bd:67:c6:5d:f4:46: 1c:3c:d2:4a:96:d1:e8:96:1e:a7:8d:9f:8c:75:88:53:7f:fb: f0:07:b5:ac -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP2qwaks5YovTUQwRKKvZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJiNGRmZjVmYWViOTQ0NDUzYTdjODRiMDk3ZTU3YzcxYzA0 ZjExZmMwHhcNMjUxMjA2MDYwMDMzWhcNMjUxMjA3MDYwMDMzWjAzMTEwLwYDVQQD EyhmMDI4NGNmMjBhZWFlODJiYTU2ODhjMzYyODQwMGZmNzkyYTliYmI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx3zIds+Ubpsdetwgp0y/fUFEx5CZ QE4kLNvbFJp58l/7a0B0THikp43P5galY76Xpy9hrSz9JhR/p2Rwm7OuGcMXup5Y 4x4z4H4KSzYet3wW2dT+GcmC4u+tgWe+0k3sR2eDVk2q1MrKqzfIaBJdh2NhrkhE uTRysvabqhhQgV+Az7Ziwwyk4SEM5AqzEBhyZ8QQQCu+R7RtvGedXtspEfJW529A GOCEgiVEdcmDaMBHwASlv/o6PF6UIdQ4Z7exA2xwk9yOMjBjItRA/eA5Fdhj3tZo hUqWZWgGiMGfM7FAsBOyAwxf6LjZE/51ywNh8itCexZ0dPeMuuRQYSwiHwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPAoTPIK6ugrpWiMNihAD/eSqbu2MB8GA1UdIwQY MBaAFLtN/1+uuURFOnyEsJflfHHATxH8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdTAzX1g2NjVSRVU2ZklTd2wtVjhjY0JQRWZ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC9kMTM1MjYtYzFhYy00NWU0LWJlYmMt NjZmNDE2N2Y4M2IyLzEvdTAzX1g2NjVSRVU2ZklTd2wtVjhjY0JQRWZ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NC9kMTM1MjYtYzFhYy00NWU0LWJlYmMtNjZmNDE2N2Y4M2Iy LzEvdTAzX1g2NjVSRVU2ZklTd2wtVjhjY0JQRWZ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWz2/jxy8 kPUiBoJRrJm380PGptBHcdytiBgdXaD4j7GTT6WhDGhH/WXgvLKo3b0U0OaLd/wo rH1yUbsBdg2hVxU0i0oP1GlR2mjholeqi23OvnEi5Jtdfk2i291nIpOknGo/uR04 DLHqK4Pzrf01dmZgypl7mw9j/96//yezu+RtH3U836lmOCFMYW8IyuVveb9KS/jD 79il1a6zOoTM371SfC07NMjZu9/eTCquyxGdZgtiUbYFuibmDpbxMLfYGKdZK71+ YWnukCTJ4h1hQ4eJhSf4xds0tHyM4wjgvpN+wu45vWfGXfRGHDzSSpbR6JYep42f jHWIU3/78Ae1rA== -----END CERTIFICATE-----Generated at Sat Dec 6 07:23:26 2025 by rpki-client