This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/cde790-4e3b-4a4e-b84c-556506702a57/1/UMXKBp6qqux3WtCk6jtHYFtyiiU.mft File: UMXKBp6qqux3WtCk6jtHYFtyiiU.mft (raw, json) Hash identifier: jyYLIrQnQY49vzZfm7xRDKsbE+u9u4UNOctJHoBlpbk= Subject key identifier: 70:C5:12:B7:FF:3A:B0:F7:80:B3:2A:8D:0D:D4:69:5A:FC:38:6E:B0 Authority key identifier: 50:C5:CA:06:9E:AA:AA:EC:77:5A:D0:A4:EA:3B:47:60:5B:72:8A:25 Certificate issuer: /CN=50c5ca069eaaaaec775ad0a4ea3b47605b728a25 Certificate serial: 019AF1D1C7E898B79055DDA7F01FC9738035 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UMXKBp6qqux3WtCk6jtHYFtyiiU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/cde790-4e3b-4a4e-b84c-556506702a57/1/UMXKBp6qqux3WtCk6jtHYFtyiiU.mft Manifest number: 16B3 Signing time: Sat 06 Dec 2025 04:00:48 +0000 Manifest this update: Sat 06 Dec 2025 04:00:48 +0000 Manifest next update: Sun 07 Dec 2025 04:00:48 +0000 Files and hashes: 1: FEtsoc8GhVwS-itqE7wFwW_E2l0.roa (hash: wzhGlUkDAVqaCjdqlX0sPOVL6b9f0X/6vMu8NbyqVQo=) 2: UMXKBp6qqux3WtCk6jtHYFtyiiU.crl (hash: qUU3BIDakj6qXD0Hb2DHMQB0ma9ZtfAOOKF/6q+ivJY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/cde790-4e3b-4a4e-b84c-556506702a57/1/UMXKBp6qqux3WtCk6jtHYFtyiiU.crl rsync://rpki.ripe.net/repository/DEFAULT/7c/cde790-4e3b-4a4e-b84c-556506702a57/1/UMXKBp6qqux3WtCk6jtHYFtyiiU.mft rsync://rpki.ripe.net/repository/DEFAULT/UMXKBp6qqux3WtCk6jtHYFtyiiU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 04:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d1:c7:e8:98:b7:90:55:dd:a7:f0:1f:c9:73:80:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=50c5ca069eaaaaec775ad0a4ea3b47605b728a25 Validity Not Before: Dec 6 04:00:48 2025 GMT Not After : Dec 7 04:00:48 2025 GMT Subject: CN=70c512b7ff3ab0f780b32a8d0dd4695afc386eb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:f1:31:08:4f:0c:34:bb:aa:26:0d:e5:00:1f: 7a:23:e1:4a:09:ae:02:45:c9:35:9c:a2:d6:8c:0d: d7:5d:b4:d3:7f:6e:1e:cf:96:39:10:b5:09:f6:29: d2:92:74:51:ad:ca:24:cf:f6:8d:50:83:28:ac:c6: 40:77:fc:b8:02:b4:e0:8f:d2:96:20:fc:64:c3:14: 3e:34:6d:ec:36:c5:8a:d5:82:04:e3:1f:91:4c:7c: 3d:75:67:61:50:37:54:53:2f:f0:40:8c:cb:8f:45: f1:c0:09:e7:b9:27:68:02:93:01:24:59:21:a6:3f: 41:0a:e8:f7:30:41:96:c2:a7:a3:04:06:08:c9:c6: ba:cf:47:1c:46:e7:e7:3d:64:25:a0:69:26:47:d5: ea:25:d7:f6:28:c0:3d:bc:51:80:d1:ac:88:c1:47: 0f:88:1b:04:81:47:8d:80:45:41:9c:93:97:4c:54: 2d:b4:5f:06:32:04:f4:64:80:ac:b7:5c:4b:04:09: 5f:ee:aa:78:a1:b0:a1:f9:08:3a:57:57:2a:50:d4: d6:d8:63:08:6c:cf:91:14:f7:ab:7c:3a:7c:f0:6c: 52:7e:e3:ea:41:82:66:de:70:21:27:e2:9f:69:ee: 66:26:30:fb:67:3e:9c:57:87:42:68:e3:18:1e:87: 07:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:C5:12:B7:FF:3A:B0:F7:80:B3:2A:8D:0D:D4:69:5A:FC:38:6E:B0 X509v3 Authority Key Identifier: keyid:50:C5:CA:06:9E:AA:AA:EC:77:5A:D0:A4:EA:3B:47:60:5B:72:8A:25 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UMXKBp6qqux3WtCk6jtHYFtyiiU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/cde790-4e3b-4a4e-b84c-556506702a57/1/UMXKBp6qqux3WtCk6jtHYFtyiiU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/cde790-4e3b-4a4e-b84c-556506702a57/1/UMXKBp6qqux3WtCk6jtHYFtyiiU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 79:90:f2:67:be:e8:5e:92:23:1b:6f:5e:bc:41:3b:c0:00:55: 67:c1:c6:a5:df:b3:61:d6:34:6c:e2:52:db:ee:ba:50:f1:3f: 2f:0c:aa:7e:90:5c:25:2f:13:33:54:69:2e:b3:ba:ae:47:21: f6:d0:94:fc:8c:4b:a1:c7:ce:c1:d6:81:0f:2b:1a:95:6c:32: c2:6e:ec:05:fc:08:e1:2f:7d:14:78:e6:48:ca:0e:32:de:b4: 3d:2c:9a:19:56:ff:e5:24:4f:f1:f2:a7:ed:cf:f1:0b:79:27: 74:af:aa:d7:62:86:91:09:b7:ad:6a:41:cd:db:80:ce:fd:26: d0:20:b2:6c:e6:ad:d8:a4:e1:3f:3c:05:bb:c3:30:f8:c0:2c: ea:e5:a0:b1:76:81:27:23:2f:54:52:22:00:fb:68:9f:7a:65: 4e:1b:bc:f9:89:91:3f:e5:60:ac:56:ae:c7:1f:c7:15:50:bb: 42:b4:0e:de:c1:af:93:43:f2:97:6f:a8:18:32:77:45:70:cb: 97:60:c2:77:e0:83:ad:9f:b7:49:1c:2b:1b:85:6d:ea:16:a7: c8:7a:38:44:42:85:88:c3:1c:b3:99:0d:12:3c:ef:40:70:f4: 0a:14:37:20:70:c2:c1:44:c9:4f:b1:66:cb:fa:2d:f8:03:81: aa:ab:f3:63 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0cfomLeQVd2n8B/Jc4A1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUwYzVjYTA2OWVhYWFhZWM3NzVhZDBhNGVhM2I0NzYwNWI3 MjhhMjUwHhcNMjUxMjA2MDQwMDQ4WhcNMjUxMjA3MDQwMDQ4WjAzMTEwLwYDVQQD Eyg3MGM1MTJiN2ZmM2FiMGY3ODBiMzJhOGQwZGQ0Njk1YWZjMzg2ZWIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArfExCE8MNLuqJg3lAB96I+FKCa4C Rck1nKLWjA3XXbTTf24ez5Y5ELUJ9inSknRRrcokz/aNUIMorMZAd/y4ArTgj9KW IPxkwxQ+NG3sNsWK1YIE4x+RTHw9dWdhUDdUUy/wQIzLj0XxwAnnuSdoApMBJFkh pj9BCuj3MEGWwqejBAYIyca6z0ccRufnPWQloGkmR9XqJdf2KMA9vFGA0ayIwUcP iBsEgUeNgEVBnJOXTFQttF8GMgT0ZICst1xLBAlf7qp4obCh+Qg6V1cqUNTW2GMI bM+RFPerfDp88GxSfuPqQYJm3nAhJ+Kfae5mJjD7Zz6cV4dCaOMYHocH1wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHDFErf/OrD3gLMqjQ3UaVr8OG6wMB8GA1UdIwQY MBaAFFDFygaeqqrsd1rQpOo7R2BbcoolMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVU1YS0JwNnFxdXgzV3RDazZqdEhZRnR5aWlVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy9jZGU3OTAtNGUzYi00YTRlLWI4NGMt NTU2NTA2NzAyYTU3LzEvVU1YS0JwNnFxdXgzV3RDazZqdEhZRnR5aWlVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yy9jZGU3OTAtNGUzYi00YTRlLWI4NGMtNTU2NTA2NzAyYTU3 LzEvVU1YS0JwNnFxdXgzV3RDazZqdEhZRnR5aWlVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeZDyZ77o XpIjG29evEE7wABVZ8HGpd+zYdY0bOJS2+66UPE/LwyqfpBcJS8TM1RpLrO6rkch 9tCU/IxLocfOwdaBDysalWwywm7sBfwI4S99FHjmSMoOMt60PSyaGVb/5SRP8fKn 7c/xC3kndK+q12KGkQm3rWpBzduAzv0m0CCybOat2KThPzwFu8Mw+MAs6uWgsXaB JyMvVFIiAPton3plThu8+YmRP+VgrFauxx/HFVC7QrQO3sGvk0Pyl2+oGDJ3RXDL l2DCd+CDrZ+3SRwrG4Vt6hanyHo4REKFiMMcs5kNEjzvQHD0ChQ3IHDCwUTJT7Fm y/ot+AOBqqvzYw== -----END CERTIFICATE-----Generated at Sat Dec 6 14:52:24 2025 by rpki-client