This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/281cc2-959e-4192-bdde-8c70bc847bc5/1/udCVzONbOja-8QjvdipiGvRmJiE.mft File: udCVzONbOja-8QjvdipiGvRmJiE.mft (raw, json) Hash identifier: TKVdpFIxguivF8pHzrDmaAA1JPNNOfJCERUkyNSfkek= Subject key identifier: DC:0B:FF:32:F4:BE:3D:DC:E0:D8:21:FF:13:E4:C8:EA:5B:DE:EA:82 Authority key identifier: B9:D0:95:CC:E3:5B:3A:36:BE:F1:08:EF:76:2A:62:1A:F4:66:26:21 Certificate issuer: /CN=b9d095cce35b3a36bef108ef762a621af4662621 Certificate serial: 019AF68A67B3F03E0A01B4356C6488ACB673 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/udCVzONbOja-8QjvdipiGvRmJiE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/281cc2-959e-4192-bdde-8c70bc847bc5/1/udCVzONbOja-8QjvdipiGvRmJiE.mft Manifest number: 04B8 Signing time: Sun 07 Dec 2025 02:00:56 +0000 Manifest this update: Sun 07 Dec 2025 02:00:56 +0000 Manifest next update: Mon 08 Dec 2025 02:00:56 +0000 Files and hashes: 1: udCVzONbOja-8QjvdipiGvRmJiE.crl (hash: 9MklnBaxfXslXGQTf/NvfKXcvtBEsw8/9Juuawux8gE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/281cc2-959e-4192-bdde-8c70bc847bc5/1/udCVzONbOja-8QjvdipiGvRmJiE.crl rsync://rpki.ripe.net/repository/DEFAULT/8a/281cc2-959e-4192-bdde-8c70bc847bc5/1/udCVzONbOja-8QjvdipiGvRmJiE.mft rsync://rpki.ripe.net/repository/DEFAULT/udCVzONbOja-8QjvdipiGvRmJiE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f6:8a:67:b3:f0:3e:0a:01:b4:35:6c:64:88:ac:b6:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b9d095cce35b3a36bef108ef762a621af4662621 Validity Not Before: Dec 7 02:00:56 2025 GMT Not After : Dec 8 02:00:56 2025 GMT Subject: CN=dc0bff32f4be3ddce0d821ff13e4c8ea5bdeea82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:5b:d4:65:32:85:3a:f3:c2:86:8a:90:45:51: 03:26:7a:23:f1:a0:6f:01:f6:be:44:81:82:51:b5: 9d:9f:c8:b1:1d:c1:c3:b4:f9:3e:b5:87:f8:df:6d: 75:47:a5:87:d2:70:09:fe:f6:7e:3a:58:55:dc:9e: 86:7d:44:e2:b3:a2:1b:b5:17:20:ca:97:d3:da:0f: 43:82:8d:79:c1:00:c5:2e:b7:87:e3:ab:31:c2:e4: 7d:b1:52:75:ee:d4:b0:0a:45:cd:85:01:67:37:01: 4a:ea:aa:8b:a8:2f:00:f4:9d:77:f3:8c:7b:0b:c0: 57:f8:0a:66:d9:8f:ef:40:52:f4:02:c8:74:a1:bd: 70:b0:79:f5:c1:83:a5:06:71:62:cd:7a:b9:ae:9f: 09:3f:b2:cf:fe:86:25:77:eb:41:2f:65:80:15:63: 44:6a:15:34:cb:e8:f6:c0:ba:20:a3:de:15:d8:a7: 02:3a:60:6f:b6:93:e0:61:8b:0c:a2:f9:cd:6b:fb: 55:3c:4a:ed:ca:af:a9:01:0b:cd:0e:36:74:b5:98: 45:2a:fb:9f:dd:54:00:34:37:4b:ca:92:4a:97:16: 84:e2:6f:17:50:22:4c:67:10:48:9a:88:33:97:5f: 51:59:1d:79:cf:e4:8d:65:43:89:44:61:3e:63:16: e0:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:0B:FF:32:F4:BE:3D:DC:E0:D8:21:FF:13:E4:C8:EA:5B:DE:EA:82 X509v3 Authority Key Identifier: keyid:B9:D0:95:CC:E3:5B:3A:36:BE:F1:08:EF:76:2A:62:1A:F4:66:26:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/udCVzONbOja-8QjvdipiGvRmJiE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/281cc2-959e-4192-bdde-8c70bc847bc5/1/udCVzONbOja-8QjvdipiGvRmJiE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/281cc2-959e-4192-bdde-8c70bc847bc5/1/udCVzONbOja-8QjvdipiGvRmJiE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 68:0e:56:89:b0:93:b8:aa:cc:55:56:71:74:96:04:58:a0:ce: a9:04:18:d4:90:ee:f8:5f:56:33:2a:32:c1:4b:2a:f9:ac:83: cd:05:c1:45:e0:66:f5:f0:e2:1b:d7:1b:5b:e4:f6:fc:ad:f1: 57:b6:a8:b4:ed:83:f4:cc:69:b7:76:84:77:5d:42:9b:d8:06: 8b:0b:e6:25:4f:0a:aa:a8:13:98:9c:a1:fe:90:4a:df:2b:e6: 26:57:1d:57:0c:c4:46:9f:69:a3:14:83:cc:6b:74:f5:1e:96: 86:71:84:3d:fc:59:b4:b3:82:62:ff:cf:05:b5:36:b5:8a:40: 25:74:f9:39:3b:7f:f2:11:43:91:7e:47:6c:79:99:bb:d7:95: 47:52:ac:10:53:ec:f2:be:b8:e9:a9:9f:be:fe:0e:90:f8:41: 6b:1a:11:b4:05:1d:f8:ef:33:29:39:01:00:08:e2:16:1a:e7: 64:7e:cb:f8:26:a2:15:51:82:21:0e:ba:f1:1a:f0:e1:8a:08: bd:44:ed:a4:7f:4b:bb:ee:99:42:81:8d:2c:71:2c:bb:5a:e5: 32:d5:3c:4b:bf:a8:4c:08:1e:93:f7:35:ca:d6:a3:2d:95:7d: 4e:10:d4:49:96:9c:18:5c:c1:ad:f8:56:bb:e1:a9:45:23:ad: 88:a2:e6:b6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr2imez8D4KAbQ1bGSIrLZzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI5ZDA5NWNjZTM1YjNhMzZiZWYxMDhlZjc2MmE2MjFhZjQ2 NjI2MjEwHhcNMjUxMjA3MDIwMDU2WhcNMjUxMjA4MDIwMDU2WjAzMTEwLwYDVQQD EyhkYzBiZmYzMmY0YmUzZGRjZTBkODIxZmYxM2U0YzhlYTViZGVlYTgyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAulvUZTKFOvPChoqQRVEDJnoj8aBv Afa+RIGCUbWdn8ixHcHDtPk+tYf43211R6WH0nAJ/vZ+OlhV3J6GfUTis6IbtRcg ypfT2g9Dgo15wQDFLreH46sxwuR9sVJ17tSwCkXNhQFnNwFK6qqLqC8A9J1384x7 C8BX+Apm2Y/vQFL0Ash0ob1wsHn1wYOlBnFizXq5rp8JP7LP/oYld+tBL2WAFWNE ahU0y+j2wLogo94V2KcCOmBvtpPgYYsMovnNa/tVPErtyq+pAQvNDjZ0tZhFKvuf 3VQANDdLypJKlxaE4m8XUCJMZxBImogzl19RWR15z+SNZUOJRGE+YxbgXQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNwL/zL0vj3c4Ngh/xPkyOpb3uqCMB8GA1UdIwQY MBaAFLnQlczjWzo2vvEI73YqYhr0ZiYhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdWRDVnpPTmJPamEtOFFqdmRpcGlHdlJtSmlFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS8yODFjYzItOTU5ZS00MTkyLWJkZGUt OGM3MGJjODQ3YmM1LzEvdWRDVnpPTmJPamEtOFFqdmRpcGlHdlJtSmlFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84YS8yODFjYzItOTU5ZS00MTkyLWJkZGUtOGM3MGJjODQ3YmM1 LzEvdWRDVnpPTmJPamEtOFFqdmRpcGlHdlJtSmlFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaA5WibCT uKrMVVZxdJYEWKDOqQQY1JDu+F9WMyoywUsq+ayDzQXBReBm9fDiG9cbW+T2/K3x V7aotO2D9Mxpt3aEd11Cm9gGiwvmJU8KqqgTmJyh/pBK3yvmJlcdVwzERp9poxSD zGt09R6WhnGEPfxZtLOCYv/PBbU2tYpAJXT5OTt/8hFDkX5HbHmZu9eVR1KsEFPs 8r646amfvv4OkPhBaxoRtAUd+O8zKTkBAAjiFhrnZH7L+CaiFVGCIQ668Rrw4YoI vUTtpH9Lu+6ZQoGNLHEsu1rlMtU8S7+oTAgek/c1ytajLZV9ThDUSZacGFzBrfhW u+GpRSOtiKLmtg== -----END CERTIFICATE-----Generated at Sun Dec 7 04:14:04 2025 by rpki-client