This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/umCk2HTZYByBQsNS-AxWpDJ2zUc.mft File: umCk2HTZYByBQsNS-AxWpDJ2zUc.mft (raw, json) Hash identifier: RK5xD2Sv4uKSsgP1yKW6bUimwMMxDu/WUotDWNgf8F4= Subject key identifier: 6A:88:EF:9F:6E:1E:4B:13:D2:5E:5E:02:FC:D6:76:64:8C:DD:AD:AD Authority key identifier: BA:60:A4:D8:74:D9:60:1C:81:42:C3:52:F8:0C:56:A4:32:76:CD:47 Certificate issuer: /CN=ba60a4d874d9601c8142c352f80c56a43276cd47 Certificate serial: 019B27E48C359C1491E22D9B04ABB1A9376E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/umCk2HTZYByBQsNS-AxWpDJ2zUc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/umCk2HTZYByBQsNS-AxWpDJ2zUc.mft Manifest number: 178D Signing time: Tue 16 Dec 2025 16:00:48 +0000 Manifest this update: Tue 16 Dec 2025 16:00:48 +0000 Manifest next update: Wed 17 Dec 2025 16:00:48 +0000 Files and hashes: 1: 5U4MEYVwKErq9FhOsJB89ZvBBuA.roa (hash: NDCcRzRMP/wHXoUUOEq/IXJG3IgwKCj1GS7rUpsjlXY=) 2: 60lbisj9EBvEk8CkvIEbp4prM3I.roa (hash: cqYnW2I6KAO2XW2NYFnEXuAIZkVjJlu5WB2aqpTSh88=) 3: bHZh-gl2BV9HaE6gMvNJJyeNKUs.roa (hash: sDUjjxYqPfgF3z6qcjo8Ch8x8GHsvhm9yqvWs72G0WI=) 4: koXm2_p4F4KWKYlIu0UQERaNMQ8.roa (hash: zXAmEZonvu8xaYLE77bD6JgXELMdseALDrYiTNuQR1E=) 5: qerWJ9N0klhuhzcIgvZSrAumV_Y.roa (hash: /vwvzpt6A9BdPc1JxUloTrK4LVtePi7FvbqVFdA3VF8=) 6: umCk2HTZYByBQsNS-AxWpDJ2zUc.crl (hash: 4SmCNGoSmxRBdBwUEb7qOz4Mb6qaaMQe0FNQbwL90WY=) 7: zMnP4SbXXtzO5Qz_HmHXST-lJbc.roa (hash: x/mXpix8fyVF7pfT27hYA7xsa5opQzKkRx7F0dXWqMU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/umCk2HTZYByBQsNS-AxWpDJ2zUc.crl rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/umCk2HTZYByBQsNS-AxWpDJ2zUc.mft rsync://rpki.ripe.net/repository/DEFAULT/umCk2HTZYByBQsNS-AxWpDJ2zUc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 14:45:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:27:e4:8c:35:9c:14:91:e2:2d:9b:04:ab:b1:a9:37:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba60a4d874d9601c8142c352f80c56a43276cd47 Validity Not Before: Dec 16 16:00:48 2025 GMT Not After : Dec 17 16:00:48 2025 GMT Subject: CN=6a88ef9f6e1e4b13d25e5e02fcd676648cddadad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:4a:9e:c6:13:60:82:67:4f:99:15:41:42:62: 58:3d:41:0b:20:12:d8:61:0d:1c:86:ea:bb:d6:05: 59:13:27:35:45:a4:84:96:1b:ab:34:f7:d8:26:a9: ce:0b:7a:13:c4:cf:bf:c9:17:a1:9d:82:3a:b4:ce: 8d:4a:e6:e8:94:2d:ac:dd:ad:2c:44:a3:3f:a8:c7: c0:16:4f:18:f6:4c:f5:56:86:3c:c6:17:2a:9f:c0: 1b:6e:07:b6:46:4e:1c:21:2c:f0:63:08:65:71:7a: 1a:90:0f:70:2d:94:71:88:40:26:52:ab:8f:98:ae: 1a:bf:40:2e:6a:9e:c2:74:b3:34:cb:63:52:4b:e7: 0a:c8:c8:a4:f0:18:2f:81:83:3a:07:3f:dc:da:e4: 7b:71:7d:78:cb:04:6e:8f:c9:74:52:95:95:cd:ea: a4:9e:6a:ac:7d:3c:47:44:cb:ac:83:69:27:b8:0c: 05:50:8e:3b:47:e7:26:f1:fa:fc:a0:4b:37:c3:13: 9c:86:f5:66:cf:a6:89:c9:d4:98:cb:28:8c:39:04: 2d:36:70:5e:b2:de:02:24:69:0b:d1:43:2f:7b:ea: bd:59:de:96:9a:f9:11:67:5a:c0:a1:a2:cb:55:ef: b3:64:66:27:04:90:df:f8:a8:a1:55:a3:4a:5f:29: 4c:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:88:EF:9F:6E:1E:4B:13:D2:5E:5E:02:FC:D6:76:64:8C:DD:AD:AD X509v3 Authority Key Identifier: keyid:BA:60:A4:D8:74:D9:60:1C:81:42:C3:52:F8:0C:56:A4:32:76:CD:47 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/umCk2HTZYByBQsNS-AxWpDJ2zUc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/umCk2HTZYByBQsNS-AxWpDJ2zUc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/umCk2HTZYByBQsNS-AxWpDJ2zUc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 18:d6:1e:6e:56:1b:5a:1a:76:6f:50:0a:ae:7d:32:1d:31:29: e8:e2:b8:5a:4a:04:20:36:c8:6e:e1:70:25:96:66:27:98:22: d4:06:be:17:db:7f:dc:90:70:d6:27:01:33:ad:fe:bb:08:2f: bd:aa:2c:82:86:6c:bc:66:7e:6c:55:b7:5c:35:cc:10:8d:64: e7:6e:8c:18:b8:76:d5:a4:8b:b4:ae:6c:cf:c9:d6:79:53:75: 4b:b2:6a:69:b7:65:a0:55:9a:3a:14:d4:9a:9b:34:62:73:46: 44:6c:bc:0f:f1:0d:28:02:22:aa:c8:46:16:85:74:d3:78:8a: 82:96:61:65:9d:e7:dc:fd:9d:a4:aa:e3:90:61:2e:6d:68:aa: 9b:73:0d:b0:12:2b:fd:63:da:dd:30:fc:d0:64:b9:8c:85:b0: a7:ec:4d:e2:2f:6f:fb:19:04:76:2a:c0:67:68:5d:d9:87:c3: 9f:58:e7:4b:dc:a2:3c:1d:e8:12:a6:94:0b:6c:55:e2:04:7a: 9e:57:49:19:69:b8:21:fa:4e:04:75:6a:28:a2:73:96:37:18: 56:fd:0d:55:d9:5a:22:30:5f:cd:3c:49:9f:64:7c:1e:fa:dc: 71:16:77:b2:68:c1:f2:69:6f:9d:13:78:07:7b:53:c5:86:5b: a5:a8:7f:9a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsn5Iw1nBSR4i2bBKuxqTduMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhNjBhNGQ4NzRkOTYwMWM4MTQyYzM1MmY4MGM1NmE0MzI3 NmNkNDcwHhcNMjUxMjE2MTYwMDQ4WhcNMjUxMjE3MTYwMDQ4WjAzMTEwLwYDVQQD Eyg2YTg4ZWY5ZjZlMWU0YjEzZDI1ZTVlMDJmY2Q2NzY2NDhjZGRhZGFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo0qexhNggmdPmRVBQmJYPUELIBLY YQ0chuq71gVZEyc1RaSElhurNPfYJqnOC3oTxM+/yRehnYI6tM6NSubolC2s3a0s RKM/qMfAFk8Y9kz1VoY8xhcqn8Abbge2Rk4cISzwYwhlcXoakA9wLZRxiEAmUquP mK4av0Auap7CdLM0y2NSS+cKyMik8BgvgYM6Bz/c2uR7cX14ywRuj8l0UpWVzeqk nmqsfTxHRMusg2knuAwFUI47R+cm8fr8oEs3wxOchvVmz6aJydSYyyiMOQQtNnBe st4CJGkL0UMve+q9Wd6WmvkRZ1rAoaLLVe+zZGYnBJDf+KihVaNKXylMkwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGqI759uHksT0l5eAvzWdmSM3a2tMB8GA1UdIwQY MBaAFLpgpNh02WAcgULDUvgMVqQyds1HMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdW1DazJIVFpZQnlCUXNOUy1BeFdwREoyelVjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC8yOGNiNWMtMjk4Zi00ZDhiLTgxNWIt ZTVhMzc3OGJlM2FkLzEvdW1DazJIVFpZQnlCUXNOUy1BeFdwREoyelVjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OC8yOGNiNWMtMjk4Zi00ZDhiLTgxNWItZTVhMzc3OGJlM2Fk LzEvdW1DazJIVFpZQnlCUXNOUy1BeFdwREoyelVjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGNYeblYb Whp2b1AKrn0yHTEp6OK4WkoEIDbIbuFwJZZmJ5gi1Aa+F9t/3JBw1icBM63+uwgv vaosgoZsvGZ+bFW3XDXMEI1k526MGLh21aSLtK5sz8nWeVN1S7JqabdloFWaOhTU mps0YnNGRGy8D/ENKAIiqshGFoV003iKgpZhZZ3n3P2dpKrjkGEubWiqm3MNsBIr /WPa3TD80GS5jIWwp+xN4i9v+xkEdirAZ2hd2YfDn1jnS9yiPB3oEqaUC2xV4gR6 nldJGWm4IfpOBHVqKKJzljcYVv0NVdlaIjBfzTxJn2R8HvrccRZ3smjB8mlvnRN4 B3tTxYZbpah/mg== -----END CERTIFICATE-----Generated at Tue Dec 16 19:14:46 2025 by rpki-client