This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/umCk2HTZYByBQsNS-AxWpDJ2zUc.mft File: umCk2HTZYByBQsNS-AxWpDJ2zUc.mft (raw, json) Hash identifier: JzBLm4dDId6XLE+LPE4W7vF6y8tfYJ+f8TrSzl/GgS4= Subject key identifier: ED:73:7D:7C:33:F9:E2:89:00:B5:87:A7:D7:A6:B0:18:09:B7:F4:72 Authority key identifier: BA:60:A4:D8:74:D9:60:1C:81:42:C3:52:F8:0C:56:A4:32:76:CD:47 Certificate issuer: /CN=ba60a4d874d9601c8142c352f80c56a43276cd47 Certificate serial: 019AF5AEE8048E47635A0EAFE124A31E947C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/umCk2HTZYByBQsNS-AxWpDJ2zUc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/umCk2HTZYByBQsNS-AxWpDJ2zUc.mft Manifest number: 1773 Signing time: Sat 06 Dec 2025 22:01:11 +0000 Manifest this update: Sat 06 Dec 2025 22:01:11 +0000 Manifest next update: Sun 07 Dec 2025 22:01:11 +0000 Files and hashes: 1: 5U4MEYVwKErq9FhOsJB89ZvBBuA.roa (hash: NDCcRzRMP/wHXoUUOEq/IXJG3IgwKCj1GS7rUpsjlXY=) 2: 60lbisj9EBvEk8CkvIEbp4prM3I.roa (hash: cqYnW2I6KAO2XW2NYFnEXuAIZkVjJlu5WB2aqpTSh88=) 3: bHZh-gl2BV9HaE6gMvNJJyeNKUs.roa (hash: sDUjjxYqPfgF3z6qcjo8Ch8x8GHsvhm9yqvWs72G0WI=) 4: koXm2_p4F4KWKYlIu0UQERaNMQ8.roa (hash: zXAmEZonvu8xaYLE77bD6JgXELMdseALDrYiTNuQR1E=) 5: qerWJ9N0klhuhzcIgvZSrAumV_Y.roa (hash: /vwvzpt6A9BdPc1JxUloTrK4LVtePi7FvbqVFdA3VF8=) 6: umCk2HTZYByBQsNS-AxWpDJ2zUc.crl (hash: MBDs8PXCSS7tL7tZA/c580RHWQ0PjdA5sxiiQY/1Zfs=) 7: zMnP4SbXXtzO5Qz_HmHXST-lJbc.roa (hash: x/mXpix8fyVF7pfT27hYA7xsa5opQzKkRx7F0dXWqMU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/umCk2HTZYByBQsNS-AxWpDJ2zUc.crl rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/umCk2HTZYByBQsNS-AxWpDJ2zUc.mft rsync://rpki.ripe.net/repository/DEFAULT/umCk2HTZYByBQsNS-AxWpDJ2zUc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 14:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:ae:e8:04:8e:47:63:5a:0e:af:e1:24:a3:1e:94:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba60a4d874d9601c8142c352f80c56a43276cd47 Validity Not Before: Dec 6 22:01:11 2025 GMT Not After : Dec 7 22:01:11 2025 GMT Subject: CN=ed737d7c33f9e28900b587a7d7a6b01809b7f472 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:fe:ab:ff:e1:27:07:db:6c:eb:38:5a:97:30: 44:cb:4c:2b:4e:0d:a2:05:cb:f2:8b:91:01:8d:e5: 03:d0:cf:60:d8:b4:30:b3:8c:f5:10:51:78:e1:28: 5a:ec:a0:f9:56:41:02:de:6d:5c:71:3d:1a:11:fe: 65:74:2c:ac:e8:d4:fc:25:1e:20:8c:3a:f0:21:7b: e6:21:2a:d6:d2:42:6a:94:12:56:82:dc:a0:23:1b: 78:a2:c5:61:c9:ec:10:2f:b0:22:78:55:17:68:be: 1d:10:bf:e9:17:cb:29:1b:16:a0:c9:91:de:86:df: 37:b4:83:6d:48:9c:46:42:f2:e4:00:cf:bc:ab:e5: 0b:51:22:0e:ec:b4:db:a0:b4:33:65:f0:46:19:ac: ef:44:39:82:cf:34:f4:4a:df:be:0e:09:01:25:04: 7e:52:bf:80:8e:4e:a9:7b:b4:34:e7:12:54:26:81: 1d:27:11:e3:5c:79:77:6d:8e:ab:88:73:89:5f:6f: 4b:5e:13:1a:4d:ea:c7:b3:0c:9c:9b:cd:69:ea:76: a4:c8:bc:6e:47:89:83:ce:c5:28:8b:ca:22:71:f9: f0:7f:cc:3d:b5:9e:3b:e9:49:14:5e:b7:ad:64:00: d5:18:bf:45:a7:1b:5c:4b:4b:e0:8b:bc:cf:e0:13: 5c:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:73:7D:7C:33:F9:E2:89:00:B5:87:A7:D7:A6:B0:18:09:B7:F4:72 X509v3 Authority Key Identifier: keyid:BA:60:A4:D8:74:D9:60:1C:81:42:C3:52:F8:0C:56:A4:32:76:CD:47 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/umCk2HTZYByBQsNS-AxWpDJ2zUc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/umCk2HTZYByBQsNS-AxWpDJ2zUc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/umCk2HTZYByBQsNS-AxWpDJ2zUc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:86:3c:2f:2d:6a:1a:04:01:1f:5c:ac:7c:4c:ec:0c:46:86: bb:ad:0b:c4:64:a3:49:0f:10:b0:a2:62:2b:33:79:3b:2f:88: 78:79:0a:fd:84:5d:59:06:47:e5:99:22:59:26:e7:eb:4e:eb: 86:1a:33:5f:07:47:54:e3:22:b0:79:76:0e:2a:33:e4:47:1c: 3a:7a:cb:c4:4b:a9:fd:3c:8b:9a:58:45:59:f8:76:9a:18:3f: d1:92:41:5a:7f:ec:53:f1:7a:92:d7:e0:71:26:93:55:da:51: da:41:a4:01:0d:26:5b:d5:9a:a8:8f:d5:06:78:52:d0:0f:63: 9b:b3:b7:dd:ae:d4:ea:e8:5c:4d:2a:58:a2:2d:ae:d4:21:a5: d3:30:86:62:a2:a1:d4:9d:69:ac:b1:fa:3c:8c:4e:3e:f4:ea: 33:99:b5:d8:2b:f9:39:48:49:fb:11:a5:ee:6c:19:62:ee:a1: dd:59:20:25:cf:45:7e:37:d3:fc:11:84:4e:b6:72:c3:0c:6a: 5b:8a:5f:2b:31:0f:d4:60:f1:ce:de:7c:9e:69:6d:83:19:e6: c0:10:f8:03:96:18:47:c8:3f:80:a2:62:be:c1:4f:b3:ec:7a: 1a:05:e9:c5:ba:5a:ef:d8:a1:fa:eb:28:ba:9a:72:58:1d:4b: 4f:a3:35:e6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1rugEjkdjWg6v4SSjHpR8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhNjBhNGQ4NzRkOTYwMWM4MTQyYzM1MmY4MGM1NmE0MzI3 NmNkNDcwHhcNMjUxMjA2MjIwMTExWhcNMjUxMjA3MjIwMTExWjAzMTEwLwYDVQQD EyhlZDczN2Q3YzMzZjllMjg5MDBiNTg3YTdkN2E2YjAxODA5YjdmNDcyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlf6r/+EnB9ts6zhalzBEy0wrTg2i Bcvyi5EBjeUD0M9g2LQws4z1EFF44Sha7KD5VkEC3m1ccT0aEf5ldCys6NT8JR4g jDrwIXvmISrW0kJqlBJWgtygIxt4osVhyewQL7AieFUXaL4dEL/pF8spGxagyZHe ht83tINtSJxGQvLkAM+8q+ULUSIO7LTboLQzZfBGGazvRDmCzzT0St++DgkBJQR+ Ur+Ajk6pe7Q05xJUJoEdJxHjXHl3bY6riHOJX29LXhMaTerHswycm81p6nakyLxu R4mDzsUoi8oicfnwf8w9tZ476UkUXretZADVGL9FpxtcS0vgi7zP4BNcOwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO1zfXwz+eKJALWHp9emsBgJt/RyMB8GA1UdIwQY MBaAFLpgpNh02WAcgULDUvgMVqQyds1HMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdW1DazJIVFpZQnlCUXNOUy1BeFdwREoyelVjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC8yOGNiNWMtMjk4Zi00ZDhiLTgxNWIt ZTVhMzc3OGJlM2FkLzEvdW1DazJIVFpZQnlCUXNOUy1BeFdwREoyelVjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OC8yOGNiNWMtMjk4Zi00ZDhiLTgxNWItZTVhMzc3OGJlM2Fk LzEvdW1DazJIVFpZQnlCUXNOUy1BeFdwREoyelVjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX4Y8Ly1q GgQBH1ysfEzsDEaGu60LxGSjSQ8QsKJiKzN5Oy+IeHkK/YRdWQZH5ZkiWSbn607r hhozXwdHVOMisHl2Dioz5EccOnrLxEup/TyLmlhFWfh2mhg/0ZJBWn/sU/F6ktfg cSaTVdpR2kGkAQ0mW9WaqI/VBnhS0A9jm7O33a7U6uhcTSpYoi2u1CGl0zCGYqKh 1J1prLH6PIxOPvTqM5m12Cv5OUhJ+xGl7mwZYu6h3VkgJc9FfjfT/BGETrZywwxq W4pfKzEP1GDxzt58nmltgxnmwBD4A5YYR8g/gKJivsFPs+x6GgXpxbpa79ih+uso uppyWB1LT6M15g== -----END CERTIFICATE-----Generated at Sat Dec 6 23:50:48 2025 by rpki-client