This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft File: u4rmO3V9oa95DyD1nGNIEe7rG8w.mft (raw, json) Hash identifier: pXGS5tPQCAe8nde46FHujZGLaN7zL0NioqsrVWDofcQ= Subject key identifier: 5B:E0:28:CF:81:E2:B7:CD:55:81:0B:CD:00:8C:99:5C:E4:8A:D3:15 Authority key identifier: BB:8A:E6:3B:75:7D:A1:AF:79:0F:20:F5:9C:63:48:11:EE:EB:1B:CC Certificate issuer: /CN=bb8ae63b757da1af790f20f59c634811eeeb1bcc Certificate serial: 019AF12E04843CC0B5325EC24783C2078F53 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4rmO3V9oa95DyD1nGNIEe7rG8w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft Manifest number: 0C02 Signing time: Sat 06 Dec 2025 01:01:56 +0000 Manifest this update: Sat 06 Dec 2025 01:01:56 +0000 Manifest next update: Sun 07 Dec 2025 01:01:56 +0000 Files and hashes: 1: DIYIrtOVCh0oZUgoHnsBzDVYRgk.roa (hash: 9ygbw2KxTYEdLBVrIZpBTqLv2Fu0lBk+DuBHrlgf8dM=) 2: u4rmO3V9oa95DyD1nGNIEe7rG8w.crl (hash: 6Du8PKgiykD6glM8gZZg5YIkf3X9TfHcfOVeMRTtRIE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.crl rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft rsync://rpki.ripe.net/repository/DEFAULT/u4rmO3V9oa95DyD1nGNIEe7rG8w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:04:84:3c:c0:b5:32:5e:c2:47:83:c2:07:8f:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bb8ae63b757da1af790f20f59c634811eeeb1bcc Validity Not Before: Dec 6 01:01:56 2025 GMT Not After : Dec 7 01:01:56 2025 GMT Subject: CN=5be028cf81e2b7cd55810bcd008c995ce48ad315 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:70:f4:e0:a7:96:3a:3d:68:f5:1e:d5:27:0c: d6:92:2e:53:e9:63:e6:12:3d:dd:7d:0d:c4:ef:8b: 28:b3:25:44:a0:2b:fe:88:51:3f:bc:0e:2a:34:ea: aa:ff:24:33:cb:56:b4:bb:24:f3:a4:8a:db:b2:22: 0a:5a:26:ed:c6:f0:ad:38:f0:71:5e:c8:2f:90:92: da:56:a2:d3:77:26:45:af:7d:f9:31:ea:f7:1a:ed: 67:49:34:64:ad:cc:c7:18:1c:7a:ea:ff:b0:21:b1: 49:aa:7a:5b:5e:b8:f8:c5:08:56:bf:8b:33:e2:97: 5c:7c:a2:7b:c2:07:bf:cf:36:73:1b:18:32:8f:64: 68:82:ef:85:f6:ea:f2:b4:c7:05:03:c6:96:66:91: 97:26:bd:c6:f7:b6:3a:2f:35:80:b8:a9:35:73:29: 10:98:cb:79:5e:24:15:41:56:ca:9a:56:a1:0f:ea: ce:35:36:e5:5f:c1:01:2d:6c:0a:18:0e:9c:24:76: a8:2d:8c:77:58:f5:d8:19:64:fd:f2:b3:3b:ce:b0: 5f:0a:d4:a7:3b:8d:77:10:34:fd:f2:76:59:d8:dd: cc:f4:72:05:99:19:ac:a7:3f:f0:2c:d6:2d:3d:3c: 43:b3:08:15:90:a8:bb:8f:e7:01:68:26:6d:2c:c3: 09:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:E0:28:CF:81:E2:B7:CD:55:81:0B:CD:00:8C:99:5C:E4:8A:D3:15 X509v3 Authority Key Identifier: keyid:BB:8A:E6:3B:75:7D:A1:AF:79:0F:20:F5:9C:63:48:11:EE:EB:1B:CC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4rmO3V9oa95DyD1nGNIEe7rG8w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/12c66d-ac63-43fc-8894-ab087f43b595/1/u4rmO3V9oa95DyD1nGNIEe7rG8w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption f1:a9:98:4f:d0:bf:25:94:f1:33:e0:3f:35:d0:09:73:e2:b1: 03:58:f0:c6:5b:0f:1b:f7:56:19:5a:df:3a:3d:4b:a4:6a:1c: 21:34:d9:c4:6e:21:44:9c:a0:87:16:3d:f4:16:00:b4:21:ab: c6:de:9c:cf:1c:86:06:9a:b2:17:1f:8e:e8:4d:c9:bf:39:2d: 3b:fa:4a:aa:d2:32:9b:f9:a2:0e:b4:9a:87:77:93:65:87:74: 29:13:b5:ea:a3:e1:c8:a7:78:ff:fb:85:13:3b:49:2d:7d:2d: 33:e5:ed:5d:6c:26:92:33:60:2a:53:71:4a:45:4a:54:6b:88: c0:ad:4a:ce:75:75:97:16:d1:bb:6d:06:17:35:a2:1c:43:70: 88:05:d5:39:76:43:00:af:60:57:ac:29:42:f9:02:6a:b1:3f: 4a:6d:2d:10:e6:05:46:cc:b0:cc:01:58:6d:1d:06:85:b0:27: 44:8c:48:73:70:ce:c5:41:20:e1:a6:27:78:6c:2d:82:a5:7e: 23:05:46:81:5a:ef:26:b4:04:ad:4e:7c:9a:6d:3c:01:07:ac: e3:df:a0:fd:26:9f:97:44:56:49:56:6d:d2:a9:ce:5d:2f:dd: 56:5e:7f:0d:7e:e0:9e:1b:b7:93:d4:68:bd:c7:37:9a:b1:bc: 63:fa:bc:7c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLgSEPMC1Ml7CR4PCB49TMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJiOGFlNjNiNzU3ZGExYWY3OTBmMjBmNTljNjM0ODExZWVl YjFiY2MwHhcNMjUxMjA2MDEwMTU2WhcNMjUxMjA3MDEwMTU2WjAzMTEwLwYDVQQD Eyg1YmUwMjhjZjgxZTJiN2NkNTU4MTBiY2QwMDhjOTk1Y2U0OGFkMzE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsXD04KeWOj1o9R7VJwzWki5T6WPm Ej3dfQ3E74sosyVEoCv+iFE/vA4qNOqq/yQzy1a0uyTzpIrbsiIKWibtxvCtOPBx XsgvkJLaVqLTdyZFr335Mer3Gu1nSTRkrczHGBx66v+wIbFJqnpbXrj4xQhWv4sz 4pdcfKJ7wge/zzZzGxgyj2Rogu+F9urytMcFA8aWZpGXJr3G97Y6LzWAuKk1cykQ mMt5XiQVQVbKmlahD+rONTblX8EBLWwKGA6cJHaoLYx3WPXYGWT98rM7zrBfCtSn O413EDT98nZZ2N3M9HIFmRmspz/wLNYtPTxDswgVkKi7j+cBaCZtLMMJ1QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFvgKM+B4rfNVYELzQCMmVzkitMVMB8GA1UdIwQY MBaAFLuK5jt1faGveQ8g9ZxjSBHu6xvMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdTRybU8zVjlvYTk1RHlEMW5HTklFZTdyRzh3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC8xMmM2NmQtYWM2My00M2ZjLTg4OTQt YWIwODdmNDNiNTk1LzEvdTRybU8zVjlvYTk1RHlEMW5HTklFZTdyRzh3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMC8xMmM2NmQtYWM2My00M2ZjLTg4OTQtYWIwODdmNDNiNTk1 LzEvdTRybU8zVjlvYTk1RHlEMW5HTklFZTdyRzh3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA8amYT9C/ JZTxM+A/NdAJc+KxA1jwxlsPG/dWGVrfOj1LpGocITTZxG4hRJyghxY99BYAtCGr xt6czxyGBpqyFx+O6E3JvzktO/pKqtIym/miDrSah3eTZYd0KRO16qPhyKd4//uF EztJLX0tM+XtXWwmkjNgKlNxSkVKVGuIwK1KznV1lxbRu20GFzWiHENwiAXVOXZD AK9gV6wpQvkCarE/Sm0tEOYFRsywzAFYbR0GhbAnRIxIc3DOxUEg4aYneGwtgqV+ IwVGgVrvJrQErU58mm08AQes49+g/Safl0RWSVZt0qnOXS/dVl5/DX7gnhu3k9Ro vcc3mrG8Y/q8fA== -----END CERTIFICATE-----Generated at Sat Dec 6 10:17:20 2025 by rpki-client