This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/fef2e0-ba37-4812-95ad-411a2712164d/1/U8NcqD_N9xskTtgDrEaOFFPYJo8.mft File: U8NcqD_N9xskTtgDrEaOFFPYJo8.mft (raw, json) Hash identifier: u1zTzu/16sl55XwOYER9yNmiIk41ky0USB34HHZXYR0= Subject key identifier: 74:75:41:BC:40:83:94:7A:C3:2A:33:4D:F2:FF:70:C3:6A:EE:88:2D Authority key identifier: 53:C3:5C:A8:3F:CD:F7:1B:24:4E:D8:03:AC:46:8E:14:53:D8:26:8F Certificate issuer: /CN=53c35ca83fcdf71b244ed803ac468e1453d8268f Certificate serial: 019AF16473486C3BEF2BE2D18950918299C4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U8NcqD_N9xskTtgDrEaOFFPYJo8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/fef2e0-ba37-4812-95ad-411a2712164d/1/U8NcqD_N9xskTtgDrEaOFFPYJo8.mft Manifest number: 09A6 Signing time: Sat 06 Dec 2025 02:01:23 +0000 Manifest this update: Sat 06 Dec 2025 02:01:23 +0000 Manifest next update: Sun 07 Dec 2025 02:01:23 +0000 Files and hashes: 1: H-gKJ0jecc_epGWL1KeKZGljJsk.roa (hash: DugijbjySOcyT+ldEPL+0Bc6mUPT5+rGRZ55YajcPYw=) 2: U8NcqD_N9xskTtgDrEaOFFPYJo8.crl (hash: eqyYg3iRa4vNtKIwIjV/mUaSfdkmdIswpd4kq7QVS14=) 3: jMo_zU9oPYD4-ORBa0HOxz6ElxQ.roa (hash: B6xq/IGkR0N1YUdtA/OK7mLlIr8yn5LM2g8dHTL3gUI=) 4: qy2YkDqljayW8L1eKrjgUU5sPyQ.roa (hash: AsWZRC0AXC3FY0BmIha8yHFLeU4GKo6EqdCK1jqHGe4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/fef2e0-ba37-4812-95ad-411a2712164d/1/U8NcqD_N9xskTtgDrEaOFFPYJo8.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/fef2e0-ba37-4812-95ad-411a2712164d/1/U8NcqD_N9xskTtgDrEaOFFPYJo8.mft rsync://rpki.ripe.net/repository/DEFAULT/U8NcqD_N9xskTtgDrEaOFFPYJo8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:64:73:48:6c:3b:ef:2b:e2:d1:89:50:91:82:99:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53c35ca83fcdf71b244ed803ac468e1453d8268f Validity Not Before: Dec 6 02:01:23 2025 GMT Not After : Dec 7 02:01:23 2025 GMT Subject: CN=747541bc4083947ac32a334df2ff70c36aee882d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:50:18:6d:bd:a0:b8:df:da:7f:a0:62:e6:ed: 40:be:ab:ec:b7:d0:a7:8f:aa:0c:16:05:a2:ac:65: 54:0e:e3:82:98:9c:dd:ff:d2:7a:9e:ea:69:53:c9: 10:09:9c:c6:00:4c:35:7c:66:37:4e:48:00:8a:5a: ab:4e:72:54:ef:4f:c4:45:d0:91:47:86:39:a1:ef: 19:e4:3f:06:0b:e8:d6:dd:e8:0c:dc:70:10:89:1d: 12:28:06:be:6b:84:76:7d:f2:97:a3:38:a5:5d:b9: d6:02:63:ab:92:6d:92:ea:c0:df:e4:5c:d8:64:35: 5b:f1:c9:f3:22:fa:0a:cf:ae:23:00:fd:39:ed:1d: 00:de:52:7b:b6:c2:17:fd:10:7c:8d:9a:8d:62:0f: 36:b0:c9:8b:0e:7a:2a:db:95:51:3d:7c:d4:59:2f: 5d:b3:d5:7e:17:c5:6d:c9:97:23:8b:d8:09:7a:3e: e9:4f:b5:1d:0a:b5:b3:16:3a:10:96:ed:12:36:54: f8:1c:79:11:f7:51:83:67:9d:2f:82:5b:e8:46:47: 3d:2f:10:de:07:ef:fc:b7:57:03:5f:44:54:7e:db: 60:d4:88:ce:34:c5:dd:db:b8:d3:17:86:ed:19:38: b6:8c:5f:23:98:73:87:da:0c:f2:45:3f:0d:fc:c1: a1:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:75:41:BC:40:83:94:7A:C3:2A:33:4D:F2:FF:70:C3:6A:EE:88:2D X509v3 Authority Key Identifier: keyid:53:C3:5C:A8:3F:CD:F7:1B:24:4E:D8:03:AC:46:8E:14:53:D8:26:8F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U8NcqD_N9xskTtgDrEaOFFPYJo8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/fef2e0-ba37-4812-95ad-411a2712164d/1/U8NcqD_N9xskTtgDrEaOFFPYJo8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/fef2e0-ba37-4812-95ad-411a2712164d/1/U8NcqD_N9xskTtgDrEaOFFPYJo8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 54:0c:d9:75:b7:02:c1:79:7b:0b:f1:d9:d0:d3:f6:20:10:71: 21:28:83:f0:64:17:b0:c7:1e:9d:6d:db:d4:03:33:7f:64:a4: f2:27:a3:ce:87:47:3c:c4:bb:e9:18:4f:88:dc:71:98:63:2d: 34:d4:d2:d4:09:b4:96:af:53:26:90:c1:07:cc:5e:1e:7e:ab: dc:da:42:c6:d8:07:95:0a:dd:67:2e:dc:c3:b6:ad:13:ab:16: 0b:0a:38:fb:09:cd:89:15:34:0e:f8:d5:09:b6:14:0a:60:27: 54:59:48:1c:d8:48:6e:b8:f9:e9:64:12:d1:73:d6:7b:5e:c2: 13:e1:22:a2:63:7d:03:71:c7:6f:ad:4f:98:33:87:aa:9e:b7: 65:41:7b:17:c7:7f:a5:52:44:89:f9:38:da:e4:44:c6:0d:6f: de:74:e5:3a:1f:4f:ac:e1:22:65:b9:14:e8:db:69:02:29:2b: 90:48:10:27:ab:1b:3e:8a:77:48:2b:8e:53:31:0a:21:ec:bd: e4:da:74:fc:16:0c:67:17:72:9f:7a:33:e2:ec:2d:37:82:4f: 75:34:9c:13:73:9f:91:fa:91:6d:2b:3d:6a:cd:84:c9:03:37: ad:29:cc:7b:08:5e:b9:63:09:a8:fb:f7:59:c3:1b:c0:4c:3f: dc:d0:c5:49 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxZHNIbDvvK+LRiVCRgpnEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzYzM1Y2E4M2ZjZGY3MWIyNDRlZDgwM2FjNDY4ZTE0NTNk ODI2OGYwHhcNMjUxMjA2MDIwMTIzWhcNMjUxMjA3MDIwMTIzWjAzMTEwLwYDVQQD Eyg3NDc1NDFiYzQwODM5NDdhYzMyYTMzNGRmMmZmNzBjMzZhZWU4ODJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu1AYbb2guN/af6Bi5u1Avqvst9Cn j6oMFgWirGVUDuOCmJzd/9J6nuppU8kQCZzGAEw1fGY3TkgAilqrTnJU70/ERdCR R4Y5oe8Z5D8GC+jW3egM3HAQiR0SKAa+a4R2ffKXozilXbnWAmOrkm2S6sDf5FzY ZDVb8cnzIvoKz64jAP057R0A3lJ7tsIX/RB8jZqNYg82sMmLDnoq25VRPXzUWS9d s9V+F8VtyZcji9gJej7pT7UdCrWzFjoQlu0SNlT4HHkR91GDZ50vglvoRkc9LxDe B+/8t1cDX0RUfttg1IjONMXd27jTF4btGTi2jF8jmHOH2gzyRT8N/MGhOQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHR1QbxAg5R6wyozTfL/cMNq7ogtMB8GA1UdIwQY MBaAFFPDXKg/zfcbJE7YA6xGjhRT2CaPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVThOY3FEX045eHNrVHRnRHJFYU9GRlBZSm84LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy9mZWYyZTAtYmEzNy00ODEyLTk1YWQt NDExYTI3MTIxNjRkLzEvVThOY3FEX045eHNrVHRnRHJFYU9GRlBZSm84Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy9mZWYyZTAtYmEzNy00ODEyLTk1YWQtNDExYTI3MTIxNjRk LzEvVThOY3FEX045eHNrVHRnRHJFYU9GRlBZSm84LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVAzZdbcC wXl7C/HZ0NP2IBBxISiD8GQXsMcenW3b1AMzf2Sk8iejzodHPMS76RhPiNxxmGMt NNTS1Am0lq9TJpDBB8xeHn6r3NpCxtgHlQrdZy7cw7atE6sWCwo4+wnNiRU0DvjV CbYUCmAnVFlIHNhIbrj56WQS0XPWe17CE+EiomN9A3HHb61PmDOHqp63ZUF7F8d/ pVJEifk42uRExg1v3nTlOh9PrOEiZbkU6NtpAikrkEgQJ6sbPop3SCuOUzEKIey9 5Np0/BYMZxdyn3oz4uwtN4JPdTScE3OfkfqRbSs9as2EyQM3rSnMewheuWMJqPv3 WcMbwEw/3NDFSQ== -----END CERTIFICATE-----Generated at Sat Dec 6 10:44:38 2025 by rpki-client