This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/f8ea98-4fbc-4f3e-b658-e0a7ae216cb7/1/ulwqMT590aRJ4sH7JsWrA-UmgY0.mft File: ulwqMT590aRJ4sH7JsWrA-UmgY0.mft (raw, json) Hash identifier: SVyHQyqF4S/nVPSgTajwTMDS3YdgXnTN6WKcQt+ZHkE= Subject key identifier: 16:D4:C4:4A:9E:CD:22:C4:C3:CD:64:9B:A3:31:1E:DF:20:10:BD:F9 Authority key identifier: BA:5C:2A:31:3E:7D:D1:A4:49:E2:C1:FB:26:C5:AB:03:E5:26:81:8D Certificate issuer: /CN=ba5c2a313e7dd1a449e2c1fb26c5ab03e526818d Certificate serial: 019AF24030BD0CAB33546194592ED82AC883 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ulwqMT590aRJ4sH7JsWrA-UmgY0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/f8ea98-4fbc-4f3e-b658-e0a7ae216cb7/1/ulwqMT590aRJ4sH7JsWrA-UmgY0.mft Manifest number: 048E Signing time: Sat 06 Dec 2025 06:01:24 +0000 Manifest this update: Sat 06 Dec 2025 06:01:24 +0000 Manifest next update: Sun 07 Dec 2025 06:01:24 +0000 Files and hashes: 1: ulwqMT590aRJ4sH7JsWrA-UmgY0.crl (hash: r3CI2iVi/peDA8URY2KXFW8cmesMTzgtznc8iwrF47o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/f8ea98-4fbc-4f3e-b658-e0a7ae216cb7/1/ulwqMT590aRJ4sH7JsWrA-UmgY0.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/f8ea98-4fbc-4f3e-b658-e0a7ae216cb7/1/ulwqMT590aRJ4sH7JsWrA-UmgY0.mft rsync://rpki.ripe.net/repository/DEFAULT/ulwqMT590aRJ4sH7JsWrA-UmgY0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:40:30:bd:0c:ab:33:54:61:94:59:2e:d8:2a:c8:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba5c2a313e7dd1a449e2c1fb26c5ab03e526818d Validity Not Before: Dec 6 06:01:24 2025 GMT Not After : Dec 7 06:01:24 2025 GMT Subject: CN=16d4c44a9ecd22c4c3cd649ba3311edf2010bdf9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:d5:31:f5:fa:18:21:ba:21:33:27:91:cf:8d: ba:c5:9f:76:db:34:bb:ec:62:88:3f:d5:5e:87:3c: ce:7f:c8:f3:3a:21:21:55:35:d7:5e:00:a0:7b:dc: c2:fd:45:56:c3:73:fb:ed:b0:13:89:95:56:da:c9: 51:71:cc:17:16:4b:3d:11:02:d4:8c:5e:55:be:d3: db:f0:75:b8:b7:de:2f:fe:bf:a3:84:17:da:eb:34: 69:7e:3f:2c:f8:36:f5:4c:65:e7:f5:9d:92:24:50: 03:e3:e9:bd:bb:b6:ff:74:4d:18:66:24:4b:f3:ec: 60:52:71:76:6d:ba:e8:70:07:84:f5:14:f2:e3:a5: 6b:b1:1c:c9:3c:2b:7c:8f:7b:03:a9:d4:10:9d:10: 86:21:3d:3c:0a:06:d7:2c:2f:66:4b:34:d0:59:fb: f1:41:71:d7:67:a7:d0:7b:06:16:ec:37:aa:ca:74: ff:06:eb:c0:ca:81:54:8d:0d:f6:26:0a:37:cc:72: d9:04:3d:8a:30:8d:26:e5:02:92:e5:71:8c:bd:24: c3:bb:89:e5:02:d6:1f:cc:f7:ce:e5:4a:57:c8:a7: 7b:1e:3e:64:7c:7c:aa:c7:85:81:c1:0a:77:d1:8c: ac:78:1c:d2:d6:05:cc:89:a7:b8:79:0d:19:28:1b: 4d:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:D4:C4:4A:9E:CD:22:C4:C3:CD:64:9B:A3:31:1E:DF:20:10:BD:F9 X509v3 Authority Key Identifier: keyid:BA:5C:2A:31:3E:7D:D1:A4:49:E2:C1:FB:26:C5:AB:03:E5:26:81:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ulwqMT590aRJ4sH7JsWrA-UmgY0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/f8ea98-4fbc-4f3e-b658-e0a7ae216cb7/1/ulwqMT590aRJ4sH7JsWrA-UmgY0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/f8ea98-4fbc-4f3e-b658-e0a7ae216cb7/1/ulwqMT590aRJ4sH7JsWrA-UmgY0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:15:1a:a1:62:2c:75:1d:8a:23:b4:7d:1e:30:43:82:5f:6f: 37:e1:7a:95:63:f0:89:d0:e9:5f:47:ff:3c:6c:fb:d8:ab:06: 2d:7c:d2:bf:7f:77:35:34:7f:89:21:7b:de:b2:4f:29:55:10: 5e:cc:df:0f:2a:17:e1:98:bd:7a:b7:3b:ba:d4:6c:11:37:ae: d9:89:5b:8a:58:e5:32:82:80:4b:21:9d:4f:5e:e3:82:77:75: 0c:48:a0:16:1f:c8:61:18:bd:8b:bc:b0:38:e3:eb:a3:1c:fc: 8e:21:95:8e:35:71:47:72:9b:62:01:52:3d:9a:6f:0f:9b:65: 51:42:98:ce:f4:06:21:de:88:84:4a:9d:50:4d:ba:06:1a:ce: 04:47:1c:98:6c:b2:ca:c1:93:79:9e:56:05:8f:4b:68:ab:64: 8c:92:66:f2:db:18:e9:bb:65:db:67:fe:9c:40:bd:5c:4d:b8: c0:8b:a1:6b:c8:03:15:7d:f2:de:8f:ff:37:21:67:bd:a6:1f: d4:08:a9:c3:8a:25:74:3a:63:f1:84:d4:82:86:08:74:77:6e: 69:49:bc:73:25:ec:3b:af:7f:e9:45:13:3f:b9:35:8c:70:b5: 0a:0f:00:36:66:a4:fc:af:2b:12:c1:0f:ea:c7:da:34:b0:69: fb:50:46:a3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryQDC9DKszVGGUWS7YKsiDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhNWMyYTMxM2U3ZGQxYTQ0OWUyYzFmYjI2YzVhYjAzZTUy NjgxOGQwHhcNMjUxMjA2MDYwMTI0WhcNMjUxMjA3MDYwMTI0WjAzMTEwLwYDVQQD EygxNmQ0YzQ0YTllY2QyMmM0YzNjZDY0OWJhMzMxMWVkZjIwMTBiZGY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAodUx9foYIbohMyeRz426xZ922zS7 7GKIP9VehzzOf8jzOiEhVTXXXgCge9zC/UVWw3P77bATiZVW2slRccwXFks9EQLU jF5VvtPb8HW4t94v/r+jhBfa6zRpfj8s+Db1TGXn9Z2SJFAD4+m9u7b/dE0YZiRL 8+xgUnF2bbrocAeE9RTy46VrsRzJPCt8j3sDqdQQnRCGIT08CgbXLC9mSzTQWfvx QXHXZ6fQewYW7DeqynT/BuvAyoFUjQ32Jgo3zHLZBD2KMI0m5QKS5XGMvSTDu4nl AtYfzPfO5UpXyKd7Hj5kfHyqx4WBwQp30YyseBzS1gXMiae4eQ0ZKBtNRQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBbUxEqezSLEw81km6MxHt8gEL35MB8GA1UdIwQY MBaAFLpcKjE+fdGkSeLB+ybFqwPlJoGNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdWx3cU1UNTkwYVJKNHNIN0pzV3JBLVVtZ1kwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS9mOGVhOTgtNGZiYy00ZjNlLWI2NTgt ZTBhN2FlMjE2Y2I3LzEvdWx3cU1UNTkwYVJKNHNIN0pzV3JBLVVtZ1kwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS9mOGVhOTgtNGZiYy00ZjNlLWI2NTgtZTBhN2FlMjE2Y2I3 LzEvdWx3cU1UNTkwYVJKNHNIN0pzV3JBLVVtZ1kwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYhUaoWIs dR2KI7R9HjBDgl9vN+F6lWPwidDpX0f/PGz72KsGLXzSv393NTR/iSF73rJPKVUQ XszfDyoX4Zi9erc7utRsETeu2YlbiljlMoKASyGdT17jgnd1DEigFh/IYRi9i7yw OOProxz8jiGVjjVxR3KbYgFSPZpvD5tlUUKYzvQGId6IhEqdUE26BhrOBEccmGyy ysGTeZ5WBY9LaKtkjJJm8tsY6btl22f+nEC9XE24wIuha8gDFX3y3o//NyFnvaYf 1Aipw4oldDpj8YTUgoYIdHduaUm8cyXsO69/6UUTP7k1jHC1Cg8ANmak/K8rEsEP 6sfaNLBp+1BGow== -----END CERTIFICATE-----Generated at Sat Dec 6 10:37:24 2025 by rpki-client