This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft File: U70JkochUqhtYNljuH0BgXwA_FM.mft (raw, json) Hash identifier: yVDftLuDjD4cE18zzHk2ZsV2pdJ1IiZQ6zBiCPO/8Dw= Subject key identifier: A1:B5:49:08:3D:D5:CE:E1:68:9D:DE:FD:37:48:03:62:A7:7B:50:CF Authority key identifier: 53:BD:09:92:87:21:52:A8:6D:60:D9:63:B8:7D:01:81:7C:00:FC:53 Certificate issuer: /CN=53bd0992872152a86d60d963b87d01817c00fc53 Certificate serial: 019AF2ADD810C22272FE93B79843B212B2E1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U70JkochUqhtYNljuH0BgXwA_FM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft Manifest number: 1762 Signing time: Sat 06 Dec 2025 08:01:10 +0000 Manifest this update: Sat 06 Dec 2025 08:01:10 +0000 Manifest next update: Sun 07 Dec 2025 08:01:10 +0000 Files and hashes: 1: 8hWTGCLXxSwODB2tKv40DFwDRSA.roa (hash: LnqtzTwP6Z/uj/Pahytsa4k9TTsa7E1q6xNsCMwJ/r4=) 2: KdlAk3dh27bShWAn4-0kWb61hVQ.roa (hash: ATJYV8SWOcnAG9fqVBljwxaiv5XnfJ4U40CX0lPgLrE=) 3: U70JkochUqhtYNljuH0BgXwA_FM.crl (hash: ucr7fcjt4/c5h10N1KVPPOo1BT8BMCYckRJvOl76v10=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.crl rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft rsync://rpki.ripe.net/repository/DEFAULT/U70JkochUqhtYNljuH0BgXwA_FM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:d8:10:c2:22:72:fe:93:b7:98:43:b2:12:b2:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53bd0992872152a86d60d963b87d01817c00fc53 Validity Not Before: Dec 6 08:01:10 2025 GMT Not After : Dec 7 08:01:10 2025 GMT Subject: CN=a1b549083dd5cee1689ddefd37480362a77b50cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:fb:ae:7d:fa:1a:e3:97:ef:e9:53:57:45:c2: 01:04:1c:57:d2:65:5c:67:7d:40:46:f4:3e:7f:80: 4e:45:ca:f4:72:a4:66:15:9f:b7:b9:61:69:91:c8: 11:60:a1:8f:6f:09:58:bc:18:8e:c1:fe:06:a2:29: 08:83:d0:e8:4c:72:8e:4e:b4:73:45:07:21:9d:cf: 3d:97:cf:6f:66:db:58:2a:fe:dc:8e:42:48:3f:e3: b2:17:de:79:67:fd:9e:ac:1a:94:d9:dc:7f:75:f4: 4a:84:ef:ba:b8:2d:01:28:bc:4a:5a:63:6c:82:ce: 3f:1e:99:5d:93:59:06:04:b0:90:c8:27:17:2c:7b: aa:7a:74:d7:15:98:0a:d6:52:98:83:8b:90:f2:6e: 79:7b:de:04:6f:e1:6f:0c:4e:63:ce:16:93:30:1c: 4e:90:c4:50:29:80:55:a6:2d:86:72:62:c6:13:92: 5a:04:90:aa:34:9a:08:f9:a2:79:3c:c8:3f:f9:5b: 45:97:a3:af:e1:23:8b:e0:db:84:5f:7c:86:f0:1a: fa:17:b0:5a:30:ac:71:ff:0c:80:d4:14:95:e3:43: 65:ad:ca:b7:8a:80:95:98:05:5b:b8:cc:dc:c3:12: 3c:3e:55:8a:20:de:f2:50:19:ae:76:0e:3f:d6:6e: 66:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:B5:49:08:3D:D5:CE:E1:68:9D:DE:FD:37:48:03:62:A7:7B:50:CF X509v3 Authority Key Identifier: keyid:53:BD:09:92:87:21:52:A8:6D:60:D9:63:B8:7D:01:81:7C:00:FC:53 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U70JkochUqhtYNljuH0BgXwA_FM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:5b:38:20:ac:04:cb:db:a8:95:8b:f8:af:1d:00:ae:63:5d: 70:d7:e8:8f:60:e9:f7:cf:5a:46:cd:5b:10:21:ff:7b:a0:07: 62:a3:2c:f4:d3:15:ae:7f:0b:6c:8f:a2:5e:84:e0:1f:87:98: 69:28:c9:b6:db:13:3a:08:12:8a:49:3a:01:f5:4e:6e:2f:b4: c1:c9:90:2c:d1:38:dd:49:f0:b2:93:ee:40:95:31:2b:76:a1: 10:07:85:be:88:e9:2d:f9:51:44:37:2b:8f:d9:e8:d8:0a:ec: 27:a7:3c:9c:20:5d:8f:46:ab:67:f4:7f:56:93:9d:fc:45:2b: fb:13:6d:82:ba:eb:1c:4b:0a:04:03:6b:e9:32:62:a5:2a:63: ba:fe:b3:7e:65:8e:59:6b:49:3b:73:31:75:e3:02:75:ed:07: b4:e8:9e:f4:97:de:92:79:4f:d0:91:08:9c:f9:20:d9:b3:6b: 4b:ad:be:84:46:e9:19:9e:39:02:35:62:91:d9:34:53:0f:81: 92:6a:d3:54:7e:3b:f3:fd:88:8d:80:69:12:70:b2:8c:09:12: 2a:c0:d7:5a:6a:f5:99:e4:17:ea:3c:7f:02:0a:30:04:e9:4d: 8b:74:e7:5d:32:15:29:f9:f6:67:95:20:d3:3d:68:c0:39:cb: 10:c2:95:1c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryrdgQwiJy/pO3mEOyErLhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzYmQwOTkyODcyMTUyYTg2ZDYwZDk2M2I4N2QwMTgxN2Mw MGZjNTMwHhcNMjUxMjA2MDgwMTEwWhcNMjUxMjA3MDgwMTEwWjAzMTEwLwYDVQQD EyhhMWI1NDkwODNkZDVjZWUxNjg5ZGRlZmQzNzQ4MDM2MmE3N2I1MGNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp/uuffoa45fv6VNXRcIBBBxX0mVc Z31ARvQ+f4BORcr0cqRmFZ+3uWFpkcgRYKGPbwlYvBiOwf4GoikIg9DoTHKOTrRz RQchnc89l89vZttYKv7cjkJIP+OyF955Z/2erBqU2dx/dfRKhO+6uC0BKLxKWmNs gs4/Hpldk1kGBLCQyCcXLHuqenTXFZgK1lKYg4uQ8m55e94Eb+FvDE5jzhaTMBxO kMRQKYBVpi2GcmLGE5JaBJCqNJoI+aJ5PMg/+VtFl6Ov4SOL4NuEX3yG8Br6F7Ba MKxx/wyA1BSV40Nlrcq3ioCVmAVbuMzcwxI8PlWKIN7yUBmudg4/1m5m1QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKG1SQg91c7haJ3e/TdIA2Kne1DPMB8GA1UdIwQY MBaAFFO9CZKHIVKobWDZY7h9AYF8APxTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVTcwSmtvY2hVcWh0WU5sanVIMEJnWHdBX0ZNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS82ZTI2NGUtZDZjZS00MmQ1LWIwNWQt ZTE1ZjRmODQwOWU2LzEvVTcwSmtvY2hVcWh0WU5sanVIMEJnWHdBX0ZNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMS82ZTI2NGUtZDZjZS00MmQ1LWIwNWQtZTE1ZjRmODQwOWU2 LzEvVTcwSmtvY2hVcWh0WU5sanVIMEJnWHdBX0ZNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEFs4IKwE y9uolYv4rx0ArmNdcNfoj2Dp989aRs1bECH/e6AHYqMs9NMVrn8LbI+iXoTgH4eY aSjJttsTOggSikk6AfVObi+0wcmQLNE43UnwspPuQJUxK3ahEAeFvojpLflRRDcr j9no2ArsJ6c8nCBdj0arZ/R/VpOd/EUr+xNtgrrrHEsKBANr6TJipSpjuv6zfmWO WWtJO3MxdeMCde0HtOie9JfeknlP0JEInPkg2bNrS62+hEbpGZ45AjVikdk0Uw+B kmrTVH478/2IjYBpEnCyjAkSKsDXWmr1meQX6jx/AgowBOlNi3TnXTIVKfn2Z5Ug 0z1owDnLEMKVHA== -----END CERTIFICATE-----Generated at Sat Dec 6 14:04:20 2025 by rpki-client