This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.mft File: UIJpb7xB2QYWimDOCUlJAiz2Keg.mft (raw, json) Hash identifier: GmZJsCSE9n9TVNXM3KH62THXXH8tjdxuqZACuuf1snw= Subject key identifier: 53:58:A7:12:5C:75:D2:5D:50:50:24:39:FD:92:33:EA:51:F1:72:DA Authority key identifier: 50:82:69:6F:BC:41:D9:06:16:8A:60:CE:09:49:49:02:2C:F6:29:E8 Certificate issuer: /CN=5082696fbc41d906168a60ce094949022cf629e8 Certificate serial: 019AF2AD66BFEA76B5BCDF948E0459BC2466 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UIJpb7xB2QYWimDOCUlJAiz2Keg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.mft Manifest number: 04E9 Signing time: Sat 06 Dec 2025 08:00:41 +0000 Manifest this update: Sat 06 Dec 2025 08:00:41 +0000 Manifest next update: Sun 07 Dec 2025 08:00:41 +0000 Files and hashes: 1: UIJpb7xB2QYWimDOCUlJAiz2Keg.crl (hash: 0WuKADSRevjJJNN4GGvWfwaCBURN+EHUwRmA0ALofX4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.crl rsync://rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.mft rsync://rpki.ripe.net/repository/DEFAULT/UIJpb7xB2QYWimDOCUlJAiz2Keg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:66:bf:ea:76:b5:bc:df:94:8e:04:59:bc:24:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5082696fbc41d906168a60ce094949022cf629e8 Validity Not Before: Dec 6 08:00:41 2025 GMT Not After : Dec 7 08:00:41 2025 GMT Subject: CN=5358a7125c75d25d50502439fd9233ea51f172da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:63:5c:cf:a3:2b:6b:94:55:c1:16:50:e0:a8: ee:20:32:28:a5:0e:51:7c:75:65:88:38:3b:da:08: a6:7b:47:04:0d:46:6e:2d:6a:ec:d3:c3:8b:a2:bc: 1e:a0:da:90:19:42:2f:42:90:f8:94:11:b5:b6:c0: 29:3a:dd:a6:20:a6:ed:91:eb:b4:37:a6:c1:b3:07: e3:41:79:1d:db:ff:83:17:33:5a:4d:59:86:79:78: 35:99:b3:56:81:59:c0:4a:1c:8f:5e:ca:a5:ef:90: fa:b0:f2:0b:e1:58:6b:15:d6:a3:d3:3e:0f:54:44: 40:09:ae:18:fd:21:04:cd:4d:eb:ca:d9:36:d8:a2: 0d:a9:6e:d4:40:9f:2e:ce:26:b4:6a:05:d2:4d:ef: 89:c7:43:fd:4d:ec:7b:cc:95:1b:3f:08:b3:f3:71: 11:46:7a:e1:8a:2b:45:8a:a1:6e:3f:58:79:ea:56: 17:9a:16:ea:55:db:72:a4:e9:c3:72:aa:dd:10:0f: f8:ba:4b:c2:86:f7:a5:33:34:3a:cc:58:ac:79:a4: a4:92:fb:95:bf:60:25:62:fa:15:4e:4f:39:5a:f1: 14:dd:a3:aa:3e:07:f5:3a:a7:04:f9:30:7b:bc:b8: d0:54:d4:c9:85:7d:17:a8:aa:27:5c:fe:f9:04:c1: e5:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:58:A7:12:5C:75:D2:5D:50:50:24:39:FD:92:33:EA:51:F1:72:DA X509v3 Authority Key Identifier: keyid:50:82:69:6F:BC:41:D9:06:16:8A:60:CE:09:49:49:02:2C:F6:29:E8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UIJpb7xB2QYWimDOCUlJAiz2Keg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/a9f0bb-86f6-4ca3-a53f-2e9721d86c3d/1/UIJpb7xB2QYWimDOCUlJAiz2Keg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:6d:d1:6a:2b:23:43:5e:07:55:6e:62:6f:73:74:df:ad:4d: 73:48:f9:73:32:f5:4e:e8:69:4a:a4:01:47:62:d4:90:af:75: 86:be:ff:3c:dc:d3:61:53:08:8e:60:4e:f4:b4:e4:2e:7c:f7: 61:01:4c:53:ab:50:cb:04:54:2e:db:09:bc:91:8c:da:85:2d: d1:6d:a7:f2:7b:bc:24:53:9b:6f:da:bd:af:12:96:0f:f5:b4: 61:6e:15:e4:21:e7:1c:2e:64:9e:88:46:5e:d2:2c:03:2e:18: da:b6:65:a9:b0:a0:1f:c4:83:86:e7:cd:56:1a:73:8b:a8:bb: df:06:f1:22:21:6e:22:59:b2:fb:3a:45:01:ad:5c:88:65:d3: 39:fe:bf:ad:2d:5b:3e:b4:dc:4d:33:dd:75:ac:fc:a0:bd:05: f0:2c:ed:c4:0a:26:dc:d6:d0:b3:5c:7e:f6:27:22:52:79:b4: 2b:9b:7d:c3:fd:bf:f6:b4:f4:0f:a5:3b:01:53:0e:56:07:bd: a5:a7:6b:c5:6a:79:13:24:5f:16:d8:13:da:12:19:11:3e:c0: 58:13:e7:da:45:0e:9c:af:ca:ac:a0:61:f5:70:af:69:8c:44: 49:4f:2b:0e:70:7a:e1:57:c8:60:72:35:ed:12:cf:b5:8e:6d: a4:3c:41:4e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryrWa/6na1vN+UjgRZvCRmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUwODI2OTZmYmM0MWQ5MDYxNjhhNjBjZTA5NDk0OTAyMmNm NjI5ZTgwHhcNMjUxMjA2MDgwMDQxWhcNMjUxMjA3MDgwMDQxWjAzMTEwLwYDVQQD Eyg1MzU4YTcxMjVjNzVkMjVkNTA1MDI0MzlmZDkyMzNlYTUxZjE3MmRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtmNcz6Mra5RVwRZQ4KjuIDIopQ5R fHVliDg72gime0cEDUZuLWrs08OLorweoNqQGUIvQpD4lBG1tsApOt2mIKbtkeu0 N6bBswfjQXkd2/+DFzNaTVmGeXg1mbNWgVnAShyPXsql75D6sPIL4VhrFdaj0z4P VERACa4Y/SEEzU3rytk22KINqW7UQJ8uzia0agXSTe+Jx0P9Tex7zJUbPwiz83ER RnrhiitFiqFuP1h56lYXmhbqVdtypOnDcqrdEA/4ukvChvelMzQ6zFiseaSkkvuV v2AlYvoVTk85WvEU3aOqPgf1OqcE+TB7vLjQVNTJhX0XqKonXP75BMHl1wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFNYpxJcddJdUFAkOf2SM+pR8XLaMB8GA1UdIwQY MBaAFFCCaW+8QdkGFopgzglJSQIs9inoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVUlKcGI3eEIyUVlXaW1ET0NVbEpBaXoyS2VnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS9hOWYwYmItODZmNi00Y2EzLWE1M2Yt MmU5NzIxZDg2YzNkLzEvVUlKcGI3eEIyUVlXaW1ET0NVbEpBaXoyS2VnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZS9hOWYwYmItODZmNi00Y2EzLWE1M2YtMmU5NzIxZDg2YzNk LzEvVUlKcGI3eEIyUVlXaW1ET0NVbEpBaXoyS2VnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJW3Raisj Q14HVW5ib3N0361Nc0j5czL1TuhpSqQBR2LUkK91hr7/PNzTYVMIjmBO9LTkLnz3 YQFMU6tQywRULtsJvJGM2oUt0W2n8nu8JFObb9q9rxKWD/W0YW4V5CHnHC5knohG XtIsAy4Y2rZlqbCgH8SDhufNVhpzi6i73wbxIiFuIlmy+zpFAa1ciGXTOf6/rS1b PrTcTTPddaz8oL0F8CztxAom3NbQs1x+9iciUnm0K5t9w/2/9rT0D6U7AVMOVge9 padrxWp5EyRfFtgT2hIZET7AWBPn2kUOnK/KrKBh9XCvaYxESU8rDnB64VfIYHI1 7RLPtY5tpDxBTg== -----END CERTIFICATE-----Generated at Sat Dec 6 10:56:00 2025 by rpki-client