This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/3b3037-62bd-4b4d-af4d-77e3217cd39f/1/0_ULT8CViQuDHAPZliXA7lQZ01o.mft File: 0_ULT8CViQuDHAPZliXA7lQZ01o.mft (raw, json) Hash identifier: jgkxI4sbsmTweZSQP/W3na2Ux51BQmoxgSc9jxWF/6M= Subject key identifier: 67:CE:C7:8E:BF:9D:1D:0C:4E:12:41:5C:8C:31:3D:30:C4:7B:87:28 Authority key identifier: D3:F5:0B:4F:C0:95:89:0B:83:1C:03:D9:96:25:C0:EE:54:19:D3:5A Certificate issuer: /CN=d3f50b4fc095890b831c03d99625c0ee5419d35a Certificate serial: 019B2FD567686F6FE7F4C04AC6E0594D5CCC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0_ULT8CViQuDHAPZliXA7lQZ01o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/3b3037-62bd-4b4d-af4d-77e3217cd39f/1/0_ULT8CViQuDHAPZliXA7lQZ01o.mft Manifest number: 1633 Signing time: Thu 18 Dec 2025 05:01:13 +0000 Manifest this update: Thu 18 Dec 2025 05:01:13 +0000 Manifest next update: Fri 19 Dec 2025 05:01:13 +0000 Files and hashes: 1: 0_ULT8CViQuDHAPZliXA7lQZ01o.crl (hash: jgUIcbNckAAcbD6ResbEd0uwWoBEUL/xVaSIvXDPjPE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/3b3037-62bd-4b4d-af4d-77e3217cd39f/1/0_ULT8CViQuDHAPZliXA7lQZ01o.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/3b3037-62bd-4b4d-af4d-77e3217cd39f/1/0_ULT8CViQuDHAPZliXA7lQZ01o.mft rsync://rpki.ripe.net/repository/DEFAULT/0_ULT8CViQuDHAPZliXA7lQZ01o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 01:18:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2f:d5:67:68:6f:6f:e7:f4:c0:4a:c6:e0:59:4d:5c:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d3f50b4fc095890b831c03d99625c0ee5419d35a Validity Not Before: Dec 18 05:01:13 2025 GMT Not After : Dec 19 05:01:13 2025 GMT Subject: CN=67cec78ebf9d1d0c4e12415c8c313d30c47b8728 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:1c:bf:e1:fe:06:6d:12:5d:35:af:77:c7:cf: 27:5e:03:aa:4f:8e:fa:ff:c9:f8:88:34:43:89:f8: 20:9d:24:97:ae:c7:a7:62:21:c1:f6:4b:30:2e:30: b9:66:32:ea:37:67:41:c8:1c:7d:fd:f1:0b:fc:c5: 58:2b:91:35:f9:eb:dd:6d:4a:cf:bb:48:83:44:1b: b6:ba:32:c4:ba:8c:af:52:59:de:f8:44:ae:ec:ba: ad:81:eb:27:ed:0c:24:b3:ce:7b:07:89:43:2c:c0: f5:5b:77:d2:08:2a:10:09:1a:b9:0b:52:95:60:e0: 50:91:70:5f:10:fc:f2:63:9f:c1:e2:0f:22:b8:2a: b2:ca:38:bc:59:47:7f:57:91:07:5e:9a:de:b4:31: 49:9e:85:a5:b5:7c:84:0e:70:29:70:55:bd:73:54: eb:c7:31:b3:c5:f6:f2:d8:fd:b3:df:c3:41:c1:ea: 5f:ca:33:5a:47:87:9b:d2:2c:ab:81:f8:a4:b0:4f: 7a:87:e2:5a:d3:92:fa:d4:8b:07:ed:b1:e7:df:e5: d7:9b:06:a0:51:c6:66:c8:b5:51:e5:06:c1:29:0e: dd:a6:76:77:be:15:ae:41:3b:9e:fb:ce:5a:e4:f6: 12:2f:32:c4:38:bf:4f:10:43:d2:8b:c5:54:ae:ac: 96:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:CE:C7:8E:BF:9D:1D:0C:4E:12:41:5C:8C:31:3D:30:C4:7B:87:28 X509v3 Authority Key Identifier: keyid:D3:F5:0B:4F:C0:95:89:0B:83:1C:03:D9:96:25:C0:EE:54:19:D3:5A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0_ULT8CViQuDHAPZliXA7lQZ01o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/3b3037-62bd-4b4d-af4d-77e3217cd39f/1/0_ULT8CViQuDHAPZliXA7lQZ01o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/3b3037-62bd-4b4d-af4d-77e3217cd39f/1/0_ULT8CViQuDHAPZliXA7lQZ01o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 98:7e:a7:59:12:67:24:aa:ea:c3:b6:2c:f3:75:93:97:eb:23: 0c:f6:2d:11:bc:4c:43:18:0f:2f:f6:f7:36:76:9b:c3:ca:2d: 25:a8:6a:34:bd:d7:f8:bb:e2:c2:e9:08:92:7b:1d:9a:27:6d: 4e:b1:9a:3b:40:20:05:70:45:ef:01:9e:12:20:1f:97:50:01: 7d:dc:61:c6:cc:77:96:82:e9:19:a9:b5:18:d9:f9:e1:1d:d4: 3b:41:5c:8a:88:48:1f:10:f8:4a:1e:88:93:2a:fc:f8:67:cc: bc:58:fe:8c:0e:9a:c5:0e:9a:a4:19:5d:9d:e0:c4:90:b1:5e: 2c:0f:c6:8a:a5:55:6a:f4:5d:ca:29:2c:9e:04:04:83:86:46: f8:a4:96:fe:dc:d6:4f:57:db:2d:02:de:50:7a:c4:ae:4c:79: 09:df:9f:6b:e4:3b:3b:ee:57:a5:89:0e:00:e7:a6:93:80:3f: fd:7c:fc:33:f6:f8:77:72:f1:87:9b:2a:81:0c:36:56:38:8b: ca:54:1b:56:a5:53:b2:cd:f4:5b:e4:7a:ef:bf:3c:b2:c4:d1: 43:4e:3e:ae:a2:ae:42:78:59:75:e5:4a:b5:45:6d:35:4c:65: 89:26:1d:e5:9d:d7:e8:a5:cc:8c:7e:58:3a:b9:52:e3:7e:93: 9c:b1:05:7b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsv1Wdob2/n9MBKxuBZTVzMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQzZjUwYjRmYzA5NTg5MGI4MzFjMDNkOTk2MjVjMGVlNTQx OWQzNWEwHhcNMjUxMjE4MDUwMTEzWhcNMjUxMjE5MDUwMTEzWjAzMTEwLwYDVQQD Eyg2N2NlYzc4ZWJmOWQxZDBjNGUxMjQxNWM4YzMxM2QzMGM0N2I4NzI4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqBy/4f4GbRJdNa93x88nXgOqT476 /8n4iDRDifggnSSXrsenYiHB9kswLjC5ZjLqN2dByBx9/fEL/MVYK5E1+evdbUrP u0iDRBu2ujLEuoyvUlne+ESu7Lqtgesn7Qwks857B4lDLMD1W3fSCCoQCRq5C1KV YOBQkXBfEPzyY5/B4g8iuCqyyji8WUd/V5EHXpretDFJnoWltXyEDnApcFW9c1Tr xzGzxfby2P2z38NBwepfyjNaR4eb0iyrgfiksE96h+Ja05L61IsH7bHn3+XXmwag UcZmyLVR5QbBKQ7dpnZ3vhWuQTue+85a5PYSLzLEOL9PEEPSi8VUrqyWkwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGfOx46/nR0MThJBXIwxPTDEe4coMB8GA1UdIwQY MBaAFNP1C0/AlYkLgxwD2ZYlwO5UGdNaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMF9VTFQ4Q1ZpUXVESEFQWmxpWEE3bFFaMDFvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8zYjMwMzctNjJiZC00YjRkLWFmNGQt NzdlMzIxN2NkMzlmLzEvMF9VTFQ4Q1ZpUXVESEFQWmxpWEE3bFFaMDFvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC8zYjMwMzctNjJiZC00YjRkLWFmNGQtNzdlMzIxN2NkMzlm LzEvMF9VTFQ4Q1ZpUXVESEFQWmxpWEE3bFFaMDFvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmH6nWRJn JKrqw7Ys83WTl+sjDPYtEbxMQxgPL/b3Nnabw8otJahqNL3X+LviwukIknsdmidt TrGaO0AgBXBF7wGeEiAfl1ABfdxhxsx3loLpGam1GNn54R3UO0FciohIHxD4Sh6I kyr8+GfMvFj+jA6axQ6apBldneDEkLFeLA/GiqVVavRdyiksngQEg4ZG+KSW/tzW T1fbLQLeUHrErkx5Cd+fa+Q7O+5XpYkOAOemk4A//Xz8M/b4d3Lxh5sqgQw2VjiL ylQbVqVTss30W+R67788ssTRQ04+rqKuQnhZdeVKtUVtNUxliSYd5Z3X6KXMjH5Y OrlS436TnLEFew== -----END CERTIFICATE-----Generated at Thu Dec 18 07:42:09 2025 by rpki-client