This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.mft File: uEWIWKHL3onJKQYPQvKw35JNTik.mft (raw, json) Hash identifier: 6BYGCQfyAc5xRP1QcJMx5dEpxiA4O/NZdf7qxvDijU4= Subject key identifier: 82:5D:B1:60:2E:F8:12:70:62:8E:20:0E:45:08:3C:0D:FE:E4:9B:E3 Authority key identifier: B8:45:88:58:A1:CB:DE:89:C9:29:06:0F:42:F2:B0:DF:92:4D:4E:29 Certificate issuer: /CN=b8458858a1cbde89c929060f42f2b0df924d4e29 Certificate serial: 019AF16474F79A026A6BC55100E1F9228635 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uEWIWKHL3onJKQYPQvKw35JNTik.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.mft Manifest number: 0BE1 Signing time: Sat 06 Dec 2025 02:01:23 +0000 Manifest this update: Sat 06 Dec 2025 02:01:23 +0000 Manifest next update: Sun 07 Dec 2025 02:01:23 +0000 Files and hashes: 1: TGrXflCdfRfW3fIuk1M0sun1vvs.roa (hash: alNQcjpWXoWXc70x5wuOV0VaoVsG9NOJ3xbbbXJM7RE=) 2: uEWIWKHL3onJKQYPQvKw35JNTik.crl (hash: Cw74Zlw9877DtfamJXaf4auXV5fhn228vdYcyrFv9M8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.mft rsync://rpki.ripe.net/repository/DEFAULT/uEWIWKHL3onJKQYPQvKw35JNTik.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:64:74:f7:9a:02:6a:6b:c5:51:00:e1:f9:22:86:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b8458858a1cbde89c929060f42f2b0df924d4e29 Validity Not Before: Dec 6 02:01:23 2025 GMT Not After : Dec 7 02:01:23 2025 GMT Subject: CN=825db1602ef81270628e200e45083c0dfee49be3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:77:03:6d:0d:1f:f0:a2:87:60:11:28:e7:4a: a1:93:af:01:2a:ad:b4:1a:98:ba:ff:3d:53:7f:55: ff:6c:55:ca:87:8b:b2:f7:cb:b7:63:93:82:00:f2: 96:4b:bf:65:f9:d5:cd:46:48:2d:52:2f:8b:27:a2: 9b:01:51:cc:f6:54:db:d8:95:ad:72:ff:11:67:e3: 88:42:a2:ab:fc:e0:99:6f:8c:66:9f:54:dc:be:da: 4b:eb:b6:dd:8f:20:c9:cf:e9:ea:57:72:14:1c:14: 11:4f:ac:ff:e9:8e:8c:c7:c2:3b:d3:6d:a3:05:18: 62:3a:dc:4f:a0:7e:60:03:17:ed:92:3c:99:c0:08: 0c:c2:38:b2:98:78:cf:21:9a:5e:fb:2d:f7:30:63: bd:d2:43:b0:38:17:09:ae:91:51:63:56:d9:11:8a: e2:4b:f0:5f:42:05:2d:21:cd:10:ed:04:6c:d9:c7: 7a:e9:6b:49:c8:52:09:1a:fe:84:ce:a0:97:2e:c6: 97:3c:d7:3e:24:7b:6f:11:bb:62:d1:51:96:cb:ba: c2:27:a7:ba:d5:42:53:ad:99:9d:07:08:6b:cf:e7: c7:73:d9:62:00:90:c7:5b:93:d2:1e:5b:8e:fd:61: b5:9d:a3:26:c1:c5:13:6d:79:ca:55:f5:3a:bb:15: 41:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:5D:B1:60:2E:F8:12:70:62:8E:20:0E:45:08:3C:0D:FE:E4:9B:E3 X509v3 Authority Key Identifier: keyid:B8:45:88:58:A1:CB:DE:89:C9:29:06:0F:42:F2:B0:DF:92:4D:4E:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uEWIWKHL3onJKQYPQvKw35JNTik.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/e674fb-2683-4cf4-967b-b7c67eacc3a5/1/uEWIWKHL3onJKQYPQvKw35JNTik.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3a:6f:08:25:57:2a:09:13:1d:e1:8f:68:e8:69:0f:f3:fe:76: d3:32:62:67:24:50:be:2d:98:ab:cd:50:a5:1c:ea:88:e3:79: f3:d9:26:fa:a8:fe:6e:5e:0d:31:ab:f5:09:82:24:03:37:d1: e0:27:88:eb:67:2a:96:6a:db:8a:ef:fd:28:0f:75:fc:46:82: 89:19:27:58:ff:5d:f5:ec:1c:6d:9e:ca:72:d5:60:24:c5:04: 2a:ad:ec:8e:9b:c9:cf:95:90:a6:8f:d5:ad:cc:ef:52:26:a4: a1:7d:33:36:fe:0a:36:eb:51:a8:6e:dd:59:8d:fb:01:bd:49: d4:f8:a9:ea:1a:6c:82:90:9a:a5:bc:cf:fe:96:28:57:ee:7e: a9:d0:bf:94:be:d2:74:aa:4a:01:8a:a8:cc:50:b0:0a:2c:f7: 8e:46:ec:7b:65:7a:33:60:9c:c3:f0:55:80:d0:ce:cc:64:ad: d8:0d:27:0a:ec:1a:f1:ea:81:f1:5a:4c:77:2b:9c:3d:c8:42: cf:0f:17:ab:b3:9a:70:10:5f:6a:a5:91:5d:ec:45:95:c6:04: 73:c2:29:b1:a9:be:47:01:de:87:bc:65:e8:3a:ca:d3:ea:57: 35:cf:0d:f9:89:40:d9:65:6c:52:96:80:ea:a4:c0:09:d7:5f: 36:d3:a9:b0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxZHT3mgJqa8VRAOH5IoY1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI4NDU4ODU4YTFjYmRlODljOTI5MDYwZjQyZjJiMGRmOTI0 ZDRlMjkwHhcNMjUxMjA2MDIwMTIzWhcNMjUxMjA3MDIwMTIzWjAzMTEwLwYDVQQD Eyg4MjVkYjE2MDJlZjgxMjcwNjI4ZTIwMGU0NTA4M2MwZGZlZTQ5YmUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsXcDbQ0f8KKHYBEo50qhk68BKq20 Gpi6/z1Tf1X/bFXKh4uy98u3Y5OCAPKWS79l+dXNRkgtUi+LJ6KbAVHM9lTb2JWt cv8RZ+OIQqKr/OCZb4xmn1TcvtpL67bdjyDJz+nqV3IUHBQRT6z/6Y6Mx8I7022j BRhiOtxPoH5gAxftkjyZwAgMwjiymHjPIZpe+y33MGO90kOwOBcJrpFRY1bZEYri S/BfQgUtIc0Q7QRs2cd66WtJyFIJGv6EzqCXLsaXPNc+JHtvEbti0VGWy7rCJ6e6 1UJTrZmdBwhrz+fHc9liAJDHW5PSHluO/WG1naMmwcUTbXnKVfU6uxVB0wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIJdsWAu+BJwYo4gDkUIPA3+5JvjMB8GA1UdIwQY MBaAFLhFiFihy96JySkGD0LysN+STU4pMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdUVXSVdLSEwzb25KS1FZUFF2S3czNUpOVGlrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC9lNjc0ZmItMjY4My00Y2Y0LTk2N2It YjdjNjdlYWNjM2E1LzEvdUVXSVdLSEwzb25KS1FZUFF2S3czNUpOVGlrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC9lNjc0ZmItMjY4My00Y2Y0LTk2N2ItYjdjNjdlYWNjM2E1 LzEvdUVXSVdLSEwzb25KS1FZUFF2S3czNUpOVGlrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOm8IJVcq CRMd4Y9o6GkP8/520zJiZyRQvi2Yq81QpRzqiON589km+qj+bl4NMav1CYIkAzfR 4CeI62cqlmrbiu/9KA91/EaCiRknWP9d9ewcbZ7KctVgJMUEKq3sjpvJz5WQpo/V rczvUiakoX0zNv4KNutRqG7dWY37Ab1J1Pip6hpsgpCapbzP/pYoV+5+qdC/lL7S dKpKAYqozFCwCiz3jkbse2V6M2Ccw/BVgNDOzGSt2A0nCuwa8eqB8VpMdyucPchC zw8Xq7OacBBfaqWRXexFlcYEc8Ipsam+RwHeh7xl6DrK0+pXNc8N+YlA2WVsUpaA 6qTACddfNtOpsA== -----END CERTIFICATE-----Generated at Sat Dec 6 09:21:43 2025 by rpki-client