This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/06f9a3-8fca-414e-b5ad-ca36d98b3c4d/1/U_8iLUoiYwLL8QBoyqb0xB97scs.mft File: U_8iLUoiYwLL8QBoyqb0xB97scs.mft (raw, json) Hash identifier: je29o+NLx1ZMVy1geUFU5teZC4bApQ1UUAXjQKLNlXA= Subject key identifier: D8:DB:F2:C9:BD:80:27:48:DB:51:53:20:37:F0:B5:9C:9D:61:AD:87 Authority key identifier: 53:FF:22:2D:4A:22:63:02:CB:F1:00:68:CA:A6:F4:C4:1F:7B:B1:CB Certificate issuer: /CN=53ff222d4a226302cbf10068caa6f4c41f7bb1cb Certificate serial: 019AF12ECAB126B65B80268B067FE1411289 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U_8iLUoiYwLL8QBoyqb0xB97scs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/06f9a3-8fca-414e-b5ad-ca36d98b3c4d/1/U_8iLUoiYwLL8QBoyqb0xB97scs.mft Manifest number: 0307 Signing time: Sat 06 Dec 2025 01:02:46 +0000 Manifest this update: Sat 06 Dec 2025 01:02:46 +0000 Manifest next update: Sun 07 Dec 2025 01:02:46 +0000 Files and hashes: 1: U_8iLUoiYwLL8QBoyqb0xB97scs.crl (hash: PSJq8bEsOHh/abXdgBZjuHdQSvkQp1I/zvm0p7pMWZE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/06f9a3-8fca-414e-b5ad-ca36d98b3c4d/1/U_8iLUoiYwLL8QBoyqb0xB97scs.crl rsync://rpki.ripe.net/repository/DEFAULT/e5/06f9a3-8fca-414e-b5ad-ca36d98b3c4d/1/U_8iLUoiYwLL8QBoyqb0xB97scs.mft rsync://rpki.ripe.net/repository/DEFAULT/U_8iLUoiYwLL8QBoyqb0xB97scs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:ca:b1:26:b6:5b:80:26:8b:06:7f:e1:41:12:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53ff222d4a226302cbf10068caa6f4c41f7bb1cb Validity Not Before: Dec 6 01:02:46 2025 GMT Not After : Dec 7 01:02:46 2025 GMT Subject: CN=d8dbf2c9bd802748db51532037f0b59c9d61ad87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:c3:0e:a9:d0:f5:78:90:31:ab:02:85:6b:60: 39:e9:48:22:0b:d8:6e:e7:b1:44:08:7c:3b:17:cb: bc:15:15:7c:58:68:27:d0:c0:7a:c2:92:e5:b1:4f: 46:15:bc:9d:7c:13:28:68:8a:0d:a3:34:6c:8e:56: e8:a5:b0:e5:25:2e:67:75:e3:05:e2:21:64:47:69: 82:2c:39:40:1a:1b:a1:fc:ee:6d:87:d0:33:82:2e: a5:10:f7:17:45:5d:3e:2b:ab:f6:a2:9d:a6:eb:4d: 41:11:b9:45:8c:5b:3c:f2:5e:14:1c:c2:2b:17:5a: 2c:46:6f:ff:9c:bc:56:5e:6f:8b:a7:bc:92:42:ac: 75:45:79:b6:0b:4c:f7:2c:a7:4b:34:e7:bc:0e:2f: 2b:10:72:ee:e6:31:6d:51:41:a9:21:54:e5:c3:2d: 98:29:5c:54:08:18:c9:9b:9f:f7:3a:d6:fb:b4:b3: 65:15:6f:ac:96:30:9c:36:3d:6f:8c:b7:f4:3f:1c: 1b:62:d9:f2:05:c6:a1:7c:0c:c7:3b:03:09:80:c7: c5:3b:18:8e:18:18:fb:ad:85:d3:b0:2f:84:51:aa: 99:d2:1a:15:25:a2:df:38:9e:73:93:a7:c7:e1:a9: 78:69:f3:6a:94:63:6b:05:b1:d1:b6:1b:98:22:25: 0f:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:DB:F2:C9:BD:80:27:48:DB:51:53:20:37:F0:B5:9C:9D:61:AD:87 X509v3 Authority Key Identifier: keyid:53:FF:22:2D:4A:22:63:02:CB:F1:00:68:CA:A6:F4:C4:1F:7B:B1:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U_8iLUoiYwLL8QBoyqb0xB97scs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/06f9a3-8fca-414e-b5ad-ca36d98b3c4d/1/U_8iLUoiYwLL8QBoyqb0xB97scs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/06f9a3-8fca-414e-b5ad-ca36d98b3c4d/1/U_8iLUoiYwLL8QBoyqb0xB97scs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 18:25:d6:13:f5:90:aa:b0:09:b2:59:39:4a:90:ff:cf:3b:1f: f3:67:0a:45:f3:ff:e2:87:3f:b9:97:10:56:e5:9f:d4:55:d2: a3:33:03:d7:7b:51:6b:9f:1f:7f:01:8a:03:2a:40:db:c2:14: 53:04:a0:c1:b0:ca:3f:79:f1:ed:26:83:5c:27:1d:29:bd:37: 00:a1:78:a9:ad:39:96:5f:ef:4b:1d:9e:f7:3f:0c:5a:1b:d1: 2a:cc:ac:bb:86:ea:50:95:bc:7d:64:ac:4c:e5:60:ac:a5:46: 93:c2:95:d5:09:1f:a5:90:59:14:af:26:fd:19:ab:6a:bd:c7: 90:ba:88:42:7a:21:6c:b0:21:bd:16:e7:7a:30:51:e9:73:82: 83:6c:63:c4:d9:2a:bf:fd:39:38:ba:78:b7:fb:58:c0:35:85: e3:05:80:1a:0e:55:b1:c1:87:7a:11:e9:89:84:0e:48:56:73: 9b:76:65:65:50:d7:da:22:92:cb:94:3e:5d:23:a3:37:b5:b5: c0:d1:01:f2:40:bc:a4:8a:7a:84:7e:a0:5d:0d:c0:1d:ca:ab: 2f:50:08:aa:3b:f9:29:c1:10:03:82:ce:68:da:68:46:76:ad: 8d:6f:db:37:f9:08:38:c6:d8:25:f4:d3:73:e4:c7:d3:5e:df: c7:3e:ae:bf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLsqxJrZbgCaLBn/hQRKJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzZmYyMjJkNGEyMjYzMDJjYmYxMDA2OGNhYTZmNGM0MWY3 YmIxY2IwHhcNMjUxMjA2MDEwMjQ2WhcNMjUxMjA3MDEwMjQ2WjAzMTEwLwYDVQQD EyhkOGRiZjJjOWJkODAyNzQ4ZGI1MTUzMjAzN2YwYjU5YzlkNjFhZDg3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqMMOqdD1eJAxqwKFa2A56UgiC9hu 57FECHw7F8u8FRV8WGgn0MB6wpLlsU9GFbydfBMoaIoNozRsjlbopbDlJS5ndeMF 4iFkR2mCLDlAGhuh/O5th9Azgi6lEPcXRV0+K6v2op2m601BEblFjFs88l4UHMIr F1osRm//nLxWXm+Lp7ySQqx1RXm2C0z3LKdLNOe8Di8rEHLu5jFtUUGpIVTlwy2Y KVxUCBjJm5/3Otb7tLNlFW+sljCcNj1vjLf0PxwbYtnyBcahfAzHOwMJgMfFOxiO GBj7rYXTsC+EUaqZ0hoVJaLfOJ5zk6fH4al4afNqlGNrBbHRthuYIiUPIQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNjb8sm9gCdI21FTIDfwtZydYa2HMB8GA1UdIwQY MBaAFFP/Ii1KImMCy/EAaMqm9MQfe7HLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVV84aUxVb2lZd0xMOFFCb3lxYjB4Qjk3c2NzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS8wNmY5YTMtOGZjYS00MTRlLWI1YWQt Y2EzNmQ5OGIzYzRkLzEvVV84aUxVb2lZd0xMOFFCb3lxYjB4Qjk3c2NzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNS8wNmY5YTMtOGZjYS00MTRlLWI1YWQtY2EzNmQ5OGIzYzRk LzEvVV84aUxVb2lZd0xMOFFCb3lxYjB4Qjk3c2NzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGCXWE/WQ qrAJslk5SpD/zzsf82cKRfP/4oc/uZcQVuWf1FXSozMD13tRa58ffwGKAypA28IU UwSgwbDKP3nx7SaDXCcdKb03AKF4qa05ll/vSx2e9z8MWhvRKsysu4bqUJW8fWSs TOVgrKVGk8KV1QkfpZBZFK8m/Rmrar3HkLqIQnohbLAhvRbnejBR6XOCg2xjxNkq v/05OLp4t/tYwDWF4wWAGg5VscGHehHpiYQOSFZzm3ZlZVDX2iKSy5Q+XSOjN7W1 wNEB8kC8pIp6hH6gXQ3AHcqrL1AIqjv5KcEQA4LOaNpoRnatjW/bN/kIOMbYJfTT c+TH017fxz6uvw== -----END CERTIFICATE-----Generated at Sat Dec 6 08:26:17 2025 by rpki-client