This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/220318-46f1-4ebf-a795-dd4a217d606b/1/u41koNwhmWscmeaMyVFpTik-3v4.mft File: u41koNwhmWscmeaMyVFpTik-3v4.mft (raw, json) Hash identifier: uScJJ6Pgv4fsY/6CIgO+qF4hTZOv1cd/34bkfyfyAsk= Subject key identifier: 1D:FD:1E:8D:37:6D:3E:6C:E6:C1:F6:D3:9E:46:C0:B4:81:35:5F:F4 Authority key identifier: BB:8D:64:A0:DC:21:99:6B:1C:99:E6:8C:C9:51:69:4E:29:3E:DE:FE Certificate issuer: /CN=bb8d64a0dc21996b1c99e68cc951694e293edefe Certificate serial: 019B34203DCE91878BCE137081FB4C49453E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u41koNwhmWscmeaMyVFpTik-3v4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/220318-46f1-4ebf-a795-dd4a217d606b/1/u41koNwhmWscmeaMyVFpTik-3v4.mft Manifest number: 178D Signing time: Fri 19 Dec 2025 01:01:26 +0000 Manifest this update: Fri 19 Dec 2025 01:01:26 +0000 Manifest next update: Sat 20 Dec 2025 01:01:26 +0000 Files and hashes: 1: C_0ORiP6GTff8xYOZ4mMicSAww8.roa (hash: HUAyzCwf6jl6lX3eg8riTN4+Y+lTTc8+dOFl1EBg7WI=) 2: YWaaNJeo7smBlwI_T0SxJ5KX4-g.roa (hash: QZs858olOtlmGTBOleulDcnrJGCjiCkhUKDy6SCkdvE=) 3: u41koNwhmWscmeaMyVFpTik-3v4.crl (hash: 8mxzlngCkt02wzB8TI3msvRKjEgOoStwOB9OAmZM1G8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/220318-46f1-4ebf-a795-dd4a217d606b/1/u41koNwhmWscmeaMyVFpTik-3v4.crl rsync://rpki.ripe.net/repository/DEFAULT/e8/220318-46f1-4ebf-a795-dd4a217d606b/1/u41koNwhmWscmeaMyVFpTik-3v4.mft rsync://rpki.ripe.net/repository/DEFAULT/u41koNwhmWscmeaMyVFpTik-3v4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:34:20:3d:ce:91:87:8b:ce:13:70:81:fb:4c:49:45:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bb8d64a0dc21996b1c99e68cc951694e293edefe Validity Not Before: Dec 19 01:01:26 2025 GMT Not After : Dec 20 01:01:26 2025 GMT Subject: CN=1dfd1e8d376d3e6ce6c1f6d39e46c0b481355ff4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:a0:13:41:80:99:73:28:19:3c:5b:09:88:fe: 04:be:0c:e0:9c:29:57:6f:9d:ee:37:cd:e6:6d:9c: 51:84:b0:c1:c4:4f:a3:9c:47:9a:34:30:85:fb:31: 22:03:42:3a:0c:16:02:e8:25:01:58:fb:46:c6:bf: a1:74:30:e4:62:58:74:ca:ac:e8:e5:6e:f8:11:43: 17:8b:2a:64:31:3f:40:04:0f:19:9d:9b:39:5f:08: c8:92:11:92:45:78:33:81:ac:b8:7c:41:e7:50:07: 32:8c:89:c3:12:7f:1a:b8:4e:97:d8:93:32:05:a8: d9:99:ef:25:5a:3e:a9:02:a0:20:1f:ce:e4:ef:cb: e5:50:c2:a5:f6:1d:a0:50:72:99:ab:8d:8a:6d:07: d6:ca:4b:76:e8:78:2a:36:14:c0:54:81:eb:6f:f2: ee:92:04:5f:61:31:89:49:83:e0:1a:8b:59:d0:66: a8:3a:14:0b:a0:e8:a8:9c:68:0b:2a:7d:95:e0:1b: a0:d4:28:8a:64:d9:56:ed:1f:45:72:cb:13:74:09: 34:66:13:b7:64:b2:d7:f7:5b:76:24:23:b3:7a:af: a0:41:12:ab:b0:46:71:db:c4:e2:e8:66:75:a2:a0: a4:7c:e2:83:0b:c2:fe:2b:8a:4f:3f:02:63:0e:3a: 7d:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:FD:1E:8D:37:6D:3E:6C:E6:C1:F6:D3:9E:46:C0:B4:81:35:5F:F4 X509v3 Authority Key Identifier: keyid:BB:8D:64:A0:DC:21:99:6B:1C:99:E6:8C:C9:51:69:4E:29:3E:DE:FE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u41koNwhmWscmeaMyVFpTik-3v4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/220318-46f1-4ebf-a795-dd4a217d606b/1/u41koNwhmWscmeaMyVFpTik-3v4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/220318-46f1-4ebf-a795-dd4a217d606b/1/u41koNwhmWscmeaMyVFpTik-3v4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6c:3a:73:ba:af:45:be:65:1f:0f:e2:2a:92:3d:bf:46:60:5b: c5:2d:83:df:d9:15:77:ff:3e:be:32:a4:37:7f:36:d2:56:31: 02:8a:f0:0e:eb:4b:5d:a5:df:a5:8d:66:dc:2b:d5:f9:79:54: bb:2d:5f:39:4f:84:11:60:6b:c3:df:85:28:2e:82:40:e3:30: 18:2b:00:c3:78:5a:d7:4a:6c:19:c0:a7:32:f9:5a:e5:34:27: 68:b8:4b:6e:98:40:fa:0f:64:2f:be:ab:92:1f:e1:ae:9c:a9: 7e:d9:6c:cb:33:44:8a:aa:58:43:47:72:eb:7e:c8:a2:cd:9e: 4e:87:f9:2f:02:2d:0c:c0:af:4b:57:25:28:c5:b3:7f:64:22: 38:1b:b6:0c:7e:3e:68:c9:35:10:d7:10:3f:d9:ad:30:88:6e: 3f:48:62:1b:a4:c0:f3:81:d2:24:e6:11:bf:e1:f8:24:e1:89: 26:1e:41:78:e4:f2:f9:e1:f0:16:0f:f0:53:60:cd:22:6b:2a: ad:a2:cc:6b:c7:28:09:f1:88:9a:45:06:de:21:99:d1:e1:c3: d3:78:cc:91:2a:b0:be:6f:bf:57:3a:65:9d:76:3c:95:e6:66: a9:e0:01:f7:f9:4f:ad:1b:fa:f4:5b:c0:f8:d8:e1:d0:64:73: e7:a6:11:1a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs0ID3OkYeLzhNwgftMSUU+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJiOGQ2NGEwZGMyMTk5NmIxYzk5ZTY4Y2M5NTE2OTRlMjkz ZWRlZmUwHhcNMjUxMjE5MDEwMTI2WhcNMjUxMjIwMDEwMTI2WjAzMTEwLwYDVQQD EygxZGZkMWU4ZDM3NmQzZTZjZTZjMWY2ZDM5ZTQ2YzBiNDgxMzU1ZmY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8KATQYCZcygZPFsJiP4EvgzgnClX b53uN83mbZxRhLDBxE+jnEeaNDCF+zEiA0I6DBYC6CUBWPtGxr+hdDDkYlh0yqzo 5W74EUMXiypkMT9ABA8ZnZs5XwjIkhGSRXgzgay4fEHnUAcyjInDEn8auE6X2JMy BajZme8lWj6pAqAgH87k78vlUMKl9h2gUHKZq42KbQfWykt26HgqNhTAVIHrb/Lu kgRfYTGJSYPgGotZ0GaoOhQLoOionGgLKn2V4Bug1CiKZNlW7R9FcssTdAk0ZhO3 ZLLX91t2JCOzeq+gQRKrsEZx28Ti6GZ1oqCkfOKDC8L+K4pPPwJjDjp9EQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB39Ho03bT5s5sH2055GwLSBNV/0MB8GA1UdIwQY MBaAFLuNZKDcIZlrHJnmjMlRaU4pPt7+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdTQxa29Od2htV3NjbWVhTXlWRnBUaWstM3Y0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC8yMjAzMTgtNDZmMS00ZWJmLWE3OTUt ZGQ0YTIxN2Q2MDZiLzEvdTQxa29Od2htV3NjbWVhTXlWRnBUaWstM3Y0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOC8yMjAzMTgtNDZmMS00ZWJmLWE3OTUtZGQ0YTIxN2Q2MDZi LzEvdTQxa29Od2htV3NjbWVhTXlWRnBUaWstM3Y0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbDpzuq9F vmUfD+Iqkj2/RmBbxS2D39kVd/8+vjKkN3820lYxAorwDutLXaXfpY1m3CvV+XlU uy1fOU+EEWBrw9+FKC6CQOMwGCsAw3ha10psGcCnMvla5TQnaLhLbphA+g9kL76r kh/hrpypftlsyzNEiqpYQ0dy637Ios2eTof5LwItDMCvS1clKMWzf2QiOBu2DH4+ aMk1ENcQP9mtMIhuP0hiG6TA84HSJOYRv+H4JOGJJh5BeOTy+eHwFg/wU2DNImsq raLMa8coCfGImkUG3iGZ0eHD03jMkSqwvm+/VzplnXY8leZmqeAB9/lPrRv69FvA +Njh0GRz56YRGg== -----END CERTIFICATE-----Generated at Fri Dec 19 06:24:45 2025 by rpki-client