This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/220318-46f1-4ebf-a795-dd4a217d606b/1/u41koNwhmWscmeaMyVFpTik-3v4.mft File: u41koNwhmWscmeaMyVFpTik-3v4.mft (raw, json) Hash identifier: PcTDZIe4uGcxNZ3ZQn6YcRkPEtfINfPwS9CuMdBB+NM= Subject key identifier: CC:2E:50:1C:E5:92:D2:F3:68:0E:E3:74:27:E5:FC:C9:79:F7:BD:01 Authority key identifier: BB:8D:64:A0:DC:21:99:6B:1C:99:E6:8C:C9:51:69:4E:29:3E:DE:FE Certificate issuer: /CN=bb8d64a0dc21996b1c99e68cc951694e293edefe Certificate serial: 019AF2774F47877D5DB0FD11F554405E7584 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u41koNwhmWscmeaMyVFpTik-3v4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/220318-46f1-4ebf-a795-dd4a217d606b/1/u41koNwhmWscmeaMyVFpTik-3v4.mft Manifest number: 176B Signing time: Sat 06 Dec 2025 07:01:36 +0000 Manifest this update: Sat 06 Dec 2025 07:01:36 +0000 Manifest next update: Sun 07 Dec 2025 07:01:36 +0000 Files and hashes: 1: C_0ORiP6GTff8xYOZ4mMicSAww8.roa (hash: HUAyzCwf6jl6lX3eg8riTN4+Y+lTTc8+dOFl1EBg7WI=) 2: YWaaNJeo7smBlwI_T0SxJ5KX4-g.roa (hash: QZs858olOtlmGTBOleulDcnrJGCjiCkhUKDy6SCkdvE=) 3: u41koNwhmWscmeaMyVFpTik-3v4.crl (hash: 3ZL5ol0bx027rAu+wJsrkv/IjhTNyQvsiTyenzLTeNU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/220318-46f1-4ebf-a795-dd4a217d606b/1/u41koNwhmWscmeaMyVFpTik-3v4.crl rsync://rpki.ripe.net/repository/DEFAULT/e8/220318-46f1-4ebf-a795-dd4a217d606b/1/u41koNwhmWscmeaMyVFpTik-3v4.mft rsync://rpki.ripe.net/repository/DEFAULT/u41koNwhmWscmeaMyVFpTik-3v4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:77:4f:47:87:7d:5d:b0:fd:11:f5:54:40:5e:75:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bb8d64a0dc21996b1c99e68cc951694e293edefe Validity Not Before: Dec 6 07:01:36 2025 GMT Not After : Dec 7 07:01:36 2025 GMT Subject: CN=cc2e501ce592d2f3680ee37427e5fcc979f7bd01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:2c:97:1e:21:db:4a:e5:d7:37:0b:2c:4e:ad: 04:bc:9c:e7:ec:ac:59:de:24:e9:71:23:c1:50:9c: 03:7f:65:8b:ac:fd:e4:fe:ba:62:7e:92:47:66:29: 3e:93:c4:53:d3:ea:c9:c4:89:ef:99:fc:94:fd:47: a9:ec:5d:eb:3b:94:03:21:cf:70:c9:c7:aa:de:e1: 4c:d4:51:8b:3f:5b:de:99:a5:38:a4:19:d7:90:6f: 98:62:10:96:d2:58:ca:22:52:87:e9:b7:0e:4c:07: a7:81:a7:8b:2f:59:2b:52:74:b9:c4:e8:c1:fd:c2: ee:67:30:46:0f:c4:3e:55:ae:6d:0f:da:49:ba:99: a6:c5:0a:45:b3:09:af:99:d6:f2:6d:b3:93:4f:fa: 91:4c:b6:25:48:6f:e9:a8:54:cf:fd:01:9b:55:a8: f2:e6:65:a0:23:77:23:cc:31:c4:b2:d9:99:fe:52: c5:81:22:c5:55:86:ef:8a:f7:7e:14:e1:e8:b6:40: 61:59:08:71:d2:77:21:3e:8d:84:b7:5c:84:cb:27: f6:4f:65:12:5d:83:ab:99:62:fe:5c:98:5c:12:d3: d9:03:d8:6f:97:50:0f:45:fc:f9:54:ad:dd:ff:04: 27:57:9b:0d:12:03:ce:e0:de:1c:15:31:0b:7e:db: 44:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:2E:50:1C:E5:92:D2:F3:68:0E:E3:74:27:E5:FC:C9:79:F7:BD:01 X509v3 Authority Key Identifier: keyid:BB:8D:64:A0:DC:21:99:6B:1C:99:E6:8C:C9:51:69:4E:29:3E:DE:FE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u41koNwhmWscmeaMyVFpTik-3v4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/220318-46f1-4ebf-a795-dd4a217d606b/1/u41koNwhmWscmeaMyVFpTik-3v4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/220318-46f1-4ebf-a795-dd4a217d606b/1/u41koNwhmWscmeaMyVFpTik-3v4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0a:c8:d1:52:72:f2:9b:44:e0:4f:20:e4:64:e3:16:9e:37:3a: 16:cc:7d:db:12:a5:19:9a:34:fa:81:a9:c1:6b:15:97:e1:d0: ef:9f:1c:f8:3e:b1:19:44:a9:17:13:62:bb:45:90:c7:1c:59: 2c:97:37:ca:2e:d5:6b:39:43:cf:43:fb:6f:bd:6e:74:36:e7: 00:e1:eb:94:0c:ca:d0:ee:61:16:b6:8e:8f:c6:32:33:d3:62: 6e:71:aa:a1:42:8a:6b:34:15:d0:76:53:7c:22:1f:1d:84:21: 37:40:7f:13:f1:89:24:2c:c7:2a:cc:f1:97:99:9a:7b:93:3d: f4:67:7f:0c:f8:a3:f5:c1:33:3b:1b:30:9a:8d:c0:8b:b7:4a: 05:14:19:0b:a2:49:d8:c3:7e:4f:22:0c:cc:fe:05:a6:2f:94: 9e:d0:1f:3d:18:e9:1c:68:f5:97:6d:ed:0a:e8:d6:ad:c0:3d: 6d:2d:c0:3b:f3:85:8c:61:8d:e2:60:c3:a0:ce:8d:b8:00:7f: 27:13:fa:0a:a2:0d:11:55:a6:43:b4:f9:85:be:74:3d:b5:bb: eb:09:35:1e:97:30:4c:72:fc:54:eb:15:d7:54:01:58:0c:f8: 30:07:d8:1e:c2:61:9f:85:02:f3:e9:c1:eb:26:d1:44:c7:24: d3:8d:5d:f0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryd09Hh31dsP0R9VRAXnWEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJiOGQ2NGEwZGMyMTk5NmIxYzk5ZTY4Y2M5NTE2OTRlMjkz ZWRlZmUwHhcNMjUxMjA2MDcwMTM2WhcNMjUxMjA3MDcwMTM2WjAzMTEwLwYDVQQD EyhjYzJlNTAxY2U1OTJkMmYzNjgwZWUzNzQyN2U1ZmNjOTc5ZjdiZDAxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3iyXHiHbSuXXNwssTq0EvJzn7KxZ 3iTpcSPBUJwDf2WLrP3k/rpifpJHZik+k8RT0+rJxInvmfyU/Uep7F3rO5QDIc9w yceq3uFM1FGLP1vemaU4pBnXkG+YYhCW0ljKIlKH6bcOTAengaeLL1krUnS5xOjB /cLuZzBGD8Q+Va5tD9pJupmmxQpFswmvmdbybbOTT/qRTLYlSG/pqFTP/QGbVajy 5mWgI3cjzDHEstmZ/lLFgSLFVYbvivd+FOHotkBhWQhx0nchPo2Et1yEyyf2T2US XYOrmWL+XJhcEtPZA9hvl1APRfz5VK3d/wQnV5sNEgPO4N4cFTELfttEPQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMwuUBzlktLzaA7jdCfl/Ml5970BMB8GA1UdIwQY MBaAFLuNZKDcIZlrHJnmjMlRaU4pPt7+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdTQxa29Od2htV3NjbWVhTXlWRnBUaWstM3Y0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC8yMjAzMTgtNDZmMS00ZWJmLWE3OTUt ZGQ0YTIxN2Q2MDZiLzEvdTQxa29Od2htV3NjbWVhTXlWRnBUaWstM3Y0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOC8yMjAzMTgtNDZmMS00ZWJmLWE3OTUtZGQ0YTIxN2Q2MDZi LzEvdTQxa29Od2htV3NjbWVhTXlWRnBUaWstM3Y0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACsjRUnLy m0TgTyDkZOMWnjc6Fsx92xKlGZo0+oGpwWsVl+HQ758c+D6xGUSpFxNiu0WQxxxZ LJc3yi7VazlDz0P7b71udDbnAOHrlAzK0O5hFraOj8YyM9NibnGqoUKKazQV0HZT fCIfHYQhN0B/E/GJJCzHKszxl5mae5M99Gd/DPij9cEzOxswmo3Ai7dKBRQZC6JJ 2MN+TyIMzP4Fpi+UntAfPRjpHGj1l23tCujWrcA9bS3AO/OFjGGN4mDDoM6NuAB/ JxP6CqINEVWmQ7T5hb50PbW76wk1HpcwTHL8VOsV11QBWAz4MAfYHsJhn4UC8+nB 6ybRRMck041d8A== -----END CERTIFICATE-----Generated at Sat Dec 6 12:08:56 2025 by rpki-client