This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/92dfa6-58f5-4fbf-afe4-d7e42200a49e/1/uglQnQRuXLar5boZqxurpUPTffg.mft File: uglQnQRuXLar5boZqxurpUPTffg.mft (raw, json) Hash identifier: 1WcfyxqIxYuTwY7eAxq9IuBkRnwNk9rE2UJSkz+XBtQ= Subject key identifier: B4:BD:15:B5:37:B4:36:A2:45:EB:59:8C:6F:E1:02:BE:00:F3:E3:55 Authority key identifier: BA:09:50:9D:04:6E:5C:B6:AB:E5:BA:19:AB:1B:AB:A5:43:D3:7D:F8 Certificate issuer: /CN=ba09509d046e5cb6abe5ba19ab1baba543d37df8 Certificate serial: 019B2B1C714B0B2E355CA1F2E76A62081790 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uglQnQRuXLar5boZqxurpUPTffg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/92dfa6-58f5-4fbf-afe4-d7e42200a49e/1/uglQnQRuXLar5boZqxurpUPTffg.mft Manifest number: 0B04 Signing time: Wed 17 Dec 2025 07:00:42 +0000 Manifest this update: Wed 17 Dec 2025 07:00:42 +0000 Manifest next update: Thu 18 Dec 2025 07:00:42 +0000 Files and hashes: 1: uglQnQRuXLar5boZqxurpUPTffg.crl (hash: XrOODiLrlmG+6LiVAY3qmOc4OWplfISG5b6zIPqXSwo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/92dfa6-58f5-4fbf-afe4-d7e42200a49e/1/uglQnQRuXLar5boZqxurpUPTffg.crl rsync://rpki.ripe.net/repository/DEFAULT/e8/92dfa6-58f5-4fbf-afe4-d7e42200a49e/1/uglQnQRuXLar5boZqxurpUPTffg.mft rsync://rpki.ripe.net/repository/DEFAULT/uglQnQRuXLar5boZqxurpUPTffg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 07:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2b:1c:71:4b:0b:2e:35:5c:a1:f2:e7:6a:62:08:17:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba09509d046e5cb6abe5ba19ab1baba543d37df8 Validity Not Before: Dec 17 07:00:42 2025 GMT Not After : Dec 18 07:00:42 2025 GMT Subject: CN=b4bd15b537b436a245eb598c6fe102be00f3e355 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:44:64:f7:66:da:49:96:b7:2d:7a:d1:13:53: 14:e3:08:82:93:3f:e4:83:6f:a3:13:db:0d:18:67: 4f:95:22:88:5b:d5:6e:97:a8:cc:91:47:73:f2:f9: 71:40:32:d3:cc:d2:fe:13:d8:06:47:d7:24:ef:6f: 0e:03:72:85:f4:08:e7:d5:cc:49:0a:af:8e:ca:df: fc:40:c7:ec:0b:6e:9c:27:ce:d1:3b:f2:1c:5f:b6: 22:ad:f4:da:08:b3:5e:71:b6:4d:ff:4a:38:d6:1c: 02:54:4f:c7:b8:9e:2f:ff:a1:c4:4b:16:79:78:e9: 05:13:53:ad:f5:7a:ca:8c:1e:38:33:7e:fd:84:0d: c9:79:22:50:43:bc:17:df:b9:56:23:0a:87:8e:6d: 8d:d7:57:e2:6c:32:88:75:b8:83:27:1a:b0:9d:8c: b8:e2:0f:bf:ee:05:7f:b2:c4:b2:ef:c9:fd:61:0d: 23:96:cc:18:17:f3:5e:b4:13:f4:67:76:56:98:ad: 83:ee:35:00:7b:ba:72:2a:03:f5:82:78:de:d6:f0: d8:6c:d0:78:11:74:06:88:15:64:33:bf:0d:e7:5a: 15:67:e7:38:ba:7d:c8:c8:73:f3:ab:d4:79:28:a5: 0c:69:00:8d:7e:18:56:9b:75:54:0a:18:41:6c:e6: d9:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:BD:15:B5:37:B4:36:A2:45:EB:59:8C:6F:E1:02:BE:00:F3:E3:55 X509v3 Authority Key Identifier: keyid:BA:09:50:9D:04:6E:5C:B6:AB:E5:BA:19:AB:1B:AB:A5:43:D3:7D:F8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uglQnQRuXLar5boZqxurpUPTffg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/92dfa6-58f5-4fbf-afe4-d7e42200a49e/1/uglQnQRuXLar5boZqxurpUPTffg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/92dfa6-58f5-4fbf-afe4-d7e42200a49e/1/uglQnQRuXLar5boZqxurpUPTffg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2e:74:68:b8:45:3d:ad:f5:9f:9e:34:53:3b:b9:e1:2e:11:ad: b3:de:e5:21:38:c6:8a:f8:d7:b6:56:2f:fb:22:ad:95:3b:7e: 05:ac:6d:a8:f4:6b:c7:9a:a7:6b:ae:a6:d8:5a:13:a6:45:36: 4e:c0:7e:03:5e:d2:b8:5b:7e:03:b6:01:22:69:55:54:8b:33: 81:b5:66:9c:28:f8:51:2e:0e:ff:d1:95:95:84:4d:98:6d:33: f1:e0:cd:39:77:68:f7:9a:25:f2:a3:4a:9a:0d:45:a4:b2:a7: 7e:75:8c:23:9f:b2:d8:f7:48:40:bb:21:d9:9a:76:aa:89:ab: 2d:d6:2e:6c:ce:67:e5:5f:b3:5d:2c:28:75:d6:e6:db:db:98: 72:22:b3:ba:6a:4b:b9:ea:18:08:e0:71:da:5f:24:e7:1d:e6: c8:40:d9:0c:c6:83:fb:ab:07:04:1c:84:82:94:9a:ba:e5:06: d1:a6:58:4c:10:a5:85:1a:67:66:7a:24:85:3b:d6:2c:96:58: 01:15:29:7f:fb:27:be:2d:1b:c6:0b:50:4c:35:ff:4f:8f:2b: b9:a7:89:9b:34:e9:d4:8b:08:2f:70:68:50:63:f3:8a:08:ac: 89:0f:9c:60:7e:42:e8:bf:37:33:50:01:02:b0:81:33:ee:c1: 78:0f:09:d1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsrHHFLCy41XKHy52piCBeQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhMDk1MDlkMDQ2ZTVjYjZhYmU1YmExOWFiMWJhYmE1NDNk MzdkZjgwHhcNMjUxMjE3MDcwMDQyWhcNMjUxMjE4MDcwMDQyWjAzMTEwLwYDVQQD EyhiNGJkMTViNTM3YjQzNmEyNDVlYjU5OGM2ZmUxMDJiZTAwZjNlMzU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzURk92baSZa3LXrRE1MU4wiCkz/k g2+jE9sNGGdPlSKIW9Vul6jMkUdz8vlxQDLTzNL+E9gGR9ck728OA3KF9Ajn1cxJ Cq+Oyt/8QMfsC26cJ87RO/IcX7YirfTaCLNecbZN/0o41hwCVE/HuJ4v/6HESxZ5 eOkFE1Ot9XrKjB44M379hA3JeSJQQ7wX37lWIwqHjm2N11fibDKIdbiDJxqwnYy4 4g+/7gV/ssSy78n9YQ0jlswYF/NetBP0Z3ZWmK2D7jUAe7pyKgP1gnje1vDYbNB4 EXQGiBVkM78N51oVZ+c4un3IyHPzq9R5KKUMaQCNfhhWm3VUChhBbObZdwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLS9FbU3tDaiRetZjG/hAr4A8+NVMB8GA1UdIwQY MBaAFLoJUJ0Ebly2q+W6Gasbq6VD0334MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdWdsUW5RUnVYTGFyNWJvWnF4dXJwVVBUZmZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC85MmRmYTYtNThmNS00ZmJmLWFmZTQt ZDdlNDIyMDBhNDllLzEvdWdsUW5RUnVYTGFyNWJvWnF4dXJwVVBUZmZnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOC85MmRmYTYtNThmNS00ZmJmLWFmZTQtZDdlNDIyMDBhNDll LzEvdWdsUW5RUnVYTGFyNWJvWnF4dXJwVVBUZmZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALnRouEU9 rfWfnjRTO7nhLhGts97lITjGivjXtlYv+yKtlTt+BaxtqPRrx5qna66m2FoTpkU2 TsB+A17SuFt+A7YBImlVVIszgbVmnCj4US4O/9GVlYRNmG0z8eDNOXdo95ol8qNK mg1FpLKnfnWMI5+y2PdIQLsh2Zp2qomrLdYubM5n5V+zXSwoddbm29uYciKzumpL ueoYCOBx2l8k5x3myEDZDMaD+6sHBByEgpSauuUG0aZYTBClhRpnZnokhTvWLJZY ARUpf/snvi0bxgtQTDX/T48ruaeJmzTp1IsIL3BoUGPzigisiQ+cYH5C6L83M1AB ArCBM+7BeA8J0Q== -----END CERTIFICATE-----Generated at Wed Dec 17 15:28:29 2025 by rpki-client