This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/68b57b-d18d-4785-97b0-ec56c0b081ae/1/uo1nmL3QsriAXUOzRV92c5uUbx0.mft File: uo1nmL3QsriAXUOzRV92c5uUbx0.mft (raw, json) Hash identifier: 5Au9l0dUXuRZxGINcxNBrdkdidT+oBpgcD2tGadjpqQ= Subject key identifier: 77:4E:91:D7:C3:F5:0F:88:09:D6:34:E3:9A:4F:31:EE:D0:79:02:FC Authority key identifier: BA:8D:67:98:BD:D0:B2:B8:80:5D:43:B3:45:5F:76:73:9B:94:6F:1D Certificate issuer: /CN=ba8d6798bdd0b2b8805d43b3455f76739b946f1d Certificate serial: 019AF50B49E2B17B988493ED9E3A1E20927D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uo1nmL3QsriAXUOzRV92c5uUbx0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/68b57b-d18d-4785-97b0-ec56c0b081ae/1/uo1nmL3QsriAXUOzRV92c5uUbx0.mft Manifest number: 16F2 Signing time: Sat 06 Dec 2025 19:02:28 +0000 Manifest this update: Sat 06 Dec 2025 19:02:28 +0000 Manifest next update: Sun 07 Dec 2025 19:02:28 +0000 Files and hashes: 1: uo1nmL3QsriAXUOzRV92c5uUbx0.crl (hash: 99azt2X/V2yexd0LsebJmdahm8DwdQwon8GhrO/gXQg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ec/68b57b-d18d-4785-97b0-ec56c0b081ae/1/uo1nmL3QsriAXUOzRV92c5uUbx0.crl rsync://rpki.ripe.net/repository/DEFAULT/ec/68b57b-d18d-4785-97b0-ec56c0b081ae/1/uo1nmL3QsriAXUOzRV92c5uUbx0.mft rsync://rpki.ripe.net/repository/DEFAULT/uo1nmL3QsriAXUOzRV92c5uUbx0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 19:02:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:0b:49:e2:b1:7b:98:84:93:ed:9e:3a:1e:20:92:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba8d6798bdd0b2b8805d43b3455f76739b946f1d Validity Not Before: Dec 6 19:02:28 2025 GMT Not After : Dec 7 19:02:28 2025 GMT Subject: CN=774e91d7c3f50f8809d634e39a4f31eed07902fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:c4:48:9e:f5:44:05:ad:a4:72:62:24:a5:bd: 0d:a8:7f:d5:cf:30:94:5b:79:0c:e0:bf:7c:0c:3c: b3:cd:0b:ab:46:b7:db:98:4e:b4:61:cc:bd:ee:06: 61:49:53:66:29:fb:30:c1:66:59:d0:e5:5a:6a:6f: c1:eb:53:52:65:73:3b:e1:3b:f1:fb:b4:dc:0a:45: 12:d5:2e:69:d0:bd:0e:c9:f8:54:52:bc:b5:48:b5: fc:37:79:be:b0:f1:47:ef:d3:59:16:07:cf:3f:d7: d8:85:6c:b2:c2:4b:f1:37:1c:1a:cd:61:6c:2c:06: a5:8f:0b:aa:ad:83:eb:9d:0b:a5:e2:3f:6d:42:bd: c7:55:91:26:1a:64:fe:28:57:1a:37:35:a0:57:50: c5:87:7e:8a:de:99:22:79:3f:ea:50:7d:a4:13:25: c1:cf:73:6f:7d:24:51:a9:59:cd:b7:97:14:6b:8d: 51:28:02:f1:d9:60:a5:2d:68:04:f0:63:8d:e9:40: 3d:42:b6:19:d8:fc:cd:54:44:c4:9b:38:8f:99:3b: 17:d8:ac:76:53:37:30:f6:11:49:2e:c0:27:db:ae: 37:f4:63:e4:b1:65:d8:ea:24:a6:86:04:92:0d:00: b6:48:1a:97:6f:33:29:c5:00:43:af:26:61:d9:fc: 16:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:4E:91:D7:C3:F5:0F:88:09:D6:34:E3:9A:4F:31:EE:D0:79:02:FC X509v3 Authority Key Identifier: keyid:BA:8D:67:98:BD:D0:B2:B8:80:5D:43:B3:45:5F:76:73:9B:94:6F:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uo1nmL3QsriAXUOzRV92c5uUbx0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/68b57b-d18d-4785-97b0-ec56c0b081ae/1/uo1nmL3QsriAXUOzRV92c5uUbx0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/68b57b-d18d-4785-97b0-ec56c0b081ae/1/uo1nmL3QsriAXUOzRV92c5uUbx0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b2:fc:81:b2:f5:ea:b8:11:6d:58:35:5e:dd:f1:71:9b:fe:bd: e5:76:36:99:de:8a:96:e4:f1:94:f1:80:d6:18:e3:d5:cf:c9: 6d:3d:39:b1:dc:c2:6a:63:e7:75:6c:bd:94:55:b5:71:b8:b4: 87:dd:33:c4:b9:6f:50:73:01:6d:6e:7c:21:6d:4b:50:43:b2: 6c:23:9c:53:28:4e:b6:d7:1f:5e:44:58:c0:84:f7:eb:2f:c7: c8:d5:b9:fd:31:34:cd:7c:27:23:3c:87:76:d8:05:11:c0:75: 55:70:e0:bb:9b:42:1b:6a:5b:d7:47:09:4f:52:1d:86:f7:01: a5:c2:21:24:bb:c3:f2:47:d3:80:01:c1:74:90:cd:d5:56:1c: 7b:e4:0f:68:2a:0b:09:69:f7:b9:c6:a7:bf:d3:35:29:ad:d1: 03:13:c3:a4:a3:41:15:13:cd:35:ae:08:67:b0:48:ea:b2:40: b4:3f:cc:5a:f5:0f:39:75:1a:45:a7:ba:7c:20:ed:c4:06:db: 02:e5:c2:6a:74:e3:cf:60:1f:06:ec:8b:15:31:27:82:74:6c: 80:86:1c:63:2f:b4:57:0d:11:cc:c5:17:00:0d:69:6d:b4:a2: ed:44:41:df:cb:da:c5:9f:0a:d3:e2:60:23:80:90:a5:31:a6: 98:b4:35:d0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1C0nisXuYhJPtnjoeIJJ9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhOGQ2Nzk4YmRkMGIyYjg4MDVkNDNiMzQ1NWY3NjczOWI5 NDZmMWQwHhcNMjUxMjA2MTkwMjI4WhcNMjUxMjA3MTkwMjI4WjAzMTEwLwYDVQQD Eyg3NzRlOTFkN2MzZjUwZjg4MDlkNjM0ZTM5YTRmMzFlZWQwNzkwMmZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk8RInvVEBa2kcmIkpb0NqH/VzzCU W3kM4L98DDyzzQurRrfbmE60Ycy97gZhSVNmKfswwWZZ0OVaam/B61NSZXM74Tvx +7TcCkUS1S5p0L0OyfhUUry1SLX8N3m+sPFH79NZFgfPP9fYhWyywkvxNxwazWFs LAaljwuqrYPrnQul4j9tQr3HVZEmGmT+KFcaNzWgV1DFh36K3pkieT/qUH2kEyXB z3NvfSRRqVnNt5cUa41RKALx2WClLWgE8GON6UA9QrYZ2PzNVETEmziPmTsX2Kx2 Uzcw9hFJLsAn26439GPksWXY6iSmhgSSDQC2SBqXbzMpxQBDryZh2fwW2QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHdOkdfD9Q+ICdY045pPMe7QeQL8MB8GA1UdIwQY MBaAFLqNZ5i90LK4gF1Ds0VfdnOblG8dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdW8xbm1MM1FzcmlBWFVPelJWOTJjNXVVYngwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYy82OGI1N2ItZDE4ZC00Nzg1LTk3YjAt ZWM1NmMwYjA4MWFlLzEvdW8xbm1MM1FzcmlBWFVPelJWOTJjNXVVYngwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYy82OGI1N2ItZDE4ZC00Nzg1LTk3YjAtZWM1NmMwYjA4MWFl LzEvdW8xbm1MM1FzcmlBWFVPelJWOTJjNXVVYngwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsvyBsvXq uBFtWDVe3fFxm/695XY2md6KluTxlPGA1hjj1c/JbT05sdzCamPndWy9lFW1cbi0 h90zxLlvUHMBbW58IW1LUEOybCOcUyhOttcfXkRYwIT36y/HyNW5/TE0zXwnIzyH dtgFEcB1VXDgu5tCG2pb10cJT1IdhvcBpcIhJLvD8kfTgAHBdJDN1VYce+QPaCoL CWn3ucanv9M1Ka3RAxPDpKNBFRPNNa4IZ7BI6rJAtD/MWvUPOXUaRae6fCDtxAbb AuXCanTjz2AfBuyLFTEngnRsgIYcYy+0Vw0RzMUXAA1pbbSi7URB38vaxZ8K0+Jg I4CQpTGmmLQ10A== -----END CERTIFICATE-----Generated at Sun Dec 7 00:29:11 2025 by rpki-client