This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/b24786-e777-4b2f-9d81-5a7bfb3cd08b/1/uaoBqzUmuOu4r7F7mKcSfw9UykU.mft File: uaoBqzUmuOu4r7F7mKcSfw9UykU.mft (raw, json) Hash identifier: 2S3xN27mNOghaUi3zJBNVe1OzpLvWRr5HjVNlBvKxF4= Subject key identifier: 18:A0:82:94:D4:DA:A3:68:53:53:34:C0:BE:39:21:E4:AD:26:54:1A Authority key identifier: B9:AA:01:AB:35:26:B8:EB:B8:AF:B1:7B:98:A7:12:7F:0F:54:CA:45 Certificate issuer: /CN=b9aa01ab3526b8ebb8afb17b98a7127f0f54ca45 Certificate serial: 019AF465A532BE3BC10E39A3782B62726365 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uaoBqzUmuOu4r7F7mKcSfw9UykU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/b24786-e777-4b2f-9d81-5a7bfb3cd08b/1/uaoBqzUmuOu4r7F7mKcSfw9UykU.mft Manifest number: 1545 Signing time: Sat 06 Dec 2025 16:01:33 +0000 Manifest this update: Sat 06 Dec 2025 16:01:33 +0000 Manifest next update: Sun 07 Dec 2025 16:01:33 +0000 Files and hashes: 1: uaoBqzUmuOu4r7F7mKcSfw9UykU.crl (hash: Bm/X2P4fRQf3wnOPb+z9GEoB5hcu/c8tOFV47CHeV1E=) 2: xqGa5yw14tF9pw6-eYINusEUh7E.roa (hash: nPIWqnbBc116jdUxehjaWv0eljgHrlqFtoj1OKZjVNQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/b24786-e777-4b2f-9d81-5a7bfb3cd08b/1/uaoBqzUmuOu4r7F7mKcSfw9UykU.crl rsync://rpki.ripe.net/repository/DEFAULT/f5/b24786-e777-4b2f-9d81-5a7bfb3cd08b/1/uaoBqzUmuOu4r7F7mKcSfw9UykU.mft rsync://rpki.ripe.net/repository/DEFAULT/uaoBqzUmuOu4r7F7mKcSfw9UykU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:65:a5:32:be:3b:c1:0e:39:a3:78:2b:62:72:63:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b9aa01ab3526b8ebb8afb17b98a7127f0f54ca45 Validity Not Before: Dec 6 16:01:33 2025 GMT Not After : Dec 7 16:01:33 2025 GMT Subject: CN=18a08294d4daa368535334c0be3921e4ad26541a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:0f:19:7f:8b:20:fe:d7:81:37:62:42:a2:90: 99:95:13:7a:57:6f:20:7f:45:c8:97:b8:14:85:16: a6:d9:80:a6:d3:5d:72:cd:dc:a0:df:91:cc:fc:de: 92:e7:e9:d1:a6:3c:86:ea:77:e9:4c:49:f5:42:b8: 87:cc:12:8a:7a:78:b9:4a:07:db:d5:4d:55:e2:1e: 65:bd:1c:a7:fa:97:73:ae:00:d1:df:2c:a9:7c:a9: 4b:2e:bf:17:4e:11:ad:d5:b0:9a:40:54:f5:06:02: f9:4e:93:db:ab:36:0a:e3:50:ae:b7:79:c9:6a:9f: 2e:29:d1:92:2d:c3:cb:27:92:81:7b:2d:c8:eb:ba: 4c:73:06:68:ac:df:7e:38:bd:df:5c:f3:74:8c:a1: 80:d3:80:c4:b8:8a:d8:c7:60:7f:0d:be:c2:00:66: 80:11:d7:55:6c:a2:12:e2:9a:48:78:a1:c9:e2:08: 43:01:9d:ae:5d:ee:07:6b:f4:3b:5c:19:5d:63:13: fc:2f:6e:a5:23:1a:03:56:a8:6d:58:4f:73:ea:0e: cb:59:33:e8:6a:4c:23:35:6e:2d:7b:85:0a:0f:4e: 8e:f4:5d:4f:85:9f:be:55:79:b3:18:43:11:d3:bb: 79:4f:53:46:88:a5:54:54:97:45:1c:02:0d:48:de: 7a:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:A0:82:94:D4:DA:A3:68:53:53:34:C0:BE:39:21:E4:AD:26:54:1A X509v3 Authority Key Identifier: keyid:B9:AA:01:AB:35:26:B8:EB:B8:AF:B1:7B:98:A7:12:7F:0F:54:CA:45 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uaoBqzUmuOu4r7F7mKcSfw9UykU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/b24786-e777-4b2f-9d81-5a7bfb3cd08b/1/uaoBqzUmuOu4r7F7mKcSfw9UykU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/b24786-e777-4b2f-9d81-5a7bfb3cd08b/1/uaoBqzUmuOu4r7F7mKcSfw9UykU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8a:f0:a7:62:73:4b:3e:1c:74:22:ad:2f:ea:d1:d7:e8:81:08: 0a:fb:ee:e0:f8:a3:9f:27:b5:39:32:25:13:cc:e1:81:d4:15: f3:9c:05:8f:ea:ec:73:40:05:99:c2:87:22:e9:11:a9:3f:6f: 35:7a:4b:21:aa:70:ee:45:be:1b:c3:d1:9d:36:75:13:7c:ad: 0a:8b:d7:aa:ff:81:85:61:08:26:54:c3:93:08:42:70:89:72: 3b:3c:a0:52:39:ab:fe:00:a2:c3:5d:91:ec:41:ff:f3:88:14: f8:24:b9:aa:0e:ea:8f:9e:64:70:b1:2c:f3:74:cc:77:f8:e2: 71:7d:ed:88:63:e2:d6:00:32:16:46:ae:af:57:4a:35:6d:f1: 1d:08:68:1a:a4:e5:5b:0c:36:9a:04:e6:d3:8e:69:0e:ac:ee: a9:43:1e:a6:83:8d:b1:4d:a5:16:b6:0e:04:ff:38:92:d1:e6: df:d1:ef:a5:a3:e7:f0:bb:27:b9:f2:aa:d6:e5:38:a3:eb:15: 54:f0:64:65:8a:14:a1:0d:71:69:28:96:fa:40:be:ae:cc:4d: 84:ae:8c:d9:6c:a7:9c:8d:fb:a9:b6:44:d5:78:7c:f1:51:ea: d6:11:7a:97:48:0b:df:92:56:f8:dd:c1:af:aa:40:0d:36:53: 8b:69:8e:dc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0ZaUyvjvBDjmjeCticmNlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI5YWEwMWFiMzUyNmI4ZWJiOGFmYjE3Yjk4YTcxMjdmMGY1 NGNhNDUwHhcNMjUxMjA2MTYwMTMzWhcNMjUxMjA3MTYwMTMzWjAzMTEwLwYDVQQD EygxOGEwODI5NGQ0ZGFhMzY4NTM1MzM0YzBiZTM5MjFlNGFkMjY1NDFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsg8Zf4sg/teBN2JCopCZlRN6V28g f0XIl7gUhRam2YCm011yzdyg35HM/N6S5+nRpjyG6nfpTEn1QriHzBKKeni5Sgfb 1U1V4h5lvRyn+pdzrgDR3yypfKlLLr8XThGt1bCaQFT1BgL5TpPbqzYK41Cut3nJ ap8uKdGSLcPLJ5KBey3I67pMcwZorN9+OL3fXPN0jKGA04DEuIrYx2B/Db7CAGaA EddVbKIS4ppIeKHJ4ghDAZ2uXe4Ha/Q7XBldYxP8L26lIxoDVqhtWE9z6g7LWTPo akwjNW4te4UKD06O9F1PhZ++VXmzGEMR07t5T1NGiKVUVJdFHAINSN56LwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBiggpTU2qNoU1M0wL45IeStJlQaMB8GA1UdIwQY MBaAFLmqAas1JrjruK+xe5inEn8PVMpFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdWFvQnF6VW11T3U0cjdGN21LY1NmdzlVeWtVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS9iMjQ3ODYtZTc3Ny00YjJmLTlkODEt NWE3YmZiM2NkMDhiLzEvdWFvQnF6VW11T3U0cjdGN21LY1NmdzlVeWtVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNS9iMjQ3ODYtZTc3Ny00YjJmLTlkODEtNWE3YmZiM2NkMDhi LzEvdWFvQnF6VW11T3U0cjdGN21LY1NmdzlVeWtVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAivCnYnNL Phx0Iq0v6tHX6IEICvvu4Pijnye1OTIlE8zhgdQV85wFj+rsc0AFmcKHIukRqT9v NXpLIapw7kW+G8PRnTZ1E3ytCovXqv+BhWEIJlTDkwhCcIlyOzygUjmr/gCiw12R 7EH/84gU+CS5qg7qj55kcLEs83TMd/jicX3tiGPi1gAyFkaur1dKNW3xHQhoGqTl Www2mgTm045pDqzuqUMepoONsU2lFrYOBP84ktHm39HvpaPn8LsnufKq1uU4o+sV VPBkZYoUoQ1xaSiW+kC+rsxNhK6M2WynnI37qbZE1Xh88VHq1hF6l0gL35JW+N3B r6pADTZTi2mO3A== -----END CERTIFICATE-----Generated at Sat Dec 6 20:28:39 2025 by rpki-client