This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/7e7154-c3aa-45b6-8fb0-191d534c97b9/1/uI_4bEcX4ONm8pDNDWKK_Eajjw0.mft File: uI_4bEcX4ONm8pDNDWKK_Eajjw0.mft (raw, json) Hash identifier: zcHNON7RubXj4CHnRfj89+LsP4dunKnipeQkfWvA1ZA= Subject key identifier: D8:55:0F:5C:2B:84:79:19:1C:0B:FB:D1:68:51:9B:6F:00:19:DB:3D Authority key identifier: B8:8F:F8:6C:47:17:E0:E3:66:F2:90:CD:0D:62:8A:FC:46:A3:8F:0D Certificate issuer: /CN=b88ff86c4717e0e366f290cd0d628afc46a38f0d Certificate serial: 019AF5097E5A9F6E8F4876EC00D82F87735E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uI_4bEcX4ONm8pDNDWKK_Eajjw0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/7e7154-c3aa-45b6-8fb0-191d534c97b9/1/uI_4bEcX4ONm8pDNDWKK_Eajjw0.mft Manifest number: 10C9 Signing time: Sat 06 Dec 2025 19:00:31 +0000 Manifest this update: Sat 06 Dec 2025 19:00:31 +0000 Manifest next update: Sun 07 Dec 2025 19:00:31 +0000 Files and hashes: 1: uI_4bEcX4ONm8pDNDWKK_Eajjw0.crl (hash: bjY7q/vOfgNwnR3mEAyc08ZhUQ1f09O9oz8C65AncFs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/7e7154-c3aa-45b6-8fb0-191d534c97b9/1/uI_4bEcX4ONm8pDNDWKK_Eajjw0.crl rsync://rpki.ripe.net/repository/DEFAULT/f7/7e7154-c3aa-45b6-8fb0-191d534c97b9/1/uI_4bEcX4ONm8pDNDWKK_Eajjw0.mft rsync://rpki.ripe.net/repository/DEFAULT/uI_4bEcX4ONm8pDNDWKK_Eajjw0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:09:7e:5a:9f:6e:8f:48:76:ec:00:d8:2f:87:73:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b88ff86c4717e0e366f290cd0d628afc46a38f0d Validity Not Before: Dec 6 19:00:31 2025 GMT Not After : Dec 7 19:00:31 2025 GMT Subject: CN=d8550f5c2b8479191c0bfbd168519b6f0019db3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:37:05:e4:75:1f:2e:03:54:ae:95:50:2d:cf: 9d:25:1d:63:28:9e:ec:1d:99:61:f4:70:38:9b:84: 8c:d5:ed:5a:51:0c:8e:3b:2c:7c:c5:6c:4e:ff:70: d3:40:09:8f:41:87:06:63:3c:08:39:29:f6:6c:b3: 1c:4a:87:6d:3f:6f:ba:93:65:59:23:b5:10:05:49: db:15:ff:70:88:64:97:2c:a5:1d:9c:74:1e:04:da: 13:70:96:f1:21:3e:ee:cf:e7:0a:0f:a7:d6:55:26: 69:af:04:42:3c:e8:99:77:83:4e:a9:01:3d:94:21: ff:ee:0c:d1:bf:82:d8:41:98:c1:a6:4d:cf:f5:d0: 2a:06:a0:6d:c6:6c:95:0e:42:a3:16:4a:ec:db:42: fd:04:1a:8e:48:6c:3c:83:ae:0c:38:7e:58:4c:e9: 4e:87:b6:d5:4f:b2:a9:77:41:e2:64:95:81:c5:eb: 68:48:ca:54:5d:b9:98:af:92:07:8f:29:86:42:91: 8c:d6:f4:be:5b:34:5d:e0:33:9e:36:54:15:4e:58: d4:64:44:22:56:70:91:8d:a0:e3:33:76:82:00:da: 29:cb:24:07:65:6d:3c:ea:6f:bd:07:c7:e7:4f:8d: 50:b7:f4:c5:44:5c:40:d8:a3:44:fa:e2:f3:df:62: 16:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:55:0F:5C:2B:84:79:19:1C:0B:FB:D1:68:51:9B:6F:00:19:DB:3D X509v3 Authority Key Identifier: keyid:B8:8F:F8:6C:47:17:E0:E3:66:F2:90:CD:0D:62:8A:FC:46:A3:8F:0D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uI_4bEcX4ONm8pDNDWKK_Eajjw0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7e7154-c3aa-45b6-8fb0-191d534c97b9/1/uI_4bEcX4ONm8pDNDWKK_Eajjw0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7e7154-c3aa-45b6-8fb0-191d534c97b9/1/uI_4bEcX4ONm8pDNDWKK_Eajjw0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:77:e1:a2:54:97:c2:7e:b8:b8:fc:21:0f:f9:c1:c7:5c:cb: 52:6b:9c:74:0d:f4:3f:d7:41:1f:e1:57:9f:86:02:42:7e:51: 38:cd:a3:3b:0c:cb:d4:ac:3a:5f:96:f8:c4:43:57:7f:43:62: 00:49:61:b7:99:27:27:b8:41:ec:bb:3e:a5:43:6c:d0:42:67: 18:39:d3:d0:f8:4f:56:f0:41:f7:67:50:f6:78:1e:0f:56:05: ed:67:b1:73:94:1c:7a:f7:fa:6d:21:c5:36:d8:64:fd:ba:a2: 54:0b:c7:79:d6:27:da:cc:8b:98:a8:01:a8:d9:a7:1b:39:d6: 02:03:64:42:e8:62:13:aa:8c:12:0d:58:23:17:8e:0f:69:5e: b9:f8:07:84:10:e6:0c:b1:d4:e5:6c:1e:65:c1:32:40:0e:77: ef:e5:cd:07:4b:77:67:9f:c1:f2:c0:56:0f:f7:0d:f1:e3:eb: 79:ac:60:4a:c2:a7:25:74:f2:c0:64:ed:85:69:95:d2:c5:f2: f7:4f:88:c9:ff:ed:85:11:da:1b:a2:4c:e1:24:26:af:50:92: 97:2c:f6:b4:fe:10:e3:f6:a0:a0:1a:74:37:8e:0d:69:f7:9f: 1a:00:8e:78:3b:62:c4:71:84:8c:6c:3e:95:8c:d5:32:a0:25: 6a:44:e8:53 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1CX5an26PSHbsANgvh3NeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI4OGZmODZjNDcxN2UwZTM2NmYyOTBjZDBkNjI4YWZjNDZh MzhmMGQwHhcNMjUxMjA2MTkwMDMxWhcNMjUxMjA3MTkwMDMxWjAzMTEwLwYDVQQD EyhkODU1MGY1YzJiODQ3OTE5MWMwYmZiZDE2ODUxOWI2ZjAwMTlkYjNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxjcF5HUfLgNUrpVQLc+dJR1jKJ7s HZlh9HA4m4SM1e1aUQyOOyx8xWxO/3DTQAmPQYcGYzwIOSn2bLMcSodtP2+6k2VZ I7UQBUnbFf9wiGSXLKUdnHQeBNoTcJbxIT7uz+cKD6fWVSZprwRCPOiZd4NOqQE9 lCH/7gzRv4LYQZjBpk3P9dAqBqBtxmyVDkKjFkrs20L9BBqOSGw8g64MOH5YTOlO h7bVT7Kpd0HiZJWBxetoSMpUXbmYr5IHjymGQpGM1vS+WzRd4DOeNlQVTljUZEQi VnCRjaDjM3aCANopyyQHZW086m+9B8fnT41Qt/TFRFxA2KNE+uLz32IWlQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNhVD1wrhHkZHAv70WhRm28AGds9MB8GA1UdIwQY MBaAFLiP+GxHF+DjZvKQzQ1iivxGo48NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdUlfNGJFY1g0T05tOHBETkRXS0tfRWFqancwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy83ZTcxNTQtYzNhYS00NWI2LThmYjAt MTkxZDUzNGM5N2I5LzEvdUlfNGJFY1g0T05tOHBETkRXS0tfRWFqancwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNy83ZTcxNTQtYzNhYS00NWI2LThmYjAtMTkxZDUzNGM5N2I5 LzEvdUlfNGJFY1g0T05tOHBETkRXS0tfRWFqancwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASHfholSX wn64uPwhD/nBx1zLUmucdA30P9dBH+FXn4YCQn5ROM2jOwzL1Kw6X5b4xENXf0Ni AElht5knJ7hB7Ls+pUNs0EJnGDnT0PhPVvBB92dQ9ngeD1YF7Wexc5Qcevf6bSHF Nthk/bqiVAvHedYn2syLmKgBqNmnGznWAgNkQuhiE6qMEg1YIxeOD2leufgHhBDm DLHU5WweZcEyQA537+XNB0t3Z5/B8sBWD/cN8ePreaxgSsKnJXTywGTthWmV0sXy 90+Iyf/thRHaG6JM4SQmr1CSlyz2tP4Q4/agoBp0N44NafefGgCOeDtixHGEjGw+ lYzVMqAlakToUw== -----END CERTIFICATE-----Generated at Sat Dec 6 21:56:18 2025 by rpki-client