This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.mft File: uv5tfV8eRHjRoCUXHaawObJjAR8.mft (raw, json) Hash identifier: NH2NTpNgFhPghdt9hyEkCw2GH7AzSofKwIdm55+16i8= Subject key identifier: 1F:F1:43:DE:86:CB:F9:25:65:25:6A:BB:E8:7D:87:AF:7D:9B:50:C0 Authority key identifier: BA:FE:6D:7D:5F:1E:44:78:D1:A0:25:17:1D:A6:B0:39:B2:63:01:1F Certificate issuer: /CN=bafe6d7d5f1e4478d1a025171da6b039b263011f Certificate serial: 019B32D75A4390CE71F85118A846207A27D8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uv5tfV8eRHjRoCUXHaawObJjAR8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.mft Manifest number: 0B26 Signing time: Thu 18 Dec 2025 19:02:12 +0000 Manifest this update: Thu 18 Dec 2025 19:02:12 +0000 Manifest next update: Fri 19 Dec 2025 19:02:12 +0000 Files and hashes: 1: uv5tfV8eRHjRoCUXHaawObJjAR8.crl (hash: x92TvOmhy4631ovz3TN4AjbYGy5OJsZSo8B8D8LG4cU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.crl rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.mft rsync://rpki.ripe.net/repository/DEFAULT/uv5tfV8eRHjRoCUXHaawObJjAR8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 19:02:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:32:d7:5a:43:90:ce:71:f8:51:18:a8:46:20:7a:27:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bafe6d7d5f1e4478d1a025171da6b039b263011f Validity Not Before: Dec 18 19:02:12 2025 GMT Not After : Dec 19 19:02:12 2025 GMT Subject: CN=1ff143de86cbf92565256abbe87d87af7d9b50c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a3:fc:a7:8a:2a:92:20:1c:f9:7d:dc:0f:08: ca:e3:c9:54:d2:ad:6b:0c:77:a3:7d:d1:58:0c:ee: 67:2a:d3:c1:b7:42:f6:49:d5:0b:da:23:f4:dc:c2: cf:6c:24:fe:96:b8:c6:a1:a7:c3:a6:de:67:68:d8: 7f:fc:64:43:9a:d9:f5:8f:f4:5a:40:8f:7b:13:42: f6:7f:e5:c8:2e:af:70:20:ed:3c:1a:72:a5:39:6c: 68:46:ae:0c:43:a9:7d:aa:f3:8e:af:c1:9c:e9:81: c9:f0:81:97:38:27:cb:1b:f2:ff:a4:55:ed:46:73: b1:af:e6:cc:fd:51:23:84:34:45:c4:3b:07:68:3d: 8b:1e:9f:bc:c9:a2:84:21:e9:47:29:07:82:95:39: c1:fd:66:ad:4c:33:35:08:93:f4:3c:69:0e:26:31: 73:f8:ab:a1:e4:47:b0:0c:b5:c1:93:61:7f:8c:98: dc:8f:4f:9e:d9:c1:ed:2a:71:61:30:9d:3f:cc:cd: 9f:40:dc:58:b2:d7:4d:5d:18:26:3e:1c:1c:9c:82: 39:e3:e5:7c:86:63:ad:62:39:75:15:30:3f:e9:79: 17:73:9a:8e:73:16:fe:89:83:51:eb:20:5f:73:5c: d5:3b:cb:e1:ee:81:33:c5:13:a3:f9:5f:d0:67:8b: 90:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:F1:43:DE:86:CB:F9:25:65:25:6A:BB:E8:7D:87:AF:7D:9B:50:C0 X509v3 Authority Key Identifier: keyid:BA:FE:6D:7D:5F:1E:44:78:D1:A0:25:17:1D:A6:B0:39:B2:63:01:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uv5tfV8eRHjRoCUXHaawObJjAR8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/9ff86c-1f7b-4bc7-976a-dfb79bba1b68/1/uv5tfV8eRHjRoCUXHaawObJjAR8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 24:58:2f:81:eb:75:2d:1c:7f:42:c6:ae:50:aa:eb:c5:02:e9: 09:e3:3a:dd:6b:d8:80:72:a6:c3:90:d4:c3:5d:66:66:f7:97: ec:e7:bb:c4:b1:50:37:56:50:10:5c:92:25:c7:bd:be:a3:58: 03:54:c6:39:89:10:4b:38:f4:ea:ed:ae:b7:79:9f:e1:c0:98: 57:da:52:79:c7:74:58:ab:dc:1d:fe:09:b7:2e:d6:44:90:81: a7:02:bb:e4:d8:8b:d2:40:84:c9:a0:b0:1f:68:8c:0e:a5:38: 3a:7e:a7:e1:5a:f9:33:77:8e:5a:af:14:6a:23:12:70:d5:8a: 89:aa:10:5a:3d:9b:d2:3d:b9:8b:8a:2b:1f:b8:40:05:fd:3c: 25:5c:24:0e:79:07:63:1a:cf:a6:b8:27:db:97:e4:bc:12:b9: de:05:5c:f4:ca:71:7b:c9:67:f6:26:4d:48:d7:b7:b4:c0:14: ea:f3:11:37:96:20:c3:9b:b9:f6:1a:81:93:46:3e:e1:b0:71: 14:94:74:1b:ad:08:6c:55:db:72:09:2b:83:d7:77:26:67:1f: 05:e1:73:bc:ee:1e:aa:3b:90:65:7b:d7:17:5f:dd:ae:e0:ea: 6b:2c:c9:63:a9:67:32:d0:93:ce:11:b1:c1:a8:83:5e:a7:10: 88:ca:f7:8b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsy11pDkM5x+FEYqEYgeifYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhZmU2ZDdkNWYxZTQ0NzhkMWEwMjUxNzFkYTZiMDM5YjI2 MzAxMWYwHhcNMjUxMjE4MTkwMjEyWhcNMjUxMjE5MTkwMjEyWjAzMTEwLwYDVQQD EygxZmYxNDNkZTg2Y2JmOTI1NjUyNTZhYmJlODdkODdhZjdkOWI1MGMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsaP8p4oqkiAc+X3cDwjK48lU0q1r DHejfdFYDO5nKtPBt0L2SdUL2iP03MLPbCT+lrjGoafDpt5naNh//GRDmtn1j/Ra QI97E0L2f+XILq9wIO08GnKlOWxoRq4MQ6l9qvOOr8Gc6YHJ8IGXOCfLG/L/pFXt RnOxr+bM/VEjhDRFxDsHaD2LHp+8yaKEIelHKQeClTnB/WatTDM1CJP0PGkOJjFz +Kuh5EewDLXBk2F/jJjcj0+e2cHtKnFhMJ0/zM2fQNxYstdNXRgmPhwcnII54+V8 hmOtYjl1FTA/6XkXc5qOcxb+iYNR6yBfc1zVO8vh7oEzxROj+V/QZ4uQ0wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB/xQ96Gy/klZSVqu+h9h699m1DAMB8GA1UdIwQY MBaAFLr+bX1fHkR40aAlFx2msDmyYwEfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdXY1dGZWOGVSSGpSb0NVWEhhYXdPYkpqQVI4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS85ZmY4NmMtMWY3Yi00YmM3LTk3NmEt ZGZiNzliYmExYjY4LzEvdXY1dGZWOGVSSGpSb0NVWEhhYXdPYkpqQVI4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS85ZmY4NmMtMWY3Yi00YmM3LTk3NmEtZGZiNzliYmExYjY4 LzEvdXY1dGZWOGVSSGpSb0NVWEhhYXdPYkpqQVI4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJFgvget1 LRx/QsauUKrrxQLpCeM63WvYgHKmw5DUw11mZveX7Oe7xLFQN1ZQEFySJce9vqNY A1TGOYkQSzj06u2ut3mf4cCYV9pSecd0WKvcHf4Jty7WRJCBpwK75NiL0kCEyaCw H2iMDqU4On6n4Vr5M3eOWq8UaiMScNWKiaoQWj2b0j25i4orH7hABf08JVwkDnkH YxrPprgn25fkvBK53gVc9Mpxe8ln9iZNSNe3tMAU6vMRN5Ygw5u59hqBk0Y+4bBx FJR0G60IbFXbcgkrg9d3JmcfBeFzvO4eqjuQZXvXF1/druDqayzJY6lnMtCTzhGx waiDXqcQiMr3iw== -----END CERTIFICATE-----Generated at Fri Dec 19 00:10:54 2025 by rpki-client