This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.mft File: UIqaCKvvdNzFEAT0-uAmbWIDleM.mft (raw, json) Hash identifier: gr9OtCkNytgS4NEdPrEUftbIR/LBDh7yNjQ+5E0s9JA= Subject key identifier: 7D:8F:F7:0C:B7:D3:A9:96:D3:88:D2:52:CF:43:9B:F5:A4:5D:2A:FC Authority key identifier: 50:8A:9A:08:AB:EF:74:DC:C5:10:04:F4:FA:E0:26:6D:62:03:95:E3 Certificate issuer: /CN=508a9a08abef74dcc51004f4fae0266d620395e3 Certificate serial: 019B40C87B14B5034BC1D97C28C6261A2550 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UIqaCKvvdNzFEAT0-uAmbWIDleM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.mft Manifest number: 0F7E Signing time: Sun 21 Dec 2025 12:00:39 +0000 Manifest this update: Sun 21 Dec 2025 12:00:39 +0000 Manifest next update: Mon 22 Dec 2025 12:00:39 +0000 Files and hashes: 1: 8CmFhnWxaCeDeglOctNQZC1ZN84.roa (hash: mRPJMJZCvcTnlYvn8UFVdthp3gWoolEvhKxuWOWcGDk=) 2: UIqaCKvvdNzFEAT0-uAmbWIDleM.crl (hash: G+SGenjOLq/UpaP5UUxmbJXdZ11CXcE9jKghdkTN8aE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.crl rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.mft rsync://rpki.ripe.net/repository/DEFAULT/UIqaCKvvdNzFEAT0-uAmbWIDleM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 12:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:40:c8:7b:14:b5:03:4b:c1:d9:7c:28:c6:26:1a:25:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=508a9a08abef74dcc51004f4fae0266d620395e3 Validity Not Before: Dec 21 12:00:39 2025 GMT Not After : Dec 22 12:00:39 2025 GMT Subject: CN=7d8ff70cb7d3a996d388d252cf439bf5a45d2afc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:8b:cb:6f:c4:23:a6:86:13:e3:de:e2:37:01: 3b:a4:50:24:fd:9f:f3:af:c8:bc:b9:81:33:a2:62: 37:46:be:ff:bb:7c:75:2b:db:56:91:2d:51:f0:e4: 0e:93:69:70:1c:bc:23:bc:5f:a5:ac:bb:a2:00:43: 1d:dc:c2:fa:ec:61:b7:c4:19:1d:ad:d2:86:c0:55: 2f:5a:64:64:1e:c9:77:2a:2b:a8:da:fe:28:1e:09: e3:47:d7:21:31:69:a0:6a:cf:ab:aa:ac:97:25:0c: 63:c7:8c:92:45:e6:b0:12:db:37:52:2c:7a:13:79: 6a:cd:cd:d1:8d:9e:53:89:fa:2b:fa:e4:f1:b5:12: 1b:5c:db:22:f7:55:bd:b0:fb:da:4d:9e:83:53:41: 3f:b7:12:9b:e0:bc:b8:d5:45:79:6b:e3:0b:95:34: 6d:c3:99:e2:f0:eb:e3:70:e1:2e:38:70:33:2d:eb: 76:f9:9f:4b:45:97:66:87:88:84:a7:73:39:f4:70: 9a:9e:1c:dc:d2:46:eb:ad:49:3f:30:98:09:2c:1b: c5:61:ab:8f:41:09:22:be:2b:cf:35:cd:4e:d9:38: d4:ef:29:bb:83:b4:ef:57:ae:a0:f1:c5:7d:d4:56: 54:be:69:38:7e:08:50:12:8d:73:d4:86:9e:d0:25: c0:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:8F:F7:0C:B7:D3:A9:96:D3:88:D2:52:CF:43:9B:F5:A4:5D:2A:FC X509v3 Authority Key Identifier: keyid:50:8A:9A:08:AB:EF:74:DC:C5:10:04:F4:FA:E0:26:6D:62:03:95:E3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UIqaCKvvdNzFEAT0-uAmbWIDleM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/deca0e-dd4c-44ef-bf77-05dbe3df98f6/1/UIqaCKvvdNzFEAT0-uAmbWIDleM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 39:c9:3e:16:eb:2b:7d:1a:a0:db:e0:fc:66:6e:a4:9b:f9:9e: 7b:98:af:0f:fe:1e:18:21:63:9c:15:a0:32:3e:c4:3c:a3:01: 37:bf:a7:c9:72:f3:df:0d:8f:22:29:b6:a3:72:50:a9:ae:4d: a8:d3:79:ab:9c:9e:47:9a:b6:70:7f:7e:bc:96:dc:32:b9:22: 78:36:ef:da:97:43:c4:3c:84:63:f0:7b:10:23:81:10:2c:6a: 1c:7b:a8:bf:ae:2c:f2:79:a3:0c:ec:ee:95:67:8e:87:27:13: c2:94:6d:a4:07:31:a1:78:43:83:b6:b2:b7:63:61:d9:ea:55: 3a:70:08:4b:a0:12:39:1a:96:4d:6f:07:13:cf:fe:bc:c6:f1: 7e:ee:ab:eb:8d:b8:98:f4:e0:64:f0:71:b7:7c:83:6c:71:45: d8:d9:72:ae:84:05:5d:f5:a8:ee:a1:60:17:da:19:eb:78:36: ce:2b:3d:37:1c:90:13:58:f3:fa:d3:49:ad:45:f5:91:5d:40: 30:1d:3d:ef:7e:b6:fa:e2:21:ad:25:af:f0:87:a6:e9:a6:62: d1:46:5d:97:bf:c6:26:0b:96:37:15:9a:26:58:48:00:fb:a2: 81:ae:5e:6d:04:94:9f:6d:4b:58:7c:21:76:cf:b0:6f:d5:59: d4:3d:cf:0a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtAyHsUtQNLwdl8KMYmGiVQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUwOGE5YTA4YWJlZjc0ZGNjNTEwMDRmNGZhZTAyNjZkNjIw Mzk1ZTMwHhcNMjUxMjIxMTIwMDM5WhcNMjUxMjIyMTIwMDM5WjAzMTEwLwYDVQQD Eyg3ZDhmZjcwY2I3ZDNhOTk2ZDM4OGQyNTJjZjQzOWJmNWE0NWQyYWZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApIvLb8QjpoYT497iNwE7pFAk/Z/z r8i8uYEzomI3Rr7/u3x1K9tWkS1R8OQOk2lwHLwjvF+lrLuiAEMd3ML67GG3xBkd rdKGwFUvWmRkHsl3Kiuo2v4oHgnjR9chMWmgas+rqqyXJQxjx4ySReawEts3Uix6 E3lqzc3RjZ5Tifor+uTxtRIbXNsi91W9sPvaTZ6DU0E/txKb4Ly41UV5a+MLlTRt w5ni8OvjcOEuOHAzLet2+Z9LRZdmh4iEp3M59HCanhzc0kbrrUk/MJgJLBvFYauP QQkivivPNc1O2TjU7ym7g7TvV66g8cV91FZUvmk4fghQEo1z1Iae0CXApwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH2P9wy306mW04jSUs9Dm/WkXSr8MB8GA1UdIwQY MBaAFFCKmgir73TcxRAE9PrgJm1iA5XjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVUlxYUNLdnZkTnpGRUFUMC11QW1iV0lEbGVNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC9kZWNhMGUtZGQ0Yy00NGVmLWJmNzct MDVkYmUzZGY5OGY2LzEvVUlxYUNLdnZkTnpGRUFUMC11QW1iV0lEbGVNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC9kZWNhMGUtZGQ0Yy00NGVmLWJmNzctMDVkYmUzZGY5OGY2 LzEvVUlxYUNLdnZkTnpGRUFUMC11QW1iV0lEbGVNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOck+Fusr fRqg2+D8Zm6km/mee5ivD/4eGCFjnBWgMj7EPKMBN7+nyXLz3w2PIim2o3JQqa5N qNN5q5yeR5q2cH9+vJbcMrkieDbv2pdDxDyEY/B7ECOBECxqHHuov64s8nmjDOzu lWeOhycTwpRtpAcxoXhDg7ayt2Nh2epVOnAIS6ASORqWTW8HE8/+vMbxfu6r6424 mPTgZPBxt3yDbHFF2NlyroQFXfWo7qFgF9oZ63g2zis9NxyQE1jz+tNJrUX1kV1A MB097362+uIhrSWv8Iem6aZi0UZdl7/GJguWNxWaJlhIAPuiga5ebQSUn21LWHwh ds+wb9VZ1D3PCg== -----END CERTIFICATE-----Generated at Sun Dec 21 18:55:15 2025 by rpki-client