This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.mft File: UHeXmaO44PDx48dJjAWjP4X7u80.mft (raw, json) Hash identifier: 1GxjpcH6SunWm6lDz+Yjc1dRhYD6w6o8b+vWmWhWSBU= Subject key identifier: CB:48:59:1E:5B:BC:2B:DF:ED:A3:68:6D:B8:08:33:C5:32:30:55:91 Authority key identifier: 50:77:97:99:A3:B8:E0:F0:F1:E3:C7:49:8C:05:A3:3F:85:FB:BB:CD Certificate issuer: /CN=50779799a3b8e0f0f1e3c7498c05a33f85fbbbcd Certificate serial: 019B3D59AE0B3DE1C9C03E43E6A7FDA7DF26 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UHeXmaO44PDx48dJjAWjP4X7u80.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.mft Manifest number: 164F Signing time: Sat 20 Dec 2025 20:00:45 +0000 Manifest this update: Sat 20 Dec 2025 20:00:45 +0000 Manifest next update: Sun 21 Dec 2025 20:00:45 +0000 Files and hashes: 1: Sy9MkTO2BPRvKPMpsGDN-2TnmTk.roa (hash: Zvh1o0q4voreyVSKOLfHlxnIapN8G7OyPz3tE/wp4Tg=) 2: UHeXmaO44PDx48dJjAWjP4X7u80.crl (hash: kPg0bW5kHQY0aXtNBYTa7i0k3VnGK1I+Q+OHGxp6HOY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.mft rsync://rpki.ripe.net/repository/DEFAULT/UHeXmaO44PDx48dJjAWjP4X7u80.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 20:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3d:59:ae:0b:3d:e1:c9:c0:3e:43:e6:a7:fd:a7:df:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=50779799a3b8e0f0f1e3c7498c05a33f85fbbbcd Validity Not Before: Dec 20 20:00:45 2025 GMT Not After : Dec 21 20:00:45 2025 GMT Subject: CN=cb48591e5bbc2bdfeda3686db80833c532305591 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ae:d5:2e:79:64:15:1f:5c:0e:f3:76:79:4c: 0d:6e:1d:81:36:d6:e6:52:18:e5:b1:0e:4e:73:12: 22:e0:d7:42:e7:de:57:0a:94:5d:41:7a:77:df:b9: f6:31:09:fd:cc:91:fb:ee:eb:d7:31:6d:90:8a:c4: a7:17:f5:f0:8f:3b:52:86:ca:41:c8:52:4f:28:57: 51:ca:0b:84:2d:11:f9:a9:6d:8f:5f:2a:a7:8d:da: db:d1:32:f1:2e:75:f6:57:47:12:cc:fc:33:f5:66: 21:4f:e9:bf:09:d9:26:4d:5f:4f:c0:8c:b2:c9:ce: 0e:83:13:95:7b:83:84:db:0c:04:8f:b2:e8:7c:c5: 2a:40:bf:6d:fa:5a:d9:48:48:8a:fd:ed:5c:34:ef: c8:03:b6:53:eb:61:e5:00:65:f6:7c:0f:13:0e:e3: fe:57:6f:44:80:00:fb:30:d6:4c:41:37:97:de:39: 18:64:bf:2b:89:45:b9:2b:f8:4e:fd:0e:8d:e5:b7: 65:af:54:86:74:09:01:9a:56:ed:91:8d:d9:4b:4d: a1:ef:ca:34:b6:76:cd:fd:96:bd:fa:8e:43:4f:e5: be:7c:bd:c8:d2:3d:13:49:20:3e:e2:f8:e1:23:61: 47:63:ad:45:50:03:c3:bd:2c:ad:ef:9d:75:07:b4: f5:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:48:59:1E:5B:BC:2B:DF:ED:A3:68:6D:B8:08:33:C5:32:30:55:91 X509v3 Authority Key Identifier: keyid:50:77:97:99:A3:B8:E0:F0:F1:E3:C7:49:8C:05:A3:3F:85:FB:BB:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UHeXmaO44PDx48dJjAWjP4X7u80.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/244958-aa2d-478c-b0ff-69efad6c3a80/1/UHeXmaO44PDx48dJjAWjP4X7u80.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9e:76:1c:28:a5:70:90:b9:e0:5d:66:a2:87:40:cc:1a:be:60: 62:15:bc:19:a2:07:b5:43:ad:d7:82:6b:8c:94:dc:e2:ac:4b: d2:f7:c3:1a:e8:07:f6:11:41:c9:a8:75:8e:3a:9f:bd:02:37: 8d:03:c6:90:d5:eb:60:6f:fd:bf:70:38:26:77:36:19:2a:bd: 76:76:22:bd:eb:6e:bf:63:f8:1f:eb:9b:bc:6e:b1:c6:92:b8: 2e:68:97:7f:21:89:a9:fc:8b:6f:af:c3:e3:d2:e2:64:4c:3d: 84:f1:95:bf:70:c3:04:ab:55:18:d8:aa:6a:26:63:17:76:64: e4:c9:72:e7:cb:80:4a:6a:23:cb:6f:04:b0:9c:fa:e2:94:aa: 3f:b6:f2:6f:63:bf:2a:49:9c:24:45:07:89:44:f0:0b:10:85: 5b:41:43:d7:e3:2d:d6:c0:bd:06:ce:cd:47:7a:80:f6:50:b8: 31:ea:0f:dd:a9:e6:a7:15:e0:f6:0c:fd:c4:7d:04:7f:ca:96: 85:c1:ed:c3:28:46:a7:9d:30:47:85:49:bc:a5:a8:73:1b:35: 25:ec:1a:34:aa:9c:a1:b8:85:c0:ee:bb:74:0c:76:69:d4:18: 7b:e7:ee:08:7a:57:2e:a0:bf:72:02:83:3e:53:5e:e5:2e:b1: 05:7d:96:5e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs9Wa4LPeHJwD5D5qf9p98mMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUwNzc5Nzk5YTNiOGUwZjBmMWUzYzc0OThjMDVhMzNmODVm YmJiY2QwHhcNMjUxMjIwMjAwMDQ1WhcNMjUxMjIxMjAwMDQ1WjAzMTEwLwYDVQQD EyhjYjQ4NTkxZTViYmMyYmRmZWRhMzY4NmRiODA4MzNjNTMyMzA1NTkxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAua7VLnlkFR9cDvN2eUwNbh2BNtbm UhjlsQ5OcxIi4NdC595XCpRdQXp337n2MQn9zJH77uvXMW2QisSnF/XwjztShspB yFJPKFdRyguELRH5qW2PXyqnjdrb0TLxLnX2V0cSzPwz9WYhT+m/CdkmTV9PwIyy yc4OgxOVe4OE2wwEj7LofMUqQL9t+lrZSEiK/e1cNO/IA7ZT62HlAGX2fA8TDuP+ V29EgAD7MNZMQTeX3jkYZL8riUW5K/hO/Q6N5bdlr1SGdAkBmlbtkY3ZS02h78o0 tnbN/Za9+o5DT+W+fL3I0j0TSSA+4vjhI2FHY61FUAPDvSyt7511B7T16QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMtIWR5bvCvf7aNobbgIM8UyMFWRMB8GA1UdIwQY MBaAFFB3l5mjuODw8ePHSYwFoz+F+7vNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVUhlWG1hTzQ0UER4NDhkSmpBV2pQNFg3dTgwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS8yNDQ5NTgtYWEyZC00NzhjLWIwZmYt NjllZmFkNmMzYTgwLzEvVUhlWG1hTzQ0UER4NDhkSmpBV2pQNFg3dTgwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS8yNDQ5NTgtYWEyZC00NzhjLWIwZmYtNjllZmFkNmMzYTgw LzEvVUhlWG1hTzQ0UER4NDhkSmpBV2pQNFg3dTgwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnnYcKKVw kLngXWaih0DMGr5gYhW8GaIHtUOt14JrjJTc4qxL0vfDGugH9hFByah1jjqfvQI3 jQPGkNXrYG/9v3A4Jnc2GSq9dnYivetuv2P4H+ubvG6xxpK4LmiXfyGJqfyLb6/D 49LiZEw9hPGVv3DDBKtVGNiqaiZjF3Zk5Mly58uASmojy28EsJz64pSqP7byb2O/ KkmcJEUHiUTwCxCFW0FD1+Mt1sC9Bs7NR3qA9lC4MeoP3anmpxXg9gz9xH0Ef8qW hcHtwyhGp50wR4VJvKWocxs1JewaNKqcobiFwO67dAx2adQYe+fuCHpXLqC/cgKD PlNe5S6xBX2WXg== -----END CERTIFICATE-----Generated at Sun Dec 21 05:49:13 2025 by rpki-client