This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft File: U70JkochUqhtYNljuH0BgXwA_FM.mft (raw, json) Hash identifier: BaeX94zhyHQDyUp7HPOFIkzt3qMFl5+0Z4XxL1vRVM0= Subject key identifier: 26:13:2C:C7:B3:F3:BE:B4:C3:54:00:B3:D7:67:18:34:D4:59:BE:B4 Authority key identifier: 53:BD:09:92:87:21:52:A8:6D:60:D9:63:B8:7D:01:81:7C:00:FC:53 Certificate issuer: /CN=53bd0992872152a86d60d963b87d01817c00fc53 Certificate serial: 019B3C1078D7519F1DD7467FB8F9832FFE9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U70JkochUqhtYNljuH0BgXwA_FM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft Manifest number: 1788 Signing time: Sat 20 Dec 2025 14:01:11 +0000 Manifest this update: Sat 20 Dec 2025 14:01:11 +0000 Manifest next update: Sun 21 Dec 2025 14:01:11 +0000 Files and hashes: 1: 8hWTGCLXxSwODB2tKv40DFwDRSA.roa (hash: LnqtzTwP6Z/uj/Pahytsa4k9TTsa7E1q6xNsCMwJ/r4=) 2: KdlAk3dh27bShWAn4-0kWb61hVQ.roa (hash: ATJYV8SWOcnAG9fqVBljwxaiv5XnfJ4U40CX0lPgLrE=) 3: U70JkochUqhtYNljuH0BgXwA_FM.crl (hash: CDSGl2hp44mospRrGG5z8vVLLDxA0dmLaxux3r3j8iU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.crl rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft rsync://rpki.ripe.net/repository/DEFAULT/U70JkochUqhtYNljuH0BgXwA_FM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 14:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3c:10:78:d7:51:9f:1d:d7:46:7f:b8:f9:83:2f:fe:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53bd0992872152a86d60d963b87d01817c00fc53 Validity Not Before: Dec 20 14:01:11 2025 GMT Not After : Dec 21 14:01:11 2025 GMT Subject: CN=26132cc7b3f3beb4c35400b3d7671834d459beb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:15:ae:1c:f7:cb:02:2c:36:cc:77:45:cf:54: b3:69:5a:7d:e4:21:9a:a5:62:8d:1c:16:7b:22:57: ff:05:e2:2c:0c:bc:30:be:da:87:2a:da:07:46:8f: 1b:6c:31:7d:21:96:7b:c2:f3:11:d1:04:5c:9e:a0: 9f:76:da:f5:bc:c8:01:68:04:f0:5b:41:e5:24:5e: e4:2d:11:f8:bc:0a:be:2b:0e:fb:59:30:7b:be:3b: 48:f5:a4:43:53:51:7c:33:07:02:d3:6d:e7:f7:67: 29:c8:09:43:b0:34:17:05:3b:00:5a:dd:ef:03:d4: e9:2c:06:5e:bb:fc:71:84:ee:16:9c:eb:97:cc:68: b7:51:85:bd:bd:f4:5b:ef:ae:b2:e6:05:9e:16:b2: 8c:df:8e:0f:a5:0c:85:9f:af:45:98:8d:0d:18:4f: 7c:0a:49:1e:a0:36:38:af:4a:ff:fd:1a:ab:60:ad: 2e:8e:2e:12:48:3d:ab:a4:78:3a:85:19:54:5c:09: 69:05:0b:29:05:b9:49:49:01:84:45:15:24:4a:b3: a9:5f:26:b7:7a:8d:cd:0d:56:8a:2b:5e:6c:49:f2: 62:b1:8c:38:32:ab:27:90:04:e3:07:e9:1d:ca:d3: a8:94:95:79:13:7f:d5:ec:8e:f2:4c:90:f0:10:b2: 59:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:13:2C:C7:B3:F3:BE:B4:C3:54:00:B3:D7:67:18:34:D4:59:BE:B4 X509v3 Authority Key Identifier: keyid:53:BD:09:92:87:21:52:A8:6D:60:D9:63:B8:7D:01:81:7C:00:FC:53 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U70JkochUqhtYNljuH0BgXwA_FM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0d:78:9d:b8:8a:3f:73:0d:e3:aa:93:a7:3e:fc:ad:db:16:a1: 46:f1:68:09:f2:41:53:ad:26:6a:b2:15:f4:18:56:d1:72:e4: 10:b6:46:3e:be:ae:c8:31:e3:5d:41:cf:bc:3b:b8:59:a9:39: 5a:82:4a:78:0e:ca:e7:6c:c1:b7:ee:eb:ed:d5:6f:54:fb:92: eb:c9:20:f1:4a:5e:86:66:c9:da:7a:2d:19:0e:89:3f:ca:56: 54:03:21:3f:66:b3:14:73:89:3c:07:65:a2:a6:44:df:37:e4: 53:a0:50:75:aa:6b:f4:6f:29:c3:f7:85:e2:2c:e2:1e:97:fa: 4d:66:1b:55:41:1d:6e:5d:2b:0a:69:95:a1:c7:ee:e9:60:9a: 6c:21:41:54:04:94:9a:2c:3d:35:10:25:e0:40:fa:53:a6:0c: e2:d8:da:ba:2a:bf:01:9e:fe:27:82:f5:a0:58:2c:a0:ae:85: d5:c9:0f:2c:d8:7b:26:c7:c5:6f:15:f9:ae:2b:cb:aa:b9:73: 3b:94:a9:09:9c:90:d9:fe:22:3a:5e:94:56:dc:06:85:61:1e: 9b:96:31:62:31:81:5e:ad:73:07:76:36:a8:b2:9e:dc:74:8a: 42:ca:ab:f0:72:5c:b1:6e:25:02:e0:ea:c6:6e:aa:33:09:c2: 71:20:5c:80 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs8EHjXUZ8d10Z/uPmDL/6dMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzYmQwOTkyODcyMTUyYTg2ZDYwZDk2M2I4N2QwMTgxN2Mw MGZjNTMwHhcNMjUxMjIwMTQwMTExWhcNMjUxMjIxMTQwMTExWjAzMTEwLwYDVQQD EygyNjEzMmNjN2IzZjNiZWI0YzM1NDAwYjNkNzY3MTgzNGQ0NTliZWI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0xWuHPfLAiw2zHdFz1SzaVp95CGa pWKNHBZ7Ilf/BeIsDLwwvtqHKtoHRo8bbDF9IZZ7wvMR0QRcnqCfdtr1vMgBaATw W0HlJF7kLRH4vAq+Kw77WTB7vjtI9aRDU1F8MwcC023n92cpyAlDsDQXBTsAWt3v A9TpLAZeu/xxhO4WnOuXzGi3UYW9vfRb766y5gWeFrKM344PpQyFn69FmI0NGE98 CkkeoDY4r0r//RqrYK0uji4SSD2rpHg6hRlUXAlpBQspBblJSQGERRUkSrOpXya3 eo3NDVaKK15sSfJisYw4MqsnkATjB+kdytOolJV5E3/V7I7yTJDwELJZ8QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCYTLMez8760w1QAs9dnGDTUWb60MB8GA1UdIwQY MBaAFFO9CZKHIVKobWDZY7h9AYF8APxTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVTcwSmtvY2hVcWh0WU5sanVIMEJnWHdBX0ZNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS82ZTI2NGUtZDZjZS00MmQ1LWIwNWQt ZTE1ZjRmODQwOWU2LzEvVTcwSmtvY2hVcWh0WU5sanVIMEJnWHdBX0ZNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMS82ZTI2NGUtZDZjZS00MmQ1LWIwNWQtZTE1ZjRmODQwOWU2 LzEvVTcwSmtvY2hVcWh0WU5sanVIMEJnWHdBX0ZNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADXiduIo/ cw3jqpOnPvyt2xahRvFoCfJBU60marIV9BhW0XLkELZGPr6uyDHjXUHPvDu4Wak5 WoJKeA7K52zBt+7r7dVvVPuS68kg8UpehmbJ2notGQ6JP8pWVAMhP2azFHOJPAdl oqZE3zfkU6BQdapr9G8pw/eF4iziHpf6TWYbVUEdbl0rCmmVocfu6WCabCFBVASU miw9NRAl4ED6U6YM4tjauiq/AZ7+J4L1oFgsoK6F1ckPLNh7JsfFbxX5rivLqrlz O5SpCZyQ2f4iOl6UVtwGhWEem5YxYjGBXq1zB3Y2qLKe3HSKQsqr8HJcsW4lAuDq xm6qMwnCcSBcgA== -----END CERTIFICATE-----Generated at Sat Dec 20 22:46:43 2025 by rpki-client