This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft File: U70JkochUqhtYNljuH0BgXwA_FM.mft (raw, json) Hash identifier: nIecjUWOqIB8RYEM0nZ2msLWKc5I+pwhG4HZrDr/uPc= Subject key identifier: B8:E0:62:F3:B9:C3:E1:FD:5E:38:AC:F7:AC:37:85:6D:91:D2:D2:79 Authority key identifier: 53:BD:09:92:87:21:52:A8:6D:60:D9:63:B8:7D:01:81:7C:00:FC:53 Certificate issuer: /CN=53bd0992872152a86d60d963b87d01817c00fc53 Certificate serial: 019B43CA00213D54A30ECBBA4CFBEF672A05 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U70JkochUqhtYNljuH0BgXwA_FM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft Manifest number: 178C Signing time: Mon 22 Dec 2025 02:01:10 +0000 Manifest this update: Mon 22 Dec 2025 02:01:10 +0000 Manifest next update: Tue 23 Dec 2025 02:01:10 +0000 Files and hashes: 1: 8hWTGCLXxSwODB2tKv40DFwDRSA.roa (hash: LnqtzTwP6Z/uj/Pahytsa4k9TTsa7E1q6xNsCMwJ/r4=) 2: KdlAk3dh27bShWAn4-0kWb61hVQ.roa (hash: ATJYV8SWOcnAG9fqVBljwxaiv5XnfJ4U40CX0lPgLrE=) 3: U70JkochUqhtYNljuH0BgXwA_FM.crl (hash: JB6Rg4dsOLNyNn4+HbGjJupFwFu70YEJ3AVzK95LBo8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.crl rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft rsync://rpki.ripe.net/repository/DEFAULT/U70JkochUqhtYNljuH0BgXwA_FM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:43:ca:00:21:3d:54:a3:0e:cb:ba:4c:fb:ef:67:2a:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53bd0992872152a86d60d963b87d01817c00fc53 Validity Not Before: Dec 22 02:01:10 2025 GMT Not After : Dec 23 02:01:10 2025 GMT Subject: CN=b8e062f3b9c3e1fd5e38acf7ac37856d91d2d279 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:e5:9f:ff:fd:72:b1:b0:57:d6:66:95:0e:f5: 00:08:bd:c4:0d:ae:dc:65:22:f4:78:95:b1:60:d9: 82:5f:5f:08:40:fb:d7:da:85:c5:4e:85:1e:04:ed: 77:2f:bf:0f:2e:6f:a2:16:7f:07:d0:4b:81:09:32: 42:da:8e:bf:2e:5c:36:68:24:70:7e:77:77:33:33: 8a:4d:8a:b9:3c:5f:f0:b0:48:2b:f0:8d:f2:a1:49: 9b:ef:58:52:86:11:0a:03:0c:59:51:59:32:77:64: 44:64:45:fd:6a:c8:b8:ca:24:3f:d5:e8:ae:b0:72: 62:e0:db:89:99:c4:c4:cf:9d:8f:64:9d:58:10:45: 95:8a:0d:2a:6a:84:a7:85:55:7b:6e:ff:af:71:89: 43:bb:7d:dd:67:0e:29:3f:d2:ea:98:0c:21:0c:d3: f9:d9:69:bb:30:98:25:02:30:52:21:95:a3:a6:86: 5d:09:8e:ce:a6:9f:1e:94:fb:9d:fc:77:9f:45:d1: c2:79:cc:8d:ad:71:f9:6d:c6:6e:b9:47:90:0f:73: 25:ab:ad:ca:4a:33:09:52:08:ed:8a:ba:18:0c:33: 1a:87:c4:4c:ce:96:39:22:bf:d1:1d:e5:d0:ea:bd: 4c:0d:20:70:57:1e:6a:9d:92:6f:2e:4e:ae:2b:7b: 8a:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:E0:62:F3:B9:C3:E1:FD:5E:38:AC:F7:AC:37:85:6D:91:D2:D2:79 X509v3 Authority Key Identifier: keyid:53:BD:09:92:87:21:52:A8:6D:60:D9:63:B8:7D:01:81:7C:00:FC:53 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U70JkochUqhtYNljuH0BgXwA_FM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 92:05:da:60:11:f5:63:26:a4:74:ea:ac:5b:55:62:87:59:a6: 8e:6f:1a:c5:07:f2:71:a1:55:d3:5a:c4:69:2f:09:75:80:fc: ec:0e:11:83:21:21:9d:cd:71:92:21:f5:7e:68:74:ef:3e:95: ba:9d:3b:30:cc:9e:3e:99:19:f3:2e:f2:94:86:8a:71:dd:44: a5:8c:f5:d1:a9:b2:28:d7:11:b2:4f:54:58:5f:e0:6f:4b:ef: 2a:01:25:7f:8d:b4:7c:b5:48:55:66:b2:2c:d2:ec:b1:af:3d: 84:5d:6b:e3:e7:1e:52:e6:14:2c:8a:eb:1b:f5:07:f0:ba:e2: 97:b9:63:ba:2f:3b:f0:4b:08:cc:c7:76:1f:5f:a1:8a:9c:74: c4:1b:d3:3e:ba:7a:2f:65:06:96:24:95:d6:db:e3:24:ce:80: b9:b6:32:f9:2f:b8:dc:df:f0:7c:7e:c2:a2:63:f4:f6:06:81: 00:57:b0:7d:b2:0d:01:c2:98:6b:bb:74:72:a7:64:55:00:e1: bd:8b:e1:7d:93:28:3e:61:28:bc:87:b9:1f:d9:4d:0a:1e:79: 51:b1:77:ba:ae:af:2c:0d:a0:a8:34:9e:32:d9:40:2d:6b:49: dd:4b:8b:17:9d:00:00:34:30:77:3a:70:b6:ae:1b:50:3b:2c: 83:96:43:bb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtDygAhPVSjDsu6TPvvZyoFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzYmQwOTkyODcyMTUyYTg2ZDYwZDk2M2I4N2QwMTgxN2Mw MGZjNTMwHhcNMjUxMjIyMDIwMTEwWhcNMjUxMjIzMDIwMTEwWjAzMTEwLwYDVQQD EyhiOGUwNjJmM2I5YzNlMWZkNWUzOGFjZjdhYzM3ODU2ZDkxZDJkMjc5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoeWf//1ysbBX1maVDvUACL3EDa7c ZSL0eJWxYNmCX18IQPvX2oXFToUeBO13L78PLm+iFn8H0EuBCTJC2o6/Llw2aCRw fnd3MzOKTYq5PF/wsEgr8I3yoUmb71hShhEKAwxZUVkyd2REZEX9asi4yiQ/1eiu sHJi4NuJmcTEz52PZJ1YEEWVig0qaoSnhVV7bv+vcYlDu33dZw4pP9LqmAwhDNP5 2Wm7MJglAjBSIZWjpoZdCY7Opp8elPud/HefRdHCecyNrXH5bcZuuUeQD3Mlq63K SjMJUgjtiroYDDMah8RMzpY5Ir/RHeXQ6r1MDSBwVx5qnZJvLk6uK3uK7QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLjgYvO5w+H9Xjis96w3hW2R0tJ5MB8GA1UdIwQY MBaAFFO9CZKHIVKobWDZY7h9AYF8APxTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVTcwSmtvY2hVcWh0WU5sanVIMEJnWHdBX0ZNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS82ZTI2NGUtZDZjZS00MmQ1LWIwNWQt ZTE1ZjRmODQwOWU2LzEvVTcwSmtvY2hVcWh0WU5sanVIMEJnWHdBX0ZNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMS82ZTI2NGUtZDZjZS00MmQ1LWIwNWQtZTE1ZjRmODQwOWU2 LzEvVTcwSmtvY2hVcWh0WU5sanVIMEJnWHdBX0ZNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkgXaYBH1 YyakdOqsW1Vih1mmjm8axQfycaFV01rEaS8JdYD87A4RgyEhnc1xkiH1fmh07z6V up07MMyePpkZ8y7ylIaKcd1EpYz10amyKNcRsk9UWF/gb0vvKgElf420fLVIVWay LNLssa89hF1r4+ceUuYULIrrG/UH8Lril7ljui878EsIzMd2H1+hipx0xBvTPrp6 L2UGliSV1tvjJM6AubYy+S+43N/wfH7ComP09gaBAFewfbINAcKYa7t0cqdkVQDh vYvhfZMoPmEovIe5H9lNCh55UbF3uq6vLA2gqDSeMtlALWtJ3UuLF50AADQwdzpw tq4bUDssg5ZDuw== -----END CERTIFICATE-----Generated at Mon Dec 22 07:53:32 2025 by rpki-client