This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.mft File: uMaM2mX2aWLMuWg_FVDRTlYQego.mft (raw, json) Hash identifier: 5ykXa4lKp0KYxwUUVRPFYZt4+uaigynFxmWw+q/I1fo= Subject key identifier: A1:51:9D:E1:B4:2C:61:BE:CD:E5:BF:C8:F9:A3:2A:1E:74:38:B2:BD Authority key identifier: B8:C6:8C:DA:65:F6:69:62:CC:B9:68:3F:15:50:D1:4E:56:10:7A:0A Certificate issuer: /CN=b8c68cda65f66962ccb9683f1550d14e56107a0a Certificate serial: 019B4927299DC3AF1B52C59E20C57B5FD4E6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uMaM2mX2aWLMuWg_FVDRTlYQego.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.mft Manifest number: 089D Signing time: Tue 23 Dec 2025 03:01:01 +0000 Manifest this update: Tue 23 Dec 2025 03:01:01 +0000 Manifest next update: Wed 24 Dec 2025 03:01:01 +0000 Files and hashes: 1: sIDOXg67yEuo_7naS_BfCVLmcEk.roa (hash: d8agrpVd7dmHrJl/IhvjPgn5Td9Dpm4TU3p5w1Cxjt0=) 2: uMaM2mX2aWLMuWg_FVDRTlYQego.crl (hash: OTBPl+QsKGihKKgqRyX1eif0Fx89u/aKjgGVp7BgW/0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.mft rsync://rpki.ripe.net/repository/DEFAULT/uMaM2mX2aWLMuWg_FVDRTlYQego.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 24 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:49:27:29:9d:c3:af:1b:52:c5:9e:20:c5:7b:5f:d4:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b8c68cda65f66962ccb9683f1550d14e56107a0a Validity Not Before: Dec 23 03:01:01 2025 GMT Not After : Dec 24 03:01:01 2025 GMT Subject: CN=a1519de1b42c61becde5bfc8f9a32a1e7438b2bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:9d:5c:05:a0:be:0e:69:6d:9c:ac:ff:07:f7: 92:f8:45:81:0f:d4:a0:f3:7f:99:f5:d8:fd:1e:36: 81:e6:90:cf:11:15:5b:3a:89:81:fd:e4:af:c1:4c: 04:8e:26:30:c7:b6:2a:40:37:8b:a8:c3:47:89:0f: 58:30:53:26:f8:be:1b:f6:11:8b:19:5d:b5:8b:aa: 5b:0f:ee:94:5c:5a:d8:32:ce:20:bf:a1:a2:c2:7f: f1:f9:37:c1:3c:00:9c:f8:d6:34:02:f4:0a:79:be: b0:ef:14:6d:32:e0:34:72:a1:c9:cf:6b:07:b6:fa: ca:43:af:18:e5:b0:a4:ee:96:3d:98:57:c5:25:b9: e7:bf:b1:90:35:6f:22:39:e5:9c:5d:07:c0:e6:b1: 90:b9:e0:62:05:ff:d3:71:21:44:0e:d2:6a:eb:ed: 8f:35:e0:16:9f:83:14:b2:f5:8a:3c:a8:13:d8:0b: 8a:e4:cb:3c:1d:f3:3d:44:8a:36:b3:d9:ec:b2:8f: 04:b0:06:be:94:9b:e9:ee:80:fa:5b:f1:e2:c4:09: b5:a1:b2:94:56:0e:d5:d2:85:19:43:32:12:a3:b4: 3e:0e:bc:cc:28:95:da:a5:61:00:d1:00:60:80:fa: 77:a2:eb:c2:bb:08:26:79:21:c9:e9:7e:b7:ec:38: 72:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:51:9D:E1:B4:2C:61:BE:CD:E5:BF:C8:F9:A3:2A:1E:74:38:B2:BD X509v3 Authority Key Identifier: keyid:B8:C6:8C:DA:65:F6:69:62:CC:B9:68:3F:15:50:D1:4E:56:10:7A:0A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uMaM2mX2aWLMuWg_FVDRTlYQego.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 47:1d:31:29:92:82:fb:ce:de:f9:68:43:16:e7:d4:16:83:d6: 48:19:e9:4f:9e:2a:13:09:b5:7a:db:af:86:80:ff:33:ee:1a: 05:7c:70:8b:f0:40:bd:cf:3f:9c:f1:a8:e3:85:2f:2c:51:fa: 75:10:e3:52:4d:5b:b7:eb:c1:4a:85:3d:51:da:69:ac:32:5a: 04:07:54:39:ff:0e:45:ed:f6:54:91:a0:90:64:55:f2:74:ae: 9d:f0:d8:0d:0e:ea:39:e6:01:6b:55:20:56:14:03:24:21:26: ad:fc:4b:f0:dd:01:cd:aa:86:e5:14:05:ac:e0:00:52:8b:12: 93:d6:97:b1:ba:00:2d:72:20:49:c3:e4:e3:71:35:b5:e1:fa: 56:af:d5:ce:b3:a6:ed:a2:58:54:e1:ef:3e:13:d8:ec:e4:82: 23:bf:6f:ab:eb:40:46:b4:11:b1:a5:09:a6:9c:c8:c5:5a:9d: 83:e4:b3:8a:fb:f0:60:4c:c6:8b:7d:ef:6a:37:a8:c9:8e:ef: 4f:6f:a7:39:6f:20:33:60:53:b0:c3:a4:e1:a5:56:ad:32:6e: d1:5a:87:ff:20:b0:38:2a:71:01:38:f8:32:41:4b:23:9d:62: 2a:03:7a:45:42:e7:b9:45:6c:cb:71:81:40:d2:cd:c4:a6:0d: 94:45:70:17 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtJJymdw68bUsWeIMV7X9TmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI4YzY4Y2RhNjVmNjY5NjJjY2I5NjgzZjE1NTBkMTRlNTYx MDdhMGEwHhcNMjUxMjIzMDMwMTAxWhcNMjUxMjI0MDMwMTAxWjAzMTEwLwYDVQQD EyhhMTUxOWRlMWI0MmM2MWJlY2RlNWJmYzhmOWEzMmExZTc0MzhiMmJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxJ1cBaC+DmltnKz/B/eS+EWBD9Sg 83+Z9dj9HjaB5pDPERVbOomB/eSvwUwEjiYwx7YqQDeLqMNHiQ9YMFMm+L4b9hGL GV21i6pbD+6UXFrYMs4gv6Giwn/x+TfBPACc+NY0AvQKeb6w7xRtMuA0cqHJz2sH tvrKQ68Y5bCk7pY9mFfFJbnnv7GQNW8iOeWcXQfA5rGQueBiBf/TcSFEDtJq6+2P NeAWn4MUsvWKPKgT2AuK5Ms8HfM9RIo2s9nsso8EsAa+lJvp7oD6W/HixAm1obKU Vg7V0oUZQzISo7Q+DrzMKJXapWEA0QBggPp3ouvCuwgmeSHJ6X637DhyGQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKFRneG0LGG+zeW/yPmjKh50OLK9MB8GA1UdIwQY MBaAFLjGjNpl9mlizLloPxVQ0U5WEHoKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdU1hTTJtWDJhV0xNdVdnX0ZWRFJUbFlRZWdvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC8xMDc3ODgtODUwMi00NTQxLTk0ODAt OGY0OGEzNzAyZjkwLzEvdU1hTTJtWDJhV0xNdVdnX0ZWRFJUbFlRZWdvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC8xMDc3ODgtODUwMi00NTQxLTk0ODAtOGY0OGEzNzAyZjkw LzEvdU1hTTJtWDJhV0xNdVdnX0ZWRFJUbFlRZWdvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARx0xKZKC +87e+WhDFufUFoPWSBnpT54qEwm1etuvhoD/M+4aBXxwi/BAvc8/nPGo44UvLFH6 dRDjUk1bt+vBSoU9UdpprDJaBAdUOf8ORe32VJGgkGRV8nSunfDYDQ7qOeYBa1Ug VhQDJCEmrfxL8N0BzaqG5RQFrOAAUosSk9aXsboALXIgScPk43E1teH6Vq/VzrOm 7aJYVOHvPhPY7OSCI79vq+tARrQRsaUJppzIxVqdg+SzivvwYEzGi33vajeoyY7v T2+nOW8gM2BTsMOk4aVWrTJu0VqH/yCwOCpxATj4MkFLI51iKgN6RULnuUVsy3GB QNLNxKYNlEVwFw== -----END CERTIFICATE-----Generated at Tue Dec 23 09:23:46 2025 by rpki-client