This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.mft File: uMaM2mX2aWLMuWg_FVDRTlYQego.mft (raw, json) Hash identifier: INnVp9e5oGtmvSghxCgvuXU4snPfhjlimpMDxQWDKw4= Subject key identifier: 92:7A:D0:19:EE:5B:2B:F0:C7:4D:69:A4:33:6C:3C:D0:0F:A0:14:31 Authority key identifier: B8:C6:8C:DA:65:F6:69:62:CC:B9:68:3F:15:50:D1:4E:56:10:7A:0A Certificate issuer: /CN=b8c68cda65f66962ccb9683f1550d14e56107a0a Certificate serial: 019B416D523965D39C42E9E311824D35A8CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uMaM2mX2aWLMuWg_FVDRTlYQego.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.mft Manifest number: 0899 Signing time: Sun 21 Dec 2025 15:00:42 +0000 Manifest this update: Sun 21 Dec 2025 15:00:42 +0000 Manifest next update: Mon 22 Dec 2025 15:00:42 +0000 Files and hashes: 1: sIDOXg67yEuo_7naS_BfCVLmcEk.roa (hash: d8agrpVd7dmHrJl/IhvjPgn5Td9Dpm4TU3p5w1Cxjt0=) 2: uMaM2mX2aWLMuWg_FVDRTlYQego.crl (hash: W2MFhYsYXkztkGI5k+PaEJ+klwT6drmEGmEaRFL/17Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.mft rsync://rpki.ripe.net/repository/DEFAULT/uMaM2mX2aWLMuWg_FVDRTlYQego.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 13:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:41:6d:52:39:65:d3:9c:42:e9:e3:11:82:4d:35:a8:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b8c68cda65f66962ccb9683f1550d14e56107a0a Validity Not Before: Dec 21 15:00:42 2025 GMT Not After : Dec 22 15:00:42 2025 GMT Subject: CN=927ad019ee5b2bf0c74d69a4336c3cd00fa01431 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:61:7e:0b:bf:8d:b4:62:e5:fa:cc:d7:76:b6: 97:5e:d8:6c:a8:93:25:81:ef:9c:2a:78:76:6c:21: 73:b0:22:2f:bd:60:49:e5:7e:ed:50:07:b5:9f:69: cf:23:b9:09:85:a5:91:1c:85:19:31:52:a1:06:64: 7c:8b:c8:4d:6d:cc:55:98:13:0f:8c:d5:6b:56:1a: 40:82:9b:4e:10:3c:2a:ea:e3:0f:b3:5c:1f:42:cc: b9:d1:1e:11:16:d6:bb:47:80:c2:30:12:47:bb:be: f0:c7:74:b5:c7:de:23:fd:46:6f:c5:34:eb:b2:3c: f7:d6:49:ce:32:ee:07:52:d9:59:5e:4a:3d:59:a8: b0:6b:83:fc:b3:95:c1:d5:8f:ff:36:75:77:6c:3f: 55:57:9f:31:2d:b4:29:6c:15:22:02:12:53:6a:ba: 8b:44:6e:da:5d:c9:43:8b:2c:2c:60:34:7b:ce:cf: df:ff:4a:d5:db:ca:c0:4f:91:e6:44:1b:4a:25:11: 7b:f8:3e:20:22:98:19:5c:61:5c:06:a6:2c:00:50: 1c:ea:06:69:e9:ad:03:10:06:f3:59:dd:42:4f:ba: bc:9a:d2:1e:db:ac:43:57:37:59:26:f6:c7:1a:d8: 30:52:4d:e1:7f:10:b9:47:e3:9a:4a:a5:05:aa:e3: a3:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:7A:D0:19:EE:5B:2B:F0:C7:4D:69:A4:33:6C:3C:D0:0F:A0:14:31 X509v3 Authority Key Identifier: keyid:B8:C6:8C:DA:65:F6:69:62:CC:B9:68:3F:15:50:D1:4E:56:10:7A:0A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uMaM2mX2aWLMuWg_FVDRTlYQego.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/107788-8502-4541-9480-8f48a3702f90/1/uMaM2mX2aWLMuWg_FVDRTlYQego.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 14:f6:95:50:49:b1:e2:bb:34:e0:95:ce:6b:80:b4:4a:aa:a7: 25:15:bf:d0:1d:b7:2d:78:47:59:a8:f9:dc:65:46:42:f1:8c: 10:1e:6d:14:d6:55:10:16:f4:7c:24:ec:fe:05:48:9a:15:9c: 5d:5c:ab:c0:4e:f1:ae:35:b5:39:5f:b2:79:6f:e3:84:16:79: 95:4f:87:86:a6:bc:dc:bf:74:89:cc:5d:f5:87:ac:2b:a8:ac: 6b:a3:75:09:cb:35:1b:e6:bc:c1:d6:5b:e6:d8:83:fe:3d:e8: 16:0d:28:49:fe:0d:9e:26:3a:d3:b3:99:de:57:a8:e0:08:ae: 9d:f6:d8:17:9e:1f:49:dc:9c:3f:3c:d8:22:0f:08:1c:a8:ad: 05:c6:b2:49:bc:88:be:05:16:1d:a4:84:2d:3c:a1:1a:70:5d: c2:fe:48:60:8d:f1:02:62:84:27:0f:57:e0:53:97:88:35:4a: 02:17:f7:f1:36:d5:3c:c9:ed:87:52:15:f9:05:1f:43:91:ae: a0:66:2f:6c:71:76:27:1b:c3:6f:c0:5f:49:d6:3a:10:44:3a: 49:46:5e:b7:35:43:de:e2:22:c6:16:03:e1:f1:94:66:8f:23: c2:eb:e9:1c:a8:3d:ea:e0:5a:06:39:43:91:1d:09:c9:9b:93: ae:95:95:84 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtBbVI5ZdOcQunjEYJNNajPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI4YzY4Y2RhNjVmNjY5NjJjY2I5NjgzZjE1NTBkMTRlNTYx MDdhMGEwHhcNMjUxMjIxMTUwMDQyWhcNMjUxMjIyMTUwMDQyWjAzMTEwLwYDVQQD Eyg5MjdhZDAxOWVlNWIyYmYwYzc0ZDY5YTQzMzZjM2NkMDBmYTAxNDMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkWF+C7+NtGLl+szXdraXXthsqJMl ge+cKnh2bCFzsCIvvWBJ5X7tUAe1n2nPI7kJhaWRHIUZMVKhBmR8i8hNbcxVmBMP jNVrVhpAgptOEDwq6uMPs1wfQsy50R4RFta7R4DCMBJHu77wx3S1x94j/UZvxTTr sjz31knOMu4HUtlZXko9Waiwa4P8s5XB1Y//NnV3bD9VV58xLbQpbBUiAhJTarqL RG7aXclDiywsYDR7zs/f/0rV28rAT5HmRBtKJRF7+D4gIpgZXGFcBqYsAFAc6gZp 6a0DEAbzWd1CT7q8mtIe26xDVzdZJvbHGtgwUk3hfxC5R+OaSqUFquOjOQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJJ60BnuWyvwx01ppDNsPNAPoBQxMB8GA1UdIwQY MBaAFLjGjNpl9mlizLloPxVQ0U5WEHoKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdU1hTTJtWDJhV0xNdVdnX0ZWRFJUbFlRZWdvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC8xMDc3ODgtODUwMi00NTQxLTk0ODAt OGY0OGEzNzAyZjkwLzEvdU1hTTJtWDJhV0xNdVdnX0ZWRFJUbFlRZWdvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC8xMDc3ODgtODUwMi00NTQxLTk0ODAtOGY0OGEzNzAyZjkw LzEvdU1hTTJtWDJhV0xNdVdnX0ZWRFJUbFlRZWdvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFPaVUEmx 4rs04JXOa4C0SqqnJRW/0B23LXhHWaj53GVGQvGMEB5tFNZVEBb0fCTs/gVImhWc XVyrwE7xrjW1OV+yeW/jhBZ5lU+Hhqa83L90icxd9YesK6isa6N1Ccs1G+a8wdZb 5tiD/j3oFg0oSf4NniY607OZ3leo4AiunfbYF54fSdycPzzYIg8IHKitBcaySbyI vgUWHaSELTyhGnBdwv5IYI3xAmKEJw9X4FOXiDVKAhf38TbVPMnth1IV+QUfQ5Gu oGYvbHF2JxvDb8BfSdY6EEQ6SUZetzVD3uIixhYD4fGUZo8jwuvpHKg96uBaBjlD kR0JyZuTrpWVhA== -----END CERTIFICATE-----Generated at Sun Dec 21 19:17:16 2025 by rpki-client