This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.mft File: uFsMinWJOk-OHvDZpNQUeNizMng.mft (raw, json) Hash identifier: CGGNJhbuhyG33oE89WX0riMIpQ2/hvPUDtEfnjlFiTM= Subject key identifier: 0E:2A:35:A2:BB:3C:75:B3:4C:48:17:58:F5:31:43:2F:B3:BA:BB:CE Authority key identifier: B8:5B:0C:8A:75:89:3A:4F:8E:1E:F0:D9:A4:D4:14:78:D8:B3:32:78 Certificate issuer: /CN=b85b0c8a75893a4f8e1ef0d9a4d41478d8b33278 Certificate serial: 019B4091C42D58A27389278333A6C391B06F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uFsMinWJOk-OHvDZpNQUeNizMng.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.mft Manifest number: 16E0 Signing time: Sun 21 Dec 2025 11:00:53 +0000 Manifest this update: Sun 21 Dec 2025 11:00:53 +0000 Manifest next update: Mon 22 Dec 2025 11:00:53 +0000 Files and hashes: 1: FAbnnF69oHTmqk-_EL74zctuaA4.roa (hash: fltdyHSTKiTHvNl3z1Whswl3hhYadpjXzd/kAG+oHEc=) 2: aJV7GbLDrd2CQzyoG7J6OnTP5DY.roa (hash: RYvSIhl4EMxqFZiyrQ0zAL7ZWanzg67h6dO8KAffWY0=) 3: uFsMinWJOk-OHvDZpNQUeNizMng.crl (hash: 7uNTM8oj/WAQ3FGZe7SbHiUCslcFjlIzqH04jTpZ/SA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.mft rsync://rpki.ripe.net/repository/DEFAULT/uFsMinWJOk-OHvDZpNQUeNizMng.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 11:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:40:91:c4:2d:58:a2:73:89:27:83:33:a6:c3:91:b0:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b85b0c8a75893a4f8e1ef0d9a4d41478d8b33278 Validity Not Before: Dec 21 11:00:53 2025 GMT Not After : Dec 22 11:00:53 2025 GMT Subject: CN=0e2a35a2bb3c75b34c481758f531432fb3babbce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:6e:cb:20:3b:0a:d3:16:79:dc:65:db:81:c2: 41:67:9d:91:1e:1d:a7:59:17:88:21:66:5e:db:23: b1:81:25:9e:f2:2d:ae:71:89:d0:85:94:ce:9a:42: 8b:16:dd:be:4e:27:4c:a0:45:47:00:1f:53:76:21: ed:7f:6f:8b:48:56:e5:1d:ab:8d:39:7d:6e:77:c6: 20:2e:8e:9b:12:d7:8a:f4:88:c1:a7:c8:c2:e9:47: 67:a4:6e:69:cd:99:f8:39:9e:07:92:63:19:9c:76: 7a:3c:b6:31:f9:5b:32:9f:3d:8e:cd:fd:15:1e:41: 30:30:51:a9:3f:94:37:64:e0:6c:d5:0b:d6:e3:6d: 19:92:19:bf:f1:b9:b9:2d:4b:47:bf:0b:50:71:3c: 44:7c:89:da:e7:f8:64:8a:81:a2:73:a7:31:f1:d2: 80:92:09:3c:2d:38:cc:92:3e:0b:e9:c3:46:25:9e: 42:8c:df:80:61:70:73:f4:a2:c8:50:4d:6f:49:b7: 45:8a:8e:9c:63:02:11:65:42:bd:c2:7e:a2:4b:ff: a1:9b:08:89:4c:7b:f3:a1:c6:ca:02:b0:77:13:ad: 79:d5:4a:6b:9c:c6:07:dd:a4:1f:45:ad:91:d9:a8: 01:e2:71:bf:7e:28:1c:18:6f:1b:8b:1a:d9:f4:aa: 4f:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:2A:35:A2:BB:3C:75:B3:4C:48:17:58:F5:31:43:2F:B3:BA:BB:CE X509v3 Authority Key Identifier: keyid:B8:5B:0C:8A:75:89:3A:4F:8E:1E:F0:D9:A4:D4:14:78:D8:B3:32:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uFsMinWJOk-OHvDZpNQUeNizMng.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/8819e2-c4e3-4bce-a61c-305d41d53a65/1/uFsMinWJOk-OHvDZpNQUeNizMng.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a8:2a:b5:bc:22:32:4c:7a:ca:db:c9:0b:e6:b9:57:13:51:7d: 2f:c9:2a:33:5f:29:ba:66:a6:ce:da:43:80:c1:19:49:f6:fd: 66:4e:6a:f3:2c:9f:0c:89:bd:28:f0:b8:de:4e:9b:88:fe:b9: 93:f9:b3:04:f9:6d:40:b9:13:b1:f9:48:62:20:e2:44:9b:84: 5a:41:f1:31:a8:f1:af:7f:96:76:c0:13:62:f4:09:bb:d3:88: 68:77:40:1d:25:43:f1:d8:35:08:fe:df:5a:d2:48:82:02:51: 5f:ae:85:61:03:a9:70:18:81:31:67:d0:87:b8:75:51:46:95: c3:3a:fd:be:89:65:23:79:d0:f4:17:40:8a:0c:bd:c7:4f:98: fa:17:5a:6d:68:94:78:70:c6:77:6c:4a:f5:54:d3:18:9a:eb: 3e:27:bb:a9:d6:4c:bf:81:a7:41:f1:2d:da:69:05:69:06:20: 96:a0:79:75:1b:72:74:bc:08:b6:a2:64:1c:d0:a7:e0:dd:ec: 35:06:02:de:85:b1:a6:93:91:09:77:dd:a5:e1:a2:f4:cb:c4: bd:56:84:b8:90:0a:16:c4:53:13:97:65:72:db:61:cf:bd:cb: 31:ef:b2:a8:92:7c:fc:2f:fe:d2:47:45:b7:f6:d1:d9:d5:52: 64:6f:4c:98 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtAkcQtWKJziSeDM6bDkbBvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI4NWIwYzhhNzU4OTNhNGY4ZTFlZjBkOWE0ZDQxNDc4ZDhi MzMyNzgwHhcNMjUxMjIxMTEwMDUzWhcNMjUxMjIyMTEwMDUzWjAzMTEwLwYDVQQD EygwZTJhMzVhMmJiM2M3NWIzNGM0ODE3NThmNTMxNDMyZmIzYmFiYmNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp27LIDsK0xZ53GXbgcJBZ52RHh2n WReIIWZe2yOxgSWe8i2ucYnQhZTOmkKLFt2+TidMoEVHAB9TdiHtf2+LSFblHauN OX1ud8YgLo6bEteK9IjBp8jC6UdnpG5pzZn4OZ4HkmMZnHZ6PLYx+Vsynz2Ozf0V HkEwMFGpP5Q3ZOBs1QvW420Zkhm/8bm5LUtHvwtQcTxEfIna5/hkioGic6cx8dKA kgk8LTjMkj4L6cNGJZ5CjN+AYXBz9KLIUE1vSbdFio6cYwIRZUK9wn6iS/+hmwiJ THvzocbKArB3E6151UprnMYH3aQfRa2R2agB4nG/figcGG8bixrZ9KpPcQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA4qNaK7PHWzTEgXWPUxQy+zurvOMB8GA1UdIwQY MBaAFLhbDIp1iTpPjh7w2aTUFHjYszJ4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdUZzTWluV0pPay1PSHZEWnBOUVVlTml6TW5nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC84ODE5ZTItYzRlMy00YmNlLWE2MWMt MzA1ZDQxZDUzYTY1LzEvdUZzTWluV0pPay1PSHZEWnBOUVVlTml6TW5nLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC84ODE5ZTItYzRlMy00YmNlLWE2MWMtMzA1ZDQxZDUzYTY1 LzEvdUZzTWluV0pPay1PSHZEWnBOUVVlTml6TW5nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqCq1vCIy THrK28kL5rlXE1F9L8kqM18pumamztpDgMEZSfb9Zk5q8yyfDIm9KPC43k6biP65 k/mzBPltQLkTsflIYiDiRJuEWkHxMajxr3+WdsATYvQJu9OIaHdAHSVD8dg1CP7f WtJIggJRX66FYQOpcBiBMWfQh7h1UUaVwzr9vollI3nQ9BdAigy9x0+Y+hdabWiU eHDGd2xK9VTTGJrrPie7qdZMv4GnQfEt2mkFaQYglqB5dRtydLwItqJkHNCn4N3s NQYC3oWxppORCXfdpeGi9MvEvVaEuJAKFsRTE5dlctthz73LMe+yqJJ8/C/+0kdF t/bR2dVSZG9MmA== -----END CERTIFICATE-----Generated at Sun Dec 21 17:21:49 2025 by rpki-client