This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/b66125-6844-4a87-9bb5-af42623ea431/1/un1KwTROw43OmXaNeKEU6_fxfYU.mft File: un1KwTROw43OmXaNeKEU6_fxfYU.mft (raw, json) Hash identifier: y1bQw93IcWpR5QOq08gH2dwb7mtJzGsPcybllbq5k+w= Subject key identifier: 8D:C5:B6:6D:DE:9F:67:42:E6:9D:A7:5B:B1:1D:B7:C4:8B:1D:66:8D Authority key identifier: BA:7D:4A:C1:34:4E:C3:8D:CE:99:76:8D:78:A1:14:EB:F7:F1:7D:85 Certificate issuer: /CN=ba7d4ac1344ec38dce99768d78a114ebf7f17d85 Certificate serial: 019B3EA3BD5F8DF9B6C6C9C3DC0881DF8137 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/un1KwTROw43OmXaNeKEU6_fxfYU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/b66125-6844-4a87-9bb5-af42623ea431/1/un1KwTROw43OmXaNeKEU6_fxfYU.mft Manifest number: 0E42 Signing time: Sun 21 Dec 2025 02:01:16 +0000 Manifest this update: Sun 21 Dec 2025 02:01:16 +0000 Manifest next update: Mon 22 Dec 2025 02:01:16 +0000 Files and hashes: 1: eJvxqWQVuJlIAcOu0zuhq-FEIwc.roa (hash: T9Btt+1WHrBsFsD5c6tC5d0RHMAv0qfav0ae3k59Hwg=) 2: un1KwTROw43OmXaNeKEU6_fxfYU.crl (hash: Omoh9J6em9KnzO2zroRHFouS6Do3JjQIL2OdyGbeZuc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/b66125-6844-4a87-9bb5-af42623ea431/1/un1KwTROw43OmXaNeKEU6_fxfYU.crl rsync://rpki.ripe.net/repository/DEFAULT/eb/b66125-6844-4a87-9bb5-af42623ea431/1/un1KwTROw43OmXaNeKEU6_fxfYU.mft rsync://rpki.ripe.net/repository/DEFAULT/un1KwTROw43OmXaNeKEU6_fxfYU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3e:a3:bd:5f:8d:f9:b6:c6:c9:c3:dc:08:81:df:81:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba7d4ac1344ec38dce99768d78a114ebf7f17d85 Validity Not Before: Dec 21 02:01:16 2025 GMT Not After : Dec 22 02:01:16 2025 GMT Subject: CN=8dc5b66dde9f6742e69da75bb11db7c48b1d668d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:db:75:7a:9a:45:d5:28:07:ec:11:63:63:c0: e9:5b:4a:bf:90:94:b7:86:46:58:d4:0f:41:c6:93: e9:35:2f:3e:be:3a:29:2f:96:1f:de:11:b6:ef:cd: c6:d6:18:d7:7f:3d:e9:06:6a:6c:fe:e4:83:1e:51: fd:32:63:91:e1:6f:0f:83:fd:34:01:75:99:93:3c: 85:30:5d:42:77:06:fb:e9:61:e5:9f:a9:2f:cf:63: 95:f7:82:4b:23:cd:2e:1c:8a:b9:0f:3d:c8:4f:a0: 39:d0:fa:28:45:f9:33:05:47:0f:ba:e4:1c:a0:54: 45:75:c1:7d:76:f2:5a:6b:18:ec:21:ce:5a:77:c5: c8:b3:b1:89:4e:ac:8c:25:1f:ae:8a:08:12:b9:e1: 06:e4:b6:d4:fd:65:62:ef:6f:55:7c:b5:1e:ab:bd: 98:c6:b2:1c:a2:57:08:47:ff:4f:e4:59:7a:04:0f: 0e:3f:72:af:cb:bb:be:59:c2:39:95:3c:dc:03:ae: d1:fd:c5:e5:f1:f5:5d:cc:ee:59:2f:f6:3f:d2:b9: 91:1f:25:34:15:40:f2:72:40:25:f0:69:76:bf:9b: 70:26:82:ae:cd:9c:f5:bb:97:b9:e5:52:17:45:95: af:4c:56:87:f7:37:4b:5a:45:77:a2:26:d4:82:2c: e3:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:C5:B6:6D:DE:9F:67:42:E6:9D:A7:5B:B1:1D:B7:C4:8B:1D:66:8D X509v3 Authority Key Identifier: keyid:BA:7D:4A:C1:34:4E:C3:8D:CE:99:76:8D:78:A1:14:EB:F7:F1:7D:85 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/un1KwTROw43OmXaNeKEU6_fxfYU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/b66125-6844-4a87-9bb5-af42623ea431/1/un1KwTROw43OmXaNeKEU6_fxfYU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/b66125-6844-4a87-9bb5-af42623ea431/1/un1KwTROw43OmXaNeKEU6_fxfYU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 99:39:44:34:91:6b:48:31:56:aa:68:f0:86:b5:5e:48:dd:3c: 53:d8:11:e6:35:83:b0:16:06:b4:e7:ab:e1:3f:c1:07:7b:5d: ed:b4:7e:a3:ef:10:7a:ea:d1:c2:4f:e4:74:f1:c4:26:82:84: 54:92:e9:87:66:85:5c:01:06:7e:54:58:8b:d2:41:ed:83:7e: d3:59:8a:aa:3c:0e:f7:c0:66:89:7e:d9:86:0b:25:9c:73:11: 6f:19:eb:bc:18:a6:1a:5b:3f:ab:60:f6:dd:8a:b7:6b:f9:d7: 16:8c:f9:8a:96:c7:4d:23:99:20:8d:27:e5:d5:3b:62:51:85: 54:94:03:8a:1e:b3:c2:ce:f4:e7:d7:5b:b9:31:c4:dc:b0:27: 49:80:4d:db:e8:ee:6f:80:28:ad:c6:31:e5:6a:50:20:e3:4f: dc:ae:13:68:b8:61:6b:4e:d0:98:eb:bf:1b:ed:4d:59:59:c9: 66:d0:45:88:b5:e8:27:0d:02:44:44:bf:04:c0:a6:91:d3:af: 32:01:cc:be:f5:94:63:5f:56:63:2c:8b:19:3d:36:12:3c:da: 8e:ae:e5:10:b0:2b:8d:80:a2:22:4a:01:4b:14:6e:9a:99:68: b6:5c:a8:f6:47:0f:7b:bc:f9:12:0b:1b:8b:99:e8:73:c8:78: 4d:13:e4:1e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs+o71fjfm2xsnD3AiB34E3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhN2Q0YWMxMzQ0ZWMzOGRjZTk5NzY4ZDc4YTExNGViZjdm MTdkODUwHhcNMjUxMjIxMDIwMTE2WhcNMjUxMjIyMDIwMTE2WjAzMTEwLwYDVQQD Eyg4ZGM1YjY2ZGRlOWY2NzQyZTY5ZGE3NWJiMTFkYjdjNDhiMWQ2NjhkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvtt1eppF1SgH7BFjY8DpW0q/kJS3 hkZY1A9BxpPpNS8+vjopL5Yf3hG2783G1hjXfz3pBmps/uSDHlH9MmOR4W8Pg/00 AXWZkzyFMF1Cdwb76WHln6kvz2OV94JLI80uHIq5Dz3IT6A50PooRfkzBUcPuuQc oFRFdcF9dvJaaxjsIc5ad8XIs7GJTqyMJR+uiggSueEG5LbU/WVi729VfLUeq72Y xrIcolcIR/9P5Fl6BA8OP3Kvy7u+WcI5lTzcA67R/cXl8fVdzO5ZL/Y/0rmRHyU0 FUDyckAl8Gl2v5twJoKuzZz1u5e55VIXRZWvTFaH9zdLWkV3oibUgizjCwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI3Ftm3en2dC5p2nW7Edt8SLHWaNMB8GA1UdIwQY MBaAFLp9SsE0TsONzpl2jXihFOv38X2FMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdW4xS3dUUk93NDNPbVhhTmVLRVU2X2Z4ZllVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi9iNjYxMjUtNjg0NC00YTg3LTliYjUt YWY0MjYyM2VhNDMxLzEvdW4xS3dUUk93NDNPbVhhTmVLRVU2X2Z4ZllVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYi9iNjYxMjUtNjg0NC00YTg3LTliYjUtYWY0MjYyM2VhNDMx LzEvdW4xS3dUUk93NDNPbVhhTmVLRVU2X2Z4ZllVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmTlENJFr SDFWqmjwhrVeSN08U9gR5jWDsBYGtOer4T/BB3td7bR+o+8QeurRwk/kdPHEJoKE VJLph2aFXAEGflRYi9JB7YN+01mKqjwO98BmiX7ZhgslnHMRbxnrvBimGls/q2D2 3Yq3a/nXFoz5ipbHTSOZII0n5dU7YlGFVJQDih6zws7059dbuTHE3LAnSYBN2+ju b4AorcYx5WpQIONP3K4TaLhha07QmOu/G+1NWVnJZtBFiLXoJw0CRES/BMCmkdOv MgHMvvWUY19WYyyLGT02Ejzajq7lELArjYCiIkoBSxRumplotlyo9kcPe7z5Egsb i5noc8h4TRPkHg== -----END CERTIFICATE-----Generated at Sun Dec 21 09:17:01 2025 by rpki-client