This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/b66125-6844-4a87-9bb5-af42623ea431/1/un1KwTROw43OmXaNeKEU6_fxfYU.mft File: un1KwTROw43OmXaNeKEU6_fxfYU.mft (raw, json) Hash identifier: zmh5iD79TCxV/KB0fu2YvU4SQkKFw9a/Eygu/gJzJqU= Subject key identifier: 53:01:F6:CF:79:C7:EE:A8:73:6E:F0:0A:51:F7:B2:0E:0A:72:E2:1A Authority key identifier: BA:7D:4A:C1:34:4E:C3:8D:CE:99:76:8D:78:A1:14:EB:F7:F1:7D:85 Certificate issuer: /CN=ba7d4ac1344ec38dce99768d78a114ebf7f17d85 Certificate serial: 019B70D992E8BED435A698726A3CE76607CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/un1KwTROw43OmXaNeKEU6_fxfYU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/b66125-6844-4a87-9bb5-af42623ea431/1/un1KwTROw43OmXaNeKEU6_fxfYU.mft Manifest number: 0E5C Signing time: Tue 30 Dec 2025 20:01:05 +0000 Manifest this update: Tue 30 Dec 2025 20:01:05 +0000 Manifest next update: Wed 31 Dec 2025 20:01:05 +0000 Files and hashes: 1: eJvxqWQVuJlIAcOu0zuhq-FEIwc.roa (hash: T9Btt+1WHrBsFsD5c6tC5d0RHMAv0qfav0ae3k59Hwg=) 2: un1KwTROw43OmXaNeKEU6_fxfYU.crl (hash: oggQOob9IdERYqUDUfCNXfrSOaNFhKp1GS8xz8a5Edc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/b66125-6844-4a87-9bb5-af42623ea431/1/un1KwTROw43OmXaNeKEU6_fxfYU.crl rsync://rpki.ripe.net/repository/DEFAULT/eb/b66125-6844-4a87-9bb5-af42623ea431/1/un1KwTROw43OmXaNeKEU6_fxfYU.mft rsync://rpki.ripe.net/repository/DEFAULT/un1KwTROw43OmXaNeKEU6_fxfYU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 31 Dec 2025 15:21:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:70:d9:92:e8:be:d4:35:a6:98:72:6a:3c:e7:66:07:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba7d4ac1344ec38dce99768d78a114ebf7f17d85 Validity Not Before: Dec 30 20:01:05 2025 GMT Not After : Dec 31 20:01:05 2025 GMT Subject: CN=5301f6cf79c7eea8736ef00a51f7b20e0a72e21a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:95:ee:0f:d9:2d:8e:ae:98:56:ef:93:3a:c8: 38:83:c5:66:ad:cc:2b:5d:d6:0d:47:8b:b4:e7:98: 66:c2:ba:f8:8a:9b:21:79:20:e3:1a:84:0f:62:37: 46:a4:93:bb:79:29:79:d3:71:02:a2:5d:13:53:7e: f9:fd:0e:c4:be:c6:a3:ab:ef:e7:a4:44:00:34:36: 85:51:0c:05:89:96:14:63:d2:e4:fa:a5:55:99:dc: ed:f7:74:37:89:09:31:11:32:b4:64:7b:0e:47:b9: ba:86:59:51:83:a8:f4:3c:eb:7f:10:99:0b:27:81: 3c:4d:31:44:fb:26:97:d2:ac:85:dc:42:d5:3f:ab: 65:a4:3e:49:45:a7:c6:b0:bd:e7:d1:c2:49:02:63: d8:94:90:df:29:01:df:65:e4:92:b7:fc:48:e0:fd: 01:23:24:de:0c:32:41:b8:d3:d2:02:38:c5:e1:6c: 93:23:e4:37:7a:49:e2:ae:61:9c:e3:b2:f2:4b:66: 97:1d:22:c3:ad:6a:2f:4c:53:92:ff:9c:ec:44:be: 0c:02:9d:89:30:dc:80:b8:de:2b:a9:db:76:68:e7: 81:6d:cd:e8:ff:b1:c3:f0:05:9a:96:bb:1f:86:e7: 90:df:13:d5:a0:d1:cc:0e:aa:86:27:e3:d0:44:4d: 1e:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:01:F6:CF:79:C7:EE:A8:73:6E:F0:0A:51:F7:B2:0E:0A:72:E2:1A X509v3 Authority Key Identifier: keyid:BA:7D:4A:C1:34:4E:C3:8D:CE:99:76:8D:78:A1:14:EB:F7:F1:7D:85 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/un1KwTROw43OmXaNeKEU6_fxfYU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/b66125-6844-4a87-9bb5-af42623ea431/1/un1KwTROw43OmXaNeKEU6_fxfYU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/b66125-6844-4a87-9bb5-af42623ea431/1/un1KwTROw43OmXaNeKEU6_fxfYU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 16:cb:79:ee:98:52:39:67:10:b2:79:80:78:44:6f:47:1d:9a: 55:40:2b:18:84:60:49:7d:d2:4c:f0:f3:b5:e0:23:0c:75:fb: 10:0d:79:57:2d:83:3e:a6:f1:4b:2a:e7:e0:2f:9b:66:21:c6: fd:65:52:07:cc:32:63:35:2a:b1:13:65:43:bb:7a:a5:00:29: 23:0e:5c:77:e1:c3:6c:dd:1f:5c:ec:5f:57:09:c5:15:5e:e6: f0:5c:00:d3:f9:51:c0:94:df:76:1d:af:65:4c:63:5c:d2:d2: 18:f3:c2:6e:21:41:2b:85:ca:c9:ca:07:8b:c9:8b:4b:e9:a0: 1f:77:bc:42:eb:02:1d:74:ce:b3:f5:f3:25:c5:d9:21:5f:83: fd:4a:e5:fe:f3:68:d5:44:3e:f6:02:1d:ae:04:da:23:5a:0e: 80:f3:8d:84:c1:47:a2:00:c4:16:80:1c:b7:58:15:30:16:70: 96:62:65:f2:5d:c8:d5:68:46:97:87:bb:9e:05:d8:f2:52:60: d7:cb:d9:26:5e:59:af:e1:cb:10:44:a5:55:aa:da:02:3c:38: c4:e7:e4:77:96:14:bc:76:6f:c8:b0:48:64:23:8d:f0:e7:3b: f8:6d:d3:87:95:96:62:98:ee:24:15:30:4b:e4:70:39:93:ab: f8:6a:6b:a2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtw2ZLovtQ1pphyajznZgfPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhN2Q0YWMxMzQ0ZWMzOGRjZTk5NzY4ZDc4YTExNGViZjdm MTdkODUwHhcNMjUxMjMwMjAwMTA1WhcNMjUxMjMxMjAwMTA1WjAzMTEwLwYDVQQD Eyg1MzAxZjZjZjc5YzdlZWE4NzM2ZWYwMGE1MWY3YjIwZTBhNzJlMjFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArZXuD9ktjq6YVu+TOsg4g8Vmrcwr XdYNR4u055hmwrr4ipsheSDjGoQPYjdGpJO7eSl503ECol0TU375/Q7Evsajq+/n pEQANDaFUQwFiZYUY9Lk+qVVmdzt93Q3iQkxETK0ZHsOR7m6hllRg6j0POt/EJkL J4E8TTFE+yaX0qyF3ELVP6tlpD5JRafGsL3n0cJJAmPYlJDfKQHfZeSSt/xI4P0B IyTeDDJBuNPSAjjF4WyTI+Q3eknirmGc47LyS2aXHSLDrWovTFOS/5zsRL4MAp2J MNyAuN4rqdt2aOeBbc3o/7HD8AWalrsfhueQ3xPVoNHMDqqGJ+PQRE0eJQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFMB9s95x+6oc27wClH3sg4KcuIaMB8GA1UdIwQY MBaAFLp9SsE0TsONzpl2jXihFOv38X2FMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdW4xS3dUUk93NDNPbVhhTmVLRVU2X2Z4ZllVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi9iNjYxMjUtNjg0NC00YTg3LTliYjUt YWY0MjYyM2VhNDMxLzEvdW4xS3dUUk93NDNPbVhhTmVLRVU2X2Z4ZllVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYi9iNjYxMjUtNjg0NC00YTg3LTliYjUtYWY0MjYyM2VhNDMx LzEvdW4xS3dUUk93NDNPbVhhTmVLRVU2X2Z4ZllVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFst57phS OWcQsnmAeERvRx2aVUArGIRgSX3STPDzteAjDHX7EA15Vy2DPqbxSyrn4C+bZiHG /WVSB8wyYzUqsRNlQ7t6pQApIw5cd+HDbN0fXOxfVwnFFV7m8FwA0/lRwJTfdh2v ZUxjXNLSGPPCbiFBK4XKycoHi8mLS+mgH3e8QusCHXTOs/XzJcXZIV+D/Url/vNo 1UQ+9gIdrgTaI1oOgPONhMFHogDEFoAct1gVMBZwlmJl8l3I1WhGl4e7ngXY8lJg 18vZJl5Zr+HLEESlVaraAjw4xOfkd5YUvHZvyLBIZCON8Oc7+G3Th5WWYpjuJBUw S+RwOZOr+Gprog== -----END CERTIFICATE-----Generated at Wed Dec 31 00:11:52 2025 by rpki-client