This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/e2a2b2-ab3c-4afb-8987-dd63f215c434/1/UtZhqUjyvzSQ6J2CUvLMyHR85cc.mft File: UtZhqUjyvzSQ6J2CUvLMyHR85cc.mft (raw, json) Hash identifier: wOyDKlbuFRGlpL148MsCJvoJFTNoZxYAQVyYIRZ24Lw= Subject key identifier: EB:CA:07:1B:78:A1:98:2E:BF:2F:F2:BB:E0:D3:96:EB:3C:59:B6:55 Authority key identifier: 52:D6:61:A9:48:F2:BF:34:90:E8:9D:82:52:F2:CC:C8:74:7C:E5:C7 Certificate issuer: /CN=52d661a948f2bf3490e89d8252f2ccc8747ce5c7 Certificate serial: 019AF23FBE85F3DF5045ADA122B916F72B9F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UtZhqUjyvzSQ6J2CUvLMyHR85cc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/e2a2b2-ab3c-4afb-8987-dd63f215c434/1/UtZhqUjyvzSQ6J2CUvLMyHR85cc.mft Manifest number: 153E Signing time: Sat 06 Dec 2025 06:00:54 +0000 Manifest this update: Sat 06 Dec 2025 06:00:54 +0000 Manifest next update: Sun 07 Dec 2025 06:00:54 +0000 Files and hashes: 1: En0AxaNswsA9xI4lqkSKkt-F7C0.roa (hash: q8FwSEiSjvslMUXDVxvqWzOjw6rMu6h87zO4Dcum1yM=) 2: UtZhqUjyvzSQ6J2CUvLMyHR85cc.crl (hash: CeOGhY9RrFSAOyZd8epyPNT7UFF/Hvftb6+qDYVCA9w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/e2a2b2-ab3c-4afb-8987-dd63f215c434/1/UtZhqUjyvzSQ6J2CUvLMyHR85cc.crl rsync://rpki.ripe.net/repository/DEFAULT/35/e2a2b2-ab3c-4afb-8987-dd63f215c434/1/UtZhqUjyvzSQ6J2CUvLMyHR85cc.mft rsync://rpki.ripe.net/repository/DEFAULT/UtZhqUjyvzSQ6J2CUvLMyHR85cc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:be:85:f3:df:50:45:ad:a1:22:b9:16:f7:2b:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52d661a948f2bf3490e89d8252f2ccc8747ce5c7 Validity Not Before: Dec 6 06:00:54 2025 GMT Not After : Dec 7 06:00:54 2025 GMT Subject: CN=ebca071b78a1982ebf2ff2bbe0d396eb3c59b655 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:42:63:d5:e1:db:4d:34:fc:cc:4e:71:62:94: 46:fe:00:b1:6d:2e:32:b2:5a:69:7a:de:96:fc:21: ad:a9:2f:c5:b1:38:b7:ca:13:d3:e8:69:93:9b:9e: 13:9f:bf:91:b2:3e:33:35:22:f3:ce:89:d4:6c:8c: de:f0:86:11:cc:7d:a4:eb:ac:79:5d:aa:8e:3e:b1: 44:55:aa:a4:21:8a:7b:0f:06:6a:94:4f:9a:ed:c1: 21:ac:10:04:88:aa:d5:a5:04:1e:5d:b4:1a:e6:40: 31:40:ea:c7:84:c3:a9:dc:60:48:ab:68:3a:19:e0: d6:21:7d:d2:c6:6f:a4:d2:5f:d6:03:56:49:eb:10: 4b:7e:c6:84:f5:5f:ed:61:83:97:ab:7d:41:90:6a: 9a:99:d7:a6:11:2b:87:08:a1:90:ee:a2:e6:62:70: 3a:21:01:d5:33:7c:9d:00:c2:9a:4c:80:cc:0e:cd: 62:9f:c6:e6:9b:93:20:7d:40:f7:dc:13:52:88:44: 07:89:7a:46:e4:34:c6:64:14:e7:9c:97:02:c6:18: 72:d4:dd:da:4f:18:ae:82:4f:5c:45:ff:0d:cf:0f: 13:a6:b2:be:82:8d:9e:1f:2f:25:4a:1c:43:3d:97: e7:7e:28:39:07:2e:f6:77:ce:90:12:cb:05:af:6c: 0b:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:CA:07:1B:78:A1:98:2E:BF:2F:F2:BB:E0:D3:96:EB:3C:59:B6:55 X509v3 Authority Key Identifier: keyid:52:D6:61:A9:48:F2:BF:34:90:E8:9D:82:52:F2:CC:C8:74:7C:E5:C7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UtZhqUjyvzSQ6J2CUvLMyHR85cc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e2a2b2-ab3c-4afb-8987-dd63f215c434/1/UtZhqUjyvzSQ6J2CUvLMyHR85cc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e2a2b2-ab3c-4afb-8987-dd63f215c434/1/UtZhqUjyvzSQ6J2CUvLMyHR85cc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 05:10:e6:1a:2d:05:5d:c1:01:6f:7f:3e:68:b3:70:52:19:a3: 5c:1f:cb:c3:25:f4:f1:cb:ba:8c:25:96:df:73:90:c7:69:5a: f6:80:bb:2b:64:17:6b:dc:a7:73:81:dc:e1:6a:1f:4b:2a:0a: 35:51:77:a1:8c:0d:70:07:7a:7d:4c:74:99:ad:7d:12:86:7b: 15:c8:37:89:69:74:62:75:04:d3:e6:31:ac:17:d7:d5:80:6f: da:58:76:ce:1c:6d:0c:31:0e:7b:a4:b9:30:b8:86:d8:91:ee: ce:0d:73:57:b4:83:24:88:d5:71:ac:bd:09:ec:c3:29:ab:1f: 08:11:40:db:2d:b2:21:0d:a7:b7:3e:83:a3:62:04:21:f5:2e: 7a:5d:45:a2:52:69:2c:0a:d9:ef:13:65:ae:6d:2b:04:ee:6c: 63:b8:8d:aa:a8:ea:c1:57:57:33:a9:76:a0:45:f6:f3:b1:3d: 3a:ef:2c:fc:ad:2a:a2:71:9c:64:66:c2:d0:be:7a:22:10:33: 12:ea:20:d3:76:59:32:ec:b8:02:d9:9a:fb:a0:6e:16:2d:85: 9e:e1:c8:87:77:33:7c:0d:2a:b3:23:c4:fc:d2:fa:2b:b8:a9: 14:0f:50:69:e2:5f:4e:93:57:60:aa:74:f7:5f:8f:6a:01:16: 83:86:43:79 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP76F899QRa2hIrkW9yufMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyZDY2MWE5NDhmMmJmMzQ5MGU4OWQ4MjUyZjJjY2M4NzQ3 Y2U1YzcwHhcNMjUxMjA2MDYwMDU0WhcNMjUxMjA3MDYwMDU0WjAzMTEwLwYDVQQD EyhlYmNhMDcxYjc4YTE5ODJlYmYyZmYyYmJlMGQzOTZlYjNjNTliNjU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA00Jj1eHbTTT8zE5xYpRG/gCxbS4y slppet6W/CGtqS/FsTi3yhPT6GmTm54Tn7+Rsj4zNSLzzonUbIze8IYRzH2k66x5 XaqOPrFEVaqkIYp7DwZqlE+a7cEhrBAEiKrVpQQeXbQa5kAxQOrHhMOp3GBIq2g6 GeDWIX3Sxm+k0l/WA1ZJ6xBLfsaE9V/tYYOXq31BkGqamdemESuHCKGQ7qLmYnA6 IQHVM3ydAMKaTIDMDs1in8bmm5MgfUD33BNSiEQHiXpG5DTGZBTnnJcCxhhy1N3a Txiugk9cRf8Nzw8TprK+go2eHy8lShxDPZfnfig5By72d86QEssFr2wL1QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOvKBxt4oZguvy/yu+DTlus8WbZVMB8GA1UdIwQY MBaAFFLWYalI8r80kOidglLyzMh0fOXHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXRaaHFVanl2elNRNkoyQ1V2TE15SFI4NWNjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9lMmEyYjItYWIzYy00YWZiLTg5ODct ZGQ2M2YyMTVjNDM0LzEvVXRaaHFVanl2elNRNkoyQ1V2TE15SFI4NWNjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS9lMmEyYjItYWIzYy00YWZiLTg5ODctZGQ2M2YyMTVjNDM0 LzEvVXRaaHFVanl2elNRNkoyQ1V2TE15SFI4NWNjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABRDmGi0F XcEBb38+aLNwUhmjXB/LwyX08cu6jCWW33OQx2la9oC7K2QXa9ync4Hc4WofSyoK NVF3oYwNcAd6fUx0ma19EoZ7Fcg3iWl0YnUE0+YxrBfX1YBv2lh2zhxtDDEOe6S5 MLiG2JHuzg1zV7SDJIjVcay9CezDKasfCBFA2y2yIQ2ntz6Do2IEIfUuel1FolJp LArZ7xNlrm0rBO5sY7iNqqjqwVdXM6l2oEX287E9Ou8s/K0qonGcZGbC0L56IhAz Euog03ZZMuy4Atma+6BuFi2FnuHIh3czfA0qsyPE/NL6K7ipFA9QaeJfTpNXYKp0 91+PagEWg4ZDeQ== -----END CERTIFICATE-----Generated at Sat Dec 6 12:04:53 2025 by rpki-client