This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.mft File: U7-Y1TUiqpVwgf3sKLFyCEOU8RI.mft (raw, json) Hash identifier: Mmd84+47r9CCGLupfjRtlQMrwEKr+DxDZUTAu1A/0Mg= Subject key identifier: 5F:B7:F1:11:A1:CB:46:81:E1:87:6F:E7:C2:7D:BB:47:72:A5:70:44 Authority key identifier: 53:BF:98:D5:35:22:AA:95:70:81:FD:EC:28:B1:72:08:43:94:F1:12 Certificate issuer: /CN=53bf98d53522aa957081fdec28b172084394f112 Certificate serial: 019AF0F5DB6C7A2FD8878827C89DC62E48B1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.mft Manifest number: 0F76 Signing time: Sat 06 Dec 2025 00:00:35 +0000 Manifest this update: Sat 06 Dec 2025 00:00:35 +0000 Manifest next update: Sun 07 Dec 2025 00:00:35 +0000 Files and hashes: 1: U7-Y1TUiqpVwgf3sKLFyCEOU8RI.crl (hash: 8tc+vNgeIw6/nZgK5Ko84et8dE+zPyJ/kJXsFXlNUZQ=) 2: tJ6oFmHPDNKseUEyL7GH7vyhvz4.roa (hash: DBrWjbsghHkZ5x5yFhux0SY16RKyxiS2uZ1W0pIOzNE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.crl rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.mft rsync://rpki.ripe.net/repository/DEFAULT/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 00:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:f5:db:6c:7a:2f:d8:87:88:27:c8:9d:c6:2e:48:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53bf98d53522aa957081fdec28b172084394f112 Validity Not Before: Dec 6 00:00:35 2025 GMT Not After : Dec 7 00:00:35 2025 GMT Subject: CN=5fb7f111a1cb4681e1876fe7c27dbb4772a57044 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:c6:45:1f:64:f0:4a:16:d9:1e:13:91:4b:f6: 39:3e:bb:d4:3b:54:5c:fa:54:4d:61:e3:33:13:6b: b2:fd:f1:71:6b:0e:24:ae:ad:87:e9:9a:01:e6:0c: e2:24:36:d4:b2:bf:5e:70:5e:62:1d:24:d7:cb:c4: 30:02:24:95:b0:bb:36:a9:28:50:36:60:45:7e:0d: 97:a6:0c:91:53:e4:4c:9b:2b:2c:c2:c9:39:9f:d4: 70:b6:bc:ea:30:57:81:28:74:46:79:86:b2:ac:b8: 0b:9d:85:05:9d:38:32:eb:80:ae:87:d1:57:5a:63: 98:cb:b5:c0:ab:3f:57:b7:4f:64:7c:36:3f:dc:d5: c5:24:7a:21:89:1d:97:66:70:47:66:eb:18:7a:ce: ad:1f:21:5f:18:bb:aa:7e:84:29:20:7c:01:d5:7e: f8:ae:93:39:0d:e7:9f:8d:3b:6a:a6:04:24:aa:5d: de:44:84:92:cb:0a:e4:bf:e3:d9:cd:ca:f1:2b:17: 67:2d:c1:fc:62:12:c6:b8:b1:01:0b:cc:d5:6a:cf: bb:96:a9:e4:1b:90:45:fb:a0:06:64:b0:91:b7:3d: 0f:69:9e:bb:5f:8c:37:7d:ad:bc:22:2f:34:d6:08: 00:5c:fe:c2:ff:11:f2:75:90:68:a0:e4:9f:b4:21: bf:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:B7:F1:11:A1:CB:46:81:E1:87:6F:E7:C2:7D:BB:47:72:A5:70:44 X509v3 Authority Key Identifier: keyid:53:BF:98:D5:35:22:AA:95:70:81:FD:EC:28:B1:72:08:43:94:F1:12 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 15:0d:59:b3:0c:88:df:33:bd:28:c6:8e:83:e8:7d:62:d6:80: 23:cc:62:6d:2b:c7:1e:23:d2:01:6d:88:9a:6a:81:04:25:58: 64:f0:2f:6d:47:53:24:67:a4:08:15:f4:98:47:e8:5c:87:24: 51:16:9b:02:5a:60:e6:5a:a9:6c:55:79:6b:69:b8:c2:2c:43: a4:35:30:ab:6b:5c:6e:26:fa:a4:9c:e3:d7:0a:0a:c7:05:6c: 6e:f0:8b:3a:49:1e:cf:c7:d1:04:05:51:23:bb:04:53:0c:05: 73:d4:eb:bf:39:a9:15:4f:c0:0b:59:9a:9c:9c:45:0a:42:5e: b0:73:8b:69:d4:a5:c2:ef:8b:df:fe:4b:18:5c:07:51:dd:56: c5:12:40:5b:a9:e1:ff:ab:57:be:3a:49:de:a2:10:85:1a:bd: fe:ca:a7:00:70:7d:53:47:d2:a8:09:e3:03:c4:c3:27:67:73: ab:31:7c:83:45:84:00:03:b4:79:09:dc:24:e1:9b:70:5f:cd: 7d:5d:c8:4e:16:15:72:a8:5c:28:16:6b:42:65:94:9b:d7:63: f5:8d:00:55:29:03:57:bc:73:13:a0:87:51:4e:e3:78:34:06: fd:32:ef:c6:75:9b:4f:41:92:1b:a7:33:04:03:b2:36:cf:fb: 68:e8:b2:e3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrw9dtsei/Yh4gnyJ3GLkixMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzYmY5OGQ1MzUyMmFhOTU3MDgxZmRlYzI4YjE3MjA4NDM5 NGYxMTIwHhcNMjUxMjA2MDAwMDM1WhcNMjUxMjA3MDAwMDM1WjAzMTEwLwYDVQQD Eyg1ZmI3ZjExMWExY2I0NjgxZTE4NzZmZTdjMjdkYmI0NzcyYTU3MDQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlMZFH2TwShbZHhORS/Y5PrvUO1Rc +lRNYeMzE2uy/fFxaw4krq2H6ZoB5gziJDbUsr9ecF5iHSTXy8QwAiSVsLs2qShQ NmBFfg2XpgyRU+RMmysswsk5n9RwtrzqMFeBKHRGeYayrLgLnYUFnTgy64Cuh9FX WmOYy7XAqz9Xt09kfDY/3NXFJHohiR2XZnBHZusYes6tHyFfGLuqfoQpIHwB1X74 rpM5DeefjTtqpgQkql3eRISSywrkv+PZzcrxKxdnLcH8YhLGuLEBC8zVas+7lqnk G5BF+6AGZLCRtz0PaZ67X4w3fa28Ii801ggAXP7C/xHydZBooOSftCG/KwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF+38RGhy0aB4Ydv58J9u0dypXBEMB8GA1UdIwQY MBaAFFO/mNU1IqqVcIH97CixcghDlPESMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVTctWTFUVWlxcFZ3Z2Yzc0tMRnlDRU9VOFJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi8wNjNiMWItN2JkZS00OGNjLWIxYWMt ZmFkNzA3ZDljNGY2LzEvVTctWTFUVWlxcFZ3Z2Yzc0tMRnlDRU9VOFJJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi8wNjNiMWItN2JkZS00OGNjLWIxYWMtZmFkNzA3ZDljNGY2 LzEvVTctWTFUVWlxcFZ3Z2Yzc0tMRnlDRU9VOFJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFQ1ZswyI 3zO9KMaOg+h9YtaAI8xibSvHHiPSAW2ImmqBBCVYZPAvbUdTJGekCBX0mEfoXIck URabAlpg5lqpbFV5a2m4wixDpDUwq2tcbib6pJzj1woKxwVsbvCLOkkez8fRBAVR I7sEUwwFc9TrvzmpFU/AC1manJxFCkJesHOLadSlwu+L3/5LGFwHUd1WxRJAW6nh /6tXvjpJ3qIQhRq9/sqnAHB9U0fSqAnjA8TDJ2dzqzF8g0WEAAO0eQncJOGbcF/N fV3IThYVcqhcKBZrQmWUm9dj9Y0AVSkDV7xzE6CHUU7jeDQG/TLvxnWbT0GSG6cz BAOyNs/7aOiy4w== -----END CERTIFICATE-----Generated at Sat Dec 6 07:23:29 2025 by rpki-client