This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft File: UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft (raw, json) Hash identifier: HO7pvznw55m0qWVrN9o6TnCOSlgu5XBCrsQjAjZk464= Subject key identifier: 6F:E1:3A:F3:45:D8:E3:F3:C2:69:3C:5F:B8:96:D7:06:19:32:9C:BE Authority key identifier: 52:A6:5C:62:84:83:A7:56:68:8B:B1:58:C2:8A:B7:C0:D4:7D:E2:7C Certificate issuer: /CN=52a65c628483a756688bb158c28ab7c0d47de27c Certificate serial: 019AF19AC62F7FA0F9DE3C2FE2BA5AF396F6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft Manifest number: 0533 Signing time: Sat 06 Dec 2025 03:00:43 +0000 Manifest this update: Sat 06 Dec 2025 03:00:43 +0000 Manifest next update: Sun 07 Dec 2025 03:00:43 +0000 Files and hashes: 1: UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl (hash: 8tAtfyh1+LVCjFtWO0W3DqwgYwZI9cw1D1SXMG8eTQY=) 2: tqDHXiS7i5dxh3CeCoDJkGQqezg.roa (hash: l6w/oRDzimMT8gSmQ7FtqRNlVcpqgstHkEfCIU2SJhE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9a:c6:2f:7f:a0:f9:de:3c:2f:e2:ba:5a:f3:96:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52a65c628483a756688bb158c28ab7c0d47de27c Validity Not Before: Dec 6 03:00:43 2025 GMT Not After : Dec 7 03:00:43 2025 GMT Subject: CN=6fe13af345d8e3f3c2693c5fb896d70619329cbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:69:d6:79:cf:ba:86:c8:a6:56:0a:c6:d3:7b: b9:71:0d:c9:49:6a:e1:0e:63:33:b4:03:47:b4:51: bf:a9:a4:34:0d:65:b8:5e:3a:32:e7:2b:a4:bc:25: 37:7e:7a:88:f6:53:b6:a4:90:fb:73:99:d6:26:68: 29:3e:71:26:25:37:bf:00:3a:d9:e3:29:21:0b:0f: a4:35:dc:40:ca:ae:62:02:47:26:40:3a:21:0e:89: 07:3b:f0:67:10:fd:44:bc:c7:76:a8:36:b2:7c:b3: 77:46:0a:2b:9a:42:c6:29:cb:bd:b3:af:8e:12:58: 17:a4:0d:bb:23:4d:61:d5:2c:8d:29:01:4a:61:0e: a9:4d:1d:5b:36:b2:84:41:3b:f4:9d:b5:09:f9:72: d5:97:86:c1:4e:b1:31:da:a2:4a:3d:06:58:5d:bb: 3a:0e:04:6a:e4:b8:cf:7a:b7:da:dd:3d:53:06:c3: f1:a4:95:e4:25:12:c6:33:fc:5b:16:e2:b3:92:2c: 91:e7:59:fe:81:c2:62:f3:4c:a0:8a:86:2e:57:d5: ea:5e:5e:3e:7e:71:84:b3:5e:1d:4d:c8:db:12:47: 37:22:d9:d8:ef:74:8a:c2:be:6d:ab:35:74:f0:a1: de:15:da:1a:df:d7:98:4c:aa:cd:df:96:00:b8:c5: b9:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:E1:3A:F3:45:D8:E3:F3:C2:69:3C:5F:B8:96:D7:06:19:32:9C:BE X509v3 Authority Key Identifier: keyid:52:A6:5C:62:84:83:A7:56:68:8B:B1:58:C2:8A:B7:C0:D4:7D:E2:7C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 51:ee:c5:cc:dc:8d:f1:97:62:49:7a:25:f3:55:5c:b8:4f:8d: 0f:b2:d3:91:df:7a:7d:16:be:ef:1a:67:4e:ad:a4:b1:71:9b: fd:2d:f2:32:d2:bc:5d:c5:be:32:44:fb:b6:b1:65:22:ac:88: 1d:a3:b4:0e:80:8e:8b:53:44:30:b7:f0:ee:4e:48:80:16:9e: 57:4e:2c:1a:f9:69:60:29:72:f1:37:73:f9:71:76:d8:6b:60: 22:d1:b7:d2:5a:b3:a3:80:ae:69:3d:37:d6:8b:15:4e:d3:dc: c1:8b:b3:d1:22:5b:cb:de:57:d9:ac:1f:8a:8b:c4:1a:7d:4c: a3:13:8c:46:c6:35:b2:64:a5:eb:c3:fc:51:c5:6e:f5:f8:09: c6:5c:1c:d5:e2:47:95:9a:e4:69:28:cd:82:7c:f5:d2:6b:35: c5:8f:70:75:ff:68:52:e0:0f:db:ee:42:e8:7b:53:7c:44:2a: 9c:77:b2:64:c3:05:27:43:0c:03:f9:65:48:7e:2e:37:67:f1: 9f:e2:fe:93:fb:b4:40:28:a0:57:f8:62:73:d0:25:a9:25:d0: d7:31:83:93:c7:21:a6:25:24:7b:c9:7a:7d:6b:42:57:bf:52: e8:92:82:1e:93:e3:87:59:c4:6a:b1:db:39:bc:51:80:73:c4: 7b:26:d5:c8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmsYvf6D53jwv4rpa85b2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyYTY1YzYyODQ4M2E3NTY2ODhiYjE1OGMyOGFiN2MwZDQ3 ZGUyN2MwHhcNMjUxMjA2MDMwMDQzWhcNMjUxMjA3MDMwMDQzWjAzMTEwLwYDVQQD Eyg2ZmUxM2FmMzQ1ZDhlM2YzYzI2OTNjNWZiODk2ZDcwNjE5MzI5Y2JlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw2nWec+6hsimVgrG03u5cQ3JSWrh DmMztANHtFG/qaQ0DWW4Xjoy5yukvCU3fnqI9lO2pJD7c5nWJmgpPnEmJTe/ADrZ 4ykhCw+kNdxAyq5iAkcmQDohDokHO/BnEP1EvMd2qDayfLN3RgormkLGKcu9s6+O ElgXpA27I01h1SyNKQFKYQ6pTR1bNrKEQTv0nbUJ+XLVl4bBTrEx2qJKPQZYXbs6 DgRq5LjPerfa3T1TBsPxpJXkJRLGM/xbFuKzkiyR51n+gcJi80ygioYuV9XqXl4+ fnGEs14dTcjbEkc3ItnY73SKwr5tqzV08KHeFdoa39eYTKrN35YAuMW5uQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG/hOvNF2OPzwmk8X7iW1wYZMpy+MB8GA1UdIwQY MBaAFFKmXGKEg6dWaIuxWMKKt8DUfeJ8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXFaY1lvU0RwMVpvaTdGWXdvcTN3TlI5NG53LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi8wM2QwZTItYTQ5ZS00MzcxLWIyMWMt NTAxNWUxMjA4MTE5LzEvVXFaY1lvU0RwMVpvaTdGWXdvcTN3TlI5NG53Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZi8wM2QwZTItYTQ5ZS00MzcxLWIyMWMtNTAxNWUxMjA4MTE5 LzEvVXFaY1lvU0RwMVpvaTdGWXdvcTN3TlI5NG53LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUe7FzNyN 8ZdiSXol81VcuE+ND7LTkd96fRa+7xpnTq2ksXGb/S3yMtK8XcW+MkT7trFlIqyI HaO0DoCOi1NEMLfw7k5IgBaeV04sGvlpYCly8Tdz+XF22GtgItG30lqzo4CuaT03 1osVTtPcwYuz0SJby95X2awfiovEGn1MoxOMRsY1smSl68P8UcVu9fgJxlwc1eJH lZrkaSjNgnz10ms1xY9wdf9oUuAP2+5C6HtTfEQqnHeyZMMFJ0MMA/llSH4uN2fx n+L+k/u0QCigV/hic9AlqSXQ1zGDk8chpiUke8l6fWtCV79S6JKCHpPjh1nEarHb ObxRgHPEeybVyA== -----END CERTIFICATE-----Generated at Sat Dec 6 07:20:28 2025 by rpki-client