This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/f8b381-692a-4830-8d7d-21bf708f3cad/1/Uylu4zFT725pONV6KhMsHlJtxDA.mft File: Uylu4zFT725pONV6KhMsHlJtxDA.mft (raw, json) Hash identifier: t5ITl93kPpOrgezU2cdDjC+56Bfd8wC0Gw3v7N2ep9M= Subject key identifier: 58:36:C6:60:A9:F7:3D:67:9E:59:BA:3C:6E:37:03:0F:B9:48:E7:57 Authority key identifier: 53:29:6E:E3:31:53:EF:6E:69:38:D5:7A:2A:13:2C:1E:52:6D:C4:30 Certificate issuer: /CN=53296ee33153ef6e6938d57a2a132c1e526dc430 Certificate serial: 019AF276C45CA674B87E9848D9E82E881F81 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Uylu4zFT725pONV6KhMsHlJtxDA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/f8b381-692a-4830-8d7d-21bf708f3cad/1/Uylu4zFT725pONV6KhMsHlJtxDA.mft Manifest number: 1637 Signing time: Sat 06 Dec 2025 07:01:00 +0000 Manifest this update: Sat 06 Dec 2025 07:01:00 +0000 Manifest next update: Sun 07 Dec 2025 07:01:00 +0000 Files and hashes: 1: Uylu4zFT725pONV6KhMsHlJtxDA.crl (hash: 64z6lWYlxl5WcS+b/8IzZOjb8993N1wFoyYcbEcpWf0=) 2: kWgx2Wjql2LYt0QNUa7UD3E-ZNs.roa (hash: NPB7ZX6Td6/rM0WpZJID5mJD7qpTT41mPi5DDVNwg5U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/f8b381-692a-4830-8d7d-21bf708f3cad/1/Uylu4zFT725pONV6KhMsHlJtxDA.crl rsync://rpki.ripe.net/repository/DEFAULT/52/f8b381-692a-4830-8d7d-21bf708f3cad/1/Uylu4zFT725pONV6KhMsHlJtxDA.mft rsync://rpki.ripe.net/repository/DEFAULT/Uylu4zFT725pONV6KhMsHlJtxDA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:c4:5c:a6:74:b8:7e:98:48:d9:e8:2e:88:1f:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53296ee33153ef6e6938d57a2a132c1e526dc430 Validity Not Before: Dec 6 07:01:00 2025 GMT Not After : Dec 7 07:01:00 2025 GMT Subject: CN=5836c660a9f73d679e59ba3c6e37030fb948e757 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:49:b8:e7:81:8f:b2:5c:ab:69:ec:35:b9:6e: d2:79:a4:37:5e:7c:bc:75:24:69:3c:7e:91:bf:b7: 8e:5c:15:6d:21:04:dd:e3:de:04:62:e3:3a:b9:c4: a5:a2:8d:7c:54:1d:ed:63:a5:02:e3:f1:0e:e1:ac: 68:36:1d:37:19:14:8b:63:c4:70:eb:95:cf:d5:d2: e2:ea:e7:15:01:87:eb:9d:68:f9:c3:09:f2:7e:82: 08:84:bd:f2:d6:1b:86:db:06:a6:2f:43:fa:6e:29: cf:bf:ea:cf:90:75:6b:76:31:a8:50:32:b9:d5:df: 71:f6:05:36:e1:0c:7d:4f:7d:84:f0:da:5d:d2:a7: b3:e1:7b:7a:cb:3f:c6:a6:49:42:85:bb:0a:d5:e5: 5f:f0:59:59:48:62:0a:ee:69:33:98:57:3a:1f:10: a0:4a:79:14:c9:29:c2:9d:94:ca:a3:fa:35:21:d6: 7d:0c:72:e1:95:57:c7:7c:60:10:67:56:33:df:04: 39:6b:ee:6f:75:a5:e9:43:1f:a6:0d:c4:eb:ee:ab: 6a:d6:39:3d:4b:ff:b9:5e:28:53:40:2b:9c:d8:bc: a0:a6:84:5d:9f:74:c1:ca:a0:16:f4:98:bb:f6:a9: bc:0a:6e:9c:d2:1b:fb:22:d5:88:18:d8:4c:48:dd: 23:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:36:C6:60:A9:F7:3D:67:9E:59:BA:3C:6E:37:03:0F:B9:48:E7:57 X509v3 Authority Key Identifier: keyid:53:29:6E:E3:31:53:EF:6E:69:38:D5:7A:2A:13:2C:1E:52:6D:C4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Uylu4zFT725pONV6KhMsHlJtxDA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f8b381-692a-4830-8d7d-21bf708f3cad/1/Uylu4zFT725pONV6KhMsHlJtxDA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f8b381-692a-4830-8d7d-21bf708f3cad/1/Uylu4zFT725pONV6KhMsHlJtxDA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:39:e5:23:06:53:66:e0:89:3e:66:4f:67:e6:a4:c0:b8:8f: bd:d3:5b:f3:9f:f9:7e:e3:7d:34:f7:41:1f:c3:a0:98:42:94: e9:21:da:98:4e:44:39:a0:37:14:93:d3:b1:6f:e9:3b:d3:b0: f5:cb:d8:6c:1e:a7:ac:0a:3b:52:e3:ff:81:c0:4d:6a:44:7e: e6:a0:61:d1:eb:89:f3:ba:cd:f9:26:99:1b:d4:84:b0:0a:3f: 58:64:0c:97:8f:03:f1:f3:34:17:56:b6:4e:84:4f:9d:4d:43: 3f:e4:e5:30:99:de:75:a0:c7:16:b6:a8:cf:21:df:21:67:c0: 3f:bc:23:62:c3:5b:35:70:7d:e6:06:75:a1:81:75:78:09:3b: 85:6b:0e:10:2a:06:54:4e:22:a0:bb:55:d2:10:16:44:de:92: bc:5f:78:fb:ef:b3:07:eb:fb:1a:ea:f0:9f:50:26:9c:56:d2: f4:f8:e6:bc:42:4f:aa:6b:da:73:1f:3a:f2:a9:b8:33:9d:35: d4:60:3a:1c:e1:10:13:83:e0:22:98:e6:27:95:89:56:41:16: 4c:e2:d4:a1:18:08:b7:ff:d4:e0:03:63:68:3e:da:27:7f:12: dd:5c:4c:43:dd:98:d7:9c:ce:f5:a0:82:d4:dd:e5:a4:34:34: c3:2d:7c:92 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydsRcpnS4fphI2eguiB+BMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzMjk2ZWUzMzE1M2VmNmU2OTM4ZDU3YTJhMTMyYzFlNTI2 ZGM0MzAwHhcNMjUxMjA2MDcwMTAwWhcNMjUxMjA3MDcwMTAwWjAzMTEwLwYDVQQD Eyg1ODM2YzY2MGE5ZjczZDY3OWU1OWJhM2M2ZTM3MDMwZmI5NDhlNzU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqEm454GPslyraew1uW7SeaQ3Xny8 dSRpPH6Rv7eOXBVtIQTd494EYuM6ucSloo18VB3tY6UC4/EO4axoNh03GRSLY8Rw 65XP1dLi6ucVAYfrnWj5wwnyfoIIhL3y1huG2wamL0P6binPv+rPkHVrdjGoUDK5 1d9x9gU24Qx9T32E8Npd0qez4Xt6yz/GpklChbsK1eVf8FlZSGIK7mkzmFc6HxCg SnkUySnCnZTKo/o1IdZ9DHLhlVfHfGAQZ1Yz3wQ5a+5vdaXpQx+mDcTr7qtq1jk9 S/+5XihTQCuc2LygpoRdn3TByqAW9Ji79qm8Cm6c0hv7ItWIGNhMSN0jMQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFg2xmCp9z1nnlm6PG43Aw+5SOdXMB8GA1UdIwQY MBaAFFMpbuMxU+9uaTjVeioTLB5SbcQwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXlsdTR6RlQ3MjVwT05WNktoTXNIbEp0eERBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi9mOGIzODEtNjkyYS00ODMwLThkN2Qt MjFiZjcwOGYzY2FkLzEvVXlsdTR6RlQ3MjVwT05WNktoTXNIbEp0eERBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Mi9mOGIzODEtNjkyYS00ODMwLThkN2QtMjFiZjcwOGYzY2Fk LzEvVXlsdTR6RlQ3MjVwT05WNktoTXNIbEp0eERBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXDnlIwZT ZuCJPmZPZ+akwLiPvdNb85/5fuN9NPdBH8OgmEKU6SHamE5EOaA3FJPTsW/pO9Ow 9cvYbB6nrAo7UuP/gcBNakR+5qBh0euJ87rN+SaZG9SEsAo/WGQMl48D8fM0F1a2 ToRPnU1DP+TlMJnedaDHFraozyHfIWfAP7wjYsNbNXB95gZ1oYF1eAk7hWsOECoG VE4ioLtV0hAWRN6SvF94+++zB+v7Gurwn1AmnFbS9PjmvEJPqmvacx868qm4M501 1GA6HOEQE4PgIpjmJ5WJVkEWTOLUoRgIt//U4ANjaD7aJ38S3VxMQ92Y15zO9aCC 1N3lpDQ0wy18kg== -----END CERTIFICATE-----Generated at Sat Dec 6 11:13:08 2025 by rpki-client