This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/091911-06d8-45c8-b05d-e4bbf4c0db59/1/UzFm4_cJ-zusqa55rL7Gyh0PxQM.mft File: UzFm4_cJ-zusqa55rL7Gyh0PxQM.mft (raw, json) Hash identifier: q9efmfETw1J51hNOmlLDjOx9hJhfEc7RZFrzqLhxha4= Subject key identifier: A6:C8:F3:C6:70:69:C3:DD:4B:56:63:DC:EA:0E:CF:B4:B9:D9:8D:7C Authority key identifier: 53:31:66:E3:F7:09:FB:3B:AC:A9:AE:79:AC:BE:C6:CA:1D:0F:C5:03 Certificate issuer: /CN=533166e3f709fb3baca9ae79acbec6ca1d0fc503 Certificate serial: 019AF2AD52A008AA66ABDEC687E321CB737D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UzFm4_cJ-zusqa55rL7Gyh0PxQM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/091911-06d8-45c8-b05d-e4bbf4c0db59/1/UzFm4_cJ-zusqa55rL7Gyh0PxQM.mft Manifest number: 061B Signing time: Sat 06 Dec 2025 08:00:36 +0000 Manifest this update: Sat 06 Dec 2025 08:00:36 +0000 Manifest next update: Sun 07 Dec 2025 08:00:36 +0000 Files and hashes: 1: JfX_uE4ZrNpyAWrN6XZ19h68cHI.roa (hash: von2tcOSfatHPq0+8nIPwywF9HUMabxhy1Hbp0s6xOY=) 2: UzFm4_cJ-zusqa55rL7Gyh0PxQM.crl (hash: SyIVDXT8lma1v3I6JaoZIXdCF3JL3bc3OBJeAFv95W8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/091911-06d8-45c8-b05d-e4bbf4c0db59/1/UzFm4_cJ-zusqa55rL7Gyh0PxQM.crl rsync://rpki.ripe.net/repository/DEFAULT/53/091911-06d8-45c8-b05d-e4bbf4c0db59/1/UzFm4_cJ-zusqa55rL7Gyh0PxQM.mft rsync://rpki.ripe.net/repository/DEFAULT/UzFm4_cJ-zusqa55rL7Gyh0PxQM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:52:a0:08:aa:66:ab:de:c6:87:e3:21:cb:73:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=533166e3f709fb3baca9ae79acbec6ca1d0fc503 Validity Not Before: Dec 6 08:00:36 2025 GMT Not After : Dec 7 08:00:36 2025 GMT Subject: CN=a6c8f3c67069c3dd4b5663dcea0ecfb4b9d98d7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:71:f1:4a:9c:ba:af:f5:91:41:4f:4e:d0:2f: 06:c0:09:1d:35:24:a7:38:1d:d9:55:c2:94:3b:a2: 9d:d4:fc:ae:0d:b2:2e:de:03:3f:fe:37:29:54:cc: 98:89:5e:01:e8:53:11:0a:aa:59:09:91:88:2c:63: 3b:1a:6c:94:42:dd:69:aa:25:7b:df:ba:26:a4:4e: 13:10:b3:36:7b:80:3a:e9:1f:75:fa:e5:d7:2c:bb: 3d:bc:25:b1:9f:85:75:fe:91:62:d5:22:f6:aa:d1: 7a:79:7f:87:b9:51:26:9d:32:55:cc:58:a0:52:a9: d1:fc:98:7f:5e:a3:08:95:5e:80:6d:d4:6a:e4:df: f0:89:46:3a:0d:36:17:14:a3:20:d9:5f:34:6a:36: 80:be:e7:45:71:31:64:f1:ec:0a:31:2c:6f:0d:c1: 8a:53:52:06:0f:50:08:ac:42:13:68:ee:f5:9c:a9: 09:b0:81:b3:5c:7c:40:50:f5:17:69:3a:1e:ee:aa: 58:ca:31:3a:71:8e:2e:24:cb:d4:09:68:2e:7c:b5: 5b:de:c4:3c:70:a1:74:16:22:23:c5:5d:36:bf:df: ad:c7:f2:74:6c:da:43:55:7c:ef:94:2f:26:66:20: 91:e5:d7:d0:3f:57:28:c3:06:2b:f1:dc:59:31:fe: a0:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:C8:F3:C6:70:69:C3:DD:4B:56:63:DC:EA:0E:CF:B4:B9:D9:8D:7C X509v3 Authority Key Identifier: keyid:53:31:66:E3:F7:09:FB:3B:AC:A9:AE:79:AC:BE:C6:CA:1D:0F:C5:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UzFm4_cJ-zusqa55rL7Gyh0PxQM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/091911-06d8-45c8-b05d-e4bbf4c0db59/1/UzFm4_cJ-zusqa55rL7Gyh0PxQM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/53/091911-06d8-45c8-b05d-e4bbf4c0db59/1/UzFm4_cJ-zusqa55rL7Gyh0PxQM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4a:18:13:b0:4f:c5:37:8e:49:5c:4b:ae:25:9b:71:9c:9f:7a: 08:8f:c4:2e:2a:9c:9a:3e:e1:e6:e3:d8:42:a2:a9:8a:f5:87: a7:de:a7:9e:c7:64:eb:8b:43:89:49:9c:ec:c0:bd:0e:21:6b: 68:64:2c:85:1c:ac:91:4e:f7:26:70:b2:21:28:a1:76:75:f9: 0f:21:3b:b6:4d:70:a7:22:4c:c9:a0:6a:7a:f3:86:2e:62:f8: 35:78:0d:18:3c:ae:3c:75:f0:57:0d:6b:fe:ed:fd:f9:50:34: 73:8f:23:09:6b:6d:ab:c7:93:96:38:c7:5b:67:85:3e:aa:0c: e8:48:d5:d3:e8:5d:a0:d9:85:4f:15:04:c3:e7:73:08:0c:29: 34:76:b4:84:d7:6e:63:73:46:22:90:f7:b4:ea:27:76:7b:3a: d2:c9:70:0b:9a:31:bd:5c:36:af:83:f0:39:81:c3:7e:06:fd: 6a:da:75:a2:30:a5:67:24:62:f8:cd:b1:b6:cb:f7:09:5c:e4: 6d:54:21:d2:f9:ee:93:5d:c8:d5:e3:52:6e:d1:b0:a1:58:4d: b4:0e:5a:60:60:cd:96:b1:ce:7b:4d:cb:6c:35:c6:8f:db:65: 09:8e:4e:9c:9e:b2:ed:29:de:aa:97:43:fa:f6:4e:f2:c1:8a: 60:16:1a:1b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryrVKgCKpmq97Gh+Mhy3N9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzMzE2NmUzZjcwOWZiM2JhY2E5YWU3OWFjYmVjNmNhMWQw ZmM1MDMwHhcNMjUxMjA2MDgwMDM2WhcNMjUxMjA3MDgwMDM2WjAzMTEwLwYDVQQD EyhhNmM4ZjNjNjcwNjljM2RkNGI1NjYzZGNlYTBlY2ZiNGI5ZDk4ZDdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvnHxSpy6r/WRQU9O0C8GwAkdNSSn OB3ZVcKUO6Kd1PyuDbIu3gM//jcpVMyYiV4B6FMRCqpZCZGILGM7GmyUQt1pqiV7 37ompE4TELM2e4A66R91+uXXLLs9vCWxn4V1/pFi1SL2qtF6eX+HuVEmnTJVzFig UqnR/Jh/XqMIlV6AbdRq5N/wiUY6DTYXFKMg2V80ajaAvudFcTFk8ewKMSxvDcGK U1IGD1AIrEITaO71nKkJsIGzXHxAUPUXaToe7qpYyjE6cY4uJMvUCWgufLVb3sQ8 cKF0FiIjxV02v9+tx/J0bNpDVXzvlC8mZiCR5dfQP1cowwYr8dxZMf6g7QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKbI88ZwacPdS1Zj3OoOz7S52Y18MB8GA1UdIwQY MBaAFFMxZuP3Cfs7rKmueay+xsodD8UDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXpGbTRfY0otenVzcWE1NXJMN0d5aDBQeFFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My8wOTE5MTEtMDZkOC00NWM4LWIwNWQt ZTRiYmY0YzBkYjU5LzEvVXpGbTRfY0otenVzcWE1NXJMN0d5aDBQeFFNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81My8wOTE5MTEtMDZkOC00NWM4LWIwNWQtZTRiYmY0YzBkYjU5 LzEvVXpGbTRfY0otenVzcWE1NXJMN0d5aDBQeFFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAShgTsE/F N45JXEuuJZtxnJ96CI/ELiqcmj7h5uPYQqKpivWHp96nnsdk64tDiUmc7MC9DiFr aGQshRyskU73JnCyISihdnX5DyE7tk1wpyJMyaBqevOGLmL4NXgNGDyuPHXwVw1r /u39+VA0c48jCWttq8eTljjHW2eFPqoM6EjV0+hdoNmFTxUEw+dzCAwpNHa0hNdu Y3NGIpD3tOondns60slwC5oxvVw2r4PwOYHDfgb9atp1ojClZyRi+M2xtsv3CVzk bVQh0vnuk13I1eNSbtGwoVhNtA5aYGDNlrHOe03LbDXGj9tlCY5OnJ6y7SneqpdD +vZO8sGKYBYaGw== -----END CERTIFICATE-----Generated at Sat Dec 6 10:37:23 2025 by rpki-client