This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft File: UsSOG7ZyzaaEZADov41taWg1178.mft (raw, json) Hash identifier: Rcj1MJqMrs5IuM/gCssiLzKhgmeYdsNLRe3WfTvZwEs= Subject key identifier: 9E:F7:EB:EB:90:FD:3D:D6:E8:83:2A:45:62:6D:5C:89:F0:DA:72:5C Authority key identifier: 52:C4:8E:1B:B6:72:CD:A6:84:64:00:E8:BF:8D:6D:69:68:35:D7:BF Certificate issuer: /CN=52c48e1bb672cda6846400e8bf8d6d696835d7bf Certificate serial: 019AF50B6FE2F242E05F17E308AF37A95434 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UsSOG7ZyzaaEZADov41taWg1178.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft Manifest number: 099A Signing time: Sat 06 Dec 2025 19:02:38 +0000 Manifest this update: Sat 06 Dec 2025 19:02:38 +0000 Manifest next update: Sun 07 Dec 2025 19:02:38 +0000 Files and hashes: 1: UsSOG7ZyzaaEZADov41taWg1178.crl (hash: JDS5cMK+pTkEbU61OH437DjTtqa17jmjJ+wu4i3V/dc=) 2: iWu72NaaTSDAiJGqIVfKYfSk9Cg.roa (hash: BiHkYnw80HRUON814fdKI0ZwVn2DSPqeEkVU4t9Jnsk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft rsync://rpki.ripe.net/repository/DEFAULT/UsSOG7ZyzaaEZADov41taWg1178.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 14:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:0b:6f:e2:f2:42:e0:5f:17:e3:08:af:37:a9:54:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52c48e1bb672cda6846400e8bf8d6d696835d7bf Validity Not Before: Dec 6 19:02:38 2025 GMT Not After : Dec 7 19:02:38 2025 GMT Subject: CN=9ef7ebeb90fd3dd6e8832a45626d5c89f0da725c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:85:51:4f:3a:9b:47:65:89:1f:ce:b0:97:39: 15:8a:c2:4c:e2:8a:2a:21:cc:6e:01:c9:56:1a:7e: f6:25:24:1c:84:ba:51:7f:d6:f8:0c:74:73:a5:d9: 9b:8a:db:b5:ce:0b:12:e7:41:b0:5b:27:b0:8a:e4: 3f:d5:cc:0a:01:af:9a:d8:7a:ae:67:6a:e5:4d:70: f3:4d:8d:f9:26:f9:aa:62:07:a8:76:54:b3:12:28: 46:34:c6:51:96:c2:48:34:4c:12:6b:4b:c4:75:ef: 1e:69:c3:59:d7:14:72:9c:c8:1d:a2:18:09:8a:23: 2c:10:11:64:07:ca:cf:f4:49:d0:9c:62:b2:5a:91: 10:d4:46:dd:50:9f:25:61:d2:ba:66:f2:7c:90:4c: 79:9f:f3:76:28:88:54:7c:40:cd:dc:0c:49:2f:f9: e6:3f:f8:e6:d4:58:38:94:5e:0e:c5:1f:bd:03:b8: b0:b2:5c:cd:04:6a:9e:c8:e0:d7:7b:5c:a8:43:6a: a0:33:4b:32:b1:e9:62:71:12:02:56:04:5c:f9:ed: 10:70:a4:65:b9:e0:8e:5b:db:c1:d6:17:39:46:89: 6d:b6:00:d7:33:b2:54:5b:14:13:da:43:44:b0:cc: be:a0:7c:e4:51:81:97:c1:b4:77:6e:b3:80:5c:68: f5:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:F7:EB:EB:90:FD:3D:D6:E8:83:2A:45:62:6D:5C:89:F0:DA:72:5C X509v3 Authority Key Identifier: keyid:52:C4:8E:1B:B6:72:CD:A6:84:64:00:E8:BF:8D:6D:69:68:35:D7:BF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UsSOG7ZyzaaEZADov41taWg1178.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 50:93:df:7c:15:15:d6:49:25:f6:6d:a7:03:e8:94:cd:1e:89: 54:e3:18:85:f0:ff:f8:46:4b:10:1f:49:6f:d0:73:be:62:b4: d7:50:99:13:80:fc:4f:44:b8:0a:f0:6e:f9:eb:2e:13:06:9a: 66:a6:0d:e3:e0:f2:45:2d:79:9e:55:e9:f6:09:d4:86:cb:61: 62:2a:2c:b0:15:c7:a4:bb:97:f3:1e:39:37:72:7c:58:9f:8d: e4:5d:7d:fa:6f:98:1d:34:2b:e7:d2:a7:ff:f2:b4:a7:0e:27: c7:89:7d:3c:69:98:22:54:55:f9:d1:7b:19:4d:7f:15:46:83: 41:27:1b:14:26:75:92:01:36:21:67:81:b0:00:af:a9:39:6e: 7d:39:e5:16:83:41:c1:77:c6:53:59:9d:5b:7e:dc:21:be:38: c7:f4:7e:6e:ac:9e:bc:59:e0:73:3b:d1:22:b3:bf:5e:02:50: 80:78:51:8f:42:d6:f9:d7:9e:74:70:3f:f2:35:96:85:cd:a6: d7:bb:e1:0c:03:99:02:72:81:45:b2:44:62:d9:c3:71:68:c1: 46:fc:0c:7a:51:09:65:5f:30:be:5c:4d:c7:c5:01:0c:08:82: 4e:8b:70:81:4a:a1:30:08:e8:4b:17:ac:53:27:75:5d:b9:74: 9b:84:f5:86 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1C2/i8kLgXxfjCK83qVQ0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyYzQ4ZTFiYjY3MmNkYTY4NDY0MDBlOGJmOGQ2ZDY5Njgz NWQ3YmYwHhcNMjUxMjA2MTkwMjM4WhcNMjUxMjA3MTkwMjM4WjAzMTEwLwYDVQQD Eyg5ZWY3ZWJlYjkwZmQzZGQ2ZTg4MzJhNDU2MjZkNWM4OWYwZGE3MjVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1IVRTzqbR2WJH86wlzkVisJM4ooq IcxuAclWGn72JSQchLpRf9b4DHRzpdmbitu1zgsS50GwWyewiuQ/1cwKAa+a2Hqu Z2rlTXDzTY35JvmqYgeodlSzEihGNMZRlsJINEwSa0vEde8eacNZ1xRynMgdohgJ iiMsEBFkB8rP9EnQnGKyWpEQ1EbdUJ8lYdK6ZvJ8kEx5n/N2KIhUfEDN3AxJL/nm P/jm1Fg4lF4OxR+9A7iwslzNBGqeyODXe1yoQ2qgM0syselicRICVgRc+e0QcKRl ueCOW9vB1hc5RolttgDXM7JUWxQT2kNEsMy+oHzkUYGXwbR3brOAXGj1FwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ736+uQ/T3W6IMqRWJtXInw2nJcMB8GA1UdIwQY MBaAFFLEjhu2cs2mhGQA6L+NbWloNde/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXNTT0c3Wnl6YWFFWkFEb3Y0MXRhV2cxMTc4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9hNWU5NGMtMDhiZS00ZmNlLThlYzkt MThlY2UzNjgyNjZmLzEvVXNTT0c3Wnl6YWFFWkFEb3Y0MXRhV2cxMTc4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS9hNWU5NGMtMDhiZS00ZmNlLThlYzktMThlY2UzNjgyNjZm LzEvVXNTT0c3Wnl6YWFFWkFEb3Y0MXRhV2cxMTc4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUJPffBUV 1kkl9m2nA+iUzR6JVOMYhfD/+EZLEB9Jb9BzvmK011CZE4D8T0S4CvBu+esuEwaa ZqYN4+DyRS15nlXp9gnUhsthYiossBXHpLuX8x45N3J8WJ+N5F19+m+YHTQr59Kn //K0pw4nx4l9PGmYIlRV+dF7GU1/FUaDQScbFCZ1kgE2IWeBsACvqTlufTnlFoNB wXfGU1mdW37cIb44x/R+bqyevFngczvRIrO/XgJQgHhRj0LW+deedHA/8jWWhc2m 17vhDAOZAnKBRbJEYtnDcWjBRvwMelEJZV8wvlxNx8UBDAiCTotwgUqhMAjoSxes Uyd1Xbl0m4T1hg== -----END CERTIFICATE-----Generated at Sat Dec 6 23:51:37 2025 by rpki-client