This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/42888b-aa3f-4611-803d-2db44c91ae60/1/Uz39bMFAxoo9O7qGulfPO4umqbc.mft File: Uz39bMFAxoo9O7qGulfPO4umqbc.mft (raw, json) Hash identifier: U6CKyv+4zoT0O9RRwohB1lLgMAagXyVTe4bZbN0t8fM= Subject key identifier: 84:F9:F7:E3:31:32:F7:04:05:7F:52:78:B0:3A:E5:B5:91:90:1D:F1 Authority key identifier: 53:3D:FD:6C:C1:40:C6:8A:3D:3B:BA:86:BA:57:CF:3B:8B:A6:A9:B7 Certificate issuer: /CN=533dfd6cc140c68a3d3bba86ba57cf3b8ba6a9b7 Certificate serial: 019AF12F43743D5B31CF6361B3ECDF2F923B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Uz39bMFAxoo9O7qGulfPO4umqbc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/42888b-aa3f-4611-803d-2db44c91ae60/1/Uz39bMFAxoo9O7qGulfPO4umqbc.mft Manifest number: 12A7 Signing time: Sat 06 Dec 2025 01:03:17 +0000 Manifest this update: Sat 06 Dec 2025 01:03:17 +0000 Manifest next update: Sun 07 Dec 2025 01:03:17 +0000 Files and hashes: 1: LuBsqNtq59OLv1AWHpkXInch_bk.roa (hash: IW1LLIgf30eZrheSzd/U0PwBqHlPoD/7QK4BJgtpt6w=) 2: Uz39bMFAxoo9O7qGulfPO4umqbc.crl (hash: HQZ17h/R9WoupRN1Z6keaggE7hwiZRfJEjPXXXNvy3g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/42888b-aa3f-4611-803d-2db44c91ae60/1/Uz39bMFAxoo9O7qGulfPO4umqbc.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/42888b-aa3f-4611-803d-2db44c91ae60/1/Uz39bMFAxoo9O7qGulfPO4umqbc.mft rsync://rpki.ripe.net/repository/DEFAULT/Uz39bMFAxoo9O7qGulfPO4umqbc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:03:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2f:43:74:3d:5b:31:cf:63:61:b3:ec:df:2f:92:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=533dfd6cc140c68a3d3bba86ba57cf3b8ba6a9b7 Validity Not Before: Dec 6 01:03:17 2025 GMT Not After : Dec 7 01:03:17 2025 GMT Subject: CN=84f9f7e33132f704057f5278b03ae5b591901df1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:0f:51:f7:74:b9:33:60:6c:be:c1:d1:3f:8c: 77:e5:91:0b:e6:8f:98:ec:cb:f1:20:3f:21:69:30: 3f:1c:7b:a8:ae:05:16:21:81:d8:e4:a3:75:08:d0: cf:65:e8:0e:f9:2b:af:1e:10:64:16:16:cf:87:8b: 19:0b:5d:10:4a:38:43:2f:c1:07:45:1d:f9:55:a5: e9:a8:b2:d6:ba:8d:b2:f8:04:9a:af:29:d8:69:7c: 7b:96:26:ec:cb:8d:74:89:92:b0:fa:2a:e3:bc:5c: 00:8d:25:bf:bf:3f:05:91:16:c5:5c:4b:49:cb:06: 86:01:86:ae:58:72:14:cf:6c:2c:0f:97:73:fc:1f: 41:81:cd:bf:f7:8b:ed:24:d9:da:3a:e9:60:21:d1: 18:79:82:29:cc:bd:1b:f7:6b:d4:1f:b2:d0:83:85: b0:40:2d:f4:32:68:47:ec:71:a7:bb:02:3e:f5:84: 6d:4c:e5:b5:92:0b:93:bc:68:8d:95:d8:ca:2a:fd: 27:1c:2f:f1:64:44:2e:04:61:7a:cd:41:a0:25:ce: a0:80:ab:bf:ed:9f:9c:87:b2:8d:d8:29:24:ec:98: 0b:94:af:24:0a:7c:e4:79:5c:9d:50:df:90:60:61: f4:43:5e:f1:a0:e8:d8:26:7f:20:53:7a:61:11:8d: 35:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:F9:F7:E3:31:32:F7:04:05:7F:52:78:B0:3A:E5:B5:91:90:1D:F1 X509v3 Authority Key Identifier: keyid:53:3D:FD:6C:C1:40:C6:8A:3D:3B:BA:86:BA:57:CF:3B:8B:A6:A9:B7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Uz39bMFAxoo9O7qGulfPO4umqbc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/42888b-aa3f-4611-803d-2db44c91ae60/1/Uz39bMFAxoo9O7qGulfPO4umqbc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/42888b-aa3f-4611-803d-2db44c91ae60/1/Uz39bMFAxoo9O7qGulfPO4umqbc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 90:29:41:ee:a7:c5:3c:8d:e1:90:8c:34:4f:5b:76:ac:b5:bb: 3b:a7:2a:2f:45:95:35:6b:c5:51:48:bc:fa:93:4d:53:b8:2e: 15:03:c2:89:eb:6f:df:fa:2f:15:5f:8d:bd:19:44:80:4c:f8: bf:5f:6f:4d:02:81:73:61:c7:39:a1:ee:72:e8:cf:d7:82:cd: 8a:5c:bc:e3:8a:3a:e4:b2:a7:7f:09:eb:63:a4:e7:41:c3:76: 9c:bd:ff:55:9d:c4:3b:83:4f:c7:2b:db:90:87:51:df:3a:fb: fb:42:3e:8e:c1:36:a1:aa:72:fe:54:a0:9b:69:73:a0:62:f3: b7:ec:12:96:65:8e:d7:e6:b3:5a:18:1c:59:6e:5f:2d:ad:ad: d0:cb:20:34:7e:04:60:45:0c:1f:19:6f:8e:43:63:7b:fb:4a: 71:f1:26:f0:9b:39:ff:b9:a4:cc:67:20:0f:3f:10:f4:66:e1: a0:41:5d:80:6f:68:bb:45:ee:4c:5e:83:d3:30:eb:c6:1e:e5: 19:72:d9:49:db:24:89:50:d2:e0:ef:7a:2e:9d:32:bd:82:c4: 1b:3e:cf:19:9c:f9:df:06:ce:89:c6:54:c6:04:a7:4f:d8:ad: b9:4e:12:fa:70:48:8d:1c:42:52:21:ff:97:92:b4:61:21:92: b7:a3:d3:5b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxL0N0PVsxz2Nhs+zfL5I7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzM2RmZDZjYzE0MGM2OGEzZDNiYmE4NmJhNTdjZjNiOGJh NmE5YjcwHhcNMjUxMjA2MDEwMzE3WhcNMjUxMjA3MDEwMzE3WjAzMTEwLwYDVQQD Eyg4NGY5ZjdlMzMxMzJmNzA0MDU3ZjUyNzhiMDNhZTViNTkxOTAxZGYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4g9R93S5M2BsvsHRP4x35ZEL5o+Y 7MvxID8haTA/HHuorgUWIYHY5KN1CNDPZegO+SuvHhBkFhbPh4sZC10QSjhDL8EH RR35VaXpqLLWuo2y+ASarynYaXx7libsy410iZKw+irjvFwAjSW/vz8FkRbFXEtJ ywaGAYauWHIUz2wsD5dz/B9Bgc2/94vtJNnaOulgIdEYeYIpzL0b92vUH7LQg4Ww QC30MmhH7HGnuwI+9YRtTOW1kguTvGiNldjKKv0nHC/xZEQuBGF6zUGgJc6ggKu/ 7Z+ch7KN2Ckk7JgLlK8kCnzkeVydUN+QYGH0Q17xoOjYJn8gU3phEY01/QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIT59+MxMvcEBX9SeLA65bWRkB3xMB8GA1UdIwQY MBaAFFM9/WzBQMaKPTu6hrpXzzuLpqm3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXozOWJNRkF4b285TzdxR3VsZlBPNHVtcWJjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi80Mjg4OGItYWEzZi00NjExLTgwM2Qt MmRiNDRjOTFhZTYwLzEvVXozOWJNRkF4b285TzdxR3VsZlBPNHVtcWJjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi80Mjg4OGItYWEzZi00NjExLTgwM2QtMmRiNDRjOTFhZTYw LzEvVXozOWJNRkF4b285TzdxR3VsZlBPNHVtcWJjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkClB7qfF PI3hkIw0T1t2rLW7O6cqL0WVNWvFUUi8+pNNU7guFQPCietv3/ovFV+NvRlEgEz4 v19vTQKBc2HHOaHucujP14LNily844o65LKnfwnrY6TnQcN2nL3/VZ3EO4NPxyvb kIdR3zr7+0I+jsE2oapy/lSgm2lzoGLzt+wSlmWO1+azWhgcWW5fLa2t0MsgNH4E YEUMHxlvjkNje/tKcfEm8Js5/7mkzGcgDz8Q9GbhoEFdgG9ou0XuTF6D0zDrxh7l GXLZSdskiVDS4O96Lp0yvYLEGz7PGZz53wbOicZUxgSnT9ituU4S+nBIjRxCUiH/ l5K0YSGSt6PTWw== -----END CERTIFICATE-----Generated at Sat Dec 6 08:15:25 2025 by rpki-client