This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/b81895-c605-41e2-b283-c0565fa840d4/1/UW2UBk9zhVXozjZaGVfWnnaICcQ.mft File: UW2UBk9zhVXozjZaGVfWnnaICcQ.mft (raw, json) Hash identifier: HdaQwS4HCA0nPd/i5TkfsbjNl/D1mSDkcLvxTKg8Wrg= Subject key identifier: 08:5A:40:E7:30:1F:82:3A:C7:49:C8:D8:26:F5:9D:6F:25:33:8D:38 Authority key identifier: 51:6D:94:06:4F:73:85:55:E8:CE:36:5A:19:57:D6:9E:76:88:09:C4 Certificate issuer: /CN=516d94064f738555e8ce365a1957d69e768809c4 Certificate serial: 019AF12EC7AC377A86785E6DB857F91A97A8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UW2UBk9zhVXozjZaGVfWnnaICcQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/b81895-c605-41e2-b283-c0565fa840d4/1/UW2UBk9zhVXozjZaGVfWnnaICcQ.mft Manifest number: 0742 Signing time: Sat 06 Dec 2025 01:02:46 +0000 Manifest this update: Sat 06 Dec 2025 01:02:46 +0000 Manifest next update: Sun 07 Dec 2025 01:02:46 +0000 Files and hashes: 1: UW2UBk9zhVXozjZaGVfWnnaICcQ.crl (hash: sdubvN6sv5406rNprq+GyPCOacpI/Fr3sWx9tGADn+k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/b81895-c605-41e2-b283-c0565fa840d4/1/UW2UBk9zhVXozjZaGVfWnnaICcQ.crl rsync://rpki.ripe.net/repository/DEFAULT/61/b81895-c605-41e2-b283-c0565fa840d4/1/UW2UBk9zhVXozjZaGVfWnnaICcQ.mft rsync://rpki.ripe.net/repository/DEFAULT/UW2UBk9zhVXozjZaGVfWnnaICcQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:c7:ac:37:7a:86:78:5e:6d:b8:57:f9:1a:97:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=516d94064f738555e8ce365a1957d69e768809c4 Validity Not Before: Dec 6 01:02:46 2025 GMT Not After : Dec 7 01:02:46 2025 GMT Subject: CN=085a40e7301f823ac749c8d826f59d6f25338d38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:37:ac:a5:5b:81:54:37:8f:bf:fe:0e:8f:27: 9b:2c:8e:92:b1:1d:31:08:ad:f2:57:65:8f:49:65: 97:4d:c8:48:2d:b0:fe:61:b9:40:1a:99:a3:de:02: d5:87:ad:1e:8c:8c:f3:05:32:51:b6:1b:58:b1:e5: 0f:81:c2:3a:9c:bd:4b:68:dd:1c:7f:8d:30:3a:90: 55:f6:c0:e6:1e:76:7d:c2:ae:d3:24:dd:b6:92:32: 7c:95:ab:cf:f7:ec:24:6a:24:7f:85:71:6c:9a:e1: 4a:5d:ec:f0:59:58:36:31:6e:ab:57:17:0a:1f:41: 72:aa:f6:0c:24:70:cb:46:fa:bd:8e:72:47:50:73: 37:80:ae:22:3a:74:03:0f:a8:c3:ed:da:fc:bf:66: cd:04:36:68:21:16:64:b1:ae:51:7e:69:22:03:4f: ee:66:35:74:2a:9d:3a:8d:7d:ad:3d:14:df:c1:52: 09:40:5b:6b:cd:18:bd:dd:7f:19:94:bf:c8:6a:b4: 29:a5:3e:dd:dd:bc:ed:c9:25:c2:f4:4a:17:3e:85: 81:25:7e:f4:40:3b:47:d2:bc:19:f7:db:68:d7:de: 46:83:79:79:5c:a1:b8:c3:01:13:3d:0f:da:dc:72: 9a:27:34:00:66:0b:01:ac:7c:3f:b1:a7:b7:b9:ed: ed:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:5A:40:E7:30:1F:82:3A:C7:49:C8:D8:26:F5:9D:6F:25:33:8D:38 X509v3 Authority Key Identifier: keyid:51:6D:94:06:4F:73:85:55:E8:CE:36:5A:19:57:D6:9E:76:88:09:C4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UW2UBk9zhVXozjZaGVfWnnaICcQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/b81895-c605-41e2-b283-c0565fa840d4/1/UW2UBk9zhVXozjZaGVfWnnaICcQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/61/b81895-c605-41e2-b283-c0565fa840d4/1/UW2UBk9zhVXozjZaGVfWnnaICcQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 89:6a:b0:ff:eb:9f:6e:6e:d1:23:af:c1:8a:9d:83:f4:32:d6: df:da:22:fd:d1:63:01:c8:d4:fe:07:26:b8:d3:d6:f7:b5:a9: 2c:71:cf:19:3a:7f:8d:28:a8:fa:89:d8:3c:d4:eb:d4:3a:d5: b6:2d:d8:f1:75:69:02:2f:bc:24:9a:d1:dc:43:b5:be:79:5f: 5b:6d:b8:9d:cf:54:47:30:d6:f1:3e:4e:2f:8d:26:d5:ed:2e: cc:24:c7:0a:d2:83:ed:54:f6:74:a9:9d:1c:fc:db:e9:b1:bf: f0:5a:6f:67:9c:8e:1f:aa:51:33:fe:98:b8:21:f0:f1:5b:79: 79:6f:9d:f0:45:12:d5:4e:ca:e7:89:90:ff:f4:5f:ee:27:10: 4b:d6:af:8b:b4:f4:12:32:75:63:22:53:42:a3:19:82:7b:ed: 18:16:1d:35:17:cc:72:cd:c6:e3:62:34:68:cd:c4:7b:36:41: f5:69:c8:17:08:39:20:fa:73:a1:86:32:db:81:5a:8b:e7:71: e1:28:4a:be:ff:eb:41:d6:68:57:69:66:aa:a3:c2:ba:8d:88: 1b:95:5c:33:5d:57:d5:1e:74:7c:9b:49:db:b5:3f:cb:10:2f: e4:0e:24:79:f4:84:ea:f3:20:9d:75:66:4f:4d:35:e1:cf:e0: 90:fe:1e:20 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLsesN3qGeF5tuFf5GpeoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUxNmQ5NDA2NGY3Mzg1NTVlOGNlMzY1YTE5NTdkNjllNzY4 ODA5YzQwHhcNMjUxMjA2MDEwMjQ2WhcNMjUxMjA3MDEwMjQ2WjAzMTEwLwYDVQQD EygwODVhNDBlNzMwMWY4MjNhYzc0OWM4ZDgyNmY1OWQ2ZjI1MzM4ZDM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzTespVuBVDePv/4OjyebLI6SsR0x CK3yV2WPSWWXTchILbD+YblAGpmj3gLVh60ejIzzBTJRthtYseUPgcI6nL1LaN0c f40wOpBV9sDmHnZ9wq7TJN22kjJ8lavP9+wkaiR/hXFsmuFKXezwWVg2MW6rVxcK H0FyqvYMJHDLRvq9jnJHUHM3gK4iOnQDD6jD7dr8v2bNBDZoIRZksa5RfmkiA0/u ZjV0Kp06jX2tPRTfwVIJQFtrzRi93X8ZlL/IarQppT7d3bztySXC9EoXPoWBJX70 QDtH0rwZ99to195Gg3l5XKG4wwETPQ/a3HKaJzQAZgsBrHw/sae3ue3t1wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAhaQOcwH4I6x0nI2Cb1nW8lM404MB8GA1UdIwQY MBaAFFFtlAZPc4VV6M42WhlX1p52iAnEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVVcyVUJrOXpoVlhvempaYUdWZldubmFJQ2NRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS9iODE4OTUtYzYwNS00MWUyLWIyODMt YzA1NjVmYTg0MGQ0LzEvVVcyVUJrOXpoVlhvempaYUdWZldubmFJQ2NRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MS9iODE4OTUtYzYwNS00MWUyLWIyODMtYzA1NjVmYTg0MGQ0 LzEvVVcyVUJrOXpoVlhvempaYUdWZldubmFJQ2NRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiWqw/+uf bm7RI6/Bip2D9DLW39oi/dFjAcjU/gcmuNPW97WpLHHPGTp/jSio+onYPNTr1DrV ti3Y8XVpAi+8JJrR3EO1vnlfW224nc9URzDW8T5OL40m1e0uzCTHCtKD7VT2dKmd HPzb6bG/8FpvZ5yOH6pRM/6YuCHw8Vt5eW+d8EUS1U7K54mQ//Rf7icQS9avi7T0 EjJ1YyJTQqMZgnvtGBYdNRfMcs3G42I0aM3EezZB9WnIFwg5IPpzoYYy24Fai+dx 4ShKvv/rQdZoV2lmqqPCuo2IG5VcM11X1R50fJtJ27U/yxAv5A4kefSE6vMgnXVm T0014c/gkP4eIA== -----END CERTIFICATE-----Generated at Sat Dec 6 07:09:44 2025 by rpki-client