This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft File: ukQzhlmFp7teJpw3lK5vFkz8Lds.mft (raw, json) Hash identifier: ZYSI2lSU1fcn9lwt2VzAuAYRtWwWj+i/ES6vf1SVTJs= Subject key identifier: 4C:78:18:F7:37:A7:D5:85:17:02:D6:C2:E3:91:57:BD:14:8B:E2:D2 Authority key identifier: BA:44:33:86:59:85:A7:BB:5E:26:9C:37:94:AE:6F:16:4C:FC:2D:DB Certificate issuer: /CN=ba4433865985a7bb5e269c3794ae6f164cfc2ddb Certificate serial: 019AF23FB08F16221F0B788D5948B15AD83B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft Manifest number: 0741 Signing time: Sat 06 Dec 2025 06:00:51 +0000 Manifest this update: Sat 06 Dec 2025 06:00:51 +0000 Manifest next update: Sun 07 Dec 2025 06:00:51 +0000 Files and hashes: 1: AlkZJ5y5SgK5NicIMpQu5G4y-kk.roa (hash: 6pDsa6TgLwnLkjOOWWhXhHFWrv8bvlopmayBUNqycZY=) 2: ukQzhlmFp7teJpw3lK5vFkz8Lds.crl (hash: 8Q3mIuhLVfmCsj5hYLM+TsWl0DrnTP8kJ6jcWBALPoU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.crl rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:b0:8f:16:22:1f:0b:78:8d:59:48:b1:5a:d8:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba4433865985a7bb5e269c3794ae6f164cfc2ddb Validity Not Before: Dec 6 06:00:51 2025 GMT Not After : Dec 7 06:00:51 2025 GMT Subject: CN=4c7818f737a7d5851702d6c2e39157bd148be2d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:a1:de:dc:8b:e8:22:7a:11:12:81:50:01:2a: b8:6f:0d:aa:61:c9:9b:88:73:d3:e6:8f:68:ae:4e: 2a:0d:55:4e:6a:3d:47:34:cc:b1:e5:2c:23:e8:9b: 2a:d6:f5:5e:11:89:ce:89:50:ea:b8:6c:3a:bf:b1: ba:fb:e1:1b:25:e7:ad:fa:f7:44:41:28:8d:0c:c5: 37:52:40:b7:69:0b:c1:c6:51:c4:ac:78:f4:ed:d4: f4:16:e9:a3:33:6d:ec:f1:30:b6:0f:a9:4d:b5:76: da:d0:93:c0:97:7d:1f:cc:15:1a:53:14:c6:db:9e: 13:17:45:1d:be:2c:50:ff:c0:a6:01:04:cb:20:eb: da:c4:21:80:5a:42:f3:a4:9c:39:17:2c:dd:7e:df: 00:f1:ce:8f:b0:f9:de:90:e4:c5:1d:e2:1d:db:ba: cd:bd:1f:89:2c:b4:43:de:1a:4c:bc:f0:4f:dd:d4: 63:bc:ee:c9:a5:2e:0f:0f:d9:5c:d7:de:50:84:65: 38:7a:f6:f1:6b:5b:52:02:d8:7a:32:d2:80:7e:45: 3b:37:de:d7:76:a1:64:f2:8b:2a:87:4f:57:63:09: 0a:79:d2:4d:91:b7:31:5b:79:23:1a:57:b2:76:bc: e7:25:f0:a4:5f:90:33:34:a8:ad:e6:67:ca:c1:fb: ef:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:78:18:F7:37:A7:D5:85:17:02:D6:C2:E3:91:57:BD:14:8B:E2:D2 X509v3 Authority Key Identifier: keyid:BA:44:33:86:59:85:A7:BB:5E:26:9C:37:94:AE:6F:16:4C:FC:2D:DB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:ea:90:6a:40:73:05:dc:9d:69:4a:8f:8e:aa:71:07:e2:23: d6:72:4d:66:46:cd:31:08:aa:44:60:d2:96:50:5b:cb:b3:29: 37:a7:c1:6f:ab:cf:15:58:60:34:ce:a0:56:65:c6:1f:07:b4: 2f:17:13:3a:d7:80:8b:97:50:66:38:fa:18:a0:ab:e9:02:5a: 63:27:05:0f:5d:00:6d:05:29:7c:88:fa:50:8c:07:d5:a8:ab: 3f:2f:71:ae:ef:b1:d1:a4:41:7b:f0:7b:e1:63:72:1f:4e:55: 4a:5a:e7:b0:db:84:5b:48:33:41:07:6e:cf:85:31:09:0d:be: bd:b2:71:79:cb:ef:af:6d:aa:a6:17:68:5a:e3:2c:de:aa:ba: c5:bf:e8:72:8c:7f:09:31:dc:85:b2:10:ed:af:11:c4:9c:0d: 48:78:ce:12:0f:e2:fc:92:dd:cc:5b:93:99:76:08:3b:e5:4b: eb:e1:58:48:af:cb:4d:23:70:4a:d0:ec:91:76:d3:77:8f:85: 6d:e6:01:a8:66:fe:a4:d4:93:2f:77:f0:2b:ee:e0:27:67:b7: 48:75:7f:14:86:20:b3:30:12:8b:14:ac:99:0e:92:b0:d4:19: 8f:60:3e:f2:6d:8e:fc:47:f3:74:dd:bf:ce:fc:f3:0e:ce:1c: 17:27:82:ea -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP7CPFiIfC3iNWUixWtg7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhNDQzMzg2NTk4NWE3YmI1ZTI2OWMzNzk0YWU2ZjE2NGNm YzJkZGIwHhcNMjUxMjA2MDYwMDUxWhcNMjUxMjA3MDYwMDUxWjAzMTEwLwYDVQQD Eyg0Yzc4MThmNzM3YTdkNTg1MTcwMmQ2YzJlMzkxNTdiZDE0OGJlMmQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmqHe3IvoInoREoFQASq4bw2qYcmb iHPT5o9ork4qDVVOaj1HNMyx5Swj6Jsq1vVeEYnOiVDquGw6v7G6++EbJeet+vdE QSiNDMU3UkC3aQvBxlHErHj07dT0FumjM23s8TC2D6lNtXba0JPAl30fzBUaUxTG 254TF0UdvixQ/8CmAQTLIOvaxCGAWkLzpJw5Fyzdft8A8c6PsPnekOTFHeId27rN vR+JLLRD3hpMvPBP3dRjvO7JpS4PD9lc195QhGU4evbxa1tSAth6MtKAfkU7N97X dqFk8osqh09XYwkKedJNkbcxW3kjGleydrznJfCkX5AzNKit5mfKwfvvxwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEx4GPc3p9WFFwLWwuORV70Ui+LSMB8GA1UdIwQY MBaAFLpEM4ZZhae7XiacN5SubxZM/C3bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdWtRemhsbUZwN3RlSnB3M2xLNXZGa3o4TGRzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS9hYjMyMTktYzY0Yi00NzBlLTgzNDEt M2ExMjAyNzQwMGU2LzEvdWtRemhsbUZwN3RlSnB3M2xLNXZGa3o4TGRzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OS9hYjMyMTktYzY0Yi00NzBlLTgzNDEtM2ExMjAyNzQwMGU2 LzEvdWtRemhsbUZwN3RlSnB3M2xLNXZGa3o4TGRzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMuqQakBz BdydaUqPjqpxB+Ij1nJNZkbNMQiqRGDSllBby7MpN6fBb6vPFVhgNM6gVmXGHwe0 LxcTOteAi5dQZjj6GKCr6QJaYycFD10AbQUpfIj6UIwH1airPy9xru+x0aRBe/B7 4WNyH05VSlrnsNuEW0gzQQduz4UxCQ2+vbJxecvvr22qphdoWuMs3qq6xb/ocox/ CTHchbIQ7a8RxJwNSHjOEg/i/JLdzFuTmXYIO+VL6+FYSK/LTSNwStDskXbTd4+F beYBqGb+pNSTL3fwK+7gJ2e3SHV/FIYgszASixSsmQ6SsNQZj2A+8m2O/EfzdN2/ zvzzDs4cFyeC6g== -----END CERTIFICATE-----Generated at Sat Dec 6 14:48:26 2025 by rpki-client