This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/303a43-a185-4973-86ab-7a3720d3cffc/1/Uo017K6KUozuxk3jvWO3P6QtX0o.mft File: Uo017K6KUozuxk3jvWO3P6QtX0o.mft (raw, json) Hash identifier: +O6NnASg0ccHpGZUibfrvxb8USc9DI0NHJ2LaJrTsGE= Subject key identifier: ED:B6:17:A0:D4:CC:CE:2A:6F:79:48:5E:BE:1C:33:2A:0C:4F:55:3A Authority key identifier: 52:8D:35:EC:AE:8A:52:8C:EE:C6:4D:E3:BD:63:B7:3F:A4:2D:5F:4A Certificate issuer: /CN=528d35ecae8a528ceec64de3bd63b73fa42d5f4a Certificate serial: 019AF2E43A5C55C4100199257262C3AE6C6D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Uo017K6KUozuxk3jvWO3P6QtX0o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/303a43-a185-4973-86ab-7a3720d3cffc/1/Uo017K6KUozuxk3jvWO3P6QtX0o.mft Manifest number: 0B8E Signing time: Sat 06 Dec 2025 09:00:34 +0000 Manifest this update: Sat 06 Dec 2025 09:00:34 +0000 Manifest next update: Sun 07 Dec 2025 09:00:34 +0000 Files and hashes: 1: Uo017K6KUozuxk3jvWO3P6QtX0o.crl (hash: HLpZiLKlQdY8zj2zNuBajVL98wibVVqS3PjqxgCZYe0=) 2: x9BcC6ltMUELLRncxVedvnwwXNY.roa (hash: jxvG/ttMoT+2Bd+EyDxTlnkS/FvSnX4leCJ6G9YBtks=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/303a43-a185-4973-86ab-7a3720d3cffc/1/Uo017K6KUozuxk3jvWO3P6QtX0o.crl rsync://rpki.ripe.net/repository/DEFAULT/6d/303a43-a185-4973-86ab-7a3720d3cffc/1/Uo017K6KUozuxk3jvWO3P6QtX0o.mft rsync://rpki.ripe.net/repository/DEFAULT/Uo017K6KUozuxk3jvWO3P6QtX0o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:e4:3a:5c:55:c4:10:01:99:25:72:62:c3:ae:6c:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=528d35ecae8a528ceec64de3bd63b73fa42d5f4a Validity Not Before: Dec 6 09:00:34 2025 GMT Not After : Dec 7 09:00:34 2025 GMT Subject: CN=edb617a0d4ccce2a6f79485ebe1c332a0c4f553a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:39:27:8e:0b:6e:16:ba:38:da:4c:d5:b7:1e: e7:79:ab:d7:ac:6d:20:a3:66:8f:1f:97:6e:f9:52: 33:5d:fd:cc:98:4d:8f:5c:c6:ff:f8:ef:9c:e6:c1: d3:4e:77:fb:1c:19:f3:61:46:19:f3:37:57:c0:d7: f7:d7:19:d1:20:1e:7d:8e:a0:39:40:33:7a:8c:ac: 3e:d6:89:7b:63:81:5f:ea:c7:ce:9e:3c:69:91:9e: f3:91:c0:fa:59:0b:57:e8:dd:5f:f0:6d:7d:0b:e8: e8:07:5a:9f:42:1b:4f:ab:aa:02:2d:f4:43:2d:00: 0f:16:8a:3e:6d:ab:6c:92:e1:d3:fa:57:66:71:6a: 33:21:f2:17:c1:bc:79:f0:e5:88:5c:ab:3c:03:08: 6f:6a:da:b7:0d:3a:8e:6a:ab:b1:01:ab:ac:8b:db: 86:11:f6:70:06:53:46:a7:ae:a4:2a:0b:5c:ab:3f: 84:34:e4:4a:bb:8f:ee:6e:b0:d7:7b:17:d6:d1:2e: b7:d3:2e:ca:72:26:78:90:56:15:5d:31:e6:1d:e6: 61:49:53:04:e3:e4:3f:1a:6b:74:fe:77:f0:98:db: a6:ff:fa:11:ab:d2:f9:1b:76:a2:cf:bd:85:9c:64: 1c:de:ae:52:8e:20:00:a1:13:4c:d5:7a:43:33:8e: 2c:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:B6:17:A0:D4:CC:CE:2A:6F:79:48:5E:BE:1C:33:2A:0C:4F:55:3A X509v3 Authority Key Identifier: keyid:52:8D:35:EC:AE:8A:52:8C:EE:C6:4D:E3:BD:63:B7:3F:A4:2D:5F:4A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Uo017K6KUozuxk3jvWO3P6QtX0o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/303a43-a185-4973-86ab-7a3720d3cffc/1/Uo017K6KUozuxk3jvWO3P6QtX0o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/303a43-a185-4973-86ab-7a3720d3cffc/1/Uo017K6KUozuxk3jvWO3P6QtX0o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 16:d7:50:a5:2b:ba:b7:29:c8:48:45:d0:f9:f3:78:c7:49:8b: 0f:4d:f0:d5:ea:a5:33:62:66:0f:9f:23:46:5f:df:0f:66:ce: d9:2d:d3:5f:9b:69:11:bd:8e:38:8b:87:58:9e:3f:2e:79:2d: 93:95:b9:e1:55:6d:37:2b:d0:84:57:34:73:1f:9d:0a:7c:11: 2a:21:77:4a:71:10:a6:6c:02:51:ce:2d:2f:53:78:39:f6:d1: 85:83:ca:51:07:85:ce:14:5e:44:57:4f:a2:30:b8:d3:dc:14: cf:13:44:c7:28:da:e2:ef:88:67:6d:e8:6c:2e:57:8b:d2:95: 80:4b:c3:71:9c:94:3f:27:d1:ff:ed:5b:d3:13:b5:a5:e1:f1: 05:77:99:17:14:19:0f:73:07:2a:0e:cb:89:ad:b4:c9:84:ec: 7f:fe:81:d8:05:ac:18:83:02:41:41:93:ce:9f:52:b8:08:69: 43:a0:1e:89:76:65:31:2e:99:03:6a:cc:53:18:dd:79:13:5a: 3f:1d:dc:21:5f:72:98:67:18:10:bc:4e:0f:66:5c:44:d2:93: 0b:46:d5:62:43:cf:d2:78:c9:68:49:42:ca:9d:f4:c3:49:ae: 2c:3e:95:87:6b:a2:55:d8:2c:80:9c:5b:ca:e1:93:a7:35:bc: bd:09:d6:da -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZry5DpcVcQQAZklcmLDrmxtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyOGQzNWVjYWU4YTUyOGNlZWM2NGRlM2JkNjNiNzNmYTQy ZDVmNGEwHhcNMjUxMjA2MDkwMDM0WhcNMjUxMjA3MDkwMDM0WjAzMTEwLwYDVQQD EyhlZGI2MTdhMGQ0Y2NjZTJhNmY3OTQ4NWViZTFjMzMyYTBjNGY1NTNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4zknjgtuFro42kzVtx7neavXrG0g o2aPH5du+VIzXf3MmE2PXMb/+O+c5sHTTnf7HBnzYUYZ8zdXwNf31xnRIB59jqA5 QDN6jKw+1ol7Y4Ff6sfOnjxpkZ7zkcD6WQtX6N1f8G19C+joB1qfQhtPq6oCLfRD LQAPFoo+batskuHT+ldmcWozIfIXwbx58OWIXKs8Awhvatq3DTqOaquxAausi9uG EfZwBlNGp66kKgtcqz+ENORKu4/ubrDXexfW0S630y7KciZ4kFYVXTHmHeZhSVME 4+Q/Gmt0/nfwmNum//oRq9L5G3aiz72FnGQc3q5SjiAAoRNM1XpDM44sCQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO22F6DUzM4qb3lIXr4cMyoMT1U6MB8GA1UdIwQY MBaAFFKNNeyuilKM7sZN471jtz+kLV9KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVW8wMTdLNktVb3p1eGszanZXTzNQNlF0WDBvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC8zMDNhNDMtYTE4NS00OTczLTg2YWIt N2EzNzIwZDNjZmZjLzEvVW8wMTdLNktVb3p1eGszanZXTzNQNlF0WDBvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82ZC8zMDNhNDMtYTE4NS00OTczLTg2YWItN2EzNzIwZDNjZmZj LzEvVW8wMTdLNktVb3p1eGszanZXTzNQNlF0WDBvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFtdQpSu6 tynISEXQ+fN4x0mLD03w1eqlM2JmD58jRl/fD2bO2S3TX5tpEb2OOIuHWJ4/Lnkt k5W54VVtNyvQhFc0cx+dCnwRKiF3SnEQpmwCUc4tL1N4OfbRhYPKUQeFzhReRFdP ojC409wUzxNExyja4u+IZ23obC5Xi9KVgEvDcZyUPyfR/+1b0xO1peHxBXeZFxQZ D3MHKg7Lia20yYTsf/6B2AWsGIMCQUGTzp9SuAhpQ6AeiXZlMS6ZA2rMUxjdeRNa Px3cIV9ymGcYELxOD2ZcRNKTC0bVYkPP0njJaElCyp30w0muLD6Vh2uiVdgsgJxb yuGTpzW8vQnW2g== -----END CERTIFICATE-----Generated at Sat Dec 6 12:35:58 2025 by rpki-client