This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/d8771a-e753-406c-a1d8-39ab77b833ea/1/U3mVYEU9z0rzH5sqQM0ji4RXxd4.mft File: U3mVYEU9z0rzH5sqQM0ji4RXxd4.mft (raw, json) Hash identifier: SOAbiwZ9SjpV26G1fn+X/s6tFlO+n29W2F3REcufn7A= Subject key identifier: 82:60:E7:6D:47:B7:A2:C4:1E:7B:C6:1B:C5:B7:2D:08:3E:7E:3F:D3 Authority key identifier: 53:79:95:60:45:3D:CF:4A:F3:1F:9B:2A:40:CD:23:8B:84:57:C5:DE Certificate issuer: /CN=53799560453dcf4af31f9b2a40cd238b8457c5de Certificate serial: 019AF12DA5E5EAC04694B38FA4153CB13770 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U3mVYEU9z0rzH5sqQM0ji4RXxd4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/d8771a-e753-406c-a1d8-39ab77b833ea/1/U3mVYEU9z0rzH5sqQM0ji4RXxd4.mft Manifest number: 0B95 Signing time: Sat 06 Dec 2025 01:01:31 +0000 Manifest this update: Sat 06 Dec 2025 01:01:31 +0000 Manifest next update: Sun 07 Dec 2025 01:01:31 +0000 Files and hashes: 1: GPBna_IoKKdQyaNksGJT2yWTCj4.roa (hash: TAihNlvs0SdUgl2vxovWMBnyUqa0RWqHLKo09+4ZR88=) 2: U3mVYEU9z0rzH5sqQM0ji4RXxd4.crl (hash: fV5hok+DrEjnGGqAkmO4kV1DeOs4zZyyUpOekz+fDoE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/d8771a-e753-406c-a1d8-39ab77b833ea/1/U3mVYEU9z0rzH5sqQM0ji4RXxd4.crl rsync://rpki.ripe.net/repository/DEFAULT/7c/d8771a-e753-406c-a1d8-39ab77b833ea/1/U3mVYEU9z0rzH5sqQM0ji4RXxd4.mft rsync://rpki.ripe.net/repository/DEFAULT/U3mVYEU9z0rzH5sqQM0ji4RXxd4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:a5:e5:ea:c0:46:94:b3:8f:a4:15:3c:b1:37:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53799560453dcf4af31f9b2a40cd238b8457c5de Validity Not Before: Dec 6 01:01:31 2025 GMT Not After : Dec 7 01:01:31 2025 GMT Subject: CN=8260e76d47b7a2c41e7bc61bc5b72d083e7e3fd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:2c:db:d1:ad:3a:80:6e:8e:df:c7:b9:a9:57: d0:9b:98:9d:6a:26:3a:5f:f7:80:87:e0:9d:3e:b0: 51:31:c5:cf:b2:10:0c:cd:1d:d7:da:58:ea:2a:6c: e6:9b:bb:b1:3f:53:82:41:63:3c:52:4f:ed:d9:73: e3:d8:b2:55:11:ae:b3:bf:66:b2:c1:48:19:39:f6: 84:07:04:a7:0e:54:16:2b:a4:f5:10:6e:ec:4b:60: 0b:76:7c:03:1f:86:a3:8e:06:7d:03:22:40:85:44: c8:80:f5:bb:1b:79:40:4d:e9:30:38:a0:8a:2a:10: ab:47:4e:4d:9d:f2:3b:25:5e:0a:02:77:43:fd:6c: 07:36:e0:e7:ef:04:89:22:19:fc:28:a9:0a:0e:46: ec:90:04:27:38:b5:a9:99:9f:c8:d7:e9:33:9f:c7: 03:d2:06:d6:44:9b:d3:63:7a:12:ef:1c:bf:23:7e: 8a:e6:85:4d:ec:c0:eb:e8:8c:6b:52:28:93:e7:86: 7a:76:1b:ef:b5:66:f0:00:92:c9:93:8a:ca:e8:54: 5a:01:a4:ae:ff:2f:cd:c4:dc:96:92:98:aa:13:9d: 73:65:16:fe:03:2c:13:27:6c:a7:b1:37:fb:af:2e: d8:14:a3:e6:1a:76:d8:25:a0:af:33:6d:02:2e:07: e7:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:60:E7:6D:47:B7:A2:C4:1E:7B:C6:1B:C5:B7:2D:08:3E:7E:3F:D3 X509v3 Authority Key Identifier: keyid:53:79:95:60:45:3D:CF:4A:F3:1F:9B:2A:40:CD:23:8B:84:57:C5:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U3mVYEU9z0rzH5sqQM0ji4RXxd4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/d8771a-e753-406c-a1d8-39ab77b833ea/1/U3mVYEU9z0rzH5sqQM0ji4RXxd4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/d8771a-e753-406c-a1d8-39ab77b833ea/1/U3mVYEU9z0rzH5sqQM0ji4RXxd4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:80:40:04:65:0a:fe:d6:2e:af:6a:cf:f1:45:84:9a:94:7f: 47:57:04:74:09:37:08:d7:58:be:92:ae:1f:93:9b:9d:d8:f8: 6a:38:36:30:31:85:85:07:12:38:b7:06:40:4a:1d:de:bb:57: f8:85:3b:94:6e:5f:91:df:30:8b:4b:ff:6b:5f:c7:fe:ec:b3: fd:80:d6:89:98:2b:d2:cf:fd:ee:41:de:fb:86:65:bb:08:e5: d4:c3:2c:23:c8:d4:5f:4f:b6:fc:84:17:c8:71:8f:86:75:47: 32:00:d8:4e:72:1b:37:70:f2:00:e1:5f:0c:64:60:eb:93:b7: 23:db:a2:4d:62:77:10:c8:9b:e8:41:54:30:a4:b3:de:39:18: 3b:ed:71:75:e1:cf:18:7f:89:3d:f0:e7:7e:87:b7:24:7c:3a: ba:68:c4:ad:9e:52:36:1f:68:32:a9:29:e1:53:65:6b:17:8b: b5:0f:ef:47:0a:7d:06:c8:15:5c:d8:41:b8:32:25:bb:fd:2b: a5:06:58:1a:47:05:1f:73:72:c1:61:d8:e1:eb:1e:85:82:76: 7b:5f:6b:a7:6b:3d:c0:20:ed:94:f0:17:2a:3c:61:09:64:bc: f7:5e:f6:bc:2e:dd:72:ca:52:6f:61:eb:b3:af:9c:77:88:db: 2f:f2:a7:de -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLaXl6sBGlLOPpBU8sTdwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzNzk5NTYwNDUzZGNmNGFmMzFmOWIyYTQwY2QyMzhiODQ1 N2M1ZGUwHhcNMjUxMjA2MDEwMTMxWhcNMjUxMjA3MDEwMTMxWjAzMTEwLwYDVQQD Eyg4MjYwZTc2ZDQ3YjdhMmM0MWU3YmM2MWJjNWI3MmQwODNlN2UzZmQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyyzb0a06gG6O38e5qVfQm5idaiY6 X/eAh+CdPrBRMcXPshAMzR3X2ljqKmzmm7uxP1OCQWM8Uk/t2XPj2LJVEa6zv2ay wUgZOfaEBwSnDlQWK6T1EG7sS2ALdnwDH4ajjgZ9AyJAhUTIgPW7G3lATekwOKCK KhCrR05NnfI7JV4KAndD/WwHNuDn7wSJIhn8KKkKDkbskAQnOLWpmZ/I1+kzn8cD 0gbWRJvTY3oS7xy/I36K5oVN7MDr6IxrUiiT54Z6dhvvtWbwAJLJk4rK6FRaAaSu /y/NxNyWkpiqE51zZRb+AywTJ2ynsTf7ry7YFKPmGnbYJaCvM20CLgfn3QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIJg521Ht6LEHnvGG8W3LQg+fj/TMB8GA1UdIwQY MBaAFFN5lWBFPc9K8x+bKkDNI4uEV8XeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVTNtVllFVTl6MHJ6SDVzcVFNMGppNFJYeGQ0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy9kODc3MWEtZTc1My00MDZjLWExZDgt MzlhYjc3YjgzM2VhLzEvVTNtVllFVTl6MHJ6SDVzcVFNMGppNFJYeGQ0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yy9kODc3MWEtZTc1My00MDZjLWExZDgtMzlhYjc3YjgzM2Vh LzEvVTNtVllFVTl6MHJ6SDVzcVFNMGppNFJYeGQ0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADoBABGUK /tYur2rP8UWEmpR/R1cEdAk3CNdYvpKuH5Obndj4ajg2MDGFhQcSOLcGQEod3rtX +IU7lG5fkd8wi0v/a1/H/uyz/YDWiZgr0s/97kHe+4Zluwjl1MMsI8jUX0+2/IQX yHGPhnVHMgDYTnIbN3DyAOFfDGRg65O3I9uiTWJ3EMib6EFUMKSz3jkYO+1xdeHP GH+JPfDnfoe3JHw6umjErZ5SNh9oMqkp4VNlaxeLtQ/vRwp9BsgVXNhBuDIlu/0r pQZYGkcFH3NywWHY4esehYJ2e19rp2s9wCDtlPAXKjxhCWS89172vC7dcspSb2Hr s6+cd4jbL/Kn3g== -----END CERTIFICATE-----Generated at Sat Dec 6 10:14:27 2025 by rpki-client