This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/a28b5c-88d7-4ad4-9e1d-8ac17e9c40db/1/UHDcUgTez3q-pQcNdfoFjIrAE9U.mft File: UHDcUgTez3q-pQcNdfoFjIrAE9U.mft (raw, json) Hash identifier: x8uC2wg7Vb5Rjl78pE4OQ7+TWzUGlAv113ksOFZQxlA= Subject key identifier: DD:DA:42:3A:56:DD:B2:06:84:20:45:C5:42:76:2F:5F:C2:AF:3C:0A Authority key identifier: 50:70:DC:52:04:DE:CF:7A:BE:A5:07:0D:75:FA:05:8C:8A:C0:13:D5 Certificate issuer: /CN=5070dc5204decf7abea5070d75fa058c8ac013d5 Certificate serial: 019AF12CC72CCB137BAEA74E80C2140E141F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UHDcUgTez3q-pQcNdfoFjIrAE9U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/a28b5c-88d7-4ad4-9e1d-8ac17e9c40db/1/UHDcUgTez3q-pQcNdfoFjIrAE9U.mft Manifest number: 1482 Signing time: Sat 06 Dec 2025 01:00:34 +0000 Manifest this update: Sat 06 Dec 2025 01:00:34 +0000 Manifest next update: Sun 07 Dec 2025 01:00:34 +0000 Files and hashes: 1: 1qF2qpZ4KDEQgCHi8Zz6Mofp1Bw.roa (hash: ZUGdPkmwhsuvGIfhBFvpGPh0RIr8NwcoDU94MyjHlG0=) 2: UHDcUgTez3q-pQcNdfoFjIrAE9U.crl (hash: QRqPKQW4bZQf3pFOCFEnLzE37pM0zF8aI3bQr29lYSo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/a28b5c-88d7-4ad4-9e1d-8ac17e9c40db/1/UHDcUgTez3q-pQcNdfoFjIrAE9U.crl rsync://rpki.ripe.net/repository/DEFAULT/8b/a28b5c-88d7-4ad4-9e1d-8ac17e9c40db/1/UHDcUgTez3q-pQcNdfoFjIrAE9U.mft rsync://rpki.ripe.net/repository/DEFAULT/UHDcUgTez3q-pQcNdfoFjIrAE9U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2c:c7:2c:cb:13:7b:ae:a7:4e:80:c2:14:0e:14:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5070dc5204decf7abea5070d75fa058c8ac013d5 Validity Not Before: Dec 6 01:00:34 2025 GMT Not After : Dec 7 01:00:34 2025 GMT Subject: CN=ddda423a56ddb206842045c542762f5fc2af3c0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:82:3f:2d:f9:7f:67:07:fa:7b:e8:05:40:5d: 89:cf:e3:b9:14:20:09:b4:59:40:0e:be:c4:dc:0b: a3:a6:47:20:d2:b9:d3:3c:21:7d:bd:4e:b6:c1:59: 52:16:c7:e4:0b:44:9d:49:28:12:b0:6a:59:80:bd: 9b:3c:99:36:02:a9:b5:f6:fb:3c:13:83:5b:2b:54: f4:dd:7a:03:9e:62:35:2e:54:60:a4:61:8c:36:b5: 57:2d:da:fe:53:32:35:90:92:31:b5:d9:b6:ce:25: f2:2d:2d:3d:32:c5:91:f8:89:86:da:6a:b3:c0:16: 2f:61:b0:9d:89:c3:33:75:71:d5:59:4c:9a:46:9e: 3c:35:52:04:a2:6c:1b:3f:26:99:b0:60:8d:24:73: 11:4c:b6:85:55:ed:7a:65:a9:67:9a:67:7d:d6:20: e9:2b:56:3b:a4:e7:53:f2:91:b0:78:3f:d7:7b:04: e0:19:98:e7:15:51:35:a0:ce:e1:3a:c6:10:05:a0: 2a:a2:bb:18:3c:b9:61:9e:60:27:2e:32:70:f2:f1: ae:7d:f3:d4:53:d1:61:58:09:63:cb:f6:6b:33:b7: fc:8e:0c:d2:98:8c:49:21:7f:7b:4c:5b:8e:d3:e6: 57:ad:e2:66:c6:96:c4:c6:17:f7:3e:2b:7f:d9:5e: f2:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:DA:42:3A:56:DD:B2:06:84:20:45:C5:42:76:2F:5F:C2:AF:3C:0A X509v3 Authority Key Identifier: keyid:50:70:DC:52:04:DE:CF:7A:BE:A5:07:0D:75:FA:05:8C:8A:C0:13:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UHDcUgTez3q-pQcNdfoFjIrAE9U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/a28b5c-88d7-4ad4-9e1d-8ac17e9c40db/1/UHDcUgTez3q-pQcNdfoFjIrAE9U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/a28b5c-88d7-4ad4-9e1d-8ac17e9c40db/1/UHDcUgTez3q-pQcNdfoFjIrAE9U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d6:96:db:ba:0c:ea:fd:93:0a:38:f0:0a:b5:eb:34:c3:18:1b: 73:19:c1:09:63:c2:6b:40:87:0f:af:95:37:24:2e:7d:f4:a7: a3:df:be:6b:cb:e5:bb:8e:47:fc:84:3d:1d:5e:b6:dc:0b:25: a6:41:4a:dc:f9:8d:41:81:37:82:22:5f:97:cf:79:b7:e4:74: 91:bc:a8:bd:5a:62:e8:74:49:45:cd:4c:6a:c6:cd:76:19:f4: 17:61:8b:ad:a6:bd:8c:ba:de:c8:a7:87:ab:99:12:ab:a0:e6: d2:ce:3c:c2:72:11:b8:d4:47:49:b5:6a:81:54:11:40:5a:02: a0:05:9b:5c:b8:25:82:cf:f2:8e:58:65:9f:b3:8a:09:67:d5: 6e:3b:13:d2:9d:6c:7f:11:ed:4a:e7:05:cf:a1:95:f3:0d:62: 2b:4b:2c:e3:27:b0:bd:19:17:fa:1c:1b:01:ca:fb:78:48:dd: df:40:0a:dc:bc:fd:33:2c:9f:ee:06:0c:12:b0:d3:47:63:ac: f1:5a:b7:8c:fe:69:ff:0d:9f:50:ec:07:c1:c6:28:4e:f5:a3: 3c:d5:7c:6b:7a:89:3c:97:81:8b:e3:09:f6:e3:23:0f:3b:48: fb:fb:29:7a:58:91:63:7f:f9:e9:90:96:e3:f5:12:53:47:be: ef:6b:eb:43 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLMcsyxN7rqdOgMIUDhQfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUwNzBkYzUyMDRkZWNmN2FiZWE1MDcwZDc1ZmEwNThjOGFj MDEzZDUwHhcNMjUxMjA2MDEwMDM0WhcNMjUxMjA3MDEwMDM0WjAzMTEwLwYDVQQD EyhkZGRhNDIzYTU2ZGRiMjA2ODQyMDQ1YzU0Mjc2MmY1ZmMyYWYzYzBhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAooI/Lfl/Zwf6e+gFQF2Jz+O5FCAJ tFlADr7E3Aujpkcg0rnTPCF9vU62wVlSFsfkC0SdSSgSsGpZgL2bPJk2Aqm19vs8 E4NbK1T03XoDnmI1LlRgpGGMNrVXLdr+UzI1kJIxtdm2ziXyLS09MsWR+ImG2mqz wBYvYbCdicMzdXHVWUyaRp48NVIEomwbPyaZsGCNJHMRTLaFVe16Zalnmmd91iDp K1Y7pOdT8pGweD/XewTgGZjnFVE1oM7hOsYQBaAqorsYPLlhnmAnLjJw8vGuffPU U9FhWAljy/ZrM7f8jgzSmIxJIX97TFuO0+ZXreJmxpbExhf3Pit/2V7y8wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN3aQjpW3bIGhCBFxUJ2L1/CrzwKMB8GA1UdIwQY MBaAFFBw3FIE3s96vqUHDXX6BYyKwBPVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVUhEY1VnVGV6M3EtcFFjTmRmb0ZqSXJBRTlVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9hMjhiNWMtODhkNy00YWQ0LTllMWQt OGFjMTdlOWM0MGRiLzEvVUhEY1VnVGV6M3EtcFFjTmRmb0ZqSXJBRTlVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Yi9hMjhiNWMtODhkNy00YWQ0LTllMWQtOGFjMTdlOWM0MGRi LzEvVUhEY1VnVGV6M3EtcFFjTmRmb0ZqSXJBRTlVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA1pbbugzq /ZMKOPAKtes0wxgbcxnBCWPCa0CHD6+VNyQuffSno9++a8vlu45H/IQ9HV623Asl pkFK3PmNQYE3giJfl895t+R0kbyovVpi6HRJRc1MasbNdhn0F2GLraa9jLreyKeH q5kSq6Dm0s48wnIRuNRHSbVqgVQRQFoCoAWbXLglgs/yjlhln7OKCWfVbjsT0p1s fxHtSucFz6GV8w1iK0ss4yewvRkX+hwbAcr7eEjd30AK3Lz9Myyf7gYMErDTR2Os 8Vq3jP5p/w2fUOwHwcYoTvWjPNV8a3qJPJeBi+MJ9uMjDztI+/speliRY3/56ZCW 4/USU0e+72vrQw== -----END CERTIFICATE-----Generated at Sat Dec 6 08:20:26 2025 by rpki-client