This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/76a60e-0d81-4c41-b889-91fc0f51ea07/1/UUtNPv-4vQsTNu68uCe3fhKeD28.mft File: UUtNPv-4vQsTNu68uCe3fhKeD28.mft (raw, json) Hash identifier: GUq0GidzuFs0KXoN/xz1zvZUEbooxd+ZsO6C4lP+Rsw= Subject key identifier: 89:D7:0F:CC:7D:A8:D5:33:99:13:16:ED:D8:AB:5F:06:8E:03:87:91 Authority key identifier: 51:4B:4D:3E:FF:B8:BD:0B:13:36:EE:BC:B8:27:B7:7E:12:9E:0F:6F Certificate issuer: /CN=514b4d3effb8bd0b1336eebcb827b77e129e0f6f Certificate serial: 019AF0BF07F96FC3754F5C63B45C2AF323E0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UUtNPv-4vQsTNu68uCe3fhKeD28.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/76a60e-0d81-4c41-b889-91fc0f51ea07/1/UUtNPv-4vQsTNu68uCe3fhKeD28.mft Manifest number: 0BCC Signing time: Fri 05 Dec 2025 23:00:42 +0000 Manifest this update: Fri 05 Dec 2025 23:00:42 +0000 Manifest next update: Sat 06 Dec 2025 23:00:42 +0000 Files and hashes: 1: DkmUUaZoynIEdlR9hMmyYSS3NfA.roa (hash: JaWDKrMwIijsWs6TG8arC0MUQjJ3dz0V76FJO19Gqec=) 2: UUtNPv-4vQsTNu68uCe3fhKeD28.crl (hash: GiNok9xzFjLLcpi7AiHRhG2DpSpHlPwHkIBA8MeAyOE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/76a60e-0d81-4c41-b889-91fc0f51ea07/1/UUtNPv-4vQsTNu68uCe3fhKeD28.crl rsync://rpki.ripe.net/repository/DEFAULT/90/76a60e-0d81-4c41-b889-91fc0f51ea07/1/UUtNPv-4vQsTNu68uCe3fhKeD28.mft rsync://rpki.ripe.net/repository/DEFAULT/UUtNPv-4vQsTNu68uCe3fhKeD28.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 23:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:bf:07:f9:6f:c3:75:4f:5c:63:b4:5c:2a:f3:23:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=514b4d3effb8bd0b1336eebcb827b77e129e0f6f Validity Not Before: Dec 5 23:00:42 2025 GMT Not After : Dec 6 23:00:42 2025 GMT Subject: CN=89d70fcc7da8d533991316edd8ab5f068e038791 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:fc:a7:85:54:12:9c:b2:e2:23:38:92:1c:e3: 5c:e2:ad:a8:b8:93:69:bc:53:3a:7b:f7:e9:a6:eb: 10:8b:56:1e:63:b9:b6:3a:70:1e:25:b0:10:3a:92: 83:d5:de:dc:a5:ff:f3:69:98:03:d9:c7:50:fc:4c: c3:1c:b7:2d:e6:d1:f6:ba:c1:b6:3e:51:55:17:9e: 8d:a4:02:64:ad:d8:e4:0f:c1:2e:42:3d:5d:97:b0: 15:7f:82:8f:fd:27:74:b8:5a:b0:86:53:b3:62:0e: cc:71:d3:bd:35:f0:15:83:7e:70:5c:b3:19:18:79: da:ec:bd:d7:89:a8:72:d2:9d:f5:48:d5:4c:b9:ee: 7c:e9:a8:da:8d:cd:85:98:5a:62:e0:fc:74:51:36: 89:7e:e4:b1:3f:90:2f:ac:19:cf:2f:ee:5e:88:8a: 21:be:d7:c7:08:61:8c:ec:c6:05:55:d3:08:17:05: 4b:3f:c8:44:f6:b7:16:e6:95:e2:3f:cb:fa:6a:ee: ef:d7:0f:c0:8b:d6:5c:df:34:e3:c5:b4:74:9e:39: 82:c1:8c:57:42:59:af:20:bc:cd:0d:ad:77:25:3a: 90:1c:f2:ad:6e:1f:15:0f:a4:41:1d:ae:92:70:e4: 91:5a:11:cc:a7:f4:65:1b:95:96:98:85:fd:97:9c: 7b:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:D7:0F:CC:7D:A8:D5:33:99:13:16:ED:D8:AB:5F:06:8E:03:87:91 X509v3 Authority Key Identifier: keyid:51:4B:4D:3E:FF:B8:BD:0B:13:36:EE:BC:B8:27:B7:7E:12:9E:0F:6F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UUtNPv-4vQsTNu68uCe3fhKeD28.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/76a60e-0d81-4c41-b889-91fc0f51ea07/1/UUtNPv-4vQsTNu68uCe3fhKeD28.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/90/76a60e-0d81-4c41-b889-91fc0f51ea07/1/UUtNPv-4vQsTNu68uCe3fhKeD28.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 12:fa:85:83:c5:6b:6d:50:76:bb:fa:69:90:f9:21:04:a2:8e: 24:7a:9f:4a:b4:8d:fe:da:50:16:03:23:28:d4:5e:05:68:0d: 36:e7:87:f6:d0:aa:48:f1:ca:79:46:79:e3:44:54:ca:86:cb: a9:27:2d:44:21:1c:f1:82:48:54:f7:18:21:38:68:64:ee:7c: dd:32:89:7b:89:07:3b:bb:ba:92:67:41:ad:ac:8f:5a:dd:27: 9d:21:43:53:15:3c:67:a1:1d:d7:1b:9c:5f:17:8e:02:7c:58: 24:bf:84:f4:d4:61:af:5d:2d:5e:7b:97:95:e8:a2:90:e5:e0: ec:a2:87:dc:8f:ca:9e:b1:56:a8:73:c6:0f:6c:16:50:15:26: 9e:7d:89:c7:39:52:7f:66:cf:a3:3d:d5:07:39:5b:14:8c:ea: da:5e:1f:54:6a:11:53:90:29:91:ad:ad:d4:f1:a6:40:7d:14: a7:d7:94:95:ba:17:c8:60:f3:f5:2c:fe:01:5a:5f:ed:06:de: 1f:7a:23:d0:98:2a:af:f2:c2:81:2a:b2:5b:d8:e0:9b:33:df: 0f:56:7b:59:db:23:80:92:d1:c1:0d:da:a1:62:48:a3:4e:8b: 12:c4:bd:f7:14:97:8a:c9:f4:f8:09:ab:67:4f:17:39:51:86: 70:b3:1d:06 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwvwf5b8N1T1xjtFwq8yPgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUxNGI0ZDNlZmZiOGJkMGIxMzM2ZWViY2I4MjdiNzdlMTI5 ZTBmNmYwHhcNMjUxMjA1MjMwMDQyWhcNMjUxMjA2MjMwMDQyWjAzMTEwLwYDVQQD Eyg4OWQ3MGZjYzdkYThkNTMzOTkxMzE2ZWRkOGFiNWYwNjhlMDM4NzkxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvPynhVQSnLLiIziSHONc4q2ouJNp vFM6e/fppusQi1YeY7m2OnAeJbAQOpKD1d7cpf/zaZgD2cdQ/EzDHLct5tH2usG2 PlFVF56NpAJkrdjkD8EuQj1dl7AVf4KP/Sd0uFqwhlOzYg7McdO9NfAVg35wXLMZ GHna7L3Xiahy0p31SNVMue586ajajc2FmFpi4Px0UTaJfuSxP5AvrBnPL+5eiIoh vtfHCGGM7MYFVdMIFwVLP8hE9rcW5pXiP8v6au7v1w/Ai9Zc3zTjxbR0njmCwYxX QlmvILzNDa13JTqQHPKtbh8VD6RBHa6ScOSRWhHMp/RlG5WWmIX9l5x7AQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFInXD8x9qNUzmRMW7dirXwaOA4eRMB8GA1UdIwQY MBaAFFFLTT7/uL0LEzbuvLgnt34Sng9vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVVV0TlB2LTR2UXNUTnU2OHVDZTNmaEtlRDI4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC83NmE2MGUtMGQ4MS00YzQxLWI4ODkt OTFmYzBmNTFlYTA3LzEvVVV0TlB2LTR2UXNUTnU2OHVDZTNmaEtlRDI4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MC83NmE2MGUtMGQ4MS00YzQxLWI4ODktOTFmYzBmNTFlYTA3 LzEvVVV0TlB2LTR2UXNUTnU2OHVDZTNmaEtlRDI4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEvqFg8Vr bVB2u/ppkPkhBKKOJHqfSrSN/tpQFgMjKNReBWgNNueH9tCqSPHKeUZ540RUyobL qSctRCEc8YJIVPcYIThoZO583TKJe4kHO7u6kmdBrayPWt0nnSFDUxU8Z6Ed1xuc XxeOAnxYJL+E9NRhr10tXnuXleiikOXg7KKH3I/KnrFWqHPGD2wWUBUmnn2JxzlS f2bPoz3VBzlbFIzq2l4fVGoRU5Apka2t1PGmQH0Up9eUlboXyGDz9Sz+AVpf7Qbe H3oj0Jgqr/LCgSqyW9jgmzPfD1Z7WdsjgJLRwQ3aoWJIo06LEsS99xSXisn0+Amr Z08XOVGGcLMdBg== -----END CERTIFICATE-----Generated at Sat Dec 6 07:22:18 2025 by rpki-client