This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/03f9ee-53e3-4f69-b8b0-c138e5c27c2b/1/UhqgJHWNjRBOEXnFUDmBZjav4pg.mft File: UhqgJHWNjRBOEXnFUDmBZjav4pg.mft (raw, json) Hash identifier: 6i+tVWs0eKEm191WPhEpc//io2Ru4CJ8vk+qIiYHzEA= Subject key identifier: 8A:09:3F:56:79:89:47:9E:58:66:CB:58:45:22:45:60:09:3A:F4:3B Authority key identifier: 52:1A:A0:24:75:8D:8D:10:4E:11:79:C5:50:39:81:66:36:AF:E2:98 Certificate issuer: /CN=521aa024758d8d104e1179c55039816636afe298 Certificate serial: 019AF50B7DF9C43026E0B3735F666109D37F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UhqgJHWNjRBOEXnFUDmBZjav4pg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/03f9ee-53e3-4f69-b8b0-c138e5c27c2b/1/UhqgJHWNjRBOEXnFUDmBZjav4pg.mft Manifest number: 1761 Signing time: Sat 06 Dec 2025 19:02:42 +0000 Manifest this update: Sat 06 Dec 2025 19:02:42 +0000 Manifest next update: Sun 07 Dec 2025 19:02:42 +0000 Files and hashes: 1: UhqgJHWNjRBOEXnFUDmBZjav4pg.crl (hash: QuBW6n9mOiiMX20WY6SbdR1muQDNBiQxChRWi9lYTmM=) 2: wzHTUEDPSJ9fu6Go3MzUkAR9gVE.roa (hash: HH9rFvWwfqcHjpbJnsKsdwBfEEqoBLNu0bOt5Pi9+gU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/03f9ee-53e3-4f69-b8b0-c138e5c27c2b/1/UhqgJHWNjRBOEXnFUDmBZjav4pg.crl rsync://rpki.ripe.net/repository/DEFAULT/97/03f9ee-53e3-4f69-b8b0-c138e5c27c2b/1/UhqgJHWNjRBOEXnFUDmBZjav4pg.mft rsync://rpki.ripe.net/repository/DEFAULT/UhqgJHWNjRBOEXnFUDmBZjav4pg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:0b:7d:f9:c4:30:26:e0:b3:73:5f:66:61:09:d3:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=521aa024758d8d104e1179c55039816636afe298 Validity Not Before: Dec 6 19:02:42 2025 GMT Not After : Dec 7 19:02:42 2025 GMT Subject: CN=8a093f567989479e5866cb5845224560093af43b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:5e:f7:1a:fc:ca:4e:f5:26:81:67:19:02:3f: d9:b4:61:ab:a9:9a:8c:40:11:9b:c0:4e:45:4f:75: 3b:66:66:34:61:eb:02:e5:f5:8f:9a:bb:b5:ab:53: c0:e9:59:dd:86:ce:cc:5b:0f:60:bc:50:07:7a:77: 7e:3d:4d:65:d9:49:53:bb:68:c2:19:2f:c3:94:ee: ac:e8:c9:df:0b:4f:67:ec:1e:b6:ea:b4:0f:fd:2b: e8:a5:8b:cf:fa:e1:18:56:da:0b:0e:15:54:e0:6d: 36:1f:df:13:27:d0:34:92:2a:20:38:64:ac:40:82: ba:90:ac:a7:4b:9b:e8:3f:f1:a4:34:e7:50:63:1e: 2f:39:5d:13:d4:a4:68:d8:68:39:0d:c6:b4:2e:6c: c5:7a:08:34:e0:cd:ee:7b:d7:f8:c3:72:7d:11:63: e1:5c:1c:5f:f4:16:e5:ea:34:34:41:cc:f6:66:f2: 59:d3:0d:0a:69:0f:7f:5d:3e:81:6b:7d:3d:53:39: 3b:63:02:e7:73:8c:99:cc:e6:04:f3:71:fe:5a:ab: 8c:13:ce:af:08:a1:3b:3f:b3:80:28:14:7a:01:7a: 30:38:5f:94:e2:68:80:ca:f8:b3:a8:45:12:2d:e2: 5b:b6:22:1b:92:6d:3f:ee:2f:7c:f1:e3:a2:31:50: e9:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:09:3F:56:79:89:47:9E:58:66:CB:58:45:22:45:60:09:3A:F4:3B X509v3 Authority Key Identifier: keyid:52:1A:A0:24:75:8D:8D:10:4E:11:79:C5:50:39:81:66:36:AF:E2:98 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UhqgJHWNjRBOEXnFUDmBZjav4pg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/03f9ee-53e3-4f69-b8b0-c138e5c27c2b/1/UhqgJHWNjRBOEXnFUDmBZjav4pg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/97/03f9ee-53e3-4f69-b8b0-c138e5c27c2b/1/UhqgJHWNjRBOEXnFUDmBZjav4pg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 90:39:08:29:3c:2b:9c:a5:21:da:56:dc:92:55:1a:c6:93:19: 91:4b:48:96:59:82:74:73:df:34:86:09:5f:f3:24:54:bb:2e: 82:21:44:ef:62:f9:6c:bb:e0:5d:07:17:79:3f:19:51:a9:9b: 87:bc:a6:5a:51:62:79:b4:91:d0:1d:b5:ab:f4:ac:7d:43:2a: 7b:74:63:c7:d7:3d:28:68:7a:f4:f1:b9:03:4f:31:1e:8d:0d: 6a:11:14:a6:a2:54:ac:38:37:5f:db:0a:b0:ac:f9:ce:d0:b2: 50:73:0e:0b:e9:e1:0c:ad:c8:e5:93:f3:e4:a1:83:19:3e:88: 4f:1c:d5:63:ce:fd:c1:1c:e4:e7:f1:e4:eb:db:5d:32:9a:b4: 24:6b:12:7c:86:7e:1d:df:0a:98:fe:f3:ff:61:88:ef:18:af: f9:40:50:b6:65:f7:9f:c9:99:0b:87:30:87:60:62:e7:f3:20: ad:6e:51:62:e3:02:8c:8a:5b:b0:3f:fe:f3:5b:d2:1d:92:57: 19:02:96:2f:07:49:71:87:eb:62:1c:36:0c:91:6d:8c:68:99: 89:9b:8a:a1:83:d0:87:43:1d:c7:59:5c:83:df:40:11:3a:86: ca:d1:5a:9b:bc:40:60:1a:4b:4e:04:a9:71:3d:19:f8:8c:de: 05:1e:c2:bc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1C335xDAm4LNzX2ZhCdN/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyMWFhMDI0NzU4ZDhkMTA0ZTExNzljNTUwMzk4MTY2MzZh ZmUyOTgwHhcNMjUxMjA2MTkwMjQyWhcNMjUxMjA3MTkwMjQyWjAzMTEwLwYDVQQD Eyg4YTA5M2Y1Njc5ODk0NzllNTg2NmNiNTg0NTIyNDU2MDA5M2FmNDNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0l73GvzKTvUmgWcZAj/ZtGGrqZqM QBGbwE5FT3U7ZmY0YesC5fWPmru1q1PA6Vndhs7MWw9gvFAHend+PU1l2UlTu2jC GS/DlO6s6MnfC09n7B626rQP/SvopYvP+uEYVtoLDhVU4G02H98TJ9A0kiogOGSs QIK6kKynS5voP/GkNOdQYx4vOV0T1KRo2Gg5Dca0LmzFegg04M3ue9f4w3J9EWPh XBxf9Bbl6jQ0Qcz2ZvJZ0w0KaQ9/XT6Ba309Uzk7YwLnc4yZzOYE83H+WquME86v CKE7P7OAKBR6AXowOF+U4miAyvizqEUSLeJbtiIbkm0/7i988eOiMVDp3QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIoJP1Z5iUeeWGbLWEUiRWAJOvQ7MB8GA1UdIwQY MBaAFFIaoCR1jY0QThF5xVA5gWY2r+KYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVWhxZ0pIV05qUkJPRVhuRlVEbUJaamF2NHBnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny8wM2Y5ZWUtNTNlMy00ZjY5LWI4YjAt YzEzOGU1YzI3YzJiLzEvVWhxZ0pIV05qUkJPRVhuRlVEbUJaamF2NHBnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Ny8wM2Y5ZWUtNTNlMy00ZjY5LWI4YjAtYzEzOGU1YzI3YzJi LzEvVWhxZ0pIV05qUkJPRVhuRlVEbUJaamF2NHBnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkDkIKTwr nKUh2lbcklUaxpMZkUtIllmCdHPfNIYJX/MkVLsugiFE72L5bLvgXQcXeT8ZUamb h7ymWlFiebSR0B21q/SsfUMqe3Rjx9c9KGh69PG5A08xHo0NahEUpqJUrDg3X9sK sKz5ztCyUHMOC+nhDK3I5ZPz5KGDGT6ITxzVY879wRzk5/Hk69tdMpq0JGsSfIZ+ Hd8KmP7z/2GI7xiv+UBQtmX3n8mZC4cwh2Bi5/MgrW5RYuMCjIpbsD/+81vSHZJX GQKWLwdJcYfrYhw2DJFtjGiZiZuKoYPQh0Mdx1lcg99AETqGytFam7xAYBpLTgSp cT0Z+IzeBR7CvA== -----END CERTIFICATE-----Generated at Sat Dec 6 23:11:26 2025 by rpki-client