This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/e19a3f-05ac-4dca-a895-8662c71186c6/1/UEwHY-3Lox64nwmD3djdGIkYwu4.mft File: UEwHY-3Lox64nwmD3djdGIkYwu4.mft (raw, json) Hash identifier: EoXcXfOZfn+uDHFAW15JZqgQowNVOqLe9pwLsEQYK8k= Subject key identifier: C0:FF:77:E5:9B:B6:E9:D3:71:7A:66:0A:F4:8C:D0:30:9C:78:89:BB Authority key identifier: 50:4C:07:63:ED:CB:A3:1E:B8:9F:09:83:DD:D8:DD:18:89:18:C2:EE Certificate issuer: /CN=504c0763edcba31eb89f0983ddd8dd188918c2ee Certificate serial: 019AF1D1ADFB6C8185A6D2149E46E2B7B4CE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UEwHY-3Lox64nwmD3djdGIkYwu4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/e19a3f-05ac-4dca-a895-8662c71186c6/1/UEwHY-3Lox64nwmD3djdGIkYwu4.mft Manifest number: 0A8A Signing time: Sat 06 Dec 2025 04:00:41 +0000 Manifest this update: Sat 06 Dec 2025 04:00:41 +0000 Manifest next update: Sun 07 Dec 2025 04:00:41 +0000 Files and hashes: 1: UEwHY-3Lox64nwmD3djdGIkYwu4.crl (hash: LICH3I9Q3tzVsG2O/6C4OQh9QSD9XKoaeYq6FC+A+M4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/e19a3f-05ac-4dca-a895-8662c71186c6/1/UEwHY-3Lox64nwmD3djdGIkYwu4.crl rsync://rpki.ripe.net/repository/DEFAULT/9c/e19a3f-05ac-4dca-a895-8662c71186c6/1/UEwHY-3Lox64nwmD3djdGIkYwu4.mft rsync://rpki.ripe.net/repository/DEFAULT/UEwHY-3Lox64nwmD3djdGIkYwu4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 04:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d1:ad:fb:6c:81:85:a6:d2:14:9e:46:e2:b7:b4:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=504c0763edcba31eb89f0983ddd8dd188918c2ee Validity Not Before: Dec 6 04:00:41 2025 GMT Not After : Dec 7 04:00:41 2025 GMT Subject: CN=c0ff77e59bb6e9d3717a660af48cd0309c7889bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:9d:4d:14:86:27:2c:07:87:d8:c4:be:ec:86: 74:ac:b5:8d:f6:c8:52:05:41:c0:21:47:2c:de:55: 5b:41:93:c7:4e:6d:35:db:69:0d:42:bf:b3:54:44: 5f:59:4c:fa:79:03:84:35:76:a2:0b:a2:00:2a:a1: 0b:59:61:f3:81:25:12:cf:c7:94:1d:8c:f8:8d:c3: c5:d4:03:05:d4:e0:3c:fd:e6:b5:81:f6:18:7f:00: 5b:cb:19:74:5b:78:61:78:3a:74:08:0e:72:ad:6a: 46:d0:30:ec:27:bb:5c:a8:26:34:be:bd:80:21:78: 6a:84:aa:8a:54:be:74:34:fa:97:5a:a6:94:36:84: f2:75:13:81:96:7d:c4:7a:76:30:a4:43:24:54:bb: 54:3a:bc:06:34:c5:42:71:5e:9b:9b:46:79:ce:b8: 78:f5:ec:df:f4:ff:c4:2b:f7:3e:b1:b8:a9:af:b5: 81:a5:18:7e:d8:51:6e:7c:41:9b:7c:bf:a6:80:08: 94:11:dd:c9:0c:55:19:67:b4:b6:c9:41:88:5a:a7: 1f:87:6b:e9:ee:7e:62:80:7a:da:35:2b:d0:f3:80: bd:47:5b:23:c6:94:52:ac:bb:be:63:e2:a0:e0:17: b9:47:a2:9b:82:9b:b6:04:fe:e8:84:84:15:e6:42: 61:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:FF:77:E5:9B:B6:E9:D3:71:7A:66:0A:F4:8C:D0:30:9C:78:89:BB X509v3 Authority Key Identifier: keyid:50:4C:07:63:ED:CB:A3:1E:B8:9F:09:83:DD:D8:DD:18:89:18:C2:EE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UEwHY-3Lox64nwmD3djdGIkYwu4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/e19a3f-05ac-4dca-a895-8662c71186c6/1/UEwHY-3Lox64nwmD3djdGIkYwu4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/e19a3f-05ac-4dca-a895-8662c71186c6/1/UEwHY-3Lox64nwmD3djdGIkYwu4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a4:e3:14:5c:71:92:78:42:43:a8:9b:61:22:84:d7:7a:ea:f7: 67:6d:8d:a5:0a:90:bc:0b:be:ee:e9:05:51:3e:04:94:0f:e9: b5:f7:ff:fe:35:a2:40:19:49:7c:ef:19:9e:01:db:c3:8a:52: 9b:05:98:1e:95:29:53:68:3b:d3:d7:3f:41:ea:12:d4:16:9a: c3:06:99:02:b0:2a:5b:0f:70:85:f7:19:e1:00:b0:0d:64:f2: ac:f8:49:73:0a:7a:83:bb:ba:6b:eb:17:e6:4d:db:ab:3f:0d: 74:48:e1:b0:dd:07:c1:00:4c:2f:97:e7:ca:65:ae:77:d2:af: c3:ad:56:e2:a7:4e:48:9b:59:e0:e0:06:4d:f3:92:19:6c:00: 8e:42:a8:06:a7:13:ed:34:bb:75:d4:7a:2a:02:e1:ef:66:d1: 07:dc:25:d6:f4:91:94:65:68:2b:b9:4d:22:9d:30:e5:71:54: 63:5b:0e:ef:25:61:45:8d:cb:5b:91:2f:59:8a:8a:cf:22:bb: 8a:00:59:7c:86:b3:c4:39:88:2c:b9:c4:be:b4:ed:94:d7:ae: 29:10:40:1b:74:30:b0:4a:36:ff:0e:93:4f:bb:51:f4:1d:a2: 9f:22:71:31:80:96:85:b4:49:33:80:39:87:0a:76:7a:98:57: ea:56:c2:84 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0a37bIGFptIUnkbit7TOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUwNGMwNzYzZWRjYmEzMWViODlmMDk4M2RkZDhkZDE4ODkx OGMyZWUwHhcNMjUxMjA2MDQwMDQxWhcNMjUxMjA3MDQwMDQxWjAzMTEwLwYDVQQD EyhjMGZmNzdlNTliYjZlOWQzNzE3YTY2MGFmNDhjZDAzMDljNzg4OWJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlZ1NFIYnLAeH2MS+7IZ0rLWN9shS BUHAIUcs3lVbQZPHTm0122kNQr+zVERfWUz6eQOENXaiC6IAKqELWWHzgSUSz8eU HYz4jcPF1AMF1OA8/ea1gfYYfwBbyxl0W3hheDp0CA5yrWpG0DDsJ7tcqCY0vr2A IXhqhKqKVL50NPqXWqaUNoTydROBln3EenYwpEMkVLtUOrwGNMVCcV6bm0Z5zrh4 9ezf9P/EK/c+sbipr7WBpRh+2FFufEGbfL+mgAiUEd3JDFUZZ7S2yUGIWqcfh2vp 7n5igHraNSvQ84C9R1sjxpRSrLu+Y+Kg4Be5R6Kbgpu2BP7ohIQV5kJhNQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMD/d+WbtunTcXpmCvSM0DCceIm7MB8GA1UdIwQY MBaAFFBMB2Pty6MeuJ8Jg93Y3RiJGMLuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVUV3SFktM0xveDY0bndtRDNkamRHSWtZd3U0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy9lMTlhM2YtMDVhYy00ZGNhLWE4OTUt ODY2MmM3MTE4NmM2LzEvVUV3SFktM0xveDY0bndtRDNkamRHSWtZd3U0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Yy9lMTlhM2YtMDVhYy00ZGNhLWE4OTUtODY2MmM3MTE4NmM2 LzEvVUV3SFktM0xveDY0bndtRDNkamRHSWtZd3U0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApOMUXHGS eEJDqJthIoTXeur3Z22NpQqQvAu+7ukFUT4ElA/ptff//jWiQBlJfO8ZngHbw4pS mwWYHpUpU2g709c/QeoS1BaawwaZArAqWw9whfcZ4QCwDWTyrPhJcwp6g7u6a+sX 5k3bqz8NdEjhsN0HwQBML5fnymWud9Kvw61W4qdOSJtZ4OAGTfOSGWwAjkKoBqcT 7TS7ddR6KgLh72bRB9wl1vSRlGVoK7lNIp0w5XFUY1sO7yVhRY3LW5EvWYqKzyK7 igBZfIazxDmILLnEvrTtlNeuKRBAG3QwsEo2/w6TT7tR9B2inyJxMYCWhbRJM4A5 hwp2ephX6lbChA== -----END CERTIFICATE-----Generated at Sat Dec 6 10:37:50 2025 by rpki-client