This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/8b07cd-0ced-4afc-8d02-972a4c3dc3f3/1/U7YqzmFbkGtCqyf0-x0gPfNtVDY.mft File: U7YqzmFbkGtCqyf0-x0gPfNtVDY.mft (raw, json) Hash identifier: W65uv1ySFar0aE4piqyS5PIdwOvhi9ffuju7fLkIC/8= Subject key identifier: B4:64:03:A0:7A:5F:E9:14:25:9F:99:EA:4C:94:38:54:0B:E9:AD:A9 Authority key identifier: 53:B6:2A:CE:61:5B:90:6B:42:AB:27:F4:FB:1D:20:3D:F3:6D:54:36 Certificate issuer: /CN=53b62ace615b906b42ab27f4fb1d203df36d5436 Certificate serial: 019AF27656295021B0085E7F091F3D4BD524 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U7YqzmFbkGtCqyf0-x0gPfNtVDY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/8b07cd-0ced-4afc-8d02-972a4c3dc3f3/1/U7YqzmFbkGtCqyf0-x0gPfNtVDY.mft Manifest number: 1771 Signing time: Sat 06 Dec 2025 07:00:32 +0000 Manifest this update: Sat 06 Dec 2025 07:00:32 +0000 Manifest next update: Sun 07 Dec 2025 07:00:32 +0000 Files and hashes: 1: 1CCvzsEpR2HzWfAtCPfz-prL4Xw.roa (hash: xMXmg6U7dk2I47UFlru0YwTYb2PTB2hNFflS+Hs5NZA=) 2: 47T-_h4yrwTkNISxK8J3mV88Fh0.roa (hash: BQum24aWy9VPt+BVB7kWULFG+ntEIPlMGrK1sM76ojQ=) 3: U7YqzmFbkGtCqyf0-x0gPfNtVDY.crl (hash: TrEWaeEPr4qhqeq7dlN4YYOxJn3pqi+AuNxnCkKDX50=) 4: _Swn7rfHkqyddWiH6mJBPzEvtPw.roa (hash: DdKMWCZ6/KHD8pm9QRG9mImRVRpGoqtnHO9unsKXibs=) 5: tNvAcIt1AfnmrpYr9vYkkFneZ2Y.roa (hash: gVnI/4eE/aC58PSWg9zuIzqcxtqe9LJ1Nbo9TV7QxCQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/8b07cd-0ced-4afc-8d02-972a4c3dc3f3/1/U7YqzmFbkGtCqyf0-x0gPfNtVDY.crl rsync://rpki.ripe.net/repository/DEFAULT/9d/8b07cd-0ced-4afc-8d02-972a4c3dc3f3/1/U7YqzmFbkGtCqyf0-x0gPfNtVDY.mft rsync://rpki.ripe.net/repository/DEFAULT/U7YqzmFbkGtCqyf0-x0gPfNtVDY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:56:29:50:21:b0:08:5e:7f:09:1f:3d:4b:d5:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53b62ace615b906b42ab27f4fb1d203df36d5436 Validity Not Before: Dec 6 07:00:32 2025 GMT Not After : Dec 7 07:00:32 2025 GMT Subject: CN=b46403a07a5fe914259f99ea4c9438540be9ada9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:fc:66:37:b2:2c:bf:80:f7:e3:0d:02:1f:84: 7d:72:96:43:0b:40:47:93:ba:09:31:04:2c:eb:89: 6b:cc:c7:dc:10:6f:e5:f2:0a:88:98:26:94:7e:7f: 91:99:de:43:e4:b5:c5:48:62:91:73:be:63:6c:32: 39:bd:21:86:07:b6:ee:9e:66:bb:1f:84:14:c3:7c: bb:b8:66:8c:87:d4:01:60:b9:51:ef:1b:e9:a6:0f: 5b:43:ea:1a:64:10:ce:d3:2e:b1:d9:a8:c8:08:8d: e4:5e:06:ba:c2:d5:f0:54:a9:49:b9:a4:f2:cf:6a: 57:bd:b3:d0:95:d5:85:44:54:dc:ea:9d:37:88:c3: 17:8c:d0:8a:de:b2:d8:44:c4:de:bb:f8:74:01:c0: 33:11:a1:c6:fa:7b:b5:41:ee:a3:b8:10:2e:9b:f2: 94:7a:13:3a:8f:8a:0a:51:0d:33:06:59:2d:f4:be: 15:2d:4a:40:03:70:79:ba:dc:ac:12:df:22:fd:ed: f3:72:a1:0e:f0:a8:f7:f5:fe:74:1f:9f:76:dd:31: 5f:98:c1:17:8b:17:76:5c:e9:b1:a4:c7:27:b0:9a: 50:cf:c9:ac:3a:c1:5d:9f:7e:bf:dd:f3:08:3c:17: 05:18:4f:63:ee:74:3c:a1:67:d3:32:08:e0:a9:eb: 8d:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:64:03:A0:7A:5F:E9:14:25:9F:99:EA:4C:94:38:54:0B:E9:AD:A9 X509v3 Authority Key Identifier: keyid:53:B6:2A:CE:61:5B:90:6B:42:AB:27:F4:FB:1D:20:3D:F3:6D:54:36 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U7YqzmFbkGtCqyf0-x0gPfNtVDY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/8b07cd-0ced-4afc-8d02-972a4c3dc3f3/1/U7YqzmFbkGtCqyf0-x0gPfNtVDY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/8b07cd-0ced-4afc-8d02-972a4c3dc3f3/1/U7YqzmFbkGtCqyf0-x0gPfNtVDY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 34:80:da:7a:cd:9c:12:fb:14:00:6e:0c:39:a9:18:ef:db:ed: a2:ff:42:08:95:7a:fe:42:d8:0a:c6:3e:da:97:c5:c2:a8:fa: f8:c6:dc:8d:19:10:44:db:04:e3:26:d2:bb:52:d3:d8:1b:2f: 67:63:fc:bc:75:2f:58:d9:2a:f9:37:53:c8:58:b4:7b:50:90: da:cd:a8:5a:05:60:f5:dc:71:b7:3f:c7:3d:3e:2f:00:5e:17: 65:95:98:b7:1a:d1:90:8f:ec:c9:f7:fc:82:cf:8e:bb:a0:ed: 6a:ff:53:8c:e3:1a:8d:58:41:f0:b8:ac:20:6a:93:5d:a2:cb: 1e:98:52:91:d0:fb:59:a5:3a:da:6c:f8:1d:67:0b:ba:08:51: 71:80:c3:d4:8d:af:01:25:82:e4:a9:d2:26:9a:ab:1a:f3:11: f2:e3:0e:ab:23:7f:70:51:56:50:bf:c7:f9:ac:15:eb:70:2e: df:76:a2:4a:d1:46:6d:fd:01:6e:86:46:6e:90:1a:50:8d:39: ce:35:cb:54:1d:ea:c6:e6:b2:f1:12:df:e2:89:51:0a:e4:4a: 20:f3:cf:6a:32:33:4f:13:fe:e6:ea:9b:61:7c:f4:e6:a8:7b: cb:12:cc:50:fb:e3:47:0d:53:88:28:98:38:cc:42:dc:51:b6: dc:b9:d8:12 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydlYpUCGwCF5/CR89S9UkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzYjYyYWNlNjE1YjkwNmI0MmFiMjdmNGZiMWQyMDNkZjM2 ZDU0MzYwHhcNMjUxMjA2MDcwMDMyWhcNMjUxMjA3MDcwMDMyWjAzMTEwLwYDVQQD EyhiNDY0MDNhMDdhNWZlOTE0MjU5Zjk5ZWE0Yzk0Mzg1NDBiZTlhZGE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlvxmN7Isv4D34w0CH4R9cpZDC0BH k7oJMQQs64lrzMfcEG/l8gqImCaUfn+Rmd5D5LXFSGKRc75jbDI5vSGGB7bunma7 H4QUw3y7uGaMh9QBYLlR7xvppg9bQ+oaZBDO0y6x2ajICI3kXga6wtXwVKlJuaTy z2pXvbPQldWFRFTc6p03iMMXjNCK3rLYRMTeu/h0AcAzEaHG+nu1Qe6juBAum/KU ehM6j4oKUQ0zBlkt9L4VLUpAA3B5utysEt8i/e3zcqEO8Kj39f50H5923TFfmMEX ixd2XOmxpMcnsJpQz8msOsFdn36/3fMIPBcFGE9j7nQ8oWfTMgjgqeuNaQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLRkA6B6X+kUJZ+Z6kyUOFQL6a2pMB8GA1UdIwQY MBaAFFO2Ks5hW5BrQqsn9PsdID3zbVQ2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVTdZcXptRmJrR3RDcXlmMC14MGdQZk50VkRZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZC84YjA3Y2QtMGNlZC00YWZjLThkMDIt OTcyYTRjM2RjM2YzLzEvVTdZcXptRmJrR3RDcXlmMC14MGdQZk50VkRZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85ZC84YjA3Y2QtMGNlZC00YWZjLThkMDItOTcyYTRjM2RjM2Yz LzEvVTdZcXptRmJrR3RDcXlmMC14MGdQZk50VkRZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANIDaes2c EvsUAG4MOakY79vtov9CCJV6/kLYCsY+2pfFwqj6+MbcjRkQRNsE4ybSu1LT2Bsv Z2P8vHUvWNkq+TdTyFi0e1CQ2s2oWgVg9dxxtz/HPT4vAF4XZZWYtxrRkI/syff8 gs+Ou6Dtav9TjOMajVhB8LisIGqTXaLLHphSkdD7WaU62mz4HWcLughRcYDD1I2v ASWC5KnSJpqrGvMR8uMOqyN/cFFWUL/H+awV63Au33aiStFGbf0BboZGbpAaUI05 zjXLVB3qxuay8RLf4olRCuRKIPPPajIzTxP+5uqbYXz05qh7yxLMUPvjRw1TiCiY OMxC3FG23LnYEg== -----END CERTIFICATE-----Generated at Sat Dec 6 10:05:18 2025 by rpki-client