This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/6d729e-e16b-41a9-9012-014c70977d49/1/UqWb8EMIAwY1n1opSR9UWwcFHAU.mft File: UqWb8EMIAwY1n1opSR9UWwcFHAU.mft (raw, json) Hash identifier: 7e0dMP7g41FEUTQknEnlrbbj2FHRlsPEN6ZaKtDSa3I= Subject key identifier: A4:98:ED:1E:BD:83:0A:27:33:7A:71:D9:60:43:19:D3:DE:2D:2F:29 Authority key identifier: 52:A5:9B:F0:43:08:03:06:35:9F:5A:29:49:1F:54:5B:07:05:1C:05 Certificate issuer: /CN=52a59bf043080306359f5a29491f545b07051c05 Certificate serial: 019AF50BC3145FD4E34B347834C5C2D4540E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UqWb8EMIAwY1n1opSR9UWwcFHAU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/6d729e-e16b-41a9-9012-014c70977d49/1/UqWb8EMIAwY1n1opSR9UWwcFHAU.mft Manifest number: 1763 Signing time: Sat 06 Dec 2025 19:02:59 +0000 Manifest this update: Sat 06 Dec 2025 19:02:59 +0000 Manifest next update: Sun 07 Dec 2025 19:02:59 +0000 Files and hashes: 1: GvWU7eZamVvazZtWUoco1OLF2MQ.roa (hash: 9kEJ/d7rwclzCBcSORu1ByXHG+IDCNPxceZqglg+1Hw=) 2: UqWb8EMIAwY1n1opSR9UWwcFHAU.crl (hash: BNpsnDx0HiPJbJBXHkHibkRI7oGMdPTUX7wmw47znVE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/6d729e-e16b-41a9-9012-014c70977d49/1/UqWb8EMIAwY1n1opSR9UWwcFHAU.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/6d729e-e16b-41a9-9012-014c70977d49/1/UqWb8EMIAwY1n1opSR9UWwcFHAU.mft rsync://rpki.ripe.net/repository/DEFAULT/UqWb8EMIAwY1n1opSR9UWwcFHAU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 19:02:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:0b:c3:14:5f:d4:e3:4b:34:78:34:c5:c2:d4:54:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52a59bf043080306359f5a29491f545b07051c05 Validity Not Before: Dec 6 19:02:59 2025 GMT Not After : Dec 7 19:02:59 2025 GMT Subject: CN=a498ed1ebd830a27337a71d9604319d3de2d2f29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:f1:55:52:d0:6c:b4:c8:c2:11:41:17:29:21: 4b:96:60:e0:45:fd:87:ce:78:1d:3a:59:66:92:95: 49:4d:1c:60:49:06:a2:72:7d:fe:65:d9:97:1b:63: 8a:a2:14:32:3e:0e:f8:eb:05:44:e8:1c:e2:a3:31: 57:22:76:83:fd:a8:03:20:cd:e5:fd:07:68:b8:32: ef:83:f3:d3:47:98:3b:28:ea:ee:23:3f:8f:bc:d9: 71:df:a1:64:f8:97:de:b1:4f:c7:6d:24:5b:5d:89: c0:02:fa:60:75:29:ab:55:af:fb:62:78:59:75:af: 6d:93:92:ea:ad:83:bb:d9:49:60:b7:d2:e5:64:5f: f8:2b:c7:30:a0:f0:a9:be:69:d7:92:44:f2:d2:47: 81:e3:87:da:97:ac:c5:34:3a:3c:26:80:72:76:ce: cb:bc:3b:16:b9:ad:1e:00:65:db:59:83:88:32:c3: 06:dc:9c:d4:c0:6d:db:3f:5b:96:74:e6:eb:7e:e0: 8a:54:8c:f7:e8:5b:f8:7d:7b:5d:9d:6f:44:06:c2: 70:cb:62:9e:3e:f6:82:38:c9:d9:15:d0:00:be:aa: 74:04:8a:dd:fe:5e:58:fd:15:33:08:54:e1:a8:1c: c9:11:a8:05:9a:6b:2a:e6:4d:c8:77:6b:d6:d6:31: 32:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:98:ED:1E:BD:83:0A:27:33:7A:71:D9:60:43:19:D3:DE:2D:2F:29 X509v3 Authority Key Identifier: keyid:52:A5:9B:F0:43:08:03:06:35:9F:5A:29:49:1F:54:5B:07:05:1C:05 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UqWb8EMIAwY1n1opSR9UWwcFHAU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/6d729e-e16b-41a9-9012-014c70977d49/1/UqWb8EMIAwY1n1opSR9UWwcFHAU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/6d729e-e16b-41a9-9012-014c70977d49/1/UqWb8EMIAwY1n1opSR9UWwcFHAU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a7:8c:1c:b2:7e:e8:24:31:b5:d0:2c:2c:d3:47:b0:71:c6:8c: 37:9d:01:3b:40:7d:ee:8d:4e:48:e0:ed:83:fd:a7:9d:96:f4: db:83:7e:37:4d:c4:53:6a:9b:68:be:3b:4d:87:65:c4:68:77: 9c:61:20:f2:07:39:9b:7c:5c:1a:d0:eb:8d:c8:8a:e2:20:b8: 51:b6:4c:8c:81:9e:08:1b:ee:b1:26:fc:99:e3:33:80:4b:87: 63:c6:63:90:aa:23:8a:87:94:23:bc:53:72:8e:e5:9c:dd:b8: f1:41:d6:18:c0:15:ea:73:c3:2c:19:4e:59:b9:88:94:71:e5: e9:fe:43:a8:69:33:22:91:24:21:68:e9:9b:67:f1:6d:e0:4a: 58:62:eb:88:04:39:19:88:02:ca:b7:8e:aa:dc:1a:6c:f5:cf: e7:a4:2a:ed:64:11:b8:3d:51:93:5b:b6:80:2e:1f:6e:37:ab: c2:9f:4a:30:4b:12:db:39:0c:84:df:46:d5:27:48:94:68:e4: 31:3b:9f:19:f7:78:30:e0:f1:58:40:85:aa:56:ec:70:53:7f: b6:9f:b9:b7:0d:6c:00:8d:04:01:6d:b8:b3:55:6b:92:59:c3: 91:c2:fa:ac:af:b7:2a:e8:b6:e1:b6:86:89:1b:31:22:36:ad: ed:9f:9e:39 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1C8MUX9TjSzR4NMXC1FQOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyYTU5YmYwNDMwODAzMDYzNTlmNWEyOTQ5MWY1NDViMDcw NTFjMDUwHhcNMjUxMjA2MTkwMjU5WhcNMjUxMjA3MTkwMjU5WjAzMTEwLwYDVQQD EyhhNDk4ZWQxZWJkODMwYTI3MzM3YTcxZDk2MDQzMTlkM2RlMmQyZjI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1fFVUtBstMjCEUEXKSFLlmDgRf2H zngdOllmkpVJTRxgSQaicn3+ZdmXG2OKohQyPg746wVE6BziozFXInaD/agDIM3l /QdouDLvg/PTR5g7KOruIz+PvNlx36Fk+JfesU/HbSRbXYnAAvpgdSmrVa/7YnhZ da9tk5LqrYO72Ulgt9LlZF/4K8cwoPCpvmnXkkTy0keB44fal6zFNDo8JoByds7L vDsWua0eAGXbWYOIMsMG3JzUwG3bP1uWdObrfuCKVIz36Fv4fXtdnW9EBsJwy2Ke PvaCOMnZFdAAvqp0BIrd/l5Y/RUzCFThqBzJEagFmmsq5k3Id2vW1jEy+QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKSY7R69gwonM3px2WBDGdPeLS8pMB8GA1UdIwQY MBaAFFKlm/BDCAMGNZ9aKUkfVFsHBRwFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXFXYjhFTUlBd1kxbjFvcFNSOVVXd2NGSEFVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy82ZDcyOWUtZTE2Yi00MWE5LTkwMTIt MDE0YzcwOTc3ZDQ5LzEvVXFXYjhFTUlBd1kxbjFvcFNSOVVXd2NGSEFVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy82ZDcyOWUtZTE2Yi00MWE5LTkwMTItMDE0YzcwOTc3ZDQ5 LzEvVXFXYjhFTUlBd1kxbjFvcFNSOVVXd2NGSEFVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAp4wcsn7o JDG10Cws00ewccaMN50BO0B97o1OSODtg/2nnZb024N+N03EU2qbaL47TYdlxGh3 nGEg8gc5m3xcGtDrjciK4iC4UbZMjIGeCBvusSb8meMzgEuHY8ZjkKojioeUI7xT co7lnN248UHWGMAV6nPDLBlOWbmIlHHl6f5DqGkzIpEkIWjpm2fxbeBKWGLriAQ5 GYgCyreOqtwabPXP56Qq7WQRuD1Rk1u2gC4fbjerwp9KMEsS2zkMhN9G1SdIlGjk MTufGfd4MODxWECFqlbscFN/tp+5tw1sAI0EAW24s1VrklnDkcL6rK+3Kui24baG iRsxIjat7Z+eOQ== -----END CERTIFICATE-----Generated at Sun Dec 7 01:50:26 2025 by rpki-client