This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.mft File: UFPH2pyP_-pc7ZenmQIA1L7uQXc.mft (raw, json) Hash identifier: u8fsUAHtWIgaoe25vPcMvlS6Wx3j5pFXbYLkxuoPLk8= Subject key identifier: D4:55:8A:27:D3:44:85:FD:8C:DB:EC:C6:6F:B7:E5:B3:4E:57:30:72 Authority key identifier: 50:53:C7:DA:9C:8F:FF:EA:5C:ED:97:A7:99:02:00:D4:BE:EE:41:77 Certificate issuer: /CN=5053c7da9c8fffea5ced97a7990200d4beee4177 Certificate serial: 019AF23FF7365C3BBD7DDA5529ECB8206649 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFPH2pyP_-pc7ZenmQIA1L7uQXc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.mft Manifest number: 06AD Signing time: Sat 06 Dec 2025 06:01:09 +0000 Manifest this update: Sat 06 Dec 2025 06:01:09 +0000 Manifest next update: Sun 07 Dec 2025 06:01:09 +0000 Files and hashes: 1: CtRLEvt809yNddQQC3-YdVEz8S0.roa (hash: iOnEw767paDA6G2cUVNf8J3Qp7lK0IUOS20QbdMgtb4=) 2: UFPH2pyP_-pc7ZenmQIA1L7uQXc.crl (hash: xOudaWxJzJ++aL9GeTYd/ThQkccmHH18AKg9IqAGHto=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.crl rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.mft rsync://rpki.ripe.net/repository/DEFAULT/UFPH2pyP_-pc7ZenmQIA1L7uQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:f7:36:5c:3b:bd:7d:da:55:29:ec:b8:20:66:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5053c7da9c8fffea5ced97a7990200d4beee4177 Validity Not Before: Dec 6 06:01:09 2025 GMT Not After : Dec 7 06:01:09 2025 GMT Subject: CN=d4558a27d34485fd8cdbecc66fb7e5b34e573072 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:0d:75:74:c3:ca:23:bc:e5:6a:fa:b2:2a:0f: be:cd:b0:99:93:43:36:c3:1d:2d:13:93:00:3b:90: be:bb:0b:ba:15:f8:48:5c:26:14:74:5c:b2:15:a6: e1:71:e2:aa:a4:6f:b3:af:88:82:88:c2:0c:03:84: e9:68:dc:11:fb:7c:3e:f6:59:8e:8d:87:ca:d1:f0: 62:ed:e1:ea:f4:ce:07:eb:ed:e1:dc:e7:09:cd:5b: cd:e5:bc:49:fc:f3:f7:9f:51:1f:be:84:84:e0:72: c4:d7:0e:48:14:d7:af:37:d0:22:85:2b:6b:10:22: aa:25:0a:a3:21:b2:7b:a2:5a:ae:b3:24:10:61:16: 9d:17:6d:e2:b4:cc:f0:58:b6:72:de:b4:d3:b5:c8: 0c:2a:9d:c3:26:95:78:f6:aa:8a:c0:c2:90:74:43: 61:f7:ca:4a:78:8e:fd:0b:73:14:26:bc:7e:7e:fa: e0:cb:dc:4c:3a:c5:a7:2a:06:4e:96:8e:e0:9c:a6: a9:e9:15:0d:e2:dc:a2:37:06:22:41:35:e8:9c:28: e6:af:5b:f1:6c:05:f2:ec:f9:c2:4d:98:ac:bf:bb: 6e:d6:e9:db:52:a7:46:26:39:89:51:38:9e:62:46: e8:3b:17:19:7f:c5:90:0c:41:8d:ec:e4:59:75:0a: 85:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:55:8A:27:D3:44:85:FD:8C:DB:EC:C6:6F:B7:E5:B3:4E:57:30:72 X509v3 Authority Key Identifier: keyid:50:53:C7:DA:9C:8F:FF:EA:5C:ED:97:A7:99:02:00:D4:BE:EE:41:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFPH2pyP_-pc7ZenmQIA1L7uQXc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 34:d0:95:2c:05:a5:1e:f9:a1:8c:fc:d8:27:b0:d5:cc:bb:35: df:27:99:70:af:e8:4e:54:e8:60:35:47:83:69:a3:02:f6:88: cb:6e:a5:03:d1:6a:8b:36:61:a8:58:8b:aa:9e:2e:2a:be:7f: 67:be:2c:5d:06:26:9f:00:0c:ed:bf:0a:56:ac:71:1a:58:60: d0:01:55:6b:6a:05:54:61:95:ee:2d:50:98:a2:a2:16:01:a5: d2:41:68:f0:48:48:63:f3:3c:90:60:73:40:1d:4d:68:30:72: ac:77:6f:7e:ee:96:98:c2:a0:82:df:df:fb:a3:eb:4b:16:6e: 56:f2:b9:61:96:ed:59:26:22:82:9a:ea:01:e6:a1:79:43:cf: be:0a:64:06:a2:7b:fb:6b:3c:29:1f:af:e8:a7:33:58:8e:75: 73:fa:1f:cb:63:46:2c:89:87:c5:10:50:67:08:dc:72:b8:6b: 31:71:49:b1:e9:b2:76:60:df:c4:ed:87:e5:78:2b:30:8c:07: 96:10:63:4d:97:d7:22:92:3f:d3:c0:0c:cd:1c:c1:4d:e4:52: d9:f7:c8:6c:88:0b:b5:2d:78:62:bb:f9:e3:10:65:a8:83:c9: 40:eb:23:c0:95:fd:f8:0c:68:4b:10:22:b1:49:72:5b:f7:e8: 5e:39:ec:44 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP/c2XDu9fdpVKey4IGZJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUwNTNjN2RhOWM4ZmZmZWE1Y2VkOTdhNzk5MDIwMGQ0YmVl ZTQxNzcwHhcNMjUxMjA2MDYwMTA5WhcNMjUxMjA3MDYwMTA5WjAzMTEwLwYDVQQD EyhkNDU1OGEyN2QzNDQ4NWZkOGNkYmVjYzY2ZmI3ZTViMzRlNTczMDcyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6A11dMPKI7zlavqyKg++zbCZk0M2 wx0tE5MAO5C+uwu6FfhIXCYUdFyyFabhceKqpG+zr4iCiMIMA4TpaNwR+3w+9lmO jYfK0fBi7eHq9M4H6+3h3OcJzVvN5bxJ/PP3n1EfvoSE4HLE1w5IFNevN9AihStr ECKqJQqjIbJ7olqusyQQYRadF23itMzwWLZy3rTTtcgMKp3DJpV49qqKwMKQdENh 98pKeI79C3MUJrx+fvrgy9xMOsWnKgZOlo7gnKap6RUN4tyiNwYiQTXonCjmr1vx bAXy7PnCTZisv7tu1unbUqdGJjmJUTieYkboOxcZf8WQDEGN7ORZdQqFrQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNRViifTRIX9jNvsxm+35bNOVzByMB8GA1UdIwQY MBaAFFBTx9qcj//qXO2Xp5kCANS+7kF3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVUZQSDJweVBfLXBjN1plbm1RSUExTDd1UVhjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy8wZjhjZTctY2E5Ni00MzViLTg1NzQt YWM2MjBkYTJmODdlLzEvVUZQSDJweVBfLXBjN1plbm1RSUExTDd1UVhjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNy8wZjhjZTctY2E5Ni00MzViLTg1NzQtYWM2MjBkYTJmODdl LzEvVUZQSDJweVBfLXBjN1plbm1RSUExTDd1UVhjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANNCVLAWl HvmhjPzYJ7DVzLs13yeZcK/oTlToYDVHg2mjAvaIy26lA9FqizZhqFiLqp4uKr5/ Z74sXQYmnwAM7b8KVqxxGlhg0AFVa2oFVGGV7i1QmKKiFgGl0kFo8EhIY/M8kGBz QB1NaDByrHdvfu6WmMKggt/f+6PrSxZuVvK5YZbtWSYigprqAeaheUPPvgpkBqJ7 +2s8KR+v6KczWI51c/ofy2NGLImHxRBQZwjccrhrMXFJsemydmDfxO2H5XgrMIwH lhBjTZfXIpI/08AMzRzBTeRS2ffIbIgLtS14Yrv54xBlqIPJQOsjwJX9+AxoSxAi sUlyW/foXjnsRA== -----END CERTIFICATE-----Generated at Sat Dec 6 11:53:22 2025 by rpki-client