This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/01f736-af83-456c-8b45-5146ab7ea015/1/U1glzov1RBcCgvcgokhBQVaLDn0.mft File: U1glzov1RBcCgvcgokhBQVaLDn0.mft (raw, json) Hash identifier: dLuUTsWFoRItqpeD9PUwMnl73kRGi3fbgy+USxtgxWg= Subject key identifier: 6E:26:12:77:9B:8C:A4:F7:D7:6A:30:DC:56:B3:C4:AF:AC:EE:B5:B8 Authority key identifier: 53:58:25:CE:8B:F5:44:17:02:82:F7:20:A2:48:41:41:56:8B:0E:7D Certificate issuer: /CN=535825ce8bf544170282f720a2484141568b0e7d Certificate serial: 019AF577AEB14B9BB6CE514562A00349123C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U1glzov1RBcCgvcgokhBQVaLDn0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/01f736-af83-456c-8b45-5146ab7ea015/1/U1glzov1RBcCgvcgokhBQVaLDn0.mft Manifest number: 1766 Signing time: Sat 06 Dec 2025 21:00:52 +0000 Manifest this update: Sat 06 Dec 2025 21:00:52 +0000 Manifest next update: Sun 07 Dec 2025 21:00:52 +0000 Files and hashes: 1: N395374_mmN2AD-ofI4gXJ3cQpU.roa (hash: Zf59hxbYn2Mwx3RShNxnNZI4f8JDWVmUB1iW/NWH/74=) 2: U1glzov1RBcCgvcgokhBQVaLDn0.crl (hash: 50UE6xkkTokmGdkFx4rIW1OHaDHE3JbNxX5q0ZFnly0=) 3: WX6sNrF92l686KdkTXPFkLfxe3U.roa (hash: Abr+DHAKxIPDGR7zdXI5jJnVVIXCf9i5JeUWk/vC2vA=) 4: WcSAU3UG3fbCDubUuAbDmN9BNXw.roa (hash: lUiGwZsu8aUjDmUrAqfxfzum4CcP/EsvidCuJT28td0=) 5: YsUzeXuKor8g8xJ2qQAIbZwuLdA.roa (hash: b8Dg+ptVU/0cD+fmDjz15R9Y3ThIrc8W4BKhqUm2GSI=) 6: vdc8LHeirosn85jHF2y6k4tZWpE.roa (hash: bWLLd9BGuNkbp8DQiZZnq80FzJLO4Q8aaegMFqU4oPI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c9/01f736-af83-456c-8b45-5146ab7ea015/1/U1glzov1RBcCgvcgokhBQVaLDn0.crl rsync://rpki.ripe.net/repository/DEFAULT/c9/01f736-af83-456c-8b45-5146ab7ea015/1/U1glzov1RBcCgvcgokhBQVaLDn0.mft rsync://rpki.ripe.net/repository/DEFAULT/U1glzov1RBcCgvcgokhBQVaLDn0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:77:ae:b1:4b:9b:b6:ce:51:45:62:a0:03:49:12:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=535825ce8bf544170282f720a2484141568b0e7d Validity Not Before: Dec 6 21:00:52 2025 GMT Not After : Dec 7 21:00:52 2025 GMT Subject: CN=6e2612779b8ca4f7d76a30dc56b3c4afaceeb5b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:68:c1:c0:80:ab:c2:98:ed:43:34:f9:c2:ed: a5:86:9d:9b:ef:ca:79:61:79:de:d3:20:f6:ac:b8: 0c:0b:24:5c:d5:d4:41:75:f1:c4:31:ba:e6:84:5e: 1f:5c:a8:a5:4e:12:3e:1b:b7:96:90:d1:7d:5b:33: c4:89:f8:ba:f8:dd:ed:e1:a8:66:5c:f1:dd:5a:96: 87:0f:f1:36:81:c4:1e:29:16:85:11:7c:ff:f6:88: 77:a3:03:46:1a:6d:81:78:88:00:a9:3f:b5:7c:b8: 8e:2c:4d:57:ab:eb:11:fb:16:73:c2:15:c0:1c:e5: 47:ba:a0:e1:f6:97:3f:55:f0:92:9d:35:f2:3a:0d: 42:25:1f:c4:cb:b9:45:74:2d:b3:ef:0e:4f:d0:a8: eb:ba:3f:2f:aa:71:5a:d1:b2:b3:b8:59:48:04:49: ec:3c:e3:0e:49:5a:47:2f:88:79:08:e4:de:50:74: 26:47:f3:2d:42:ff:37:73:15:bd:af:e6:40:96:70: a6:2a:de:22:33:d9:df:9b:23:c8:c3:38:70:a1:db: 89:20:c3:11:0c:2c:f0:00:54:4e:80:27:99:87:79: d9:95:4b:b7:5f:6b:5b:fd:f3:c2:cd:19:6f:e7:e6: e6:6b:fc:f4:12:84:12:a9:94:36:1a:aa:19:33:99: 51:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:26:12:77:9B:8C:A4:F7:D7:6A:30:DC:56:B3:C4:AF:AC:EE:B5:B8 X509v3 Authority Key Identifier: keyid:53:58:25:CE:8B:F5:44:17:02:82:F7:20:A2:48:41:41:56:8B:0E:7D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U1glzov1RBcCgvcgokhBQVaLDn0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/01f736-af83-456c-8b45-5146ab7ea015/1/U1glzov1RBcCgvcgokhBQVaLDn0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/01f736-af83-456c-8b45-5146ab7ea015/1/U1glzov1RBcCgvcgokhBQVaLDn0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b1:71:08:fd:3f:29:9b:2a:5d:44:8c:70:38:62:fc:c1:32:80: d5:27:88:16:ce:c3:12:a7:0b:d2:ea:30:b6:79:bd:b8:ed:43: 4a:d2:9b:9d:49:52:eb:85:04:fc:c7:04:1f:fc:9b:f9:ec:2b: 95:72:bb:f5:b8:b2:e0:07:50:5a:4f:aa:64:95:af:b1:42:78: 94:52:97:55:93:db:54:08:c7:32:89:30:98:ab:86:6c:04:e2: a6:18:1a:e3:ce:e5:e1:bf:b0:8d:ce:48:ab:34:0c:81:5b:62: be:ed:df:9a:80:ae:c4:ff:37:58:08:e1:ac:64:84:67:36:f3: b2:87:2c:55:26:44:52:d4:03:c8:4d:7f:d6:61:8c:eb:e2:0e: eb:98:91:3f:f0:d2:02:71:e1:c0:7d:6f:7c:d5:f8:7d:f8:91: a1:9c:6a:bb:26:1b:88:17:e6:a7:04:4c:17:5f:56:5e:ca:fd: 24:c1:42:bc:e5:07:ca:82:1a:c9:ca:0e:10:e6:fe:ed:56:81: 99:a6:b7:bd:1c:c2:0d:e1:3f:f1:dc:bc:fc:05:14:ca:cb:1a: 76:bd:14:4d:bc:1b:3a:93:9c:79:b5:8e:e9:74:ae:d6:70:c8: 3b:ca:7e:6c:b2:77:c9:6d:71:db:8f:a3:03:fd:1b:1a:ce:ec: 11:b7:ea:92 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1d66xS5u2zlFFYqADSRI8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzNTgyNWNlOGJmNTQ0MTcwMjgyZjcyMGEyNDg0MTQxNTY4 YjBlN2QwHhcNMjUxMjA2MjEwMDUyWhcNMjUxMjA3MjEwMDUyWjAzMTEwLwYDVQQD Eyg2ZTI2MTI3NzliOGNhNGY3ZDc2YTMwZGM1NmIzYzRhZmFjZWViNWI4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwGjBwICrwpjtQzT5wu2lhp2b78p5 YXne0yD2rLgMCyRc1dRBdfHEMbrmhF4fXKilThI+G7eWkNF9WzPEifi6+N3t4ahm XPHdWpaHD/E2gcQeKRaFEXz/9oh3owNGGm2BeIgAqT+1fLiOLE1Xq+sR+xZzwhXA HOVHuqDh9pc/VfCSnTXyOg1CJR/Ey7lFdC2z7w5P0Kjruj8vqnFa0bKzuFlIBEns POMOSVpHL4h5COTeUHQmR/MtQv83cxW9r+ZAlnCmKt4iM9nfmyPIwzhwoduJIMMR DCzwAFROgCeZh3nZlUu3X2tb/fPCzRlv5+bma/z0EoQSqZQ2GqoZM5lR2wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG4mEnebjKT312ow3FazxK+s7rW4MB8GA1UdIwQY MBaAFFNYJc6L9UQXAoL3IKJIQUFWiw59MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVTFnbHpvdjFSQmNDZ3ZjZ29raEJRVmFMRG4wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOS8wMWY3MzYtYWY4My00NTZjLThiNDUt NTE0NmFiN2VhMDE1LzEvVTFnbHpvdjFSQmNDZ3ZjZ29raEJRVmFMRG4wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOS8wMWY3MzYtYWY4My00NTZjLThiNDUtNTE0NmFiN2VhMDE1 LzEvVTFnbHpvdjFSQmNDZ3ZjZ29raEJRVmFMRG4wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsXEI/T8p mypdRIxwOGL8wTKA1SeIFs7DEqcL0uowtnm9uO1DStKbnUlS64UE/McEH/yb+ewr lXK79biy4AdQWk+qZJWvsUJ4lFKXVZPbVAjHMokwmKuGbATiphga487l4b+wjc5I qzQMgVtivu3fmoCuxP83WAjhrGSEZzbzsocsVSZEUtQDyE1/1mGM6+IO65iRP/DS AnHhwH1vfNX4ffiRoZxquyYbiBfmpwRMF19WXsr9JMFCvOUHyoIaycoOEOb+7VaB maa3vRzCDeE/8dy8/AUUyssadr0UTbwbOpOcebWO6XSu1nDIO8p+bLJ3yW1x24+j A/0bGs7sEbfqkg== -----END CERTIFICATE-----Generated at Sun Dec 7 01:39:44 2025 by rpki-client