This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.mft File: UAFR5GSyl5E3bAxXvrQMWE71oc8.mft (raw, json) Hash identifier: 0S/qKvqcD1iSV1dwa2PtTvSxH2tDK0kWJZQSUnmMc9A= Subject key identifier: 61:7E:3F:0A:F6:F2:21:7E:4B:60:8F:B8:EB:B7:D0:9D:68:FE:57:2A Authority key identifier: 50:01:51:E4:64:B2:97:91:37:6C:0C:57:BE:B4:0C:58:4E:F5:A1:CF Certificate issuer: /CN=500151e464b29791376c0c57beb40c584ef5a1cf Certificate serial: 019AF31C1DDE04C0EA7C71CAA72F0C39AECB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UAFR5GSyl5E3bAxXvrQMWE71oc8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.mft Manifest number: 1087 Signing time: Sat 06 Dec 2025 10:01:37 +0000 Manifest this update: Sat 06 Dec 2025 10:01:37 +0000 Manifest next update: Sun 07 Dec 2025 10:01:37 +0000 Files and hashes: 1: UAFR5GSyl5E3bAxXvrQMWE71oc8.crl (hash: dRMmjPfYdOYk0pTs1S/wRLyOthLDgBDsHDKi/SN1j20=) 2: bo7KO9XdD_Urskdk1n4Bj-fW4fs.roa (hash: ubQY2gOF+3dPO6O676JWntfiT2uJ103t4smlNmiKGh4=) 3: w9MEWUoUc8xZKY1er3NSZNyKi7U.roa (hash: POwTU/L0ZyJ5NYemVS0exc18aJZvc21A0g3ouxix4G8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.crl rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.mft rsync://rpki.ripe.net/repository/DEFAULT/UAFR5GSyl5E3bAxXvrQMWE71oc8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 10:01:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1c:1d:de:04:c0:ea:7c:71:ca:a7:2f:0c:39:ae:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=500151e464b29791376c0c57beb40c584ef5a1cf Validity Not Before: Dec 6 10:01:37 2025 GMT Not After : Dec 7 10:01:37 2025 GMT Subject: CN=617e3f0af6f2217e4b608fb8ebb7d09d68fe572a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:07:a2:42:b2:3b:51:d5:2a:cf:11:10:27:c7: 22:18:50:cd:16:0a:b4:8e:b4:be:9c:c5:c9:10:91: 06:d6:56:e3:19:b7:8b:83:d8:64:18:e8:aa:3d:61: e2:c7:d5:bb:8d:80:35:6c:85:a9:bf:05:5a:a6:05: 75:f5:19:69:eb:59:f0:69:00:a5:4b:37:7a:e8:bc: 86:15:5a:dd:1b:72:5a:f9:b1:11:09:6c:f2:db:82: 1b:e2:cd:6d:c1:c3:95:84:18:48:48:53:c9:df:a7: 86:20:b4:75:e2:7b:05:15:81:66:20:63:7c:34:e8: 17:25:7b:bd:c3:96:7a:1d:00:cb:bc:e7:1d:59:1b: 81:56:b3:3c:7f:95:8c:a2:2e:15:5e:16:02:d4:cf: 51:9b:73:39:0b:2d:62:38:b9:03:9a:b1:2a:48:5b: 2f:59:3b:45:ac:1b:82:90:5f:bc:74:80:26:91:38: b1:54:9d:ab:76:3a:68:64:13:1c:5f:51:3d:72:4d: 6a:f3:62:cb:9e:1a:58:92:fe:a7:62:56:e4:51:f5: 40:20:ef:c7:99:19:2f:fa:ea:21:ba:15:1d:ca:4f: 74:35:93:2b:29:6d:80:b6:9e:d2:75:8c:27:bb:e0: f9:85:0c:70:d2:b7:9e:54:c1:5a:5a:55:7a:07:a6: 5a:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:7E:3F:0A:F6:F2:21:7E:4B:60:8F:B8:EB:B7:D0:9D:68:FE:57:2A X509v3 Authority Key Identifier: keyid:50:01:51:E4:64:B2:97:91:37:6C:0C:57:BE:B4:0C:58:4E:F5:A1:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UAFR5GSyl5E3bAxXvrQMWE71oc8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0d:25:68:fc:06:3b:e5:fc:a2:b6:d6:9b:cc:18:18:a4:ee:24: 50:b2:50:44:87:0c:07:37:19:5a:b2:bb:17:c3:96:98:5f:d0: 6e:a5:ff:c8:71:b3:47:64:68:98:21:fc:fd:b0:89:9e:0d:bd: 79:25:6b:3d:4c:11:85:fe:26:ad:6e:63:41:d8:29:c6:66:67: 87:cc:94:71:0d:34:b0:9f:2b:85:91:1b:60:bc:fa:a7:81:08: 36:32:5d:80:a9:cd:76:b1:26:1f:7e:e2:77:91:23:e8:0e:26: 26:62:ba:d1:69:90:d6:46:a3:48:9f:5a:48:0e:aa:3a:cd:25: a2:21:cd:5a:67:62:c2:fc:ad:83:1c:14:cb:f0:fc:a5:63:a9: 8d:1d:82:28:ad:b1:01:a2:b0:94:71:96:35:6b:af:2c:65:96: 6a:ae:05:b9:b1:1e:a0:86:c3:5c:c3:4e:38:d3:b4:78:3a:f9: 0d:2e:43:97:ed:f3:0d:33:18:3e:f7:fd:f3:02:99:fa:71:64: 4d:2a:90:bb:e7:74:24:1d:b4:2d:23:fe:a6:b7:46:ea:68:e7: cf:bf:25:0d:cd:a5:9a:83:24:aa:c9:70:b5:67:b1:de:14:02: 78:25:60:ae:a5:96:c6:7e:78:d9:34:df:85:77:97:45:52:16: 52:e9:b9:dc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHB3eBMDqfHHKpy8MOa7LMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUwMDE1MWU0NjRiMjk3OTEzNzZjMGM1N2JlYjQwYzU4NGVm NWExY2YwHhcNMjUxMjA2MTAwMTM3WhcNMjUxMjA3MTAwMTM3WjAzMTEwLwYDVQQD Eyg2MTdlM2YwYWY2ZjIyMTdlNGI2MDhmYjhlYmI3ZDA5ZDY4ZmU1NzJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwweiQrI7UdUqzxEQJ8ciGFDNFgq0 jrS+nMXJEJEG1lbjGbeLg9hkGOiqPWHix9W7jYA1bIWpvwVapgV19Rlp61nwaQCl Szd66LyGFVrdG3Ja+bERCWzy24Ib4s1twcOVhBhISFPJ36eGILR14nsFFYFmIGN8 NOgXJXu9w5Z6HQDLvOcdWRuBVrM8f5WMoi4VXhYC1M9Rm3M5Cy1iOLkDmrEqSFsv WTtFrBuCkF+8dIAmkTixVJ2rdjpoZBMcX1E9ck1q82LLnhpYkv6nYlbkUfVAIO/H mRkv+uohuhUdyk90NZMrKW2Atp7SdYwnu+D5hQxw0reeVMFaWlV6B6ZaqwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGF+Pwr28iF+S2CPuOu30J1o/lcqMB8GA1UdIwQY MBaAFFABUeRkspeRN2wMV760DFhO9aHPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVUFGUjVHU3lsNUUzYkF4WHZyUU1XRTcxb2M4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi80YTEyYzItOWJlZC00NWRkLTg2M2Mt MGI5ZmI5N2U1MjlkLzEvVUFGUjVHU3lsNUUzYkF4WHZyUU1XRTcxb2M4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMi80YTEyYzItOWJlZC00NWRkLTg2M2MtMGI5ZmI5N2U1Mjlk LzEvVUFGUjVHU3lsNUUzYkF4WHZyUU1XRTcxb2M4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADSVo/AY7 5fyittabzBgYpO4kULJQRIcMBzcZWrK7F8OWmF/QbqX/yHGzR2RomCH8/bCJng29 eSVrPUwRhf4mrW5jQdgpxmZnh8yUcQ00sJ8rhZEbYLz6p4EINjJdgKnNdrEmH37i d5Ej6A4mJmK60WmQ1kajSJ9aSA6qOs0loiHNWmdiwvytgxwUy/D8pWOpjR2CKK2x AaKwlHGWNWuvLGWWaq4FubEeoIbDXMNOONO0eDr5DS5Dl+3zDTMYPvf98wKZ+nFk TSqQu+d0JB20LSP+prdG6mjnz78lDc2lmoMkqslwtWex3hQCeCVgrqWWxn542TTf hXeXRVIWUum53A== -----END CERTIFICATE-----Generated at Sat Dec 6 20:37:05 2025 by rpki-client