This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.mft File: UztG46ndW36oqL_aL247rRVQkRM.mft (raw, json) Hash identifier: gcDGVirKuyeVrlNhsT0XNRsqdk1tIR4YWF2967S5W4o= Subject key identifier: CE:E9:6C:60:69:48:A4:9D:1B:3F:AD:94:03:02:FC:AA:B6:84:BE:4F Authority key identifier: 53:3B:46:E3:A9:DD:5B:7E:A8:A8:BF:DA:2F:6E:3B:AD:15:50:91:13 Certificate issuer: /CN=533b46e3a9dd5b7ea8a8bfda2f6e3bad15509113 Certificate serial: 019AF2094C2170B4F3269DDA43AF74A840EF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UztG46ndW36oqL_aL247rRVQkRM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.mft Manifest number: 1762 Signing time: Sat 06 Dec 2025 05:01:26 +0000 Manifest this update: Sat 06 Dec 2025 05:01:26 +0000 Manifest next update: Sun 07 Dec 2025 05:01:26 +0000 Files and hashes: 1: 8xMxjtO-k2WYJj5fJmeVkGV5YA4.roa (hash: h2/dulkFhykUkX0igL56x6SI1vv2NsPZ43/9G+3BAxs=) 2: UztG46ndW36oqL_aL247rRVQkRM.crl (hash: aSuXW/hXd97osFvZBQwUPm+nj+6vEoKHnjawlaNiRIQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.crl rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.mft rsync://rpki.ripe.net/repository/DEFAULT/UztG46ndW36oqL_aL247rRVQkRM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:4c:21:70:b4:f3:26:9d:da:43:af:74:a8:40:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=533b46e3a9dd5b7ea8a8bfda2f6e3bad15509113 Validity Not Before: Dec 6 05:01:26 2025 GMT Not After : Dec 7 05:01:26 2025 GMT Subject: CN=cee96c606948a49d1b3fad940302fcaab684be4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:d1:93:74:18:1d:ab:0a:01:23:94:05:14:28: b1:fb:11:47:07:d4:9c:e4:11:48:a7:0a:20:ce:31: 64:1e:b2:27:8f:2b:75:4a:d0:2d:55:e2:ac:ec:d9: 8b:3f:c1:29:84:c5:ce:d9:8f:f3:71:a3:6b:15:45: 32:a0:fe:9f:40:2b:60:43:07:9d:37:7c:0a:d3:be: 6d:40:7d:b8:39:c4:60:71:27:04:7e:35:1e:3e:03: 19:1b:c8:fa:13:e3:51:5e:99:03:5b:25:41:b0:02: 1c:21:e5:a8:7e:dd:7f:17:93:52:13:d8:d0:4c:c9: e4:73:bd:d7:27:9a:49:5d:15:7b:e7:77:1a:ca:29: 83:e6:c1:4e:ff:58:85:9d:8f:b2:f9:df:c5:a7:e0: cf:a2:db:41:ce:a3:aa:5f:ae:f3:90:d2:45:5e:65: 6f:97:be:d7:f2:27:8d:2f:c5:41:a3:db:e4:58:8a: a9:04:99:75:fe:89:9b:0b:97:99:97:c1:b3:4d:cc: 04:54:cd:7f:d4:10:f6:46:f6:13:ac:06:be:99:11: 41:e2:f5:6d:f2:67:04:56:4f:54:20:63:6e:31:0d: df:9f:ad:cf:5d:d7:35:85:d4:33:1c:7e:10:82:f2: 0b:57:55:29:14:db:f1:a3:95:3d:d8:4b:33:05:4e: 0c:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:E9:6C:60:69:48:A4:9D:1B:3F:AD:94:03:02:FC:AA:B6:84:BE:4F X509v3 Authority Key Identifier: keyid:53:3B:46:E3:A9:DD:5B:7E:A8:A8:BF:DA:2F:6E:3B:AD:15:50:91:13 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UztG46ndW36oqL_aL247rRVQkRM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 87:df:08:c1:90:15:e5:a6:d6:a4:88:a2:22:81:68:19:f0:d6: 76:67:60:ad:a9:fc:3d:80:e1:96:83:ab:3d:b4:54:5c:74:0c: 6e:7d:93:fe:b8:3d:e2:e4:fb:91:86:98:13:45:cb:8c:56:67: e4:5d:8b:9a:da:80:7f:19:37:df:04:b0:6d:e7:39:68:3e:97: e5:92:c5:63:ef:5e:f5:d6:8d:40:41:3e:df:33:b5:cc:b6:27: 2f:e7:61:ea:1b:8d:38:5f:6e:e7:4e:df:db:bb:98:61:ca:0f: 2e:cc:97:9f:c5:05:32:78:a3:b2:b4:f6:9f:9c:4c:f2:ac:46: 03:87:2d:c3:ca:86:a3:33:7a:bb:7e:cc:19:0d:4d:9a:6e:aa: 92:a9:8b:ec:8f:0a:5f:2a:6c:b4:b4:e9:a6:8b:08:eb:53:5c: 4d:01:93:cc:da:c6:16:56:18:0d:da:10:ce:41:40:de:f7:04: 97:6d:9b:d2:d3:1f:d9:56:73:79:cf:99:29:67:cc:54:b5:93: 0a:82:cc:c8:c6:b0:ef:b7:74:ad:20:9c:11:3e:ee:5f:e9:ff: 52:4a:6e:99:87:8e:06:ab:52:15:2c:0f:20:fd:2b:e3:25:57: 76:1b:16:3b:40:5f:83:51:95:8e:fc:27:74:33:f0:ac:4d:38: a3:33:72:25 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCUwhcLTzJp3aQ690qEDvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzM2I0NmUzYTlkZDViN2VhOGE4YmZkYTJmNmUzYmFkMTU1 MDkxMTMwHhcNMjUxMjA2MDUwMTI2WhcNMjUxMjA3MDUwMTI2WjAzMTEwLwYDVQQD EyhjZWU5NmM2MDY5NDhhNDlkMWIzZmFkOTQwMzAyZmNhYWI2ODRiZTRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5dGTdBgdqwoBI5QFFCix+xFHB9Sc 5BFIpwogzjFkHrInjyt1StAtVeKs7NmLP8EphMXO2Y/zcaNrFUUyoP6fQCtgQwed N3wK075tQH24OcRgcScEfjUePgMZG8j6E+NRXpkDWyVBsAIcIeWoft1/F5NSE9jQ TMnkc73XJ5pJXRV753cayimD5sFO/1iFnY+y+d/Fp+DPottBzqOqX67zkNJFXmVv l77X8ieNL8VBo9vkWIqpBJl1/ombC5eZl8GzTcwEVM1/1BD2RvYTrAa+mRFB4vVt 8mcEVk9UIGNuMQ3fn63PXdc1hdQzHH4QgvILV1UpFNvxo5U92EszBU4MCQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM7pbGBpSKSdGz+tlAMC/Kq2hL5PMB8GA1UdIwQY MBaAFFM7RuOp3Vt+qKi/2i9uO60VUJETMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXp0RzQ2bmRXMzZvcUxfYUwyNDdyUlZRa1JNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS9mNTBlMmQtZTQwMC00NGYxLTg4MzIt ZTI2OTYwYmYzNGU1LzEvVXp0RzQ2bmRXMzZvcUxfYUwyNDdyUlZRa1JNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYS9mNTBlMmQtZTQwMC00NGYxLTg4MzItZTI2OTYwYmYzNGU1 LzEvVXp0RzQ2bmRXMzZvcUxfYUwyNDdyUlZRa1JNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh98IwZAV 5abWpIiiIoFoGfDWdmdgran8PYDhloOrPbRUXHQMbn2T/rg94uT7kYaYE0XLjFZn 5F2LmtqAfxk33wSwbec5aD6X5ZLFY+9e9daNQEE+3zO1zLYnL+dh6huNOF9u507f 27uYYcoPLsyXn8UFMnijsrT2n5xM8qxGA4ctw8qGozN6u37MGQ1Nmm6qkqmL7I8K XypstLTpposI61NcTQGTzNrGFlYYDdoQzkFA3vcEl22b0tMf2VZzec+ZKWfMVLWT CoLMyMaw77d0rSCcET7uX+n/UkpumYeOBqtSFSwPIP0r4yVXdhsWO0Bfg1GVjvwn dDPwrE04ozNyJQ== -----END CERTIFICATE-----Generated at Sat Dec 6 11:18:28 2025 by rpki-client