This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft File: UGF1T3aJFp9qFQZQlUcmcrorRYk.mft (raw, json) Hash identifier: HcPGc4UDa0E5U2B4pm1Xj8FnOy2+DYNZpGXxWcVVo28= Subject key identifier: D3:B7:C8:A5:6F:0E:B0:D6:98:77:06:56:6F:23:13:3A:1A:EA:01:1B Authority key identifier: 50:61:75:4F:76:89:16:9F:6A:15:06:50:95:47:26:72:BA:2B:45:89 Certificate issuer: /CN=5061754f7689169f6a15065095472672ba2b4589 Certificate serial: 019AF389C9397424EDAF9E6D167EB61046D0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UGF1T3aJFp9qFQZQlUcmcrorRYk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft Manifest number: 0ED6 Signing time: Sat 06 Dec 2025 12:01:24 +0000 Manifest this update: Sat 06 Dec 2025 12:01:24 +0000 Manifest next update: Sun 07 Dec 2025 12:01:24 +0000 Files and hashes: 1: UGF1T3aJFp9qFQZQlUcmcrorRYk.crl (hash: HpurmG7XSnNoYFwPS5CJbvW1YhZmWhmPgXBePv1XNxQ=) 2: yiSfs72_nEyzYSAodCILSS2FNUg.roa (hash: S9gHpNvUCJD2H4bcxuT5WWB4Uck7rHXNRIxCLUlb2hE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.crl rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft rsync://rpki.ripe.net/repository/DEFAULT/UGF1T3aJFp9qFQZQlUcmcrorRYk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 12:01:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:89:c9:39:74:24:ed:af:9e:6d:16:7e:b6:10:46:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5061754f7689169f6a15065095472672ba2b4589 Validity Not Before: Dec 6 12:01:24 2025 GMT Not After : Dec 7 12:01:24 2025 GMT Subject: CN=d3b7c8a56f0eb0d6987706566f23133a1aea011b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:d6:c7:bc:6e:a6:9f:2b:e3:09:18:ad:df:af: 29:18:b8:95:53:1b:d6:de:48:43:02:4d:ed:da:ba: a8:b6:4b:f9:87:fb:e7:3d:cd:98:cf:ab:76:24:94: 92:e1:76:c2:dd:77:55:9f:0d:05:30:cf:93:7b:40: 49:7e:40:b8:53:11:9b:4b:3e:c8:4e:ab:93:54:8d: 7d:15:c0:2a:f8:44:37:93:b6:64:3b:5d:9c:ef:92: 62:2b:84:2d:8b:fb:b3:d1:e6:46:59:25:dc:5e:b1: e6:3b:86:96:a5:2e:a6:47:de:05:86:bd:df:65:ce: e9:57:48:22:54:1e:e7:66:13:4f:9d:ca:2f:bc:cc: 09:9b:00:9b:d2:77:22:3e:9a:61:33:b3:0a:1c:51: 86:5e:d0:76:84:8f:d3:a4:d5:40:a1:2f:29:c6:1f: 5d:09:48:3a:2d:ba:f9:b1:e9:78:68:92:45:ad:62: 95:11:45:c8:cc:62:4a:cd:4d:6a:26:9a:6e:ee:6e: 4a:34:90:4a:3a:6f:b8:cc:18:fd:c4:4a:df:0f:86: 18:45:6f:4b:11:97:5a:a3:24:a0:3b:10:36:73:b8: a0:fc:0a:a2:07:8f:14:da:87:d4:e5:3e:5e:23:c4: 65:b7:df:d6:eb:a2:63:e0:88:a2:44:0d:0e:99:56: 93:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:B7:C8:A5:6F:0E:B0:D6:98:77:06:56:6F:23:13:3A:1A:EA:01:1B X509v3 Authority Key Identifier: keyid:50:61:75:4F:76:89:16:9F:6A:15:06:50:95:47:26:72:BA:2B:45:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UGF1T3aJFp9qFQZQlUcmcrorRYk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7e:07:da:0a:96:68:bb:b3:46:8b:3d:e3:b7:a5:9b:52:a4:88: 9b:9c:2f:57:8e:0d:3d:9d:99:50:bd:35:83:55:09:6b:a0:21: 0e:9b:2e:8e:d7:b8:63:91:2a:25:cd:85:8d:08:96:51:3d:ef: 5f:48:a6:11:08:92:fa:c6:a8:78:53:3c:9e:b0:e3:a6:1d:df: 0f:07:f7:cb:94:a0:b2:15:c7:1d:e9:05:4e:58:a8:b0:e4:25: 94:2e:b8:2b:c4:ba:c3:59:af:08:5a:24:e7:44:fe:b0:6c:c5: 70:54:4e:7e:d8:da:4b:d7:88:04:da:4e:23:09:25:9b:f1:07: b4:20:a0:8c:9f:49:7c:76:9a:4d:aa:0e:aa:02:e8:54:0b:40: d1:71:d6:e8:77:e2:ff:66:24:ef:7b:f8:fc:86:61:b4:92:08: d2:87:a9:d9:be:48:0a:b4:ca:4a:27:2f:c6:a3:7f:2f:e6:a3: 6e:a4:59:0f:6f:7b:86:9d:f8:57:27:a3:43:01:93:3d:51:32: 4f:7e:47:7c:a4:ca:04:86:6d:16:ed:0f:82:4d:a3:df:b6:88: 6f:e4:d9:d7:97:22:8c:dd:25:9f:49:7a:bb:ad:91:67:d0:6b: eb:8d:c2:e6:4d:55:c6:31:b9:96:0f:43:37:74:08:c4:77:68: 72:9a:11:3b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzick5dCTtr55tFn62EEbQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUwNjE3NTRmNzY4OTE2OWY2YTE1MDY1MDk1NDcyNjcyYmEy YjQ1ODkwHhcNMjUxMjA2MTIwMTI0WhcNMjUxMjA3MTIwMTI0WjAzMTEwLwYDVQQD EyhkM2I3YzhhNTZmMGViMGQ2OTg3NzA2NTY2ZjIzMTMzYTFhZWEwMTFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoNbHvG6mnyvjCRit368pGLiVUxvW 3khDAk3t2rqotkv5h/vnPc2Yz6t2JJSS4XbC3XdVnw0FMM+Te0BJfkC4UxGbSz7I TquTVI19FcAq+EQ3k7ZkO12c75JiK4Qti/uz0eZGWSXcXrHmO4aWpS6mR94Fhr3f Zc7pV0giVB7nZhNPncovvMwJmwCb0nciPpphM7MKHFGGXtB2hI/TpNVAoS8pxh9d CUg6Lbr5sel4aJJFrWKVEUXIzGJKzU1qJppu7m5KNJBKOm+4zBj9xErfD4YYRW9L EZdaoySgOxA2c7ig/AqiB48U2ofU5T5eI8Rlt9/W66Jj4IiiRA0OmVaT+wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNO3yKVvDrDWmHcGVm8jEzoa6gEbMB8GA1UdIwQY MBaAFFBhdU92iRafahUGUJVHJnK6K0WJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVUdGMVQzYUpGcDlxRlFaUWxVY21jcm9yUllrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi8zYjU5ZDUtNjAyZC00MzUxLTk2YmMt YTEwODY0OWQ1MWUyLzEvVUdGMVQzYUpGcDlxRlFaUWxVY21jcm9yUllrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi8zYjU5ZDUtNjAyZC00MzUxLTk2YmMtYTEwODY0OWQ1MWUy LzEvVUdGMVQzYUpGcDlxRlFaUWxVY21jcm9yUllrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfgfaCpZo u7NGiz3jt6WbUqSIm5wvV44NPZ2ZUL01g1UJa6AhDpsujte4Y5EqJc2FjQiWUT3v X0imEQiS+saoeFM8nrDjph3fDwf3y5SgshXHHekFTliosOQllC64K8S6w1mvCFok 50T+sGzFcFROftjaS9eIBNpOIwklm/EHtCCgjJ9JfHaaTaoOqgLoVAtA0XHW6Hfi /2Yk73v4/IZhtJII0oep2b5ICrTKSicvxqN/L+ajbqRZD297hp34VyejQwGTPVEy T35HfKTKBIZtFu0Pgk2j37aIb+TZ15cijN0ln0l6u62RZ9Br643C5k1VxjG5lg9D N3QIxHdocpoROw== -----END CERTIFICATE-----Generated at Sat Dec 6 22:58:20 2025 by rpki-client