This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/6a12ce-afbc-4583-9773-c1813947e233/1/uvzQImt58j3kemr95RRLGynii1w.mft File: uvzQImt58j3kemr95RRLGynii1w.mft (raw, json) Hash identifier: bbQ26/h+x/Q3ETqlyXNVC5l3PtZYFRHz6d+KLTr51NA= Subject key identifier: B2:53:E1:96:DE:06:78:F1:76:DF:05:0F:0D:A4:E2:1D:A9:9B:FD:B7 Authority key identifier: BA:FC:D0:22:6B:79:F2:3D:E4:7A:6A:FD:E5:14:4B:1B:29:E2:8B:5C Certificate issuer: /CN=bafcd0226b79f23de47a6afde5144b1b29e28b5c Certificate serial: 019AF3C02F82FD957E59FBCC344225DE5BE6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uvzQImt58j3kemr95RRLGynii1w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/6a12ce-afbc-4583-9773-c1813947e233/1/uvzQImt58j3kemr95RRLGynii1w.mft Manifest number: 0939 Signing time: Sat 06 Dec 2025 13:00:49 +0000 Manifest this update: Sat 06 Dec 2025 13:00:49 +0000 Manifest next update: Sun 07 Dec 2025 13:00:49 +0000 Files and hashes: 1: uvzQImt58j3kemr95RRLGynii1w.crl (hash: plR6oEdcmaECB1+Mjci+ErTSneRTNb/f2wK6XpQiTF4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/6a12ce-afbc-4583-9773-c1813947e233/1/uvzQImt58j3kemr95RRLGynii1w.crl rsync://rpki.ripe.net/repository/DEFAULT/e5/6a12ce-afbc-4583-9773-c1813947e233/1/uvzQImt58j3kemr95RRLGynii1w.mft rsync://rpki.ripe.net/repository/DEFAULT/uvzQImt58j3kemr95RRLGynii1w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:c0:2f:82:fd:95:7e:59:fb:cc:34:42:25:de:5b:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bafcd0226b79f23de47a6afde5144b1b29e28b5c Validity Not Before: Dec 6 13:00:49 2025 GMT Not After : Dec 7 13:00:49 2025 GMT Subject: CN=b253e196de0678f176df050f0da4e21da99bfdb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:45:5f:6c:2e:1b:d5:ca:9e:9e:96:38:ad:b4: 3b:32:47:27:1a:a2:9d:ce:4a:28:75:45:0a:77:3f: ab:3d:75:10:1d:77:62:eb:fc:2b:68:60:d6:93:0e: e4:ab:87:bd:e5:36:25:3e:18:59:50:40:a9:bc:26: 02:86:76:cf:b3:ab:f3:63:1a:3d:6c:0e:43:7c:f4: 92:89:2e:6a:a7:78:e6:52:26:54:6a:40:50:4c:14: 5f:ae:67:6e:26:ea:06:6c:4e:95:77:49:51:52:95: 2c:19:b4:11:9e:15:b2:11:1c:2f:dc:6e:81:ba:21: 08:26:71:46:6f:cc:bd:00:bb:6d:c8:a2:eb:75:3b: 4f:a6:19:b2:05:c2:f0:3b:ab:76:6f:87:8b:bd:67: ba:d3:b7:2b:b5:35:a7:30:7d:66:ec:0a:37:7e:3e: 35:c1:3c:09:ea:d7:b4:dc:ea:44:30:b2:b9:1a:3c: fb:0b:03:bb:6f:24:92:25:8e:43:3c:c5:de:e1:8f: fb:26:1d:b0:0b:bf:1d:0c:ce:03:f3:07:6d:1c:b4: 89:b7:3d:3d:3d:f0:8c:c4:14:73:2b:b2:45:79:b9: 2d:d3:dd:40:4d:33:1b:1c:09:29:8b:14:64:d6:b1: d7:68:77:a8:65:d0:ad:a4:7a:0e:8d:03:e1:eb:9d: 74:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:53:E1:96:DE:06:78:F1:76:DF:05:0F:0D:A4:E2:1D:A9:9B:FD:B7 X509v3 Authority Key Identifier: keyid:BA:FC:D0:22:6B:79:F2:3D:E4:7A:6A:FD:E5:14:4B:1B:29:E2:8B:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uvzQImt58j3kemr95RRLGynii1w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/6a12ce-afbc-4583-9773-c1813947e233/1/uvzQImt58j3kemr95RRLGynii1w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/6a12ce-afbc-4583-9773-c1813947e233/1/uvzQImt58j3kemr95RRLGynii1w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:a5:5a:8c:51:23:3c:0b:7f:14:65:da:b8:07:44:06:7c:69: 0a:d6:e9:ea:f1:04:7c:3d:c8:93:86:5b:73:3f:3f:67:cc:d4: 9f:26:a0:28:8c:7c:19:bf:08:07:f4:0b:5d:d2:85:9e:ae:d1: 3d:61:95:d8:2c:fd:97:2d:d8:7e:09:89:91:9a:26:16:b5:c3: cb:55:44:5a:74:6b:34:01:51:72:79:53:8c:8e:40:27:d4:a7: d8:b8:0a:29:2f:9c:cd:5a:de:fe:ca:09:86:65:10:bb:42:5b: 8c:1e:a1:89:2c:7e:e0:dd:e9:6e:21:75:32:b9:2b:28:be:26: 6d:98:15:af:f6:1d:43:82:96:3a:bd:f9:44:59:28:56:3f:1f: 62:84:f9:d1:a8:39:b7:61:3a:f2:5a:c4:47:c4:77:c5:6b:87: 04:1d:e5:78:34:68:1e:97:cd:51:05:c3:61:d4:10:29:63:0d: 1f:84:c1:19:13:37:77:fb:f3:71:bb:c0:b5:00:40:a6:8b:75: 31:d1:6f:60:5b:1d:e7:a3:77:e6:6f:24:66:28:63:5e:63:4a: e8:fc:42:7c:9a:e7:8b:2a:87:80:cd:aa:f7:3c:45:be:8f:bb: ce:4d:d3:a7:19:1f:57:d2:8b:2f:55:7f:91:e0:79:36:4b:43: b4:3d:23:01 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzwC+C/ZV+WfvMNEIl3lvmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhZmNkMDIyNmI3OWYyM2RlNDdhNmFmZGU1MTQ0YjFiMjll MjhiNWMwHhcNMjUxMjA2MTMwMDQ5WhcNMjUxMjA3MTMwMDQ5WjAzMTEwLwYDVQQD EyhiMjUzZTE5NmRlMDY3OGYxNzZkZjA1MGYwZGE0ZTIxZGE5OWJmZGI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnkVfbC4b1cqenpY4rbQ7MkcnGqKd zkoodUUKdz+rPXUQHXdi6/wraGDWkw7kq4e95TYlPhhZUECpvCYChnbPs6vzYxo9 bA5DfPSSiS5qp3jmUiZUakBQTBRfrmduJuoGbE6Vd0lRUpUsGbQRnhWyERwv3G6B uiEIJnFGb8y9ALttyKLrdTtPphmyBcLwO6t2b4eLvWe607crtTWnMH1m7Ao3fj41 wTwJ6te03OpEMLK5Gjz7CwO7bySSJY5DPMXe4Y/7Jh2wC78dDM4D8wdtHLSJtz09 PfCMxBRzK7JFebkt091ATTMbHAkpixRk1rHXaHeoZdCtpHoOjQPh65105QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLJT4ZbeBnjxdt8FDw2k4h2pm/23MB8GA1UdIwQY MBaAFLr80CJrefI95Hpq/eUUSxsp4otcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdXZ6UUltdDU4ajNrZW1yOTVSUkxHeW5paTF3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS82YTEyY2UtYWZiYy00NTgzLTk3NzMt YzE4MTM5NDdlMjMzLzEvdXZ6UUltdDU4ajNrZW1yOTVSUkxHeW5paTF3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNS82YTEyY2UtYWZiYy00NTgzLTk3NzMtYzE4MTM5NDdlMjMz LzEvdXZ6UUltdDU4ajNrZW1yOTVSUkxHeW5paTF3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaqVajFEj PAt/FGXauAdEBnxpCtbp6vEEfD3Ik4Zbcz8/Z8zUnyagKIx8Gb8IB/QLXdKFnq7R PWGV2Cz9ly3YfgmJkZomFrXDy1VEWnRrNAFRcnlTjI5AJ9Sn2LgKKS+czVre/soJ hmUQu0JbjB6hiSx+4N3pbiF1MrkrKL4mbZgVr/YdQ4KWOr35RFkoVj8fYoT50ag5 t2E68lrER8R3xWuHBB3leDRoHpfNUQXDYdQQKWMNH4TBGRM3d/vzcbvAtQBApot1 MdFvYFsd56N35m8kZihjXmNK6PxCfJrniyqHgM2q9zxFvo+7zk3TpxkfV9KLL1V/ keB5NktDtD0jAQ== -----END CERTIFICATE-----Generated at Sat Dec 6 21:27:15 2025 by rpki-client