This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.mft File: UFzWGp9t6drMDTySFwbffVCvvW8.mft (raw, json) Hash identifier: 7zVqPsbg6MJjB9WIg85WJJBcOBmw3tydoxuLo/Ti9i0= Subject key identifier: 57:DC:51:BC:57:F1:B7:0B:91:B0:4A:E9:00:BF:8A:08:82:7E:3C:62 Authority key identifier: 50:5C:D6:1A:9F:6D:E9:DA:CC:0D:3C:92:17:06:DF:7D:50:AF:BD:6F Certificate issuer: /CN=505cd61a9f6de9dacc0d3c921706df7d50afbd6f Certificate serial: 019B2F9EB53A8496B4380DF8146A2D27CF36 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFzWGp9t6drMDTySFwbffVCvvW8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.mft Manifest number: 0DD5 Signing time: Thu 18 Dec 2025 04:01:28 +0000 Manifest this update: Thu 18 Dec 2025 04:01:28 +0000 Manifest next update: Fri 19 Dec 2025 04:01:28 +0000 Files and hashes: 1: 02fZd277xqKcuTMYmhFfbwx9HwA.roa (hash: bemKy7xu5/Ii5zazW11+IHavu8JMVH9QIzpKn7l6Pf4=) 2: UFzWGp9t6drMDTySFwbffVCvvW8.crl (hash: vERCKq3bC+tnTiz4Ho2oeJtq7Fks7WnweuAPs3heGBI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.crl rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.mft rsync://rpki.ripe.net/repository/DEFAULT/UFzWGp9t6drMDTySFwbffVCvvW8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 04:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2f:9e:b5:3a:84:96:b4:38:0d:f8:14:6a:2d:27:cf:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=505cd61a9f6de9dacc0d3c921706df7d50afbd6f Validity Not Before: Dec 18 04:01:28 2025 GMT Not After : Dec 19 04:01:28 2025 GMT Subject: CN=57dc51bc57f1b70b91b04ae900bf8a08827e3c62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:6e:58:7d:4c:f8:55:7b:88:7c:e9:da:7f:61: 2b:ff:1c:b1:ca:65:74:82:13:57:72:20:7d:61:64: 7f:48:91:36:c0:c4:a9:03:d0:0d:d3:e6:9a:ca:5d: 1a:30:f4:95:b4:ff:25:0e:cc:3d:1c:52:96:b9:34: 94:b6:d4:1a:96:5d:9e:70:38:f8:52:9c:c0:89:f8: d4:c8:43:73:f8:40:a1:de:b0:98:a8:dd:1a:66:35: ab:fa:eb:28:c3:78:8c:d1:30:c9:bf:b0:40:bf:83: 79:00:91:d1:d3:46:4d:5f:57:e5:fe:b3:15:7f:fa: a1:fb:2d:cd:b7:af:be:3c:31:6f:60:e5:ca:b1:b2: b9:58:8a:f6:e6:49:eb:73:61:2c:34:eb:95:90:ad: 79:69:3e:d5:ef:8b:6c:82:68:86:18:54:21:bf:2d: 88:3c:cf:92:17:f9:45:a7:f6:1d:55:ea:53:74:5f: 4c:24:2d:39:9e:59:fa:da:43:3a:f1:83:ad:6d:5c: 86:9e:d9:f6:bf:f1:a8:48:30:d4:12:bc:38:97:d5: 63:1b:cf:f8:13:01:e7:63:9a:e4:73:20:3e:c1:5f: f6:51:27:98:9f:22:17:4f:64:3a:96:b1:66:de:9e: 2f:d8:20:40:3d:ad:21:dd:77:38:82:60:43:03:0b: d5:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:DC:51:BC:57:F1:B7:0B:91:B0:4A:E9:00:BF:8A:08:82:7E:3C:62 X509v3 Authority Key Identifier: keyid:50:5C:D6:1A:9F:6D:E9:DA:CC:0D:3C:92:17:06:DF:7D:50:AF:BD:6F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFzWGp9t6drMDTySFwbffVCvvW8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a7:77:91:1b:1a:7e:e9:a1:14:e1:ee:8c:3b:30:83:2f:68:96: fa:f0:66:cf:7c:07:0e:45:31:6d:cd:34:26:66:b5:71:76:b0: 66:a9:b1:74:71:de:12:42:76:6e:d6:59:9a:27:53:54:3b:b4: 32:d2:b3:79:52:23:a5:54:92:85:7b:fe:48:45:33:8a:28:69: 82:77:98:ec:2f:e0:f6:4e:fc:cd:c3:17:d1:68:4f:8c:dc:a1: a4:69:33:ff:41:73:e3:34:37:e3:85:ae:5c:6c:e9:d9:fe:e3: 27:14:33:18:8f:7e:59:2a:bf:73:3f:7a:a6:6c:bb:88:e0:be: 06:b3:de:3d:5f:65:2b:54:42:63:21:87:b5:8c:49:d2:5f:37: 18:34:81:5c:c6:a8:b0:09:f2:67:0a:82:cf:80:dc:6d:8a:52: 9b:9d:c2:b0:f3:85:6b:f1:11:67:a3:fd:fe:9b:74:f1:2c:7c: 75:d0:dd:2e:a7:06:99:3d:47:2c:e3:8b:18:f6:69:ab:66:99: 24:45:a5:8f:0c:89:e6:2c:75:5d:ae:45:df:58:08:7a:b3:d5: d0:76:5c:8b:12:b4:43:27:db:ef:1d:8f:48:dd:60:eb:bd:a8: c3:a0:3b:db:11:a0:00:15:20:d4:ee:23:45:e8:d4:2e:ed:f4: e8:d8:37:45 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsvnrU6hJa0OA34FGotJ882MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUwNWNkNjFhOWY2ZGU5ZGFjYzBkM2M5MjE3MDZkZjdkNTBh ZmJkNmYwHhcNMjUxMjE4MDQwMTI4WhcNMjUxMjE5MDQwMTI4WjAzMTEwLwYDVQQD Eyg1N2RjNTFiYzU3ZjFiNzBiOTFiMDRhZTkwMGJmOGEwODgyN2UzYzYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArm5YfUz4VXuIfOnaf2Er/xyxymV0 ghNXciB9YWR/SJE2wMSpA9AN0+aayl0aMPSVtP8lDsw9HFKWuTSUttQall2ecDj4 UpzAifjUyENz+ECh3rCYqN0aZjWr+usow3iM0TDJv7BAv4N5AJHR00ZNX1fl/rMV f/qh+y3Nt6++PDFvYOXKsbK5WIr25knrc2EsNOuVkK15aT7V74tsgmiGGFQhvy2I PM+SF/lFp/YdVepTdF9MJC05nln62kM68YOtbVyGntn2v/GoSDDUErw4l9VjG8/4 EwHnY5rkcyA+wV/2USeYnyIXT2Q6lrFm3p4v2CBAPa0h3Xc4gmBDAwvVoQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFfcUbxX8bcLkbBK6QC/igiCfjxiMB8GA1UdIwQY MBaAFFBc1hqfbenazA08khcG331Qr71vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVUZ6V0dwOXQ2ZHJNRFR5U0Z3YmZmVkN2dlc4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi9hMzczNWEtZWNjYy00MWQ3LWI3MjMt ZTAxMjM3YjVmYzEwLzEvVUZ6V0dwOXQ2ZHJNRFR5U0Z3YmZmVkN2dlc4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYi9hMzczNWEtZWNjYy00MWQ3LWI3MjMtZTAxMjM3YjVmYzEw LzEvVUZ6V0dwOXQ2ZHJNRFR5U0Z3YmZmVkN2dlc4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAp3eRGxp+ 6aEU4e6MOzCDL2iW+vBmz3wHDkUxbc00Jma1cXawZqmxdHHeEkJ2btZZmidTVDu0 MtKzeVIjpVSShXv+SEUziihpgneY7C/g9k78zcMX0WhPjNyhpGkz/0Fz4zQ344Wu XGzp2f7jJxQzGI9+WSq/cz96pmy7iOC+BrPePV9lK1RCYyGHtYxJ0l83GDSBXMao sAnyZwqCz4DcbYpSm53CsPOFa/ERZ6P9/pt08Sx8ddDdLqcGmT1HLOOLGPZpq2aZ JEWljwyJ5ix1Xa5F31gIerPV0HZcixK0Qyfb7x2PSN1g672ow6A72xGgABUg1O4j RejULu306Ng3RQ== -----END CERTIFICATE-----Generated at Thu Dec 18 10:24:00 2025 by rpki-client