This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/506db9-12aa-463c-a7ea-d3cdd5c3392c/1/U6i3vKixHSeFDpGMpZlmmIAWKSk.mft File: U6i3vKixHSeFDpGMpZlmmIAWKSk.mft (raw, json) Hash identifier: Q/eYFNjVhGlbqncK849fb0bj8At/viLJMCRGTtGDW+Q= Subject key identifier: BC:B7:91:87:40:34:DC:18:7D:B6:6C:26:BA:06:B8:3B:8F:74:54:35 Authority key identifier: 53:A8:B7:BC:A8:B1:1D:27:85:0E:91:8C:A5:99:66:98:80:16:29:29 Certificate issuer: /CN=53a8b7bca8b11d27850e918ca599669880162929 Certificate serial: 019B51F37E2F2EB40C3CF8202D7A7A6F9D5E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U6i3vKixHSeFDpGMpZlmmIAWKSk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/506db9-12aa-463c-a7ea-d3cdd5c3392c/1/U6i3vKixHSeFDpGMpZlmmIAWKSk.mft Manifest number: 03A3 Signing time: Wed 24 Dec 2025 20:01:10 +0000 Manifest this update: Wed 24 Dec 2025 20:01:10 +0000 Manifest next update: Thu 25 Dec 2025 20:01:10 +0000 Files and hashes: 1: U6i3vKixHSeFDpGMpZlmmIAWKSk.crl (hash: UEKmMgO0JTGyD6K3pkt8YQ26/zWFvLDLJDjZwD6Wn50=) 2: qST1YzpfG0Aj9HfkTwxj9U8CUhI.roa (hash: wruCCghr0kJqtbuyZdJFoTZhRH+nhRjwzTxdaCBX4hs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/506db9-12aa-463c-a7ea-d3cdd5c3392c/1/U6i3vKixHSeFDpGMpZlmmIAWKSk.crl rsync://rpki.ripe.net/repository/DEFAULT/25/506db9-12aa-463c-a7ea-d3cdd5c3392c/1/U6i3vKixHSeFDpGMpZlmmIAWKSk.mft rsync://rpki.ripe.net/repository/DEFAULT/U6i3vKixHSeFDpGMpZlmmIAWKSk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 18:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:51:f3:7e:2f:2e:b4:0c:3c:f8:20:2d:7a:7a:6f:9d:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53a8b7bca8b11d27850e918ca599669880162929 Validity Not Before: Dec 24 20:01:10 2025 GMT Not After : Dec 25 20:01:10 2025 GMT Subject: CN=bcb791874034dc187db66c26ba06b83b8f745435 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:3a:a4:8b:91:94:68:05:2a:68:89:7b:85:b5: 48:c4:b8:53:a8:8d:c9:06:b5:0e:c6:5e:a3:91:bc: 33:cc:8f:90:1f:7f:db:79:01:24:f6:ff:ab:f7:83: 7e:85:54:ca:9a:fd:2c:01:d3:9e:df:18:ee:a2:07: a1:c9:2a:12:4b:a3:b4:30:13:f3:44:5f:3c:97:0f: 37:05:11:d4:3d:6a:04:48:33:bc:09:94:b8:9f:35: 1c:6f:1c:82:69:36:66:be:51:3e:85:34:d0:01:eb: 53:6c:8e:dd:fd:77:ac:ec:d7:0a:0d:9b:a7:a3:02: 9f:c6:04:f7:3f:b9:47:f7:4a:d3:28:d2:e2:aa:3c: 33:b0:6f:ca:bb:8c:0e:20:55:71:5a:1e:49:e9:1a: 66:05:e1:46:b1:3e:5f:46:21:37:c4:de:47:86:9f: 43:8b:2d:2d:c4:3c:de:5e:19:26:4e:19:8f:0e:cd: 94:e8:96:3b:62:8b:b9:4f:d8:c0:a9:39:9b:7e:30: 7f:af:f8:28:bb:0f:30:59:d9:2f:af:df:48:f7:8f: 90:cf:32:e0:a7:f6:c9:5d:67:72:60:3c:4b:75:76: dc:d4:92:a6:76:df:fc:80:e0:50:bd:0b:67:73:75: 16:5c:50:53:4c:46:5b:62:52:b2:1a:7d:84:a9:b8: 7c:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:B7:91:87:40:34:DC:18:7D:B6:6C:26:BA:06:B8:3B:8F:74:54:35 X509v3 Authority Key Identifier: keyid:53:A8:B7:BC:A8:B1:1D:27:85:0E:91:8C:A5:99:66:98:80:16:29:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U6i3vKixHSeFDpGMpZlmmIAWKSk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/506db9-12aa-463c-a7ea-d3cdd5c3392c/1/U6i3vKixHSeFDpGMpZlmmIAWKSk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/25/506db9-12aa-463c-a7ea-d3cdd5c3392c/1/U6i3vKixHSeFDpGMpZlmmIAWKSk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:78:ee:21:2d:44:37:2f:a9:fc:96:32:ca:c5:07:9e:63:43: ae:d8:5d:d1:85:5f:5d:e9:40:e8:8c:63:9c:3f:7e:a8:1d:b3: 46:87:69:7a:67:5f:f6:e3:96:a8:65:01:83:bf:d2:e7:3f:59: a8:a1:88:a7:b0:cb:3d:8b:87:d8:61:86:dd:ec:ee:60:6a:67: d9:ad:eb:d4:71:8b:61:f9:7b:0e:b6:20:9c:0f:cf:72:8a:4e: 70:fd:5d:d1:de:b6:bc:6b:f0:ba:89:29:4f:9b:11:e1:45:0e: be:1f:c8:63:fa:71:d3:e7:ed:b8:9f:3e:ee:fc:a4:cf:2c:4c: 95:37:97:e8:a8:6b:e1:ad:9c:cf:58:e3:91:8e:c4:88:7b:ac: 7b:57:8f:88:28:8e:51:65:a0:69:8d:ba:1c:ee:e4:7b:94:cb: 72:32:52:08:95:49:f2:a6:b5:5a:d4:cb:b1:37:7d:d9:5b:d2: 6a:5c:f4:2a:ab:56:aa:1e:67:3a:d3:62:44:26:d7:21:3f:ae: a9:0c:a5:5e:b3:60:85:4c:52:08:56:da:bf:ed:2e:ac:62:e5: d7:ae:4f:69:fc:3b:b2:73:32:35:a1:d9:23:99:63:c3:2c:84: 75:68:c2:b7:dd:c4:01:94:bd:c3:61:0b:23:c5:d7:9a:a4:fb: c8:c8:03:a5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtR834vLrQMPPggLXp6b51eMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzYThiN2JjYThiMTFkMjc4NTBlOTE4Y2E1OTk2Njk4ODAx NjI5MjkwHhcNMjUxMjI0MjAwMTEwWhcNMjUxMjI1MjAwMTEwWjAzMTEwLwYDVQQD EyhiY2I3OTE4NzQwMzRkYzE4N2RiNjZjMjZiYTA2YjgzYjhmNzQ1NDM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsDqki5GUaAUqaIl7hbVIxLhTqI3J BrUOxl6jkbwzzI+QH3/beQEk9v+r94N+hVTKmv0sAdOe3xjuogehySoSS6O0MBPz RF88lw83BRHUPWoESDO8CZS4nzUcbxyCaTZmvlE+hTTQAetTbI7d/Xes7NcKDZun owKfxgT3P7lH90rTKNLiqjwzsG/Ku4wOIFVxWh5J6RpmBeFGsT5fRiE3xN5Hhp9D iy0txDzeXhkmThmPDs2U6JY7You5T9jAqTmbfjB/r/gouw8wWdkvr99I94+QzzLg p/bJXWdyYDxLdXbc1JKmdt/8gOBQvQtnc3UWXFBTTEZbYlKyGn2Eqbh8ewIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLy3kYdANNwYfbZsJroGuDuPdFQ1MB8GA1UdIwQY MBaAFFOot7yosR0nhQ6RjKWZZpiAFikpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVTZpM3ZLaXhIU2VGRHBHTXBabG1tSUFXS1NrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS81MDZkYjktMTJhYS00NjNjLWE3ZWEt ZDNjZGQ1YzMzOTJjLzEvVTZpM3ZLaXhIU2VGRHBHTXBabG1tSUFXS1NrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNS81MDZkYjktMTJhYS00NjNjLWE3ZWEtZDNjZGQ1YzMzOTJj LzEvVTZpM3ZLaXhIU2VGRHBHTXBabG1tSUFXS1NrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAF3juIS1E Ny+p/JYyysUHnmNDrthd0YVfXelA6IxjnD9+qB2zRodpemdf9uOWqGUBg7/S5z9Z qKGIp7DLPYuH2GGG3ezuYGpn2a3r1HGLYfl7DrYgnA/PcopOcP1d0d62vGvwuokp T5sR4UUOvh/IY/px0+ftuJ8+7vykzyxMlTeX6Khr4a2cz1jjkY7EiHuse1ePiCiO UWWgaY26HO7ke5TLcjJSCJVJ8qa1WtTLsTd92VvSalz0KqtWqh5nOtNiRCbXIT+u qQylXrNghUxSCFbav+0urGLl165Pafw7snMyNaHZI5ljwyyEdWjCt93EAZS9w2EL I8XXmqT7yMgDpQ== -----END CERTIFICATE-----Generated at Thu Dec 25 04:31:23 2025 by rpki-client