This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft File: U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft (raw, json) Hash identifier: RuGYA0Ocjzwce4LIcu2OSng+o4SqMH3ipHxwEAY0l90= Subject key identifier: EF:43:9D:20:F2:97:FB:A1:AB:E1:9E:23:41:9C:DC:BC:26:53:1E:CB Authority key identifier: 53:E3:AE:DD:91:BE:82:45:13:42:DC:D1:C9:82:83:45:DB:66:1A:5F Certificate issuer: /CN=53e3aedd91be82451342dcd1c9828345db661a5f Certificate serial: 019B3C0FDA19047F94E5250AD5FE78EF026A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft Manifest number: 0A13 Signing time: Sat 20 Dec 2025 14:00:30 +0000 Manifest this update: Sat 20 Dec 2025 14:00:30 +0000 Manifest next update: Sun 21 Dec 2025 14:00:30 +0000 Files and hashes: 1: If5j4KjsWFg3kwDUxrHpbFCCjpg.roa (hash: iGbVOgQjxfoZ4tZTHfIMlZvCv27war8Yd/ywUcGl39o=) 2: U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl (hash: pKwKNpy/XsRSOM20aEznclb/ZB4MSV1hprBb02M2g/c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 10:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3c:0f:da:19:04:7f:94:e5:25:0a:d5:fe:78:ef:02:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53e3aedd91be82451342dcd1c9828345db661a5f Validity Not Before: Dec 20 14:00:30 2025 GMT Not After : Dec 21 14:00:30 2025 GMT Subject: CN=ef439d20f297fba1abe19e23419cdcbc26531ecb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:00:ad:64:05:20:57:48:45:b2:01:1a:90:db: c0:06:34:e5:9a:68:bd:58:5d:45:32:08:80:c1:0f: 5d:ba:74:08:4f:e5:09:f7:ac:69:8e:d6:5f:31:a3: a6:de:45:d8:a3:6f:34:eb:84:19:eb:9c:1b:45:66: 8e:24:0c:32:6c:e7:de:c6:b1:ad:09:17:ce:b5:44: 80:1b:c5:97:23:75:eb:ed:9c:93:c6:6c:e2:39:99: c4:e4:7c:96:53:e1:9b:2a:ad:c4:99:b6:3c:7b:43: 6b:cf:fb:83:87:1c:d9:e6:fa:bc:5c:b3:ab:e8:0c: d6:5e:2e:97:55:ab:8a:4e:1f:89:29:5f:d4:f6:9c: 2f:38:c7:b2:3a:b8:69:0a:35:2d:fd:44:58:b2:47: 6d:0f:e2:e1:4d:93:43:b1:7d:a1:36:34:a5:1e:0b: 9c:d3:79:ae:1f:8d:5e:eb:b7:0c:db:65:4f:be:76: c3:f0:bb:54:20:0e:78:74:ad:f8:52:34:4f:ba:c5: 72:58:d8:ef:39:ec:c2:38:d9:2b:07:e5:a0:c1:5c: 2d:13:2b:a6:3f:d6:d9:da:bb:1c:82:97:5b:d2:da: a0:bd:9d:4f:07:4a:14:04:5e:e1:ed:d7:18:48:f2: 18:a7:8e:c5:57:33:cc:88:57:dd:c5:eb:e1:4b:3d: c2:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:43:9D:20:F2:97:FB:A1:AB:E1:9E:23:41:9C:DC:BC:26:53:1E:CB X509v3 Authority Key Identifier: keyid:53:E3:AE:DD:91:BE:82:45:13:42:DC:D1:C9:82:83:45:DB:66:1A:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/04e8b2-c76f-4629-95ad-a7d945af14e5/1/U-Ou3ZG-gkUTQtzRyYKDRdtmGl8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c0:d2:52:a6:8f:bb:bd:73:c7:e4:c2:67:1f:0b:45:42:27:47: 1b:44:1b:2e:ee:97:72:5e:5b:5c:8d:d8:6b:58:71:41:7b:0c: 7b:03:59:68:09:ea:7d:17:7d:ef:a5:9d:2e:f7:74:17:87:03: 7d:11:0f:09:94:72:62:d2:94:24:22:90:ef:be:a4:ce:05:a1: 8e:d0:b2:0c:41:f1:0d:00:c1:59:ae:ed:b0:53:57:e9:24:d6: 68:b9:f8:c9:91:e3:79:d2:08:76:05:af:72:44:e0:df:d5:6f: 8f:6e:b3:6c:4b:9f:d7:ef:89:a2:7c:f0:94:65:97:1d:d2:61: 8b:f7:84:7d:00:e1:42:f7:95:c6:f5:9d:19:ac:24:c3:0b:93: 06:d4:10:ff:48:39:16:94:91:82:64:59:5e:b1:6f:b4:a1:ef: d4:73:d5:23:0b:a3:b0:ee:e0:30:93:79:5a:c8:38:34:3d:35: 89:94:57:e4:93:09:79:82:e8:cb:24:0d:13:7b:21:2b:01:66: c9:be:e6:c2:62:5a:ab:e1:62:66:a9:e9:74:e9:e2:23:d1:aa: b0:5c:a2:27:da:00:e7:bd:1b:fb:93:04:65:54:f8:38:e5:0f: 50:19:87:dc:ea:70:c0:9b:05:5a:6a:19:35:4f:00:a5:c6:84: 05:42:71:df -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs8D9oZBH+U5SUK1f547wJqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzZTNhZWRkOTFiZTgyNDUxMzQyZGNkMWM5ODI4MzQ1ZGI2 NjFhNWYwHhcNMjUxMjIwMTQwMDMwWhcNMjUxMjIxMTQwMDMwWjAzMTEwLwYDVQQD EyhlZjQzOWQyMGYyOTdmYmExYWJlMTllMjM0MTljZGNiYzI2NTMxZWNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjwCtZAUgV0hFsgEakNvABjTlmmi9 WF1FMgiAwQ9dunQIT+UJ96xpjtZfMaOm3kXYo28064QZ65wbRWaOJAwybOfexrGt CRfOtUSAG8WXI3Xr7ZyTxmziOZnE5HyWU+GbKq3EmbY8e0Nrz/uDhxzZ5vq8XLOr 6AzWXi6XVauKTh+JKV/U9pwvOMeyOrhpCjUt/URYskdtD+LhTZNDsX2hNjSlHguc 03muH41e67cM22VPvnbD8LtUIA54dK34UjRPusVyWNjvOezCONkrB+WgwVwtEyum P9bZ2rscgpdb0tqgvZ1PB0oUBF7h7dcYSPIYp47FVzPMiFfdxevhSz3CYwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO9DnSDyl/uhq+GeI0Gc3LwmUx7LMB8GA1UdIwQY MBaAFFPjrt2RvoJFE0Lc0cmCg0XbZhpfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVS1PdTNaRy1na1VUUXR6UnlZS0RSZHRtR2w4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS8wNGU4YjItYzc2Zi00NjI5LTk1YWQt YTdkOTQ1YWYxNGU1LzEvVS1PdTNaRy1na1VUUXR6UnlZS0RSZHRtR2w4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS8wNGU4YjItYzc2Zi00NjI5LTk1YWQtYTdkOTQ1YWYxNGU1 LzEvVS1PdTNaRy1na1VUUXR6UnlZS0RSZHRtR2w4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwNJSpo+7 vXPH5MJnHwtFQidHG0QbLu6Xcl5bXI3Ya1hxQXsMewNZaAnqfRd976WdLvd0F4cD fREPCZRyYtKUJCKQ776kzgWhjtCyDEHxDQDBWa7tsFNX6STWaLn4yZHjedIIdgWv ckTg39Vvj26zbEuf1++JonzwlGWXHdJhi/eEfQDhQveVxvWdGawkwwuTBtQQ/0g5 FpSRgmRZXrFvtKHv1HPVIwujsO7gMJN5Wsg4ND01iZRX5JMJeYLoyyQNE3shKwFm yb7mwmJaq+FiZqnpdOniI9GqsFyiJ9oA570b+5MEZVT4OOUPUBmH3OpwwJsFWmoZ NU8ApcaEBUJx3w== -----END CERTIFICATE-----Generated at Sat Dec 20 18:57:53 2025 by rpki-client