This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft File: UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft (raw, json) Hash identifier: uxXIM7GmRA9wAUUwIiyn+cbnEbFcAiFUNC8LI0i3058= Subject key identifier: DA:50:47:4E:6D:45:04:28:A9:B8:C2:D3:E8:E1:FB:52:27:2A:22:A0 Authority key identifier: 52:A6:5C:62:84:83:A7:56:68:8B:B1:58:C2:8A:B7:C0:D4:7D:E2:7C Certificate issuer: /CN=52a65c628483a756688bb158c28ab7c0d47de27c Certificate serial: 019B35325A96BA0413F940969DB85B45D21D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft Manifest number: 0556 Signing time: Fri 19 Dec 2025 06:00:50 +0000 Manifest this update: Fri 19 Dec 2025 06:00:50 +0000 Manifest next update: Sat 20 Dec 2025 06:00:50 +0000 Files and hashes: 1: UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl (hash: 7rknr7mxIqOrxxFuUiEdM/8b1stWqPuXoASkgY/wvsY=) 2: tqDHXiS7i5dxh3CeCoDJkGQqezg.roa (hash: l6w/oRDzimMT8gSmQ7FtqRNlVcpqgstHkEfCIU2SJhE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:35:32:5a:96:ba:04:13:f9:40:96:9d:b8:5b:45:d2:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52a65c628483a756688bb158c28ab7c0d47de27c Validity Not Before: Dec 19 06:00:50 2025 GMT Not After : Dec 20 06:00:50 2025 GMT Subject: CN=da50474e6d450428a9b8c2d3e8e1fb52272a22a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:14:1d:ff:01:cc:58:1f:4c:6d:6c:f0:e5:3d: 63:6c:70:c7:43:a4:91:db:10:76:71:5c:c6:68:1a: 00:51:43:7e:fe:aa:d0:1f:a6:0d:2b:66:8a:98:ab: b5:89:c0:55:60:6d:0f:5a:14:f5:69:e4:24:92:0c: 66:9a:5e:9f:e5:01:bb:bc:4a:9c:af:a9:4c:3d:90: 6f:e9:a5:a9:92:18:f1:f6:01:32:ed:ce:e2:df:cb: b5:63:46:63:c1:56:66:a9:95:2e:8b:db:4e:cd:25: 17:8d:26:63:90:7d:9e:d7:79:30:fc:d5:ff:8c:25: 35:ed:2c:e5:5f:a8:8d:f7:9e:5d:b3:b6:6d:93:46: 1f:ee:a2:8e:00:12:d9:e8:4c:d8:ed:90:fd:38:5d: 99:a2:5d:02:d2:e3:08:53:ea:48:53:6b:f9:9b:87: 0a:7f:81:1d:38:54:35:4e:33:ff:e9:30:4f:4f:5a: f9:84:b1:5e:59:f2:de:57:4a:92:e7:e9:29:c5:4d: 0b:83:0f:f3:d2:9e:b0:ea:ed:b0:a7:3a:80:3b:83: 20:d5:3a:3d:72:15:0f:80:8b:7f:cd:31:99:d7:c2: bf:d7:a5:08:74:4f:84:b5:0b:37:61:d6:2c:87:ab: 20:1f:d0:df:7a:88:e9:a7:b6:5a:c2:2b:9e:25:f4: 51:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:50:47:4E:6D:45:04:28:A9:B8:C2:D3:E8:E1:FB:52:27:2A:22:A0 X509v3 Authority Key Identifier: keyid:52:A6:5C:62:84:83:A7:56:68:8B:B1:58:C2:8A:B7:C0:D4:7D:E2:7C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 59:8c:7a:60:3c:81:bb:a9:1f:50:e9:62:66:fb:8a:c8:31:a5: 0d:4a:9a:c9:3e:e7:d8:71:4d:11:1e:4b:ec:3e:cd:88:24:79: 85:e2:b0:75:0a:a3:89:7c:70:d7:8f:19:37:80:16:c1:28:7a: b1:02:3e:16:70:d9:f0:24:ec:8c:cd:48:f9:9b:bd:61:66:4c: 73:8e:15:c7:6a:40:9b:dc:3a:35:96:d0:a4:14:10:cf:66:dc: 50:4d:84:11:77:5c:4d:77:fb:de:2c:1f:6a:43:49:6f:f5:9a: 03:fe:4a:f8:13:54:e0:56:ea:3f:94:9e:48:93:7e:a6:0d:a7: c0:86:40:ce:1c:16:13:6e:a2:59:c0:2e:ad:2b:29:17:67:0b: 8e:7c:02:20:da:88:72:5f:10:38:1c:da:34:4d:37:a3:40:80: 2d:d1:e3:1d:79:e3:06:fc:db:12:f4:95:a5:2e:7d:55:11:7f: e5:22:45:7f:71:4b:d0:9e:c0:c4:d8:ba:79:43:0f:de:ac:a0: dc:b5:eb:cf:7b:b2:00:d5:8a:1b:a6:68:02:aa:19:bc:b1:b9: 3a:2a:ea:86:a0:6b:c6:ce:af:d1:e0:59:b2:18:be:ba:6f:00: c6:00:6c:3c:1b:a4:c2:89:eb:b4:78:90:7c:b4:b1:18:a7:42: b7:e9:6d:4b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs1MlqWugQT+UCWnbhbRdIdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyYTY1YzYyODQ4M2E3NTY2ODhiYjE1OGMyOGFiN2MwZDQ3 ZGUyN2MwHhcNMjUxMjE5MDYwMDUwWhcNMjUxMjIwMDYwMDUwWjAzMTEwLwYDVQQD EyhkYTUwNDc0ZTZkNDUwNDI4YTliOGMyZDNlOGUxZmI1MjI3MmEyMmEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsRQd/wHMWB9MbWzw5T1jbHDHQ6SR 2xB2cVzGaBoAUUN+/qrQH6YNK2aKmKu1icBVYG0PWhT1aeQkkgxmml6f5QG7vEqc r6lMPZBv6aWpkhjx9gEy7c7i38u1Y0ZjwVZmqZUui9tOzSUXjSZjkH2e13kw/NX/ jCU17SzlX6iN955ds7Ztk0Yf7qKOABLZ6EzY7ZD9OF2Zol0C0uMIU+pIU2v5m4cK f4EdOFQ1TjP/6TBPT1r5hLFeWfLeV0qS5+kpxU0Lgw/z0p6w6u2wpzqAO4Mg1To9 chUPgIt/zTGZ18K/16UIdE+EtQs3YdYsh6sgH9Dfeojpp7ZawiueJfRR3QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNpQR05tRQQoqbjC0+jh+1InKiKgMB8GA1UdIwQY MBaAFFKmXGKEg6dWaIuxWMKKt8DUfeJ8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXFaY1lvU0RwMVpvaTdGWXdvcTN3TlI5NG53LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi8wM2QwZTItYTQ5ZS00MzcxLWIyMWMt NTAxNWUxMjA4MTE5LzEvVXFaY1lvU0RwMVpvaTdGWXdvcTN3TlI5NG53Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZi8wM2QwZTItYTQ5ZS00MzcxLWIyMWMtNTAxNWUxMjA4MTE5 LzEvVXFaY1lvU0RwMVpvaTdGWXdvcTN3TlI5NG53LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWYx6YDyB u6kfUOliZvuKyDGlDUqayT7n2HFNER5L7D7NiCR5heKwdQqjiXxw148ZN4AWwSh6 sQI+FnDZ8CTsjM1I+Zu9YWZMc44Vx2pAm9w6NZbQpBQQz2bcUE2EEXdcTXf73iwf akNJb/WaA/5K+BNU4FbqP5SeSJN+pg2nwIZAzhwWE26iWcAurSspF2cLjnwCINqI cl8QOBzaNE03o0CALdHjHXnjBvzbEvSVpS59VRF/5SJFf3FL0J7AxNi6eUMP3qyg 3LXrz3uyANWKG6ZoAqoZvLG5OirqhqBrxs6v0eBZshi+um8AxgBsPBukwonrtHiQ fLSxGKdCt+ltSw== -----END CERTIFICATE-----Generated at Fri Dec 19 08:25:22 2025 by rpki-client