This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.mft File: uFnbfywuOzq9i_QV8M4f_zNDKew.mft (raw, json) Hash identifier: uGCXAlO8m0kO8Q2S8bBYOy2ZYBd8DmgzIbgW7roygLc= Subject key identifier: 20:62:F6:8F:94:EF:0F:4D:A9:D9:A1:53:51:2E:7C:73:9D:18:C4:1A Authority key identifier: B8:59:DB:7F:2C:2E:3B:3A:BD:8B:F4:15:F0:CE:1F:FF:33:43:29:EC Certificate issuer: /CN=b859db7f2c2e3b3abd8bf415f0ce1fff334329ec Certificate serial: 019B3EA33C7F3B2F1A68BCFC2C66760B65AA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uFnbfywuOzq9i_QV8M4f_zNDKew.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.mft Manifest number: 0EE4 Signing time: Sun 21 Dec 2025 02:00:43 +0000 Manifest this update: Sun 21 Dec 2025 02:00:43 +0000 Manifest next update: Mon 22 Dec 2025 02:00:43 +0000 Files and hashes: 1: KrWaj3PmGUr__R-XWPo-LvjSSzE.roa (hash: D32/8FWqAF1z0NVQywtDopSVNiH+dneRDeaovNlaE+U=) 2: uFnbfywuOzq9i_QV8M4f_zNDKew.crl (hash: Ua5pWTeaBKOR2YRITKOZ/ADfTs5xGjkEj/ZYp7QRrUs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.mft rsync://rpki.ripe.net/repository/DEFAULT/uFnbfywuOzq9i_QV8M4f_zNDKew.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3e:a3:3c:7f:3b:2f:1a:68:bc:fc:2c:66:76:0b:65:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b859db7f2c2e3b3abd8bf415f0ce1fff334329ec Validity Not Before: Dec 21 02:00:43 2025 GMT Not After : Dec 22 02:00:43 2025 GMT Subject: CN=2062f68f94ef0f4da9d9a153512e7c739d18c41a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:43:61:cf:18:b3:72:03:ea:54:55:35:f7:38: 56:7e:47:e1:bb:ea:1a:01:6c:a2:90:fa:23:19:97: 7a:fc:ff:e9:3e:ef:b8:7a:56:bf:06:4a:50:29:8c: 3a:f0:b4:9f:2e:dd:d1:dd:9a:dc:98:1b:ca:4a:cc: 99:66:66:73:79:ce:c9:84:a9:bf:a7:5c:71:d3:02: 94:2a:21:3c:37:fb:8b:96:f5:83:8a:f9:20:cd:52: 8b:8b:ee:b9:5e:5c:eb:79:98:0a:cc:57:73:0a:0e: 03:d6:e6:65:1c:77:4d:fb:b5:44:f1:d1:d3:66:f7: b5:a2:07:dc:4d:61:72:a0:a5:57:e1:f9:85:af:45: 33:21:04:82:d2:72:ee:f7:fc:0c:44:cb:dd:ba:3f: e5:20:68:9b:92:89:51:bb:32:81:17:25:f8:7b:e1: 6f:ed:80:88:fb:98:71:99:3b:81:09:fb:23:46:70: ef:47:8e:70:98:d0:f8:63:5a:b1:52:3e:e1:56:81: d2:54:50:3c:6f:39:7c:92:94:83:52:02:be:a7:3c: 52:10:33:ac:a9:c1:32:ab:b5:3f:7f:9b:0d:12:1f: d1:b3:91:24:d0:b5:b8:cf:16:24:70:e0:b2:b4:23: 59:25:30:25:3d:28:48:de:db:40:57:67:e8:38:0e: fa:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:62:F6:8F:94:EF:0F:4D:A9:D9:A1:53:51:2E:7C:73:9D:18:C4:1A X509v3 Authority Key Identifier: keyid:B8:59:DB:7F:2C:2E:3B:3A:BD:8B:F4:15:F0:CE:1F:FF:33:43:29:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uFnbfywuOzq9i_QV8M4f_zNDKew.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:21:5f:66:a6:4b:13:0e:72:25:5c:a1:56:84:c8:10:1e:ef: 0d:05:08:40:ad:7e:b7:3c:d2:dd:58:d5:f1:66:58:69:f7:73: d3:29:80:c6:92:31:97:52:73:3d:74:51:92:2f:94:f1:9c:6d: 06:94:d2:d7:9a:d9:7d:19:a7:d5:7d:3b:10:48:be:da:dc:a1: 3e:f5:61:93:ae:05:87:43:cc:d6:31:40:16:ff:b2:3e:a1:ba: 96:fe:c2:ad:ac:53:26:b8:d0:af:11:1f:81:a6:88:0a:ab:0d: c2:79:87:3e:a3:97:12:08:a8:28:39:83:7f:16:12:68:c3:88: 02:e8:c9:f2:51:6e:ae:a0:52:40:49:bc:97:15:89:9e:c5:a7: c3:94:fe:c8:e0:2e:33:89:1f:b0:0d:4c:95:14:17:d7:85:86: 6e:9c:e2:07:5b:dc:1d:1d:26:c0:71:6a:a6:0e:cc:ef:e7:85: be:d8:40:a6:e3:e3:89:ed:56:ae:ea:9b:3b:43:e7:31:76:2d: 21:1a:67:85:b3:f0:67:1d:34:ba:d1:0e:f1:8d:41:dd:39:6b: c3:e9:fe:65:e6:ac:46:39:8a:d4:02:b5:3f:15:b7:bf:46:cc: f3:1b:b6:10:5d:c1:03:c5:19:1c:79:5b:b3:08:14:ac:3b:fb: 17:54:22:1c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs+ozx/Oy8aaLz8LGZ2C2WqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI4NTlkYjdmMmMyZTNiM2FiZDhiZjQxNWYwY2UxZmZmMzM0 MzI5ZWMwHhcNMjUxMjIxMDIwMDQzWhcNMjUxMjIyMDIwMDQzWjAzMTEwLwYDVQQD EygyMDYyZjY4Zjk0ZWYwZjRkYTlkOWExNTM1MTJlN2M3MzlkMThjNDFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs0NhzxizcgPqVFU19zhWfkfhu+oa AWyikPojGZd6/P/pPu+4ela/BkpQKYw68LSfLt3R3ZrcmBvKSsyZZmZzec7JhKm/ p1xx0wKUKiE8N/uLlvWDivkgzVKLi+65XlzreZgKzFdzCg4D1uZlHHdN+7VE8dHT Zve1ogfcTWFyoKVX4fmFr0UzIQSC0nLu9/wMRMvduj/lIGibkolRuzKBFyX4e+Fv 7YCI+5hxmTuBCfsjRnDvR45wmND4Y1qxUj7hVoHSVFA8bzl8kpSDUgK+pzxSEDOs qcEyq7U/f5sNEh/Rs5Ek0LW4zxYkcOCytCNZJTAlPShI3ttAV2foOA76zwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCBi9o+U7w9NqdmhU1EufHOdGMQaMB8GA1UdIwQY MBaAFLhZ238sLjs6vYv0FfDOH/8zQynsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdUZuYmZ5d3VPenE5aV9RVjhNNGZfek5ES2V3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi83ZWI3YzMtZTM0YS00ZmJjLTkyNzIt NGMxYzU3YTgxZmZkLzEvdUZuYmZ5d3VPenE5aV9RVjhNNGZfek5ES2V3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi83ZWI3YzMtZTM0YS00ZmJjLTkyNzItNGMxYzU3YTgxZmZk LzEvdUZuYmZ5d3VPenE5aV9RVjhNNGZfek5ES2V3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMiFfZqZL Ew5yJVyhVoTIEB7vDQUIQK1+tzzS3VjV8WZYafdz0ymAxpIxl1JzPXRRki+U8Zxt BpTS15rZfRmn1X07EEi+2tyhPvVhk64Fh0PM1jFAFv+yPqG6lv7CraxTJrjQrxEf gaaICqsNwnmHPqOXEgioKDmDfxYSaMOIAujJ8lFurqBSQEm8lxWJnsWnw5T+yOAu M4kfsA1MlRQX14WGbpziB1vcHR0mwHFqpg7M7+eFvthApuPjie1WruqbO0PnMXYt IRpnhbPwZx00utEO8Y1B3Tlrw+n+ZeasRjmK1AK1PxW3v0bM8xu2EF3BA8UZHHlb swgUrDv7F1QiHA== -----END CERTIFICATE-----Generated at Sun Dec 21 06:06:21 2025 by rpki-client