This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft File: ukQzhlmFp7teJpw3lK5vFkz8Lds.mft (raw, json) Hash identifier: yGzIkIAdypVkk7VDgKU87qjLmRi+ZDyPKneVsNXg3mI= Subject key identifier: 70:6B:8A:94:6B:68:65:EA:F5:C3:50:BF:D6:86:8D:EF:07:64:20:4D Authority key identifier: BA:44:33:86:59:85:A7:BB:5E:26:9C:37:94:AE:6F:16:4C:FC:2D:DB Certificate issuer: /CN=ba4433865985a7bb5e269c3794ae6f164cfc2ddb Certificate serial: 019B3F7F0078CA41903C85675993641D343D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft Manifest number: 0769 Signing time: Sun 21 Dec 2025 06:00:46 +0000 Manifest this update: Sun 21 Dec 2025 06:00:46 +0000 Manifest next update: Mon 22 Dec 2025 06:00:46 +0000 Files and hashes: 1: AlkZJ5y5SgK5NicIMpQu5G4y-kk.roa (hash: 6pDsa6TgLwnLkjOOWWhXhHFWrv8bvlopmayBUNqycZY=) 2: ukQzhlmFp7teJpw3lK5vFkz8Lds.crl (hash: R+jvZkOsqnHQfBYytlV6BkSQ1htNmz29OR/8vxgaRiY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.crl rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3f:7f:00:78:ca:41:90:3c:85:67:59:93:64:1d:34:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba4433865985a7bb5e269c3794ae6f164cfc2ddb Validity Not Before: Dec 21 06:00:46 2025 GMT Not After : Dec 22 06:00:46 2025 GMT Subject: CN=706b8a946b6865eaf5c350bfd6868def0764204d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:23:e3:a0:fc:ee:63:7f:81:32:db:5c:2e:e1: 70:16:1f:34:2d:71:f9:62:56:f2:f1:a2:15:36:d1: 69:92:1e:c6:75:2a:0b:af:3f:0b:36:58:28:56:40: 5b:2a:cb:7f:88:5b:d0:a1:d3:01:e6:a4:f1:03:20: 4d:16:60:2f:9b:8e:0e:c6:db:4c:d5:8f:40:f5:71: 51:3b:7f:6d:f9:7a:c0:8b:f0:c5:97:80:45:85:ec: a2:7b:9c:4c:4f:9f:a7:87:0f:56:0f:a3:f1:50:a8: c2:01:ca:80:fc:e0:b8:b9:65:ff:dd:20:a3:c5:61: 73:60:4b:bb:91:dd:c3:b6:6e:c0:16:52:7f:f6:fb: 2c:8b:eb:07:2c:ad:97:28:32:bc:ba:3e:b7:b2:3c: 23:a6:b7:c4:6d:f4:92:e4:82:b1:ea:38:a7:3c:b7: 53:3b:2f:d4:45:bd:f6:79:ec:a7:cb:88:c8:0e:b1: 18:a6:3d:b5:67:92:8f:c6:c5:3d:82:7a:46:19:3e: a0:4c:c3:7c:5c:8f:bc:59:4c:65:c9:ec:c5:df:11: 7a:25:15:b8:5b:e6:fd:1b:0b:e5:ab:c1:3b:60:cc: fd:26:64:c8:50:99:6a:c9:c4:fd:2f:98:cb:ba:18: f2:f6:b4:8a:93:65:3e:08:90:cb:a9:c3:4c:53:e8: 2d:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:6B:8A:94:6B:68:65:EA:F5:C3:50:BF:D6:86:8D:EF:07:64:20:4D X509v3 Authority Key Identifier: keyid:BA:44:33:86:59:85:A7:BB:5E:26:9C:37:94:AE:6F:16:4C:FC:2D:DB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 84:05:4f:6f:23:1d:d9:89:97:da:e9:46:9f:0b:aa:8c:0d:06: 52:77:45:b3:2c:e6:d7:a4:5c:08:4b:40:37:a8:19:7c:bb:c1: 0c:f8:a1:f2:59:8a:5d:3a:3c:4f:e2:1d:a9:45:18:6c:ef:9e: 04:d2:ec:7e:0d:96:2c:29:5e:b2:2d:34:09:c0:15:a0:2e:6a: 42:94:c1:74:95:89:8c:71:29:3e:23:64:74:87:cc:fe:df:b3: ab:eb:98:6f:a4:45:60:68:79:71:48:7a:62:3d:1e:9c:99:22: f6:bc:cb:3c:b4:ce:a3:eb:4f:ef:5d:1f:02:f3:7f:ee:44:4b: cc:82:a1:21:f2:b3:e4:b8:8b:9e:b8:a6:72:60:63:ee:0c:99: 45:f9:9a:a3:52:96:32:5c:df:65:f6:b5:dd:87:a0:6c:8d:92: 14:20:7f:22:ac:66:08:14:58:ca:33:26:9c:b9:ba:8d:55:2d: 99:1a:60:86:66:1a:f7:a0:a8:53:f4:57:f1:ff:f4:1d:1d:28: f9:98:2f:34:f9:92:ed:b3:19:ae:7f:05:84:f0:3f:54:ff:01: 56:27:21:bc:7b:00:38:79:6c:c9:0d:14:43:0f:00:bc:ef:d1: ae:b4:0e:bb:71:35:64:28:6c:f5:04:b2:f3:cb:3d:dc:86:11: de:df:0e:d6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs/fwB4ykGQPIVnWZNkHTQ9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhNDQzMzg2NTk4NWE3YmI1ZTI2OWMzNzk0YWU2ZjE2NGNm YzJkZGIwHhcNMjUxMjIxMDYwMDQ2WhcNMjUxMjIyMDYwMDQ2WjAzMTEwLwYDVQQD Eyg3MDZiOGE5NDZiNjg2NWVhZjVjMzUwYmZkNjg2OGRlZjA3NjQyMDRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxyPjoPzuY3+BMttcLuFwFh80LXH5 Ylby8aIVNtFpkh7GdSoLrz8LNlgoVkBbKst/iFvQodMB5qTxAyBNFmAvm44OxttM 1Y9A9XFRO39t+XrAi/DFl4BFheyie5xMT5+nhw9WD6PxUKjCAcqA/OC4uWX/3SCj xWFzYEu7kd3Dtm7AFlJ/9vssi+sHLK2XKDK8uj63sjwjprfEbfSS5IKx6jinPLdT Oy/URb32eeyny4jIDrEYpj21Z5KPxsU9gnpGGT6gTMN8XI+8WUxlyezF3xF6JRW4 W+b9Gwvlq8E7YMz9JmTIUJlqycT9L5jLuhjy9rSKk2U+CJDLqcNMU+gtvQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHBripRraGXq9cNQv9aGje8HZCBNMB8GA1UdIwQY MBaAFLpEM4ZZhae7XiacN5SubxZM/C3bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdWtRemhsbUZwN3RlSnB3M2xLNXZGa3o4TGRzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS9hYjMyMTktYzY0Yi00NzBlLTgzNDEt M2ExMjAyNzQwMGU2LzEvdWtRemhsbUZwN3RlSnB3M2xLNXZGa3o4TGRzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OS9hYjMyMTktYzY0Yi00NzBlLTgzNDEtM2ExMjAyNzQwMGU2 LzEvdWtRemhsbUZwN3RlSnB3M2xLNXZGa3o4TGRzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhAVPbyMd 2YmX2ulGnwuqjA0GUndFsyzm16RcCEtAN6gZfLvBDPih8lmKXTo8T+IdqUUYbO+e BNLsfg2WLClesi00CcAVoC5qQpTBdJWJjHEpPiNkdIfM/t+zq+uYb6RFYGh5cUh6 Yj0enJki9rzLPLTOo+tP710fAvN/7kRLzIKhIfKz5LiLnrimcmBj7gyZRfmao1KW MlzfZfa13YegbI2SFCB/IqxmCBRYyjMmnLm6jVUtmRpghmYa96CoU/RX8f/0HR0o +ZgvNPmS7bMZrn8FhPA/VP8BVichvHsAOHlsyQ0UQw8AvO/RrrQOu3E1ZChs9QSy 88s93IYR3t8O1g== -----END CERTIFICATE-----Generated at Sun Dec 21 10:07:04 2025 by rpki-client