This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/540c03-ba83-4971-8981-744dcd014fa4/1/uVZnsVy6fKp0FSdIRHOE--A7iTo.mft File: uVZnsVy6fKp0FSdIRHOE--A7iTo.mft (raw, json) Hash identifier: nOmes6coHXnc0BBWv+0Unq4geOwSV1qjFbn+XBvV81g= Subject key identifier: 7B:29:38:E7:14:B9:2A:AD:4C:B4:F1:B9:9D:91:24:C9:57:A2:E4:73 Authority key identifier: B9:56:67:B1:5C:BA:7C:AA:74:15:27:48:44:73:84:FB:E0:3B:89:3A Certificate issuer: /CN=b95667b15cba7caa74152748447384fbe03b893a Certificate serial: 019B424A2C3824184D2E2B84694CFEB7EDE8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uVZnsVy6fKp0FSdIRHOE--A7iTo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/540c03-ba83-4971-8981-744dcd014fa4/1/uVZnsVy6fKp0FSdIRHOE--A7iTo.mft Manifest number: 0A3C Signing time: Sun 21 Dec 2025 19:01:55 +0000 Manifest this update: Sun 21 Dec 2025 19:01:55 +0000 Manifest next update: Mon 22 Dec 2025 19:01:55 +0000 Files and hashes: 1: uVZnsVy6fKp0FSdIRHOE--A7iTo.crl (hash: mn8y9XGN4B6g4bcQUcCmkLNlz+3+VkFlEErbj04l5O4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/540c03-ba83-4971-8981-744dcd014fa4/1/uVZnsVy6fKp0FSdIRHOE--A7iTo.crl rsync://rpki.ripe.net/repository/DEFAULT/a0/540c03-ba83-4971-8981-744dcd014fa4/1/uVZnsVy6fKp0FSdIRHOE--A7iTo.mft rsync://rpki.ripe.net/repository/DEFAULT/uVZnsVy6fKp0FSdIRHOE--A7iTo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 19:01:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:42:4a:2c:38:24:18:4d:2e:2b:84:69:4c:fe:b7:ed:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b95667b15cba7caa74152748447384fbe03b893a Validity Not Before: Dec 21 19:01:55 2025 GMT Not After : Dec 22 19:01:55 2025 GMT Subject: CN=7b2938e714b92aad4cb4f1b99d9124c957a2e473 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:cd:5d:48:18:93:f2:85:d1:e4:02:7c:72:14: c3:fc:b7:f5:19:55:83:11:b0:7f:55:0a:a4:ec:c0: ad:dc:fd:3b:f6:0c:9f:71:58:a1:bb:97:f1:63:8f: 5c:58:da:3d:3b:31:2b:a4:a1:2e:f1:26:f9:d2:c2: 35:0a:3a:2d:2d:30:9a:31:15:00:ac:e2:f7:48:70: 1e:b6:0e:c5:b2:e5:4d:2e:fe:53:2d:4f:f5:6e:99: e4:9f:24:a3:e3:6f:b6:7d:75:0e:8c:73:4c:4c:2c: 33:93:f0:de:33:bd:97:75:24:aa:e5:91:b0:07:29: fb:1a:4d:89:86:58:05:5d:71:dd:e6:b8:24:4f:35: a5:e9:3a:eb:69:b8:d7:9e:e3:88:f5:38:6e:e8:52: 95:6c:ee:2c:78:9f:12:c5:ea:3d:06:c4:dc:93:2a: a8:a6:53:13:ee:43:55:7e:b4:41:10:38:f0:ce:c4: a3:19:9d:1f:2f:97:30:b6:30:e1:0a:d8:d8:4d:bc: 2c:f0:38:ca:9a:5a:0a:63:df:ea:a7:a8:ea:d6:d3: 20:49:7a:a6:5f:4e:d8:73:22:89:71:5f:65:e7:0f: 48:03:da:00:49:e7:b3:04:8b:ae:f2:1d:b6:34:a5: 50:d9:93:2c:5d:13:af:c6:fa:96:8c:25:d8:a5:df: a2:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:29:38:E7:14:B9:2A:AD:4C:B4:F1:B9:9D:91:24:C9:57:A2:E4:73 X509v3 Authority Key Identifier: keyid:B9:56:67:B1:5C:BA:7C:AA:74:15:27:48:44:73:84:FB:E0:3B:89:3A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uVZnsVy6fKp0FSdIRHOE--A7iTo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/540c03-ba83-4971-8981-744dcd014fa4/1/uVZnsVy6fKp0FSdIRHOE--A7iTo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/540c03-ba83-4971-8981-744dcd014fa4/1/uVZnsVy6fKp0FSdIRHOE--A7iTo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6b:48:8f:b2:30:f6:87:7a:76:2a:32:3d:bf:2c:9d:88:af:5b: b0:4f:88:29:4c:07:95:9b:bd:2a:3b:bd:67:76:bb:ac:3c:b5: e2:6f:da:1f:7e:7b:71:0f:f6:03:3f:5c:a0:8a:e7:9f:0e:12: ba:c9:e5:47:e9:7a:9a:82:2b:c9:fd:14:10:3d:e9:ce:62:8d: 11:72:75:0f:77:94:44:e9:1d:1e:1b:1b:25:75:30:a9:a4:52: 77:d4:39:8f:39:06:07:11:74:66:e8:29:99:5f:ce:ea:25:c7: e5:49:e6:8a:b5:66:95:e1:bd:59:06:99:f3:28:5c:16:dc:24: ad:4d:c5:ce:a0:06:97:87:70:4f:0d:5d:2f:3b:d0:ec:a7:e6: 5f:1e:e0:10:8e:73:dc:4b:0f:38:3a:d8:f2:31:90:c6:62:dc: cf:15:bc:cb:51:ed:0e:fe:fb:a4:5a:f2:92:93:94:21:e7:1d: 25:2f:5e:68:fd:c8:5e:0b:25:e4:8c:73:9d:5b:d8:ea:61:de: 50:0d:b0:a6:11:71:50:7f:a1:09:23:a8:bf:78:87:78:d5:b5: 6c:d0:59:86:b3:53:79:72:2b:18:f6:01:ce:13:c1:98:90:47: 76:36:41:07:34:ae:7d:87:d0:d9:d3:d3:e3:63:e7:b9:17:36: 57:42:ff:11 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtCSiw4JBhNLiuEaUz+t+3oMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI5NTY2N2IxNWNiYTdjYWE3NDE1Mjc0ODQ0NzM4NGZiZTAz Yjg5M2EwHhcNMjUxMjIxMTkwMTU1WhcNMjUxMjIyMTkwMTU1WjAzMTEwLwYDVQQD Eyg3YjI5MzhlNzE0YjkyYWFkNGNiNGYxYjk5ZDkxMjRjOTU3YTJlNDczMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0M1dSBiT8oXR5AJ8chTD/Lf1GVWD EbB/VQqk7MCt3P079gyfcVihu5fxY49cWNo9OzErpKEu8Sb50sI1CjotLTCaMRUA rOL3SHAetg7FsuVNLv5TLU/1bpnknySj42+2fXUOjHNMTCwzk/DeM72XdSSq5ZGw Byn7Gk2JhlgFXXHd5rgkTzWl6TrrabjXnuOI9Thu6FKVbO4seJ8Sxeo9BsTckyqo plMT7kNVfrRBEDjwzsSjGZ0fL5cwtjDhCtjYTbws8DjKmloKY9/qp6jq1tMgSXqm X07YcyKJcV9l5w9IA9oASeezBIuu8h22NKVQ2ZMsXROvxvqWjCXYpd+iSwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHspOOcUuSqtTLTxuZ2RJMlXouRzMB8GA1UdIwQY MBaAFLlWZ7FcunyqdBUnSERzhPvgO4k6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdVZabnNWeTZmS3AwRlNkSVJIT0UtLUE3aVRvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC81NDBjMDMtYmE4My00OTcxLTg5ODEt NzQ0ZGNkMDE0ZmE0LzEvdVZabnNWeTZmS3AwRlNkSVJIT0UtLUE3aVRvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMC81NDBjMDMtYmE4My00OTcxLTg5ODEtNzQ0ZGNkMDE0ZmE0 LzEvdVZabnNWeTZmS3AwRlNkSVJIT0UtLUE3aVRvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAa0iPsjD2 h3p2KjI9vyydiK9bsE+IKUwHlZu9Kju9Z3a7rDy14m/aH357cQ/2Az9coIrnnw4S usnlR+l6moIryf0UED3pzmKNEXJ1D3eUROkdHhsbJXUwqaRSd9Q5jzkGBxF0Zugp mV/O6iXH5UnmirVmleG9WQaZ8yhcFtwkrU3FzqAGl4dwTw1dLzvQ7KfmXx7gEI5z 3EsPODrY8jGQxmLczxW8y1HtDv77pFrykpOUIecdJS9eaP3IXgsl5IxznVvY6mHe UA2wphFxUH+hCSOov3iHeNW1bNBZhrNTeXIrGPYBzhPBmJBHdjZBBzSufYfQ2dPT 42PnuRc2V0L/EQ== -----END CERTIFICATE-----Generated at Mon Dec 22 00:13:15 2025 by rpki-client