This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft File: uhzvb56e3EXjzSjvQCUZeVLUYOk.mft (raw, json) Hash identifier: XZ1xjBCOgg/w6VvSUO7djQQfBCgJ8UUUWXKf0a3V+N4= Subject key identifier: 8F:D3:CE:4C:11:91:96:89:DE:76:75:07:11:E3:A6:37:35:7C:5E:AE Authority key identifier: BA:1C:EF:6F:9E:9E:DC:45:E3:CD:28:EF:40:25:19:79:52:D4:60:E9 Certificate issuer: /CN=ba1cef6f9e9edc45e3cd28ef4025197952d460e9 Certificate serial: 019B273FDC12858672B5E67F315CF5E347A1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uhzvb56e3EXjzSjvQCUZeVLUYOk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft Manifest number: 0DAE Signing time: Tue 16 Dec 2025 13:00:55 +0000 Manifest this update: Tue 16 Dec 2025 13:00:55 +0000 Manifest next update: Wed 17 Dec 2025 13:00:55 +0000 Files and hashes: 1: uhzvb56e3EXjzSjvQCUZeVLUYOk.crl (hash: tR2fcvqWBzxHI13KOwmiHUE+kVGQ6TeRYd57RTeY+jo=) 2: yBgRtAUy9SDMB2oNfVg6DWBcxdo.roa (hash: th+et5jSmKPB56Gge2PfFSgmFKaHL/juuWVdT7KzSfo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.crl rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft rsync://rpki.ripe.net/repository/DEFAULT/uhzvb56e3EXjzSjvQCUZeVLUYOk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 13:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:27:3f:dc:12:85:86:72:b5:e6:7f:31:5c:f5:e3:47:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba1cef6f9e9edc45e3cd28ef4025197952d460e9 Validity Not Before: Dec 16 13:00:55 2025 GMT Not After : Dec 17 13:00:55 2025 GMT Subject: CN=8fd3ce4c11919689de76750711e3a637357c5eae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:df:a4:e5:7a:b1:d0:55:2e:47:2b:23:18:c7: 08:fd:28:40:85:e3:1d:c9:ec:e7:45:2b:90:8a:13: 43:36:94:ac:c1:94:a2:6b:53:76:cb:aa:b2:ea:6e: a2:47:64:ad:1c:86:e7:12:1b:ff:0d:40:cf:87:a2: 72:75:ad:eb:f0:86:2b:12:cd:93:dd:f8:76:87:00: 65:bb:74:75:11:11:60:36:50:a0:a0:f2:7d:37:8d: ed:0b:38:ed:21:d5:47:19:ed:3b:bd:af:52:68:2a: e1:05:ff:65:eb:cc:52:cc:b6:45:da:db:36:e1:eb: 4d:e5:8e:83:a2:82:22:ce:1e:5f:b4:2d:32:70:b4: 96:05:76:b6:f9:7c:09:25:b9:cb:43:df:bc:d3:22: 49:56:20:04:f0:69:79:13:f0:ba:99:4f:00:47:ab: f6:cc:ac:ec:d4:99:4f:2b:d7:f9:d1:69:f0:25:c3: 16:ec:07:6a:9b:2c:e5:d6:0d:7d:e8:a6:68:7b:70: a3:17:5a:b1:59:8b:80:da:18:ae:2e:05:ec:1c:a4: 4a:39:d4:ab:e5:ec:e6:bb:9b:5a:94:8b:da:14:f3: 0f:f1:ed:77:46:55:35:9b:ba:33:7c:6c:bd:5d:44: 49:dd:58:d2:ae:e7:d0:c0:19:38:ec:c9:bf:44:87: 26:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:D3:CE:4C:11:91:96:89:DE:76:75:07:11:E3:A6:37:35:7C:5E:AE X509v3 Authority Key Identifier: keyid:BA:1C:EF:6F:9E:9E:DC:45:E3:CD:28:EF:40:25:19:79:52:D4:60:E9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uhzvb56e3EXjzSjvQCUZeVLUYOk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:bb:79:d9:f4:88:b4:d3:b0:56:e1:3c:4a:23:73:d2:87:f6: 51:7c:e8:d6:86:c1:eb:54:02:b1:77:35:03:ce:43:9b:85:04: 6b:3a:0c:4a:69:b6:cd:02:62:d0:a6:1b:17:e9:54:e9:9a:c4: 6a:8e:e0:c3:1d:6d:97:48:8f:53:00:33:92:46:53:cb:0d:e8: a3:58:63:5e:d5:ba:40:a3:0c:e2:4f:cf:69:fe:d2:d6:be:a8: 39:6b:54:ca:74:42:82:6d:a5:24:2d:f4:59:ac:9b:02:57:e7: 9f:96:19:6c:a1:49:b5:23:98:04:8e:56:07:46:47:02:b9:f0: 3a:f7:47:ea:61:b6:d9:4d:67:a7:ce:34:a4:16:93:da:09:7d: 79:13:9a:de:fb:f0:7c:d0:98:e1:a8:37:80:bd:7c:b0:76:3c: 89:ac:a7:af:91:13:25:99:ba:dd:3c:2c:3a:54:3b:9b:4d:16: c6:e5:e7:46:fb:5b:47:db:64:31:37:95:52:3f:af:1d:87:4f: 76:82:d5:b9:46:e0:18:ca:4d:dc:4d:ee:24:44:eb:6c:76:4d: 4a:54:da:e7:53:a8:44:85:9d:f8:a1:d7:bb:be:bf:c1:8f:de: 77:f9:2e:40:8e:f7:b6:44:e6:a6:85:39:0e:00:ea:72:73:fb: 6f:88:ff:8b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsnP9wShYZyteZ/MVz140ehMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhMWNlZjZmOWU5ZWRjNDVlM2NkMjhlZjQwMjUxOTc5NTJk NDYwZTkwHhcNMjUxMjE2MTMwMDU1WhcNMjUxMjE3MTMwMDU1WjAzMTEwLwYDVQQD Eyg4ZmQzY2U0YzExOTE5Njg5ZGU3Njc1MDcxMWUzYTYzNzM1N2M1ZWFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn9+k5Xqx0FUuRysjGMcI/ShAheMd yeznRSuQihNDNpSswZSia1N2y6qy6m6iR2StHIbnEhv/DUDPh6Jyda3r8IYrEs2T 3fh2hwBlu3R1ERFgNlCgoPJ9N43tCzjtIdVHGe07va9SaCrhBf9l68xSzLZF2ts2 4etN5Y6DooIizh5ftC0ycLSWBXa2+XwJJbnLQ9+80yJJViAE8Gl5E/C6mU8AR6v2 zKzs1JlPK9f50WnwJcMW7Adqmyzl1g196KZoe3CjF1qxWYuA2hiuLgXsHKRKOdSr 5ezmu5talIvaFPMP8e13RlU1m7ozfGy9XURJ3VjSrufQwBk47Mm/RIcmoQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI/TzkwRkZaJ3nZ1BxHjpjc1fF6uMB8GA1UdIwQY MBaAFLoc72+entxF480o70AlGXlS1GDpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdWh6dmI1NmUzRVhqelNqdlFDVVplVkxVWU9rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC8yMWQ2NjMtNjg3NC00ODljLWFiOWUt ZDljYTAzZTY2ZmZiLzEvdWh6dmI1NmUzRVhqelNqdlFDVVplVkxVWU9rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNC8yMWQ2NjMtNjg3NC00ODljLWFiOWUtZDljYTAzZTY2ZmZi LzEvdWh6dmI1NmUzRVhqelNqdlFDVVplVkxVWU9rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAart52fSI tNOwVuE8SiNz0of2UXzo1obB61QCsXc1A85Dm4UEazoMSmm2zQJi0KYbF+lU6ZrE ao7gwx1tl0iPUwAzkkZTyw3oo1hjXtW6QKMM4k/Paf7S1r6oOWtUynRCgm2lJC30 WaybAlfnn5YZbKFJtSOYBI5WB0ZHArnwOvdH6mG22U1np840pBaT2gl9eROa3vvw fNCY4ag3gL18sHY8iaynr5ETJZm63TwsOlQ7m00WxuXnRvtbR9tkMTeVUj+vHYdP doLVuUbgGMpN3E3uJETrbHZNSlTa51OoRIWd+KHXu76/wY/ed/kuQI73tkTmpoU5 DgDqcnP7b4j/iw== -----END CERTIFICATE-----Generated at Tue Dec 16 22:30:25 2025 by rpki-client