This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.mft File: UztG46ndW36oqL_aL247rRVQkRM.mft (raw, json) Hash identifier: w4CpagOtNFJBe2clfCEJ5rSLGlmr3qn65tq91DqmcY4= Subject key identifier: 0F:E3:35:1E:8F:25:E7:3C:96:54:4E:59:45:EA:0D:A1:6F:6A:11:33 Authority key identifier: 53:3B:46:E3:A9:DD:5B:7E:A8:A8:BF:DA:2F:6E:3B:AD:15:50:91:13 Certificate issuer: /CN=533b46e3a9dd5b7ea8a8bfda2f6e3bad15509113 Certificate serial: 019B69C448BD406F62E53BDE1F393BE50954 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UztG46ndW36oqL_aL247rRVQkRM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.mft Manifest number: 17A0 Signing time: Mon 29 Dec 2025 11:00:29 +0000 Manifest this update: Mon 29 Dec 2025 11:00:29 +0000 Manifest next update: Tue 30 Dec 2025 11:00:29 +0000 Files and hashes: 1: 8xMxjtO-k2WYJj5fJmeVkGV5YA4.roa (hash: h2/dulkFhykUkX0igL56x6SI1vv2NsPZ43/9G+3BAxs=) 2: UztG46ndW36oqL_aL247rRVQkRM.crl (hash: TPuvv3pSvIlBWzrXcM4MeIiknNsECxKRjlny8Hq5Iik=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.crl rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.mft rsync://rpki.ripe.net/repository/DEFAULT/UztG46ndW36oqL_aL247rRVQkRM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 30 Dec 2025 11:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:69:c4:48:bd:40:6f:62:e5:3b:de:1f:39:3b:e5:09:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=533b46e3a9dd5b7ea8a8bfda2f6e3bad15509113 Validity Not Before: Dec 29 11:00:29 2025 GMT Not After : Dec 30 11:00:29 2025 GMT Subject: CN=0fe3351e8f25e73c96544e5945ea0da16f6a1133 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:5e:ff:2e:cb:7b:6c:f8:01:7a:82:72:91:bf: 6d:2e:87:27:e3:f7:b1:2e:c9:b3:b9:82:82:3e:81: 3f:b9:a5:7a:bc:b5:c3:f3:ce:89:69:94:eb:fe:b9: 1f:ab:08:6c:c2:c4:ed:d1:3b:c0:b4:76:5d:29:c6: 8d:db:69:ad:69:74:3a:7b:71:bb:f1:c0:c6:f0:e7: 06:70:d8:9b:f4:9d:dc:5d:6d:2b:b0:32:9e:f7:cb: ac:3d:1f:6d:8c:f6:e3:43:08:cb:57:08:71:1d:73: 03:83:3a:17:18:93:a0:7a:eb:5a:10:01:cd:9c:6f: 19:f5:ac:1c:39:c9:d8:80:62:40:da:0e:29:7e:03: 8c:ab:41:9e:ef:cc:36:eb:a8:66:bd:d4:ee:b1:3c: 67:1f:13:c4:00:0b:bd:8d:ce:72:62:04:c7:86:29: f3:7f:3f:d1:28:9c:f2:81:54:f6:9d:f7:aa:f7:53: 20:8c:72:f4:3b:6d:ce:a5:82:32:c2:85:f8:5e:86: 00:bb:c4:38:42:77:83:17:e2:f7:78:91:c1:34:9a: c1:0c:e1:ee:42:78:f3:1d:37:2e:e7:1d:d9:d2:47: 8c:15:e2:23:60:ea:a5:21:45:6f:6e:04:77:e7:80: 8e:6d:33:29:1b:4e:04:81:e1:73:6e:a5:97:ce:51: b9:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:E3:35:1E:8F:25:E7:3C:96:54:4E:59:45:EA:0D:A1:6F:6A:11:33 X509v3 Authority Key Identifier: keyid:53:3B:46:E3:A9:DD:5B:7E:A8:A8:BF:DA:2F:6E:3B:AD:15:50:91:13 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UztG46ndW36oqL_aL247rRVQkRM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/da/f50e2d-e400-44f1-8832-e26960bf34e5/1/UztG46ndW36oqL_aL247rRVQkRM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 74:e0:c3:c4:57:b2:f0:e3:69:65:3e:92:37:48:4b:cb:a4:f4: e5:4a:4b:a7:6d:32:ec:3b:2c:ca:40:9a:e4:36:a5:c7:18:1f: 0c:0c:74:8e:d1:d3:b4:57:98:71:a0:61:78:17:2e:7f:46:ca: 6b:d6:d7:18:98:82:da:99:00:af:49:1c:e9:ec:da:de:9f:37: 92:6a:c1:39:bf:28:2b:d4:01:fd:af:0b:39:d3:ac:df:0c:31: fc:e1:ab:4d:60:b8:32:0c:c5:49:c1:08:86:15:52:db:70:4d: 71:8b:cc:57:2e:fd:58:dd:4b:e4:59:fb:4b:bd:6c:dc:82:77: 7f:09:6d:64:5d:da:cc:45:5b:4a:a5:85:5c:36:b6:f3:0b:83: cb:38:8b:34:dc:7d:12:7d:0b:20:ac:5f:8b:a6:da:df:87:7c: c8:90:92:c0:32:20:a7:d4:f5:46:14:3c:7f:86:5d:3d:2c:6c: 91:93:91:5c:69:21:47:45:7f:02:07:e3:4d:c4:0c:f6:44:97: 30:00:b7:4c:97:1f:cd:1a:24:9c:8f:74:df:ca:14:a1:89:28: 0a:53:23:da:16:ae:2b:c1:67:cf:8a:25:9f:60:19:f6:7c:da: 2f:a7:29:dd:5b:b8:f5:96:a4:62:84:dc:50:1f:f8:45:a6:c7: e6:fd:a3:bb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtpxEi9QG9i5TveHzk75QlUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzM2I0NmUzYTlkZDViN2VhOGE4YmZkYTJmNmUzYmFkMTU1 MDkxMTMwHhcNMjUxMjI5MTEwMDI5WhcNMjUxMjMwMTEwMDI5WjAzMTEwLwYDVQQD EygwZmUzMzUxZThmMjVlNzNjOTY1NDRlNTk0NWVhMGRhMTZmNmExMTMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzV7/Lst7bPgBeoJykb9tLocn4/ex LsmzuYKCPoE/uaV6vLXD886JaZTr/rkfqwhswsTt0TvAtHZdKcaN22mtaXQ6e3G7 8cDG8OcGcNib9J3cXW0rsDKe98usPR9tjPbjQwjLVwhxHXMDgzoXGJOgeutaEAHN nG8Z9awcOcnYgGJA2g4pfgOMq0Ge78w266hmvdTusTxnHxPEAAu9jc5yYgTHhinz fz/RKJzygVT2nfeq91MgjHL0O23OpYIywoX4XoYAu8Q4QneDF+L3eJHBNJrBDOHu QnjzHTcu5x3Z0keMFeIjYOqlIUVvbgR354CObTMpG04EgeFzbqWXzlG5rQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA/jNR6PJec8llROWUXqDaFvahEzMB8GA1UdIwQY MBaAFFM7RuOp3Vt+qKi/2i9uO60VUJETMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXp0RzQ2bmRXMzZvcUxfYUwyNDdyUlZRa1JNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS9mNTBlMmQtZTQwMC00NGYxLTg4MzIt ZTI2OTYwYmYzNGU1LzEvVXp0RzQ2bmRXMzZvcUxfYUwyNDdyUlZRa1JNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYS9mNTBlMmQtZTQwMC00NGYxLTg4MzItZTI2OTYwYmYzNGU1 LzEvVXp0RzQ2bmRXMzZvcUxfYUwyNDdyUlZRa1JNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdODDxFey 8ONpZT6SN0hLy6T05UpLp20y7DssykCa5DalxxgfDAx0jtHTtFeYcaBheBcuf0bK a9bXGJiC2pkAr0kc6eza3p83kmrBOb8oK9QB/a8LOdOs3wwx/OGrTWC4MgzFScEI hhVS23BNcYvMVy79WN1L5Fn7S71s3IJ3fwltZF3azEVbSqWFXDa28wuDyziLNNx9 En0LIKxfi6ba34d8yJCSwDIgp9T1RhQ8f4ZdPSxskZORXGkhR0V/AgfjTcQM9kSX MAC3TJcfzRoknI9038oUoYkoClMj2hauK8Fnz4oln2AZ9nzaL6cp3Vu49ZakYoTc UB/4RabH5v2juw== -----END CERTIFICATE-----Generated at Mon Dec 29 17:41:41 2025 by rpki-client