This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft File: UGF1T3aJFp9qFQZQlUcmcrorRYk.mft (raw, json) Hash identifier: encUiH3ChNNep6h56QS9qJ5GvLY7SA98FUPM6dWMDSs= Subject key identifier: 79:0D:E7:7D:95:7E:B1:A5:01:78:FA:54:60:EF:03:A2:B7:A7:AA:C0 Authority key identifier: 50:61:75:4F:76:89:16:9F:6A:15:06:50:95:47:26:72:BA:2B:45:89 Certificate issuer: /CN=5061754f7689169f6a15065095472672ba2b4589 Certificate serial: 019B503C6D383F02C91F6C3CACC8460139FF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UGF1T3aJFp9qFQZQlUcmcrorRYk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft Manifest number: 0F06 Signing time: Wed 24 Dec 2025 12:01:35 +0000 Manifest this update: Wed 24 Dec 2025 12:01:35 +0000 Manifest next update: Thu 25 Dec 2025 12:01:35 +0000 Files and hashes: 1: UGF1T3aJFp9qFQZQlUcmcrorRYk.crl (hash: yWddO8ppJX9KBeQV7B7pRyuTYCmt+OP+gYI0TVMe1Lg=) 2: yiSfs72_nEyzYSAodCILSS2FNUg.roa (hash: S9gHpNvUCJD2H4bcxuT5WWB4Uck7rHXNRIxCLUlb2hE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.crl rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft rsync://rpki.ripe.net/repository/DEFAULT/UGF1T3aJFp9qFQZQlUcmcrorRYk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 09:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:50:3c:6d:38:3f:02:c9:1f:6c:3c:ac:c8:46:01:39:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5061754f7689169f6a15065095472672ba2b4589 Validity Not Before: Dec 24 12:01:35 2025 GMT Not After : Dec 25 12:01:35 2025 GMT Subject: CN=790de77d957eb1a50178fa5460ef03a2b7a7aac0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:72:fc:a2:82:d8:b2:24:98:f6:bc:8d:d0:e1: 20:67:16:5e:5d:ac:05:52:20:10:db:a9:d6:96:c5: 08:bf:41:a6:8c:f7:b2:df:38:7f:10:61:24:ca:2f: 18:2c:6d:5e:99:45:b8:00:d8:2e:da:67:09:30:55: 12:11:b3:96:41:9b:f2:3e:c2:7d:56:56:f9:4e:24: 6d:13:67:83:12:1a:35:16:b2:3b:ca:c0:73:c4:20: 38:53:73:33:64:0d:b9:db:9e:c1:ad:60:e5:ac:30: fa:52:e2:37:9b:43:7d:2e:e0:48:3a:a6:06:45:a4: 16:65:60:61:34:b3:cb:08:df:fc:b9:d4:6c:b1:99: 54:a1:71:63:79:05:a9:dc:da:c0:fa:0d:45:ba:85: 46:fa:67:1c:bf:1c:fb:e5:68:6d:06:bd:44:e4:ae: e5:aa:83:24:f8:0e:d1:e5:09:af:94:1e:4f:f3:71: c8:55:39:5e:1c:6a:c5:81:49:f8:98:45:c8:c1:cc: ca:9d:a8:61:1e:f4:18:bf:ad:7b:0c:19:1d:8b:14: f1:39:9c:a8:b3:3c:66:e1:3f:76:a6:4d:79:b5:d9: 23:a5:6c:f8:42:98:c5:4d:fb:27:f9:39:1d:7e:26: 5b:e6:b8:e9:6e:5d:c5:a7:96:d7:d5:41:86:d8:5b: 4c:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:0D:E7:7D:95:7E:B1:A5:01:78:FA:54:60:EF:03:A2:B7:A7:AA:C0 X509v3 Authority Key Identifier: keyid:50:61:75:4F:76:89:16:9F:6A:15:06:50:95:47:26:72:BA:2B:45:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UGF1T3aJFp9qFQZQlUcmcrorRYk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:26:9b:4f:e2:6c:91:ca:81:bb:a4:88:f0:71:61:e9:97:60: c8:57:4b:e6:1a:5c:c7:92:9d:74:30:6e:8f:53:f3:48:a7:44: 63:d8:dc:22:de:17:7f:aa:80:d0:c8:c9:2f:4f:cb:79:fa:71: 91:eb:3a:83:2b:14:08:ca:5b:41:9a:07:c1:5a:f1:5c:e8:9f: 45:9a:50:1b:07:02:d1:ee:3b:ae:9c:29:01:4f:71:ad:95:cf: fe:4e:a9:75:af:db:6e:dc:ac:d7:27:ac:c4:9c:73:8f:9f:3f: 4e:8b:f9:ec:20:a6:f2:1f:45:03:f5:f8:a8:c2:3a:40:b2:35: 12:c5:dc:7e:42:60:e9:bf:34:6a:2d:e3:4d:36:84:d8:42:22: c6:05:99:a0:27:fe:67:75:5e:c8:dd:50:c1:01:dd:1d:42:3a: a5:0e:14:45:74:9d:ce:cf:ac:bb:53:89:72:d1:60:09:66:43: 03:8c:9b:75:b1:7e:57:8a:e3:04:f9:ee:ef:e0:9a:d3:49:90: bb:b6:db:c8:b9:fe:e2:17:c7:3d:e4:dd:c2:1a:82:ec:1b:bd: ab:8c:35:32:15:7b:f3:02:62:38:78:4e:23:71:62:53:6d:bf: 00:c9:bf:ca:ac:8c:9c:96:c8:9c:6a:4e:d0:64:46:61:f2:1a: 6c:c1:a4:f8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtQPG04PwLJH2w8rMhGATn/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUwNjE3NTRmNzY4OTE2OWY2YTE1MDY1MDk1NDcyNjcyYmEy YjQ1ODkwHhcNMjUxMjI0MTIwMTM1WhcNMjUxMjI1MTIwMTM1WjAzMTEwLwYDVQQD Eyg3OTBkZTc3ZDk1N2ViMWE1MDE3OGZhNTQ2MGVmMDNhMmI3YTdhYWMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvnL8ooLYsiSY9ryN0OEgZxZeXawF UiAQ26nWlsUIv0GmjPey3zh/EGEkyi8YLG1emUW4ANgu2mcJMFUSEbOWQZvyPsJ9 Vlb5TiRtE2eDEho1FrI7ysBzxCA4U3MzZA25257BrWDlrDD6UuI3m0N9LuBIOqYG RaQWZWBhNLPLCN/8udRssZlUoXFjeQWp3NrA+g1FuoVG+mccvxz75WhtBr1E5K7l qoMk+A7R5QmvlB5P83HIVTleHGrFgUn4mEXIwczKnahhHvQYv617DBkdixTxOZyo szxm4T92pk15tdkjpWz4QpjFTfsn+TkdfiZb5rjpbl3Fp5bX1UGG2FtMZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHkN532VfrGlAXj6VGDvA6K3p6rAMB8GA1UdIwQY MBaAFFBhdU92iRafahUGUJVHJnK6K0WJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVUdGMVQzYUpGcDlxRlFaUWxVY21jcm9yUllrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi8zYjU5ZDUtNjAyZC00MzUxLTk2YmMt YTEwODY0OWQ1MWUyLzEvVUdGMVQzYUpGcDlxRlFaUWxVY21jcm9yUllrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi8zYjU5ZDUtNjAyZC00MzUxLTk2YmMtYTEwODY0OWQ1MWUy LzEvVUdGMVQzYUpGcDlxRlFaUWxVY21jcm9yUllrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATSabT+Js kcqBu6SI8HFh6ZdgyFdL5hpcx5KddDBuj1PzSKdEY9jcIt4Xf6qA0MjJL0/Lefpx kes6gysUCMpbQZoHwVrxXOifRZpQGwcC0e47rpwpAU9xrZXP/k6pda/bbtys1yes xJxzj58/Tov57CCm8h9FA/X4qMI6QLI1EsXcfkJg6b80ai3jTTaE2EIixgWZoCf+ Z3VeyN1QwQHdHUI6pQ4URXSdzs+su1OJctFgCWZDA4ybdbF+V4rjBPnu7+Ca00mQ u7bbyLn+4hfHPeTdwhqC7Bu9q4w1MhV78wJiOHhOI3FiU22/AMm/yqyMnJbInGpO 0GRGYfIabMGk+A== -----END CERTIFICATE-----Generated at Wed Dec 24 18:27:05 2025 by rpki-client