This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/5358eb-1d43-44f4-bc00-07abff67202c/1/UfF0UrXxvy_3B27gWf8nXAyxEt4.mft File: UfF0UrXxvy_3B27gWf8nXAyxEt4.mft (raw, json) Hash identifier: UUTB5PvmeyGXIGyul9PN+nSeov+QR/joF7IgpTXUMuI= Subject key identifier: C3:19:AC:5F:9D:5D:F4:93:39:08:E1:09:FF:07:1C:0D:EC:A0:B9:47 Authority key identifier: 51:F1:74:52:B5:F1:BF:2F:F7:07:6E:E0:59:FF:27:5C:0C:B1:12:DE Certificate issuer: /CN=51f17452b5f1bf2ff7076ee059ff275c0cb112de Certificate serial: 019B5AF6BAE7A2AD85412A2C8AF91ECF4CB7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UfF0UrXxvy_3B27gWf8nXAyxEt4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/5358eb-1d43-44f4-bc00-07abff67202c/1/UfF0UrXxvy_3B27gWf8nXAyxEt4.mft Manifest number: 3D Signing time: Fri 26 Dec 2025 14:01:17 +0000 Manifest this update: Fri 26 Dec 2025 14:01:17 +0000 Manifest next update: Sat 27 Dec 2025 14:01:17 +0000 Files and hashes: 1: GXuUD6nAp7RfhD5guLaEdCtJhos.roa (hash: 5cLq1XiFXQljJjhGmJhwjtVSIZlhSNusJxMQnbQOGSg=) 2: UfF0UrXxvy_3B27gWf8nXAyxEt4.crl (hash: +b3WHMhiV0AvP4SGuTDUX0QLidhKuR+Pei/rinXGBZQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/5358eb-1d43-44f4-bc00-07abff67202c/1/UfF0UrXxvy_3B27gWf8nXAyxEt4.crl rsync://rpki.ripe.net/repository/DEFAULT/09/5358eb-1d43-44f4-bc00-07abff67202c/1/UfF0UrXxvy_3B27gWf8nXAyxEt4.mft rsync://rpki.ripe.net/repository/DEFAULT/UfF0UrXxvy_3B27gWf8nXAyxEt4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:f6:ba:e7:a2:ad:85:41:2a:2c:8a:f9:1e:cf:4c:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=51f17452b5f1bf2ff7076ee059ff275c0cb112de Validity Not Before: Dec 26 14:01:17 2025 GMT Not After : Dec 27 14:01:17 2025 GMT Subject: CN=c319ac5f9d5df4933908e109ff071c0deca0b947 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:19:c9:b5:a1:2c:5f:8b:5f:3f:a5:78:99:09: 30:ac:0e:3b:d3:97:2b:bb:7e:66:9f:00:3a:2e:78: 92:67:8f:ba:8a:51:53:03:99:11:7b:7b:88:02:9f: 0c:71:64:1a:3b:79:bb:67:08:4c:b4:8d:49:29:9e: e1:61:65:ce:36:7a:97:8e:54:d3:d5:ca:8b:b1:9e: dc:3e:b6:94:ed:54:a7:1c:d5:a2:ae:bb:97:88:bb: 4f:99:66:81:ea:9c:9c:09:3c:d1:98:35:08:09:33: 16:b1:7f:f4:b6:07:0b:bb:2e:dd:83:11:34:07:ef: 52:53:d9:f3:bb:a3:1b:e4:87:66:a2:67:e9:5f:16: cd:69:d1:ab:9c:62:62:af:ec:49:0f:c7:83:c4:18: 4a:e1:46:26:81:ad:ad:05:1a:0b:33:4a:03:09:60: ad:41:af:08:89:1b:aa:4c:6f:86:fe:a3:e3:d3:15: 72:80:32:5d:c8:45:56:f7:ab:b0:23:0d:ed:17:ec: 81:2f:62:e1:39:95:b4:f0:aa:69:f0:27:48:05:01: 59:9f:80:58:a5:84:68:23:e9:7b:a6:15:58:17:44: 02:5f:15:73:1d:be:4d:9d:1c:bd:a2:dc:d4:9e:22: a7:d5:dd:5c:87:7e:e0:e2:3f:b2:9b:61:d1:d4:39: 18:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:19:AC:5F:9D:5D:F4:93:39:08:E1:09:FF:07:1C:0D:EC:A0:B9:47 X509v3 Authority Key Identifier: keyid:51:F1:74:52:B5:F1:BF:2F:F7:07:6E:E0:59:FF:27:5C:0C:B1:12:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UfF0UrXxvy_3B27gWf8nXAyxEt4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/5358eb-1d43-44f4-bc00-07abff67202c/1/UfF0UrXxvy_3B27gWf8nXAyxEt4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/09/5358eb-1d43-44f4-bc00-07abff67202c/1/UfF0UrXxvy_3B27gWf8nXAyxEt4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a7:af:67:bf:c2:94:15:ab:38:cb:ff:4d:28:72:98:6a:be:17: f7:ea:8b:a8:20:92:78:7c:af:f9:b7:c6:b1:b0:ba:cb:0b:14: 3c:24:bf:f4:f0:fb:d0:f9:59:f6:fb:f6:9e:41:61:c3:d9:58: 6f:4f:75:51:ba:fb:a2:9c:6c:98:a1:30:01:9a:49:e3:75:7b: 5d:4f:22:dd:7e:32:33:b5:6d:b7:5d:9e:b7:ff:f5:f6:b7:c5: ea:9a:12:e3:cf:24:98:ae:d6:6a:79:25:5b:a7:0d:df:d3:6a: 5d:c9:a3:b8:40:62:10:62:17:d6:06:38:2c:c3:85:38:59:2f: f3:3c:bc:34:11:67:f7:82:2c:75:de:07:c2:f6:83:9f:bb:17: 28:95:ba:18:6d:5b:7b:97:b5:bc:73:23:62:ec:6a:ab:62:d4: e8:5b:7a:90:4d:49:df:3f:13:7d:30:c7:c0:cc:94:7e:ea:47: 11:49:d6:8f:fe:c8:11:5b:28:40:cc:81:02:83:2f:7f:3b:57: 30:81:1c:e0:fe:af:ff:40:cf:b4:15:ea:26:5f:59:28:8a:cb: 71:58:13:62:e4:2a:34:2a:c6:72:f8:60:0d:ee:13:52:ba:65: 6f:cc:77:cd:ca:15:e4:80:33:6e:1e:0d:63:ab:85:1a:c0:8b: 3d:f9:fe:56 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZta9rrnoq2FQSosivkez0y3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUxZjE3NDUyYjVmMWJmMmZmNzA3NmVlMDU5ZmYyNzVjMGNi MTEyZGUwHhcNMjUxMjI2MTQwMTE3WhcNMjUxMjI3MTQwMTE3WjAzMTEwLwYDVQQD EyhjMzE5YWM1ZjlkNWRmNDkzMzkwOGUxMDlmZjA3MWMwZGVjYTBiOTQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxBnJtaEsX4tfP6V4mQkwrA4705cr u35mnwA6LniSZ4+6ilFTA5kRe3uIAp8McWQaO3m7ZwhMtI1JKZ7hYWXONnqXjlTT 1cqLsZ7cPraU7VSnHNWirruXiLtPmWaB6pycCTzRmDUICTMWsX/0tgcLuy7dgxE0 B+9SU9nzu6Mb5IdmomfpXxbNadGrnGJir+xJD8eDxBhK4UYmga2tBRoLM0oDCWCt Qa8IiRuqTG+G/qPj0xVygDJdyEVW96uwIw3tF+yBL2LhOZW08Kpp8CdIBQFZn4BY pYRoI+l7phVYF0QCXxVzHb5NnRy9otzUniKn1d1ch37g4j+ym2HR1DkYxQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMMZrF+dXfSTOQjhCf8HHA3soLlHMB8GA1UdIwQY MBaAFFHxdFK18b8v9wdu4Fn/J1wMsRLeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVWZGMFVyWHh2eV8zQjI3Z1dmOG5YQXl4RXQ0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS81MzU4ZWItMWQ0My00NGY0LWJjMDAt MDdhYmZmNjcyMDJjLzEvVWZGMFVyWHh2eV8zQjI3Z1dmOG5YQXl4RXQ0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOS81MzU4ZWItMWQ0My00NGY0LWJjMDAtMDdhYmZmNjcyMDJj LzEvVWZGMFVyWHh2eV8zQjI3Z1dmOG5YQXl4RXQ0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAp69nv8KU Fas4y/9NKHKYar4X9+qLqCCSeHyv+bfGsbC6ywsUPCS/9PD70PlZ9vv2nkFhw9lY b091Ubr7opxsmKEwAZpJ43V7XU8i3X4yM7Vtt12et//19rfF6poS488kmK7Wankl W6cN39NqXcmjuEBiEGIX1gY4LMOFOFkv8zy8NBFn94Isdd4HwvaDn7sXKJW6GG1b e5e1vHMjYuxqq2LU6Ft6kE1J3z8TfTDHwMyUfupHEUnWj/7IEVsoQMyBAoMvfztX MIEc4P6v/0DPtBXqJl9ZKIrLcVgTYuQqNCrGcvhgDe4TUrplb8x3zcoV5IAzbh4N Y6uFGsCLPfn+Vg== -----END CERTIFICATE-----Generated at Fri Dec 26 15:43:37 2025 by rpki-client