This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/d4683e-15bf-428b-89b3-6d87d465b9e1/1/uzYogf_jYlMUAGCLYyi7Et-hYIE.mft File: uzYogf_jYlMUAGCLYyi7Et-hYIE.mft (raw, json) Hash identifier: i4sayRQEaGDYGVwuYmNVGf1J1Lu8lbMFSDqs93LuqvE= Subject key identifier: EB:8A:FE:5A:CD:49:46:7F:6D:3D:7F:31:89:AC:D3:95:4B:0D:D4:C7 Authority key identifier: BB:36:28:81:FF:E3:62:53:14:00:60:8B:63:28:BB:12:DF:A1:60:81 Certificate issuer: /CN=bb362881ffe362531400608b6328bb12dfa16081 Certificate serial: 019B5976846C64B15F8B6B12A609DF7A5725 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uzYogf_jYlMUAGCLYyi7Et-hYIE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/d4683e-15bf-428b-89b3-6d87d465b9e1/1/uzYogf_jYlMUAGCLYyi7Et-hYIE.mft Manifest number: 0E9C Signing time: Fri 26 Dec 2025 07:01:37 +0000 Manifest this update: Fri 26 Dec 2025 07:01:37 +0000 Manifest next update: Sat 27 Dec 2025 07:01:37 +0000 Files and hashes: 1: uzYogf_jYlMUAGCLYyi7Et-hYIE.crl (hash: lOg+B8k6z+vU8aupNXBIlmnFf7fnXgqzU+3y0K5Ux1c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/d4683e-15bf-428b-89b3-6d87d465b9e1/1/uzYogf_jYlMUAGCLYyi7Et-hYIE.crl rsync://rpki.ripe.net/repository/DEFAULT/0a/d4683e-15bf-428b-89b3-6d87d465b9e1/1/uzYogf_jYlMUAGCLYyi7Et-hYIE.mft rsync://rpki.ripe.net/repository/DEFAULT/uzYogf_jYlMUAGCLYyi7Et-hYIE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:76:84:6c:64:b1:5f:8b:6b:12:a6:09:df:7a:57:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bb362881ffe362531400608b6328bb12dfa16081 Validity Not Before: Dec 26 07:01:37 2025 GMT Not After : Dec 27 07:01:37 2025 GMT Subject: CN=eb8afe5acd49467f6d3d7f3189acd3954b0dd4c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:2b:59:4f:83:6a:cb:49:70:c0:e7:1c:4e:53: c2:08:a7:9e:8f:85:be:2e:f8:5e:7f:00:2a:37:4a: e4:58:60:dd:fd:c2:93:52:98:9b:93:1d:a4:5a:bf: c5:ef:3f:cf:bf:96:b4:94:1b:3c:b0:3e:87:cc:20: 2c:6b:68:b3:b8:cf:ca:4f:70:6b:9b:a1:24:8a:bb: 23:06:ba:39:a1:85:bc:5b:94:bf:22:a8:f8:75:5d: 7f:04:6b:ae:d0:5f:7d:79:4e:c2:5b:e4:f7:08:5b: af:46:5f:be:a9:64:61:81:f7:dc:af:9a:8c:c8:18: 42:51:31:d2:de:65:3a:dc:5b:2f:b1:a2:2e:e7:e3: e2:52:75:cb:63:7a:10:fb:f2:12:ad:cf:b2:ca:e6: 80:e0:6a:c6:f5:1b:62:04:9d:99:66:a5:fe:a3:d6: 9e:b4:9c:c2:f9:e3:61:aa:73:55:e4:5e:bf:f0:6b: b4:14:dd:36:8d:91:c0:8e:b3:d8:55:a0:09:9b:15: 0d:27:8b:b4:d5:23:c4:cf:62:38:6a:78:29:82:2f: 00:84:c6:f0:8a:bd:3c:09:5c:b1:c4:74:bf:e4:08: 04:d1:9e:91:fe:d7:e2:65:30:d4:be:39:22:7c:6d: 43:bd:9f:d6:f2:05:b0:29:c0:c5:30:3e:3f:14:f6: 87:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:8A:FE:5A:CD:49:46:7F:6D:3D:7F:31:89:AC:D3:95:4B:0D:D4:C7 X509v3 Authority Key Identifier: keyid:BB:36:28:81:FF:E3:62:53:14:00:60:8B:63:28:BB:12:DF:A1:60:81 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uzYogf_jYlMUAGCLYyi7Et-hYIE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d4683e-15bf-428b-89b3-6d87d465b9e1/1/uzYogf_jYlMUAGCLYyi7Et-hYIE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d4683e-15bf-428b-89b3-6d87d465b9e1/1/uzYogf_jYlMUAGCLYyi7Et-hYIE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1b:c1:39:73:25:c4:ed:95:80:47:20:be:de:91:2d:89:c1:8d: 4e:cd:0b:85:f3:3b:bf:94:99:26:b4:d9:f7:60:e2:79:59:89: 5d:32:8f:b7:a0:b7:00:bc:93:be:50:5b:78:b7:8c:2d:99:e5: d7:f3:9e:13:8b:16:01:b2:88:6b:71:8c:c9:53:b1:61:3d:59: 6e:80:9f:db:01:57:a3:5f:4b:16:b0:f0:d3:ff:15:4f:87:38: 25:78:6c:6d:e3:b4:2c:69:23:48:b6:77:39:83:e7:a1:63:14: 90:dd:43:25:dc:da:85:47:04:12:24:7a:32:46:e8:c2:f6:1b: da:6d:d2:59:a0:f1:d3:5b:a3:6a:39:dc:40:29:a5:33:47:d3: 0c:3f:4e:95:00:e3:e6:ba:63:f7:fc:67:b0:a8:f0:d3:84:04: 2f:40:21:66:ed:3b:15:c1:d3:7b:60:b6:69:ff:63:f1:56:85: 52:9e:11:ca:ed:ba:7c:40:50:71:23:45:e8:9e:55:a5:48:6e: 73:da:92:5f:93:6f:0d:aa:6e:e8:90:27:fa:5d:8e:72:04:6c: ae:8a:e4:31:cc:b1:80:dd:4e:73:56:51:ba:a8:9d:72:70:c5: be:91:43:aa:06:09:72:bd:d0:c4:08:59:1e:3d:32:d0:1f:b1: 7f:1c:07:0b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZdoRsZLFfi2sSpgnfelclMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJiMzYyODgxZmZlMzYyNTMxNDAwNjA4YjYzMjhiYjEyZGZh MTYwODEwHhcNMjUxMjI2MDcwMTM3WhcNMjUxMjI3MDcwMTM3WjAzMTEwLwYDVQQD EyhlYjhhZmU1YWNkNDk0NjdmNmQzZDdmMzE4OWFjZDM5NTRiMGRkNGM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxCtZT4Nqy0lwwOccTlPCCKeej4W+ LvhefwAqN0rkWGDd/cKTUpibkx2kWr/F7z/Pv5a0lBs8sD6HzCAsa2izuM/KT3Br m6EkirsjBro5oYW8W5S/Iqj4dV1/BGuu0F99eU7CW+T3CFuvRl++qWRhgffcr5qM yBhCUTHS3mU63FsvsaIu5+PiUnXLY3oQ+/ISrc+yyuaA4GrG9RtiBJ2ZZqX+o9ae tJzC+eNhqnNV5F6/8Gu0FN02jZHAjrPYVaAJmxUNJ4u01SPEz2I4angpgi8AhMbw ir08CVyxxHS/5AgE0Z6R/tfiZTDUvjkifG1DvZ/W8gWwKcDFMD4/FPaHlwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOuK/lrNSUZ/bT1/MYms05VLDdTHMB8GA1UdIwQY MBaAFLs2KIH/42JTFABgi2MouxLfoWCBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdXpZb2dmX2pZbE1VQUdDTFl5aTdFdC1oWUlFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS9kNDY4M2UtMTViZi00MjhiLTg5YjMt NmQ4N2Q0NjViOWUxLzEvdXpZb2dmX2pZbE1VQUdDTFl5aTdFdC1oWUlFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYS9kNDY4M2UtMTViZi00MjhiLTg5YjMtNmQ4N2Q0NjViOWUx LzEvdXpZb2dmX2pZbE1VQUdDTFl5aTdFdC1oWUlFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAG8E5cyXE 7ZWARyC+3pEticGNTs0LhfM7v5SZJrTZ92DieVmJXTKPt6C3ALyTvlBbeLeMLZnl 1/OeE4sWAbKIa3GMyVOxYT1ZboCf2wFXo19LFrDw0/8VT4c4JXhsbeO0LGkjSLZ3 OYPnoWMUkN1DJdzahUcEEiR6MkbowvYb2m3SWaDx01ujajncQCmlM0fTDD9OlQDj 5rpj9/xnsKjw04QEL0AhZu07FcHTe2C2af9j8VaFUp4Ryu26fEBQcSNF6J5VpUhu c9qSX5NvDapu6JAn+l2OcgRsrorkMcyxgN1Oc1ZRuqidcnDFvpFDqgYJcr3QxAhZ Hj0y0B+xfxwHCw== -----END CERTIFICATE-----Generated at Fri Dec 26 14:18:20 2025 by rpki-client