This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.mft File: uHt2aWhxYpblu6C86DhWrnFluLg.mft (raw, json) Hash identifier: UA/DiDlYit7g73toi7wcRY17i33KZVmeZuNnZERxI/E= Subject key identifier: 21:72:B1:95:4D:BF:57:87:05:89:97:E7:7E:B2:01:CD:BE:51:CD:95 Authority key identifier: B8:7B:76:69:68:71:62:96:E5:BB:A0:BC:E8:38:56:AE:71:65:B8:B8 Certificate issuer: /CN=b87b766968716296e5bba0bce83856ae7165b8b8 Certificate serial: 019B35A06197AD2BE36FF3329008BB1A7E3C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uHt2aWhxYpblu6C86DhWrnFluLg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.mft Manifest number: 178A Signing time: Fri 19 Dec 2025 08:01:01 +0000 Manifest this update: Fri 19 Dec 2025 08:01:01 +0000 Manifest next update: Sat 20 Dec 2025 08:01:01 +0000 Files and hashes: 1: EMnxCwOEWhhPugjrcZ3jtYAbiJc.roa (hash: ioXKgGTre/pDJJ5LrVdx9gIh66mx4jxeELCjJSUVqnM=) 2: ft2mxf9aaNoul-AnIThMbBr-lps.roa (hash: xnKzHyjITrVDUs70AuSd+gwg5cbW8huGbxIys16mcfk=) 3: uHt2aWhxYpblu6C86DhWrnFluLg.crl (hash: F2mgUJdAWA1HnrtjtTy48wTmHNg8VGSzbB8a8AivN3o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.crl rsync://rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.mft rsync://rpki.ripe.net/repository/DEFAULT/uHt2aWhxYpblu6C86DhWrnFluLg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 07:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:35:a0:61:97:ad:2b:e3:6f:f3:32:90:08:bb:1a:7e:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b87b766968716296e5bba0bce83856ae7165b8b8 Validity Not Before: Dec 19 08:01:01 2025 GMT Not After : Dec 20 08:01:01 2025 GMT Subject: CN=2172b1954dbf5787058997e77eb201cdbe51cd95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:3d:d8:39:d8:c2:94:2b:51:25:fb:c2:d6:d4: 20:4b:e3:be:0f:13:61:63:93:51:0b:e3:8b:94:aa: 5e:8c:df:ad:b0:72:a4:f7:51:2b:95:20:be:f2:79: d3:55:d2:c0:67:29:a8:0b:d2:28:1a:73:ec:44:3d: b1:ed:71:c5:7e:a3:94:07:5f:c2:a8:39:c8:90:a5: bc:74:dc:2c:8f:79:c4:c5:05:a1:5f:81:10:89:6c: cb:95:40:fe:93:e4:48:8f:10:7b:aa:46:bb:65:71: ea:33:7d:9e:40:9e:f2:50:b0:df:7e:62:10:c0:b4: 03:e6:2f:b7:46:12:bf:d6:c3:22:8c:a4:d4:90:0c: 8b:1a:d7:e8:e6:58:c5:af:74:b9:0d:f8:08:28:a3: 99:05:9a:c9:e4:b5:21:6f:50:7a:79:ba:54:28:c6: fe:9b:b3:0e:5a:ae:b4:13:22:ed:09:79:4a:4a:c5: b9:0f:69:5a:f0:74:76:f5:92:60:c5:69:7b:fe:e3: 54:78:40:36:97:9c:76:f1:22:3c:6e:ce:9a:13:5f: a0:e6:9b:93:32:b0:42:16:49:e8:d6:84:57:74:52: e6:db:89:f7:86:52:41:0d:10:4a:b6:3e:ac:88:03: e5:cb:bf:62:12:9e:a4:02:7b:96:b2:e7:03:2b:49: bc:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:72:B1:95:4D:BF:57:87:05:89:97:E7:7E:B2:01:CD:BE:51:CD:95 X509v3 Authority Key Identifier: keyid:B8:7B:76:69:68:71:62:96:E5:BB:A0:BC:E8:38:56:AE:71:65:B8:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uHt2aWhxYpblu6C86DhWrnFluLg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6f:1d:9d:75:8d:62:95:f6:d6:a6:bd:d4:ec:71:25:31:d9:e8: 37:39:67:7d:c3:a9:4c:2d:60:eb:c1:1e:92:9f:f4:a7:92:d2: d5:74:48:a8:32:75:a8:42:54:b2:40:75:72:12:86:0e:e0:93: 9e:b5:23:f9:d9:8d:46:3c:91:70:48:d2:0f:d7:7d:7b:64:98: 06:ea:4f:e9:87:8b:b2:4c:85:f1:ac:4f:03:fe:79:78:34:24: 38:5b:66:5d:56:e9:10:63:60:dd:ea:b7:4b:d2:e3:0d:61:03: 83:5a:da:ea:57:eb:74:89:89:db:c4:81:c0:9d:f9:90:dd:5c: 01:ac:fc:b2:a4:43:aa:23:46:f2:38:f2:6b:51:34:40:30:ae: 42:e9:6d:e0:79:c5:aa:04:ee:a6:83:e1:68:2e:0f:91:ca:e4: 3d:1b:dd:6a:3b:b2:29:b5:b1:55:d3:49:21:cf:56:5f:9f:d1: 4e:32:74:b8:20:ee:4f:0a:1b:36:04:8b:f4:0f:57:b0:c9:3b: 50:8c:b7:04:57:8b:f5:a8:5c:9c:45:2e:49:24:9e:5d:f7:3a: 83:28:e1:4d:f0:67:95:45:6a:81:3a:82:58:b4:1c:1c:c7:3c: cf:ed:c4:58:02:ff:6a:b8:f0:df:58:f2:98:55:88:2b:52:30: f0:0e:32:55 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs1oGGXrSvjb/MykAi7Gn48MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI4N2I3NjY5Njg3MTYyOTZlNWJiYTBiY2U4Mzg1NmFlNzE2 NWI4YjgwHhcNMjUxMjE5MDgwMTAxWhcNMjUxMjIwMDgwMTAxWjAzMTEwLwYDVQQD EygyMTcyYjE5NTRkYmY1Nzg3MDU4OTk3ZTc3ZWIyMDFjZGJlNTFjZDk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhz3YOdjClCtRJfvC1tQgS+O+DxNh Y5NRC+OLlKpejN+tsHKk91ErlSC+8nnTVdLAZymoC9IoGnPsRD2x7XHFfqOUB1/C qDnIkKW8dNwsj3nExQWhX4EQiWzLlUD+k+RIjxB7qka7ZXHqM32eQJ7yULDffmIQ wLQD5i+3RhK/1sMijKTUkAyLGtfo5ljFr3S5DfgIKKOZBZrJ5LUhb1B6ebpUKMb+ m7MOWq60EyLtCXlKSsW5D2la8HR29ZJgxWl7/uNUeEA2l5x28SI8bs6aE1+g5puT MrBCFkno1oRXdFLm24n3hlJBDRBKtj6siAPly79iEp6kAnuWsucDK0m83QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCFysZVNv1eHBYmX536yAc2+Uc2VMB8GA1UdIwQY MBaAFLh7dmlocWKW5bugvOg4Vq5xZbi4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdUh0MmFXaHhZcGJsdTZDODZEaFdybkZsdUxnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS9hM2VkZTYtYmMzMS00ZDAwLTkyNWMt M2Q2MTJmMzI0OTk2LzEvdUh0MmFXaHhZcGJsdTZDODZEaFdybkZsdUxnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOS9hM2VkZTYtYmMzMS00ZDAwLTkyNWMtM2Q2MTJmMzI0OTk2 LzEvdUh0MmFXaHhZcGJsdTZDODZEaFdybkZsdUxnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbx2ddY1i lfbWpr3U7HElMdnoNzlnfcOpTC1g68Eekp/0p5LS1XRIqDJ1qEJUskB1chKGDuCT nrUj+dmNRjyRcEjSD9d9e2SYBupP6YeLskyF8axPA/55eDQkOFtmXVbpEGNg3eq3 S9LjDWEDg1ra6lfrdImJ28SBwJ35kN1cAaz8sqRDqiNG8jjya1E0QDCuQult4HnF qgTupoPhaC4PkcrkPRvdajuyKbWxVdNJIc9WX5/RTjJ0uCDuTwobNgSL9A9XsMk7 UIy3BFeL9ahcnEUuSSSeXfc6gyjhTfBnlUVqgTqCWLQcHMc8z+3EWAL/arjw31jy mFWIK1Iw8A4yVQ== -----END CERTIFICATE-----Generated at Fri Dec 19 16:14:30 2025 by rpki-client