This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft File: UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft (raw, json) Hash identifier: 6NRxtjzCvtMEjDvAFvZZqXvLYx1JUBlI7M2ghFmoRgw= Subject key identifier: BC:E4:0F:9D:9A:91:D2:4E:87:B3:BF:A8:C3:5F:D4:41:1C:B5:22:B8 Authority key identifier: 52:A6:5C:62:84:83:A7:56:68:8B:B1:58:C2:8A:B7:C0:D4:7D:E2:7C Certificate issuer: /CN=52a65c628483a756688bb158c28ab7c0d47de27c Certificate serial: 019B1E05D8B0DC97B29E66C933EC95396EA7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft Manifest number: 054A Signing time: Sun 14 Dec 2025 18:00:58 +0000 Manifest this update: Sun 14 Dec 2025 18:00:58 +0000 Manifest next update: Mon 15 Dec 2025 18:00:58 +0000 Files and hashes: 1: UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl (hash: 9tv9nzj4iBGT9V0uhX1dk3fqUe5wLFy98m9kjXDy8pI=) 2: tqDHXiS7i5dxh3CeCoDJkGQqezg.roa (hash: l6w/oRDzimMT8gSmQ7FtqRNlVcpqgstHkEfCIU2SJhE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 18:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1e:05:d8:b0:dc:97:b2:9e:66:c9:33:ec:95:39:6e:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52a65c628483a756688bb158c28ab7c0d47de27c Validity Not Before: Dec 14 18:00:58 2025 GMT Not After : Dec 15 18:00:58 2025 GMT Subject: CN=bce40f9d9a91d24e87b3bfa8c35fd4411cb522b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:0b:85:35:18:4f:68:79:4f:d4:3a:4b:7e:88: ea:80:90:9d:69:7a:04:dc:9b:1e:96:c4:ae:f0:93: ea:37:04:c1:73:b9:3c:00:85:bc:6a:38:a8:5c:e2: 74:79:d4:c5:db:f5:ae:61:5a:e2:7c:05:1e:ce:12: 4b:71:d5:1e:6a:cd:dc:27:ac:5d:90:40:d4:55:a3: 98:e9:16:80:b3:95:bc:fe:4e:f1:9f:78:30:38:c1: a7:c4:c3:9a:5e:c1:28:e8:b4:49:b4:22:8b:61:b1: 20:aa:58:a1:ea:14:7e:28:8d:74:a3:e3:1b:ab:c6: b3:82:03:76:94:db:d1:8b:1e:2f:6b:1b:55:18:6f: b3:31:6f:fc:e8:6d:78:01:15:2c:8e:8c:51:59:52: 3b:75:1e:fe:22:70:e1:55:a5:83:02:c9:58:77:b4: 1d:d0:93:c4:26:02:e6:bc:aa:57:98:ff:29:d2:bb: 73:e6:67:24:ea:72:81:7f:1d:fc:44:d8:a0:8e:ba: 2b:96:88:7c:db:3d:cf:9c:e4:31:4b:fa:68:23:a2: 28:52:e9:b5:ce:43:c0:c9:32:91:eb:ae:97:ef:02: 7e:52:6f:59:8e:d8:70:63:41:1f:17:95:0a:ac:9a: 3c:78:4b:86:97:9a:1d:3f:76:c4:d8:35:ee:c9:e0: 02:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:E4:0F:9D:9A:91:D2:4E:87:B3:BF:A8:C3:5F:D4:41:1C:B5:22:B8 X509v3 Authority Key Identifier: keyid:52:A6:5C:62:84:83:A7:56:68:8B:B1:58:C2:8A:B7:C0:D4:7D:E2:7C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9b:34:fa:3d:2c:59:6f:23:25:b8:59:38:54:dd:b7:44:e4:af: 3b:4b:52:fc:58:85:ce:39:91:2a:4c:32:99:86:72:49:16:ed: 80:d0:e4:4b:58:f1:48:6e:50:ce:0c:d4:3b:fa:23:3c:81:4d: 49:fd:29:0a:e6:f2:e8:5d:48:ea:fc:06:2b:47:0d:8d:c4:5a: 5e:5a:57:9a:27:f7:c7:f5:c3:ab:99:6e:00:a5:45:e8:fc:54: 04:96:2f:90:ac:b0:7a:c3:6f:e5:8d:95:79:0c:bc:05:6c:43: 97:04:32:32:bb:64:3d:76:a4:8c:d7:44:14:fc:18:b6:a5:0d: c3:4c:ff:61:f9:75:52:28:fc:51:b0:bf:af:89:d6:1f:e9:a9: 9f:2e:da:f7:1d:d2:06:55:39:0b:ba:c9:b8:da:3c:8e:67:25: be:10:ba:66:4e:1d:ce:4b:11:bd:17:97:f2:44:48:6b:d3:23: 6a:0e:a3:f1:7e:75:0a:ed:c5:51:ad:74:7f:a1:49:03:7f:fc: e1:fd:bb:2c:cc:11:a7:c4:02:9a:eb:fe:dd:f4:c4:23:95:ab: 20:31:4d:f3:e2:fc:e6:6a:01:8f:95:c6:60:87:57:cb:99:bc: f1:bc:bf:0b:34:1c:5a:74:71:d6:07:04:b2:ce:ed:c5:16:13: a4:65:05:dc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZseBdiw3JeynmbJM+yVOW6nMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyYTY1YzYyODQ4M2E3NTY2ODhiYjE1OGMyOGFiN2MwZDQ3 ZGUyN2MwHhcNMjUxMjE0MTgwMDU4WhcNMjUxMjE1MTgwMDU4WjAzMTEwLwYDVQQD EyhiY2U0MGY5ZDlhOTFkMjRlODdiM2JmYThjMzVmZDQ0MTFjYjUyMmI4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApwuFNRhPaHlP1DpLfojqgJCdaXoE 3JselsSu8JPqNwTBc7k8AIW8ajioXOJ0edTF2/WuYVrifAUezhJLcdUeas3cJ6xd kEDUVaOY6RaAs5W8/k7xn3gwOMGnxMOaXsEo6LRJtCKLYbEgqlih6hR+KI10o+Mb q8azggN2lNvRix4vaxtVGG+zMW/86G14ARUsjoxRWVI7dR7+InDhVaWDAslYd7Qd 0JPEJgLmvKpXmP8p0rtz5mck6nKBfx38RNigjrorloh82z3PnOQxS/poI6IoUum1 zkPAyTKR666X7wJ+Um9ZjthwY0EfF5UKrJo8eEuGl5odP3bE2DXuyeACzwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLzkD52akdJOh7O/qMNf1EEctSK4MB8GA1UdIwQY MBaAFFKmXGKEg6dWaIuxWMKKt8DUfeJ8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXFaY1lvU0RwMVpvaTdGWXdvcTN3TlI5NG53LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi8wM2QwZTItYTQ5ZS00MzcxLWIyMWMt NTAxNWUxMjA4MTE5LzEvVXFaY1lvU0RwMVpvaTdGWXdvcTN3TlI5NG53Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZi8wM2QwZTItYTQ5ZS00MzcxLWIyMWMtNTAxNWUxMjA4MTE5 LzEvVXFaY1lvU0RwMVpvaTdGWXdvcTN3TlI5NG53LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmzT6PSxZ byMluFk4VN23ROSvO0tS/FiFzjmRKkwymYZySRbtgNDkS1jxSG5QzgzUO/ojPIFN Sf0pCuby6F1I6vwGK0cNjcRaXlpXmif3x/XDq5luAKVF6PxUBJYvkKywesNv5Y2V eQy8BWxDlwQyMrtkPXakjNdEFPwYtqUNw0z/Yfl1Uij8UbC/r4nWH+mpny7a9x3S BlU5C7rJuNo8jmclvhC6Zk4dzksRvReX8kRIa9Mjag6j8X51Cu3FUa10f6FJA3/8 4f27LMwRp8QCmuv+3fTEI5WrIDFN8+L85moBj5XGYIdXy5m88by/CzQcWnRx1gcE ss7txRYTpGUF3A== -----END CERTIFICATE-----Generated at Mon Dec 15 04:57:42 2025 by rpki-client