This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft File: UsSOG7ZyzaaEZADov41taWg1178.mft (raw, json) Hash identifier: We+siiMenCcxz7oQqihy3vIWQFqhZ/HMcAVVF4H7+dM= Subject key identifier: 87:BB:01:FD:E5:78:21:B3:26:34:53:71:0C:C2:96:C6:E5:BB:7C:3E Authority key identifier: 52:C4:8E:1B:B6:72:CD:A6:84:64:00:E8:BF:8D:6D:69:68:35:D7:BF Certificate issuer: /CN=52c48e1bb672cda6846400e8bf8d6d696835d7bf Certificate serial: 019B5975FF9D6119D82ED4D7E6EECF8617CA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UsSOG7ZyzaaEZADov41taWg1178.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft Manifest number: 09CE Signing time: Fri 26 Dec 2025 07:01:03 +0000 Manifest this update: Fri 26 Dec 2025 07:01:03 +0000 Manifest next update: Sat 27 Dec 2025 07:01:03 +0000 Files and hashes: 1: UsSOG7ZyzaaEZADov41taWg1178.crl (hash: tnVIHaSBGQ03iac0oQvP3dn6DyJT0KlPvKomFO9JgBc=) 2: iWu72NaaTSDAiJGqIVfKYfSk9Cg.roa (hash: BiHkYnw80HRUON814fdKI0ZwVn2DSPqeEkVU4t9Jnsk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft rsync://rpki.ripe.net/repository/DEFAULT/UsSOG7ZyzaaEZADov41taWg1178.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 07:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:75:ff:9d:61:19:d8:2e:d4:d7:e6:ee:cf:86:17:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52c48e1bb672cda6846400e8bf8d6d696835d7bf Validity Not Before: Dec 26 07:01:03 2025 GMT Not After : Dec 27 07:01:03 2025 GMT Subject: CN=87bb01fde57821b3263453710cc296c6e5bb7c3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ec:67:56:20:cf:3c:79:50:47:3f:05:53:2d: da:41:52:4b:6e:4b:46:31:fd:3b:61:e6:03:f5:a3: ae:6b:f8:b9:32:00:52:17:07:f6:d0:84:fb:71:2b: 26:6f:9f:d7:95:c8:80:30:93:10:40:d6:1b:24:fc: 52:05:f5:ef:47:28:19:0a:6e:ef:9c:50:a8:d1:fd: f6:67:a3:e0:ca:2e:b0:75:30:f0:8c:17:6d:ad:1a: 27:50:24:9a:1b:3a:bb:3c:b0:d3:2e:ff:cb:ee:6c: 85:2c:16:e9:ff:79:dd:33:68:e3:27:ed:bb:31:13: 80:d3:15:95:a7:f8:11:ba:ec:98:39:05:4d:bc:46: af:0d:18:95:67:fb:ab:60:f7:24:75:a2:d0:68:2c: 5f:9d:2c:d3:d7:7e:12:db:65:43:f2:c9:e0:4f:6a: ad:07:7e:ef:14:44:c5:69:67:14:91:33:d9:9f:5b: a0:00:ca:22:e2:b6:b2:dc:37:68:5a:4f:5b:6d:f2: c4:ab:f2:0a:5e:fb:f8:4f:73:a1:d1:d5:07:3e:74: 73:92:07:ed:ee:58:44:f8:fa:af:6c:38:95:29:95: 82:89:42:a3:7f:08:a4:41:e1:d4:49:f9:1e:04:60: c9:7f:39:c2:93:b9:8a:7a:8a:c9:51:9f:48:c9:07: 87:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:BB:01:FD:E5:78:21:B3:26:34:53:71:0C:C2:96:C6:E5:BB:7C:3E X509v3 Authority Key Identifier: keyid:52:C4:8E:1B:B6:72:CD:A6:84:64:00:E8:BF:8D:6D:69:68:35:D7:BF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UsSOG7ZyzaaEZADov41taWg1178.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a5e94c-08be-4fce-8ec9-18ece368266f/1/UsSOG7ZyzaaEZADov41taWg1178.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 63:47:0f:74:b2:c9:8e:d3:f9:9e:c8:20:ef:8c:50:d1:a5:ab: 86:28:94:b1:74:6a:16:0e:62:f8:c6:e9:2c:c3:34:67:24:c3: 70:72:6d:03:50:c6:a8:3a:f8:45:56:91:b7:f5:00:33:78:4d: 93:75:03:63:65:7a:67:cc:49:90:5e:90:0c:0f:5d:31:b6:48: 6f:f5:bb:b7:04:2d:6a:ac:67:08:0d:79:3a:53:89:c6:ef:64: 81:6f:12:64:1b:f0:a4:33:f0:a7:bd:37:15:b9:31:78:f2:45: 28:1a:da:e3:5a:22:10:dd:b5:e8:e5:04:f9:3b:0a:de:b3:55: 22:6b:13:87:9e:50:f8:97:a5:eb:16:a5:f4:8c:b4:d3:81:29: ea:43:77:e7:a5:3b:5c:74:da:85:b1:0f:e0:26:10:5f:cb:5d: 9c:2b:2e:f2:af:98:ba:bf:65:af:ea:4d:b7:86:d7:72:ff:1c: 6b:b5:c0:56:98:44:ec:eb:8d:9c:78:95:8e:84:84:ef:5c:86: 68:a1:a2:92:f3:f3:0d:ab:8f:f9:57:8e:31:c4:75:af:ff:07: d5:31:c5:d4:9b:60:47:82:b5:18:09:ea:ea:96:37:62:fa:37: ca:d2:3e:dc:fe:16:d1:e0:c5:77:84:ef:ef:83:5e:13:c1:6e: ca:b8:d3:c6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZdf+dYRnYLtTX5u7PhhfKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyYzQ4ZTFiYjY3MmNkYTY4NDY0MDBlOGJmOGQ2ZDY5Njgz NWQ3YmYwHhcNMjUxMjI2MDcwMTAzWhcNMjUxMjI3MDcwMTAzWjAzMTEwLwYDVQQD Eyg4N2JiMDFmZGU1NzgyMWIzMjYzNDUzNzEwY2MyOTZjNmU1YmI3YzNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvexnViDPPHlQRz8FUy3aQVJLbktG Mf07YeYD9aOua/i5MgBSFwf20IT7cSsmb5/XlciAMJMQQNYbJPxSBfXvRygZCm7v nFCo0f32Z6Pgyi6wdTDwjBdtrRonUCSaGzq7PLDTLv/L7myFLBbp/3ndM2jjJ+27 MROA0xWVp/gRuuyYOQVNvEavDRiVZ/urYPckdaLQaCxfnSzT134S22VD8sngT2qt B37vFETFaWcUkTPZn1ugAMoi4ray3DdoWk9bbfLEq/IKXvv4T3Oh0dUHPnRzkgft 7lhE+PqvbDiVKZWCiUKjfwikQeHUSfkeBGDJfznCk7mKeorJUZ9IyQeHiQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIe7Af3leCGzJjRTcQzClsblu3w+MB8GA1UdIwQY MBaAFFLEjhu2cs2mhGQA6L+NbWloNde/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXNTT0c3Wnl6YWFFWkFEb3Y0MXRhV2cxMTc4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9hNWU5NGMtMDhiZS00ZmNlLThlYzkt MThlY2UzNjgyNjZmLzEvVXNTT0c3Wnl6YWFFWkFEb3Y0MXRhV2cxMTc4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS9hNWU5NGMtMDhiZS00ZmNlLThlYzktMThlY2UzNjgyNjZm LzEvVXNTT0c3Wnl6YWFFWkFEb3Y0MXRhV2cxMTc4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY0cPdLLJ jtP5nsgg74xQ0aWrhiiUsXRqFg5i+MbpLMM0ZyTDcHJtA1DGqDr4RVaRt/UAM3hN k3UDY2V6Z8xJkF6QDA9dMbZIb/W7twQtaqxnCA15OlOJxu9kgW8SZBvwpDPwp703 FbkxePJFKBra41oiEN216OUE+TsK3rNVImsTh55Q+Jel6xal9Iy004Ep6kN356U7 XHTahbEP4CYQX8tdnCsu8q+Yur9lr+pNt4bXcv8ca7XAVphE7OuNnHiVjoSE71yG aKGikvPzDauP+VeOMcR1r/8H1THF1JtgR4K1GAnq6pY3Yvo3ytI+3P4W0eDFd4Tv 74NeE8FuyrjTxg== -----END CERTIFICATE-----Generated at Fri Dec 26 16:06:22 2025 by rpki-client