This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/UzYQcXlxVgncpCK8B6CYRoxSlFI.mft File: UzYQcXlxVgncpCK8B6CYRoxSlFI.mft (raw, json) Hash identifier: 6qaBd2C4XZ1XfQfLYe0lQ4BnrQyDWBFqtlRb0wHN6y0= Subject key identifier: 20:20:67:CC:91:A8:89:DC:E7:EA:EB:1F:2D:3F:84:48:01:A9:E5:9B Authority key identifier: 53:36:10:71:79:71:56:09:DC:A4:22:BC:07:A0:98:46:8C:52:94:52 Certificate issuer: /CN=5336107179715609dca422bc07a098468c529452 Certificate serial: 019B3FED593424D6D7BCBBDF713E5318D6E2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UzYQcXlxVgncpCK8B6CYRoxSlFI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/UzYQcXlxVgncpCK8B6CYRoxSlFI.mft Manifest number: 1799 Signing time: Sun 21 Dec 2025 08:01:18 +0000 Manifest this update: Sun 21 Dec 2025 08:01:18 +0000 Manifest next update: Mon 22 Dec 2025 08:01:18 +0000 Files and hashes: 1: RUQaxYKvLWtplW7yHI6TR3XEkQE.roa (hash: XDQ+7CQl5GASmirk7HcC4w80DGZtYXJDshkFg3byREs=) 2: UzYQcXlxVgncpCK8B6CYRoxSlFI.crl (hash: l2dWxR7o17EPk5HsDdNFDxHyqI8/DjaI3BXswZ9m/EI=) 3: zFplkI-jekZ1WexKJkNCvR3gKDE.roa (hash: 1q8DoRCpAh+3qke5582Epuo/79FVU0mcOLaI7R/pGvc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/UzYQcXlxVgncpCK8B6CYRoxSlFI.crl rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/UzYQcXlxVgncpCK8B6CYRoxSlFI.mft rsync://rpki.ripe.net/repository/DEFAULT/UzYQcXlxVgncpCK8B6CYRoxSlFI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 08:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3f:ed:59:34:24:d6:d7:bc:bb:df:71:3e:53:18:d6:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5336107179715609dca422bc07a098468c529452 Validity Not Before: Dec 21 08:01:18 2025 GMT Not After : Dec 22 08:01:18 2025 GMT Subject: CN=202067cc91a889dce7eaeb1f2d3f844801a9e59b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:8a:54:58:f7:ca:1c:62:49:47:96:da:3b:e1: 6e:d2:d2:82:90:d8:53:29:2c:b2:59:d6:76:d6:ef: ae:46:29:1d:4e:ef:10:c6:2e:c2:5e:0b:e7:3e:d7: 7b:12:f3:d3:07:06:08:c2:17:00:07:27:9f:95:d9: 8a:a6:3b:84:e1:5e:5f:5c:3d:27:ab:20:d2:33:c8: e8:7a:b4:ea:d2:88:f4:29:a9:78:aa:40:92:96:1f: 9e:af:f7:5e:0f:3f:0a:df:64:62:7d:ec:1e:26:78: 4d:27:2d:84:38:ea:a4:0c:5e:cc:e0:83:f9:ce:3c: 15:8e:51:64:63:7e:38:07:64:d8:63:3e:03:4d:3f: 98:72:7c:a6:e9:fd:97:49:06:aa:06:85:9e:0e:f2: e2:3d:8c:2b:47:b1:ec:5c:c3:09:44:36:4b:67:d9: 75:3f:a3:4b:a7:09:da:bc:9b:73:2f:19:5d:3b:cd: a0:f9:49:f7:85:4a:26:f4:f6:fa:84:5c:cd:f0:0b: fa:10:64:2e:a2:ab:ca:19:9d:e7:1e:b3:cd:bd:8c: 01:90:ae:36:0d:5a:8e:e4:f7:b2:20:76:fa:b2:f5: a0:fc:0b:33:d0:78:a0:20:bf:07:ac:63:e0:fb:74: 3a:a1:e8:e7:7b:bd:d4:38:53:44:61:1f:92:77:8d: 9a:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:20:67:CC:91:A8:89:DC:E7:EA:EB:1F:2D:3F:84:48:01:A9:E5:9B X509v3 Authority Key Identifier: keyid:53:36:10:71:79:71:56:09:DC:A4:22:BC:07:A0:98:46:8C:52:94:52 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UzYQcXlxVgncpCK8B6CYRoxSlFI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/UzYQcXlxVgncpCK8B6CYRoxSlFI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/UzYQcXlxVgncpCK8B6CYRoxSlFI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9d:07:fb:79:9b:c2:87:e0:9f:e6:86:b8:c8:71:4b:0e:aa:a0: 3a:d3:ed:89:a6:5e:48:8b:88:19:7d:41:2b:3f:23:51:7e:c7: 71:38:4a:16:02:5f:68:63:ec:16:30:9e:c0:b8:71:bf:24:58: 67:e3:c7:1a:1f:8f:b8:07:0c:16:2d:7b:e4:8b:89:9b:4f:41: d4:01:e9:8e:07:52:6a:fe:a9:70:b7:a1:d5:a2:9c:b3:38:4d: 4a:eb:12:ce:96:06:f5:6c:51:fa:a4:a4:98:a1:b7:05:51:f3: a3:d6:f0:32:78:ed:c1:f2:a0:90:b7:2c:f9:dc:48:60:c2:9d: d5:df:6b:9b:3a:1c:bb:f9:8e:ee:4d:17:01:08:09:0e:05:64: f0:5d:7c:20:0e:37:a4:eb:64:f8:86:79:22:12:11:c0:0f:19: 8c:a9:56:43:58:ae:12:07:9e:fe:b1:2b:53:2e:ef:1e:4b:6d: cb:41:d9:fc:21:89:41:8e:1e:af:50:a4:7c:77:67:29:5b:de: aa:76:64:bc:31:05:53:4b:5a:12:9e:0d:b4:e5:d8:26:ca:8b: c6:27:f4:93:40:8a:96:c3:44:30:4f:a1:91:c6:90:a9:89:19: eb:8d:12:ea:9a:c5:ca:61:65:88:13:5d:ff:3b:4b:22:64:9c: e1:2d:92:32 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs/7Vk0JNbXvLvfcT5TGNbiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzMzYxMDcxNzk3MTU2MDlkY2E0MjJiYzA3YTA5ODQ2OGM1 Mjk0NTIwHhcNMjUxMjIxMDgwMTE4WhcNMjUxMjIyMDgwMTE4WjAzMTEwLwYDVQQD EygyMDIwNjdjYzkxYTg4OWRjZTdlYWViMWYyZDNmODQ0ODAxYTllNTliMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhYpUWPfKHGJJR5baO+Fu0tKCkNhT KSyyWdZ21u+uRikdTu8Qxi7CXgvnPtd7EvPTBwYIwhcAByefldmKpjuE4V5fXD0n qyDSM8joerTq0oj0Kal4qkCSlh+er/deDz8K32RifeweJnhNJy2EOOqkDF7M4IP5 zjwVjlFkY344B2TYYz4DTT+Ycnym6f2XSQaqBoWeDvLiPYwrR7HsXMMJRDZLZ9l1 P6NLpwnavJtzLxldO82g+Un3hUom9Pb6hFzN8Av6EGQuoqvKGZ3nHrPNvYwBkK42 DVqO5PeyIHb6svWg/Asz0HigIL8HrGPg+3Q6oejne73UOFNEYR+Sd42aOwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCAgZ8yRqInc5+rrHy0/hEgBqeWbMB8GA1UdIwQY MBaAFFM2EHF5cVYJ3KQivAegmEaMUpRSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXpZUWNYbHhWZ25jcENLOEI2Q1lSb3hTbEZJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS84MWRmMzMtNzUzOC00MGQ4LWI4MWUt ZDE4NjEwMDc1ZWZjLzEvVXpZUWNYbHhWZ25jcENLOEI2Q1lSb3hTbEZJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MS84MWRmMzMtNzUzOC00MGQ4LWI4MWUtZDE4NjEwMDc1ZWZj LzEvVXpZUWNYbHhWZ25jcENLOEI2Q1lSb3hTbEZJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnQf7eZvC h+Cf5oa4yHFLDqqgOtPtiaZeSIuIGX1BKz8jUX7HcThKFgJfaGPsFjCewLhxvyRY Z+PHGh+PuAcMFi175IuJm09B1AHpjgdSav6pcLeh1aKcszhNSusSzpYG9WxR+qSk mKG3BVHzo9bwMnjtwfKgkLcs+dxIYMKd1d9rmzocu/mO7k0XAQgJDgVk8F18IA43 pOtk+IZ5IhIRwA8ZjKlWQ1iuEgee/rErUy7vHktty0HZ/CGJQY4er1CkfHdnKVve qnZkvDEFU0taEp4NtOXYJsqLxif0k0CKlsNEME+hkcaQqYkZ640S6prFymFliBNd /ztLImSc4S2SMg== -----END CERTIFICATE-----Generated at Sun Dec 21 15:39:01 2025 by rpki-client