This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/UzYQcXlxVgncpCK8B6CYRoxSlFI.mft File: UzYQcXlxVgncpCK8B6CYRoxSlFI.mft (raw, json) Hash identifier: uk/dLGnSq1U6k0mHeSUw1PJpPrmCTdOzE2rCX3A5zxk= Subject key identifier: 92:8A:77:C0:58:D0:6F:0D:43:8F:17:1F:04:FF:3C:B1:D9:10:D0:1E Authority key identifier: 53:36:10:71:79:71:56:09:DC:A4:22:BC:07:A0:98:46:8C:52:94:52 Certificate issuer: /CN=5336107179715609dca422bc07a098468c529452 Certificate serial: 019B49951E8CBDDA2AFBF4638A0C1819F143 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UzYQcXlxVgncpCK8B6CYRoxSlFI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/UzYQcXlxVgncpCK8B6CYRoxSlFI.mft Manifest number: 179E Signing time: Tue 23 Dec 2025 05:01:07 +0000 Manifest this update: Tue 23 Dec 2025 05:01:07 +0000 Manifest next update: Wed 24 Dec 2025 05:01:07 +0000 Files and hashes: 1: RUQaxYKvLWtplW7yHI6TR3XEkQE.roa (hash: XDQ+7CQl5GASmirk7HcC4w80DGZtYXJDshkFg3byREs=) 2: UzYQcXlxVgncpCK8B6CYRoxSlFI.crl (hash: VcEiXVde/GG1IxqlUBkxfaFrA/V8SGFq8U8U66htPKw=) 3: zFplkI-jekZ1WexKJkNCvR3gKDE.roa (hash: 1q8DoRCpAh+3qke5582Epuo/79FVU0mcOLaI7R/pGvc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/UzYQcXlxVgncpCK8B6CYRoxSlFI.crl rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/UzYQcXlxVgncpCK8B6CYRoxSlFI.mft rsync://rpki.ripe.net/repository/DEFAULT/UzYQcXlxVgncpCK8B6CYRoxSlFI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 24 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:49:95:1e:8c:bd:da:2a:fb:f4:63:8a:0c:18:19:f1:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5336107179715609dca422bc07a098468c529452 Validity Not Before: Dec 23 05:01:07 2025 GMT Not After : Dec 24 05:01:07 2025 GMT Subject: CN=928a77c058d06f0d438f171f04ff3cb1d910d01e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:3c:00:bb:8f:3e:c8:4b:ee:02:f6:e8:4a:38: d1:ff:9c:33:59:ca:e8:3a:68:d6:d5:28:71:a9:2f: 70:4d:72:c5:22:87:a1:8d:64:a5:88:3f:6a:0d:1c: 83:58:be:f3:5a:e2:6e:71:91:13:a9:5a:3e:07:6d: 96:21:2b:c4:72:6e:08:62:4a:a3:f9:35:1e:4c:c8: 92:bd:e7:ee:9a:ca:d0:aa:e7:66:19:ae:53:07:f2: 0a:a7:52:e8:d7:d4:c3:b1:6a:db:d7:3c:e4:34:04: 6f:12:13:60:d5:fb:fd:aa:c3:95:43:10:df:89:48: 0b:fd:d4:2d:21:b4:38:48:6a:da:69:8f:9f:bd:07: cd:f1:79:6a:f4:74:65:4b:5e:ac:01:38:07:a8:13: 05:7d:b6:5b:8d:12:79:5f:19:92:bc:da:cf:70:8c: 98:d9:bc:67:84:bd:85:41:e9:f7:65:0e:3c:00:06: ca:42:84:7e:a4:66:d3:9c:75:aa:64:78:8c:d5:40: cd:69:d0:0d:32:dd:4f:79:0b:9c:3a:57:96:d8:23: 85:2b:86:6d:c4:24:31:35:85:eb:21:4d:b8:b6:4a: 27:93:6d:7a:b0:50:13:4f:ef:48:34:d8:cf:a3:6a: 92:d1:7d:3a:97:de:29:e9:33:20:ba:e1:d0:b8:d9: 9e:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:8A:77:C0:58:D0:6F:0D:43:8F:17:1F:04:FF:3C:B1:D9:10:D0:1E X509v3 Authority Key Identifier: keyid:53:36:10:71:79:71:56:09:DC:A4:22:BC:07:A0:98:46:8C:52:94:52 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UzYQcXlxVgncpCK8B6CYRoxSlFI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/UzYQcXlxVgncpCK8B6CYRoxSlFI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/71/81df33-7538-40d8-b81e-d18610075efc/1/UzYQcXlxVgncpCK8B6CYRoxSlFI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 52:08:82:af:36:b1:b6:7a:d3:1a:34:7f:5a:f6:4c:03:ea:15: db:ee:b9:86:f0:3e:f2:91:1a:04:ac:a6:55:07:c3:bb:95:f8: b4:17:ef:ac:5b:cd:e3:8f:c5:e0:43:4b:b2:35:5e:f6:2b:3a: 8d:7d:53:3c:2e:fa:8e:ed:a9:6a:71:05:c2:34:d7:d5:07:f0: aa:b4:71:09:d1:bb:33:fa:ee:76:65:6c:1d:51:c4:e4:38:0d: f8:17:77:1b:8d:2a:f5:d6:c3:3c:a0:81:ce:07:ae:13:1b:2a: 92:3e:62:f3:2e:f9:06:7e:f9:12:37:be:21:73:94:05:23:2e: fb:4c:f6:2d:92:32:0a:7d:ed:04:90:c4:ee:2e:da:51:30:f0: 78:7b:42:d8:60:58:80:70:74:fc:9b:d0:ae:cd:ae:fa:d3:e3: 47:13:89:d4:33:5f:f2:0a:21:c6:ce:72:22:b3:01:18:46:55: 73:4f:4b:d4:6a:8f:94:47:ca:c6:4f:9a:bb:a9:1f:87:be:f4: 73:73:41:01:53:e7:c7:d3:d3:6f:b4:1d:1b:e7:4c:58:79:b5: 7b:26:9f:b7:08:70:f6:a7:0f:cf:83:42:3b:2d:bc:d9:c6:c7: a1:b2:b2:04:ce:d2:e4:95:bc:ca:d7:5f:22:94:62:7d:8c:ce: ef:0c:b0:c1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtJlR6Mvdoq+/RjigwYGfFDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzMzYxMDcxNzk3MTU2MDlkY2E0MjJiYzA3YTA5ODQ2OGM1 Mjk0NTIwHhcNMjUxMjIzMDUwMTA3WhcNMjUxMjI0MDUwMTA3WjAzMTEwLwYDVQQD Eyg5MjhhNzdjMDU4ZDA2ZjBkNDM4ZjE3MWYwNGZmM2NiMWQ5MTBkMDFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnzwAu48+yEvuAvboSjjR/5wzWcro OmjW1ShxqS9wTXLFIoehjWSliD9qDRyDWL7zWuJucZETqVo+B22WISvEcm4IYkqj +TUeTMiSvefumsrQqudmGa5TB/IKp1Lo19TDsWrb1zzkNARvEhNg1fv9qsOVQxDf iUgL/dQtIbQ4SGraaY+fvQfN8Xlq9HRlS16sATgHqBMFfbZbjRJ5XxmSvNrPcIyY 2bxnhL2FQen3ZQ48AAbKQoR+pGbTnHWqZHiM1UDNadANMt1PeQucOleW2COFK4Zt xCQxNYXrIU24tkonk216sFATT+9INNjPo2qS0X06l94p6TMguuHQuNmemQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJKKd8BY0G8NQ48XHwT/PLHZENAeMB8GA1UdIwQY MBaAFFM2EHF5cVYJ3KQivAegmEaMUpRSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXpZUWNYbHhWZ25jcENLOEI2Q1lSb3hTbEZJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS84MWRmMzMtNzUzOC00MGQ4LWI4MWUt ZDE4NjEwMDc1ZWZjLzEvVXpZUWNYbHhWZ25jcENLOEI2Q1lSb3hTbEZJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MS84MWRmMzMtNzUzOC00MGQ4LWI4MWUtZDE4NjEwMDc1ZWZj LzEvVXpZUWNYbHhWZ25jcENLOEI2Q1lSb3hTbEZJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUgiCrzax tnrTGjR/WvZMA+oV2+65hvA+8pEaBKymVQfDu5X4tBfvrFvN44/F4ENLsjVe9is6 jX1TPC76ju2panEFwjTX1QfwqrRxCdG7M/rudmVsHVHE5DgN+Bd3G40q9dbDPKCB zgeuExsqkj5i8y75Bn75Eje+IXOUBSMu+0z2LZIyCn3tBJDE7i7aUTDweHtC2GBY gHB0/JvQrs2u+tPjRxOJ1DNf8gohxs5yIrMBGEZVc09L1GqPlEfKxk+au6kfh770 c3NBAVPnx9PTb7QdG+dMWHm1eyaftwhw9qcPz4NCOy282cbHobKyBM7S5JW8ytdf IpRifYzO7wywwQ== -----END CERTIFICATE-----Generated at Tue Dec 23 09:41:29 2025 by rpki-client