This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/9fb1d7-8424-4c84-b0cb-2f51ecd1aa0e/1/UTTRMgZFZE4urzaFh51pP3JSLHY.mft File: UTTRMgZFZE4urzaFh51pP3JSLHY.mft (raw, json) Hash identifier: VT8EIV9oJkoZQyc0pnWmgogOuxF5q/oKN5I1VsJn09w= Subject key identifier: D9:AC:C3:E8:92:95:F2:22:3E:32:EE:16:15:0D:88:3E:9D:37:E5:63 Authority key identifier: 51:34:D1:32:06:45:64:4E:2E:AF:36:85:87:9D:69:3F:72:52:2C:76 Certificate issuer: /CN=5134d1320645644e2eaf3685879d693f72522c76 Certificate serial: 019B32D77DF844CEAB051190089E056B1C5C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UTTRMgZFZE4urzaFh51pP3JSLHY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/9fb1d7-8424-4c84-b0cb-2f51ecd1aa0e/1/UTTRMgZFZE4urzaFh51pP3JSLHY.mft Manifest number: 156C Signing time: Thu 18 Dec 2025 19:02:21 +0000 Manifest this update: Thu 18 Dec 2025 19:02:21 +0000 Manifest next update: Fri 19 Dec 2025 19:02:21 +0000 Files and hashes: 1: UTTRMgZFZE4urzaFh51pP3JSLHY.crl (hash: g6sqhwoefsgV8AEbuR3f8RAro4cRy4ep2z6hitMb5Ac=) 2: Xbs_--8RTj7NVNdnHjguAeVIjoo.roa (hash: wMCRs2Eg0y2oiiX2U9OgxEoMnX9Jd9Ptutf57Q4oqbI=) 3: dnwf0B7ghFQhubHpkV_b6aRmfaU.roa (hash: /ZpiVEXwKVsBxeMoy/4YPuoiF3m8c7Z0eTdmKuo2JTI=) 4: hhpnOw16P4QOaI6Yj27PCQwfLVA.roa (hash: ig3aG6IluBzRhUfWEo3gM6opkDOech5g/k8SP7esT2A=) 5: t5-UWdTdiMSI20SfoWThGHmUmkI.roa (hash: u89CpCdmqr7rKA71HZJcUjE6g736IrSgJ+2hOF705ak=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/9fb1d7-8424-4c84-b0cb-2f51ecd1aa0e/1/UTTRMgZFZE4urzaFh51pP3JSLHY.crl rsync://rpki.ripe.net/repository/DEFAULT/7a/9fb1d7-8424-4c84-b0cb-2f51ecd1aa0e/1/UTTRMgZFZE4urzaFh51pP3JSLHY.mft rsync://rpki.ripe.net/repository/DEFAULT/UTTRMgZFZE4urzaFh51pP3JSLHY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 19:02:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:32:d7:7d:f8:44:ce:ab:05:11:90:08:9e:05:6b:1c:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5134d1320645644e2eaf3685879d693f72522c76 Validity Not Before: Dec 18 19:02:21 2025 GMT Not After : Dec 19 19:02:21 2025 GMT Subject: CN=d9acc3e89295f2223e32ee16150d883e9d37e563 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:1a:b5:71:11:ec:92:25:bf:c2:2d:cb:ac:c4: da:49:17:47:5a:29:bd:d8:0d:38:b6:67:aa:91:fa: f1:c1:70:d8:a4:48:a2:17:75:91:aa:2c:6c:29:2e: 8a:7f:e7:a8:14:28:75:70:ae:e0:81:a6:66:07:80: 54:a0:f8:e6:84:fe:93:e1:d9:79:20:cd:e2:e6:7b: 54:56:d5:13:ce:f3:7b:62:04:7a:ed:8b:2f:8c:06: 7d:11:ee:27:ad:15:ff:a2:f9:fe:08:b6:8e:40:67: e4:f6:82:ae:43:89:12:f4:1d:19:62:21:cc:28:0f: 02:9e:c3:64:e1:da:52:9c:b8:72:8a:64:87:56:ad: 23:ab:ea:b2:2b:71:99:be:72:ba:b2:4f:b9:4c:e7: d0:57:02:e7:9d:af:df:31:6c:ec:69:6a:71:7f:ae: fe:c8:5f:56:92:7e:88:d0:90:b5:e3:d7:5b:3f:86: ff:16:88:15:31:d7:d5:0a:fa:5c:f7:b6:01:37:e7: 52:f8:db:16:87:7d:55:23:e6:8a:2c:d4:1f:c7:88: 24:e7:be:6d:6a:c3:f3:fb:39:68:6c:d8:20:7f:b7: 71:19:8e:b0:e7:ce:7b:74:0e:4d:4a:4f:92:68:6a: f0:63:78:9a:9e:29:e2:e4:a5:b3:a6:ab:da:2e:9c: 19:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:AC:C3:E8:92:95:F2:22:3E:32:EE:16:15:0D:88:3E:9D:37:E5:63 X509v3 Authority Key Identifier: keyid:51:34:D1:32:06:45:64:4E:2E:AF:36:85:87:9D:69:3F:72:52:2C:76 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UTTRMgZFZE4urzaFh51pP3JSLHY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/9fb1d7-8424-4c84-b0cb-2f51ecd1aa0e/1/UTTRMgZFZE4urzaFh51pP3JSLHY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/9fb1d7-8424-4c84-b0cb-2f51ecd1aa0e/1/UTTRMgZFZE4urzaFh51pP3JSLHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 11:4f:23:7f:db:f9:2b:93:47:b1:ec:4c:28:aa:69:ba:c6:c1: b2:40:44:cf:5d:85:6a:88:8c:01:b9:2e:e8:99:78:fa:36:0b: b8:fd:ea:05:72:c1:13:e8:77:9b:7e:b0:a7:d6:03:e0:eb:24: 75:38:64:91:7c:a7:fb:e3:21:df:ef:23:68:79:47:b7:97:f1: 08:4d:02:92:88:4a:5a:e3:3c:f4:81:74:9e:14:57:e9:16:48: eb:b9:65:23:f7:a3:99:c9:e7:3e:1b:57:00:02:95:5e:b8:2b: 24:e6:51:10:f5:d8:e7:4f:54:9b:03:02:0e:9a:3a:fc:a2:dc: 8a:c3:e6:df:fd:d3:3f:b0:6d:7c:9c:94:93:f0:f5:cb:aa:49: 64:9c:85:06:f0:a7:9f:cd:10:fe:9f:0a:4b:20:c7:17:b0:01: 98:6b:4f:1b:45:bd:0e:46:81:b7:75:58:2b:cf:42:be:1a:ba: a8:6e:7d:78:56:2d:89:2f:68:df:64:02:a8:b3:0b:14:59:99: 9f:28:31:ab:13:2b:94:14:79:22:d2:7b:bd:97:49:74:53:fd: 94:cd:0a:98:52:ad:3c:ec:4b:12:0b:51:7a:f9:8e:36:17:33: e3:ba:bb:c8:95:77:53:31:37:7d:f0:c7:e1:6b:38:29:29:9b: 51:7c:48:9a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsy1334RM6rBRGQCJ4FaxxcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUxMzRkMTMyMDY0NTY0NGUyZWFmMzY4NTg3OWQ2OTNmNzI1 MjJjNzYwHhcNMjUxMjE4MTkwMjIxWhcNMjUxMjE5MTkwMjIxWjAzMTEwLwYDVQQD EyhkOWFjYzNlODkyOTVmMjIyM2UzMmVlMTYxNTBkODgzZTlkMzdlNTYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3Rq1cRHskiW/wi3LrMTaSRdHWim9 2A04tmeqkfrxwXDYpEiiF3WRqixsKS6Kf+eoFCh1cK7ggaZmB4BUoPjmhP6T4dl5 IM3i5ntUVtUTzvN7YgR67YsvjAZ9Ee4nrRX/ovn+CLaOQGfk9oKuQ4kS9B0ZYiHM KA8CnsNk4dpSnLhyimSHVq0jq+qyK3GZvnK6sk+5TOfQVwLnna/fMWzsaWpxf67+ yF9Wkn6I0JC149dbP4b/FogVMdfVCvpc97YBN+dS+NsWh31VI+aKLNQfx4gk575t asPz+zlobNggf7dxGY6w5857dA5NSk+SaGrwY3ianini5KWzpqvaLpwZsQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNmsw+iSlfIiPjLuFhUNiD6dN+VjMB8GA1UdIwQY MBaAFFE00TIGRWROLq82hYedaT9yUix2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVVRUUk1nWkZaRTR1cnphRmg1MXBQM0pTTEhZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS85ZmIxZDctODQyNC00Yzg0LWIwY2It MmY1MWVjZDFhYTBlLzEvVVRUUk1nWkZaRTR1cnphRmg1MXBQM0pTTEhZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83YS85ZmIxZDctODQyNC00Yzg0LWIwY2ItMmY1MWVjZDFhYTBl LzEvVVRUUk1nWkZaRTR1cnphRmg1MXBQM0pTTEhZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEU8jf9v5 K5NHsexMKKppusbBskBEz12FaoiMAbku6Jl4+jYLuP3qBXLBE+h3m36wp9YD4Osk dThkkXyn++Mh3+8jaHlHt5fxCE0CkohKWuM89IF0nhRX6RZI67llI/ejmcnnPhtX AAKVXrgrJOZREPXY509UmwMCDpo6/KLcisPm3/3TP7BtfJyUk/D1y6pJZJyFBvCn n80Q/p8KSyDHF7ABmGtPG0W9DkaBt3VYK89Cvhq6qG59eFYtiS9o32QCqLMLFFmZ nygxqxMrlBR5ItJ7vZdJdFP9lM0KmFKtPOxLEgtRevmONhcz47q7yJV3UzE3ffDH 4Ws4KSmbUXxImg== -----END CERTIFICATE-----Generated at Fri Dec 19 04:51:01 2025 by rpki-client