This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/81c091-0a4e-4005-be22-a7e86453abcd/1/U7EFBlwNkTm1_-3DLJAM9ktDEus.mft File: U7EFBlwNkTm1_-3DLJAM9ktDEus.mft (raw, json) Hash identifier: eGGGOsx25VYobOoOC6wh02CFZ6DSS/v271VaFXF5eME= Subject key identifier: 39:95:AE:E4:D6:76:21:29:12:44:27:0F:C1:58:D2:E0:C3:A2:72:DB Authority key identifier: 53:B1:05:06:5C:0D:91:39:B5:FF:ED:C3:2C:90:0C:F6:4B:43:12:EB Certificate issuer: /CN=53b105065c0d9139b5ffedc32c900cf64b4312eb Certificate serial: 019B23639F05438848348BBB11A43B9604B1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U7EFBlwNkTm1_-3DLJAM9ktDEus.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/81c091-0a4e-4005-be22-a7e86453abcd/1/U7EFBlwNkTm1_-3DLJAM9ktDEus.mft Manifest number: 177A Signing time: Mon 15 Dec 2025 19:01:29 +0000 Manifest this update: Mon 15 Dec 2025 19:01:29 +0000 Manifest next update: Tue 16 Dec 2025 19:01:29 +0000 Files and hashes: 1: U7EFBlwNkTm1_-3DLJAM9ktDEus.crl (hash: QJigDpwAAy4HWRSPUpQajMZIgS/xboto2OJ7lU4Eorc=) 2: dXA2sXCeF-zEI-_J4kU7kczSGDo.roa (hash: yLUH5uzp/Ib7vlJR5HEnjKQN0s3hZM+CwSBPhsePj6Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/81c091-0a4e-4005-be22-a7e86453abcd/1/U7EFBlwNkTm1_-3DLJAM9ktDEus.crl rsync://rpki.ripe.net/repository/DEFAULT/90/81c091-0a4e-4005-be22-a7e86453abcd/1/U7EFBlwNkTm1_-3DLJAM9ktDEus.mft rsync://rpki.ripe.net/repository/DEFAULT/U7EFBlwNkTm1_-3DLJAM9ktDEus.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 15:30:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:23:63:9f:05:43:88:48:34:8b:bb:11:a4:3b:96:04:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53b105065c0d9139b5ffedc32c900cf64b4312eb Validity Not Before: Dec 15 19:01:29 2025 GMT Not After : Dec 16 19:01:29 2025 GMT Subject: CN=3995aee4d67621291244270fc158d2e0c3a272db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:6e:16:23:1c:94:98:65:70:81:e5:4f:15:d6: fd:0a:ed:ee:f9:48:a7:07:2d:a2:89:28:b6:fb:b1: a6:40:de:e2:71:0a:76:4b:cb:5a:f3:70:89:fe:1a: 84:c4:20:ba:98:49:b2:90:f7:54:ea:01:bc:4b:95: 3e:e0:06:72:90:f0:7b:04:52:e3:57:de:81:d5:b0: 9a:40:f7:16:12:c5:e7:06:e9:6d:0d:34:53:bc:c4: 6e:64:df:c9:76:e6:cd:4a:97:4e:07:1b:74:a7:10: 72:7a:a0:d2:94:2a:3b:1b:a9:e2:e8:ce:fe:b5:b4: 4c:21:9e:5a:49:34:dc:09:d7:07:d3:ae:5c:4e:20: 86:9d:61:1a:03:13:a6:b5:df:4c:41:39:9a:43:c2: a9:aa:a2:fc:09:b6:2a:bf:55:a3:f6:67:14:c7:35: 42:08:3a:d9:3c:fe:e2:5d:16:5b:be:b8:8e:92:f7: a1:64:58:bd:a7:a0:23:1a:ad:49:13:52:fc:13:a9: 79:a2:ca:37:fe:39:60:a6:97:4d:6f:16:e7:23:ca: 28:12:3a:4e:a2:55:eb:f6:83:5d:7a:2c:99:c2:74: f0:ff:63:fc:04:5e:e4:27:24:8e:b6:0f:92:c5:a8: 74:d1:b3:19:be:58:6c:5a:d2:65:02:0a:e8:4a:da: fa:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:95:AE:E4:D6:76:21:29:12:44:27:0F:C1:58:D2:E0:C3:A2:72:DB X509v3 Authority Key Identifier: keyid:53:B1:05:06:5C:0D:91:39:B5:FF:ED:C3:2C:90:0C:F6:4B:43:12:EB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U7EFBlwNkTm1_-3DLJAM9ktDEus.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/81c091-0a4e-4005-be22-a7e86453abcd/1/U7EFBlwNkTm1_-3DLJAM9ktDEus.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/90/81c091-0a4e-4005-be22-a7e86453abcd/1/U7EFBlwNkTm1_-3DLJAM9ktDEus.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 94:35:b8:46:92:49:b4:dc:1a:cc:9a:8b:c9:63:2a:fa:02:66: 32:2b:8e:74:c6:65:64:ba:57:45:44:4a:f6:d7:59:48:b2:ef: 37:b2:6a:6f:85:d8:4f:f1:a5:5a:69:6c:c0:2a:fa:a8:b0:ab: c2:f4:02:20:08:50:b0:09:35:c4:f5:42:70:7e:04:2a:4d:3d: 7c:eb:a6:40:ed:6c:17:58:a6:c9:c0:f8:65:d6:b2:dc:e6:b9: bc:11:35:dd:da:63:24:2d:7a:52:5a:b2:a6:b9:bb:de:05:24: cd:b8:29:38:d7:4f:52:53:45:9c:ca:f7:c6:74:c2:d0:72:f3: 79:90:b3:bb:07:b0:7e:a2:14:ab:5d:b8:de:59:c3:33:eb:8d: aa:80:b7:bc:2a:ee:c2:cb:86:9b:9e:11:c5:34:6b:93:cc:cb: 0b:17:69:62:fb:a3:30:01:cf:85:a7:57:2a:8b:3c:86:6f:fb: d9:47:03:04:0e:5d:27:7f:e6:f2:c4:0f:dc:a5:d8:46:dd:c8: 7d:8c:2b:9f:29:10:85:1d:d5:a7:d2:5a:f5:37:23:68:a0:20: a8:a2:a8:b0:78:e1:c3:84:5f:3e:88:e3:f9:0e:3d:96:6e:f1: 64:df:e1:b0:49:39:ec:a6:d9:0b:87:12:e9:bb:ba:1b:b6:9e: 57:98:ee:ea -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsjY58FQ4hINIu7EaQ7lgSxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzYjEwNTA2NWMwZDkxMzliNWZmZWRjMzJjOTAwY2Y2NGI0 MzEyZWIwHhcNMjUxMjE1MTkwMTI5WhcNMjUxMjE2MTkwMTI5WjAzMTEwLwYDVQQD EygzOTk1YWVlNGQ2NzYyMTI5MTI0NDI3MGZjMTU4ZDJlMGMzYTI3MmRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqm4WIxyUmGVwgeVPFdb9Cu3u+Uin By2iiSi2+7GmQN7icQp2S8ta83CJ/hqExCC6mEmykPdU6gG8S5U+4AZykPB7BFLj V96B1bCaQPcWEsXnBultDTRTvMRuZN/JdubNSpdOBxt0pxByeqDSlCo7G6ni6M7+ tbRMIZ5aSTTcCdcH065cTiCGnWEaAxOmtd9MQTmaQ8KpqqL8CbYqv1Wj9mcUxzVC CDrZPP7iXRZbvriOkvehZFi9p6AjGq1JE1L8E6l5oso3/jlgppdNbxbnI8ooEjpO olXr9oNdeiyZwnTw/2P8BF7kJySOtg+Sxah00bMZvlhsWtJlAgroStr6AwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDmVruTWdiEpEkQnD8FY0uDDonLbMB8GA1UdIwQY MBaAFFOxBQZcDZE5tf/twyyQDPZLQxLrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVTdFRkJsd05rVG0xXy0zRExKQU05a3RERXVzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC84MWMwOTEtMGE0ZS00MDA1LWJlMjIt YTdlODY0NTNhYmNkLzEvVTdFRkJsd05rVG0xXy0zRExKQU05a3RERXVzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MC84MWMwOTEtMGE0ZS00MDA1LWJlMjItYTdlODY0NTNhYmNk LzEvVTdFRkJsd05rVG0xXy0zRExKQU05a3RERXVzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlDW4RpJJ tNwazJqLyWMq+gJmMiuOdMZlZLpXRURK9tdZSLLvN7Jqb4XYT/GlWmlswCr6qLCr wvQCIAhQsAk1xPVCcH4EKk09fOumQO1sF1imycD4Zday3Oa5vBE13dpjJC16Ulqy prm73gUkzbgpONdPUlNFnMr3xnTC0HLzeZCzuwewfqIUq1243lnDM+uNqoC3vCru wsuGm54RxTRrk8zLCxdpYvujMAHPhadXKos8hm/72UcDBA5dJ3/m8sQP3KXYRt3I fYwrnykQhR3Vp9Ja9TcjaKAgqKKosHjhw4RfPojj+Q49lm7xZN/hsEk57KbZC4cS 6bu6G7aeV5ju6g== -----END CERTIFICATE-----Generated at Mon Dec 15 20:46:28 2025 by rpki-client