This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft File: uhzvb56e3EXjzSjvQCUZeVLUYOk.mft (raw, json) Hash identifier: esboCrCxReuiE9c70aE0dTL4lKSwndzGJ0Qw75kxVoE= Subject key identifier: 28:D5:63:BA:30:2E:E5:00:E6:3F:BC:6F:36:90:1A:91:1B:5C:C3:CF Authority key identifier: BA:1C:EF:6F:9E:9E:DC:45:E3:CD:28:EF:40:25:19:79:52:D4:60:E9 Certificate issuer: /CN=ba1cef6f9e9edc45e3cd28ef4025197952d460e9 Certificate serial: 019B19BC42456493243CA6CC03540E2FF63F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uhzvb56e3EXjzSjvQCUZeVLUYOk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft Manifest number: 0DA7 Signing time: Sat 13 Dec 2025 22:02:06 +0000 Manifest this update: Sat 13 Dec 2025 22:02:06 +0000 Manifest next update: Sun 14 Dec 2025 22:02:06 +0000 Files and hashes: 1: uhzvb56e3EXjzSjvQCUZeVLUYOk.crl (hash: HveL/2sWhdW90ZZQVZff9VVFhE4lbUUjFJSagmnuGhk=) 2: yBgRtAUy9SDMB2oNfVg6DWBcxdo.roa (hash: th+et5jSmKPB56Gge2PfFSgmFKaHL/juuWVdT7KzSfo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.crl rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft rsync://rpki.ripe.net/repository/DEFAULT/uhzvb56e3EXjzSjvQCUZeVLUYOk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 17:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:19:bc:42:45:64:93:24:3c:a6:cc:03:54:0e:2f:f6:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba1cef6f9e9edc45e3cd28ef4025197952d460e9 Validity Not Before: Dec 13 22:02:06 2025 GMT Not After : Dec 14 22:02:06 2025 GMT Subject: CN=28d563ba302ee500e63fbc6f36901a911b5cc3cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:94:ad:17:03:b1:1d:55:c6:8c:11:8c:e5:4f: 3f:9e:bf:97:6e:e6:7c:72:c9:fb:7d:0f:2a:88:a6: 0b:5e:8e:df:df:19:e8:f9:f4:a3:7e:e9:2f:a1:1e: 58:e8:05:95:2f:46:a8:e9:27:9a:49:73:fb:c1:22: 38:93:c6:f9:f5:98:f8:5d:75:fe:e6:bf:42:dd:c2: bc:81:ca:1d:63:ed:1e:6c:dc:14:0e:5a:eb:a0:13: 70:8a:08:00:25:d3:c7:b4:3b:49:90:fd:17:f0:53: 67:19:4b:ae:40:b1:b9:48:be:0a:d2:48:ec:97:e2: 7f:16:df:cc:30:e3:69:ea:04:2f:93:c6:81:b4:12: 41:af:88:c7:44:50:0e:30:55:f5:20:2e:ea:2f:ff: fe:b7:4e:a1:1c:3e:1d:9e:a5:c5:6b:f5:86:7b:42: 68:99:3a:fb:e7:41:eb:95:1a:78:38:68:31:f8:0d: 09:16:e4:8a:8c:d2:3f:5a:8d:06:b4:39:99:5a:b7: b1:77:f7:d3:fa:5f:c8:bd:e0:34:d8:2a:f4:48:4d: a5:e6:d4:89:e0:fb:62:96:61:da:84:94:c4:1c:4a: 57:7a:b0:76:58:d5:70:bd:10:b7:d3:22:c8:1b:be: 59:03:8d:a0:c8:e8:04:85:a6:03:27:59:07:04:e0: 1d:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:D5:63:BA:30:2E:E5:00:E6:3F:BC:6F:36:90:1A:91:1B:5C:C3:CF X509v3 Authority Key Identifier: keyid:BA:1C:EF:6F:9E:9E:DC:45:E3:CD:28:EF:40:25:19:79:52:D4:60:E9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uhzvb56e3EXjzSjvQCUZeVLUYOk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/21d663-6874-489c-ab9e-d9ca03e66ffb/1/uhzvb56e3EXjzSjvQCUZeVLUYOk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 73:8f:4d:d5:0e:31:41:d7:47:90:6c:d1:90:2d:03:3a:52:90: d8:b3:27:27:db:db:37:bd:1c:e9:c4:f4:f5:e1:31:ae:91:ff: b5:80:aa:10:72:16:bb:e6:77:fb:41:67:33:e2:bb:3d:ba:a9: d2:82:2c:e6:37:27:d1:55:17:b7:69:22:8a:dd:73:8f:c9:16: 48:32:a7:63:f8:76:bf:61:41:e9:1e:f4:95:d9:c4:f3:72:d8: 5f:89:75:e0:96:25:6e:9e:38:0a:af:51:35:7b:70:6a:af:f0: 03:3b:9c:69:c8:e0:46:c8:8c:73:87:d4:1c:95:59:e4:13:b6: ed:ec:35:d8:ea:3a:46:79:fe:23:26:5f:ac:0a:6d:21:0f:59: 04:e2:5f:fd:f4:04:87:ab:bb:4b:89:8b:a4:ae:9a:16:a5:54: 4b:15:4f:f8:98:2f:f8:80:53:f9:c6:0c:e1:c6:1f:1c:86:01: 1c:a6:f4:69:88:69:67:c1:87:4e:24:44:5a:0c:c1:e0:a1:93: d0:ce:b3:1a:01:0b:b3:ca:1e:ac:e3:ec:69:2a:27:2d:db:91: 0d:bc:0a:72:ff:d0:b4:3f:97:ff:ab:4c:1d:16:50:fe:cd:39: e3:1a:d1:fa:a9:e3:7c:de:16:dd:e1:f6:59:d1:f4:e9:e5:74: 01:c1:be:48 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsZvEJFZJMkPKbMA1QOL/Y/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhMWNlZjZmOWU5ZWRjNDVlM2NkMjhlZjQwMjUxOTc5NTJk NDYwZTkwHhcNMjUxMjEzMjIwMjA2WhcNMjUxMjE0MjIwMjA2WjAzMTEwLwYDVQQD EygyOGQ1NjNiYTMwMmVlNTAwZTYzZmJjNmYzNjkwMWE5MTFiNWNjM2NmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA65StFwOxHVXGjBGM5U8/nr+XbuZ8 csn7fQ8qiKYLXo7f3xno+fSjfukvoR5Y6AWVL0ao6SeaSXP7wSI4k8b59Zj4XXX+ 5r9C3cK8gcodY+0ebNwUDlrroBNwiggAJdPHtDtJkP0X8FNnGUuuQLG5SL4K0kjs l+J/Ft/MMONp6gQvk8aBtBJBr4jHRFAOMFX1IC7qL//+t06hHD4dnqXFa/WGe0Jo mTr750HrlRp4OGgx+A0JFuSKjNI/Wo0GtDmZWrexd/fT+l/IveA02Cr0SE2l5tSJ 4PtilmHahJTEHEpXerB2WNVwvRC30yLIG75ZA42gyOgEhaYDJ1kHBOAd4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCjVY7owLuUA5j+8bzaQGpEbXMPPMB8GA1UdIwQY MBaAFLoc72+entxF480o70AlGXlS1GDpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdWh6dmI1NmUzRVhqelNqdlFDVVplVkxVWU9rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC8yMWQ2NjMtNjg3NC00ODljLWFiOWUt ZDljYTAzZTY2ZmZiLzEvdWh6dmI1NmUzRVhqelNqdlFDVVplVkxVWU9rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNC8yMWQ2NjMtNjg3NC00ODljLWFiOWUtZDljYTAzZTY2ZmZi LzEvdWh6dmI1NmUzRVhqelNqdlFDVVplVkxVWU9rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAc49N1Q4x QddHkGzRkC0DOlKQ2LMnJ9vbN70c6cT09eExrpH/tYCqEHIWu+Z3+0FnM+K7Pbqp 0oIs5jcn0VUXt2kiit1zj8kWSDKnY/h2v2FB6R70ldnE83LYX4l14JYlbp44Cq9R NXtwaq/wAzucacjgRsiMc4fUHJVZ5BO27ew12Oo6Rnn+IyZfrAptIQ9ZBOJf/fQE h6u7S4mLpK6aFqVUSxVP+Jgv+IBT+cYM4cYfHIYBHKb0aYhpZ8GHTiREWgzB4KGT 0M6zGgELs8oerOPsaSonLduRDbwKcv/QtD+X/6tMHRZQ/s054xrR+qnjfN4W3eH2 WdH06eV0AcG+SA== -----END CERTIFICATE-----Generated at Sun Dec 14 00:02:58 2025 by rpki-client