This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.mft File: UFPH2pyP_-pc7ZenmQIA1L7uQXc.mft (raw, json) Hash identifier: +I7DB4FqIg6uUKT9Sc5v05Rf1R3sO1S23whZeGJLOqI= Subject key identifier: F4:C8:28:69:65:3C:4D:14:BE:6B:3D:2A:E5:51:93:6B:60:0B:C5:0F Authority key identifier: 50:53:C7:DA:9C:8F:FF:EA:5C:ED:97:A7:99:02:00:D4:BE:EE:41:77 Certificate issuer: /CN=5053c7da9c8fffea5ced97a7990200d4beee4177 Certificate serial: 019B5A88424AC5C16883E85662E3B32ACAEC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFPH2pyP_-pc7ZenmQIA1L7uQXc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.mft Manifest number: 06E3 Signing time: Fri 26 Dec 2025 12:00:37 +0000 Manifest this update: Fri 26 Dec 2025 12:00:37 +0000 Manifest next update: Sat 27 Dec 2025 12:00:37 +0000 Files and hashes: 1: CtRLEvt809yNddQQC3-YdVEz8S0.roa (hash: iOnEw767paDA6G2cUVNf8J3Qp7lK0IUOS20QbdMgtb4=) 2: UFPH2pyP_-pc7ZenmQIA1L7uQXc.crl (hash: 7Z6qKzLPWDZyJgNjn6+tBapdCPnFKaf7I0HPotbOMEA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.crl rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.mft rsync://rpki.ripe.net/repository/DEFAULT/UFPH2pyP_-pc7ZenmQIA1L7uQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:88:42:4a:c5:c1:68:83:e8:56:62:e3:b3:2a:ca:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5053c7da9c8fffea5ced97a7990200d4beee4177 Validity Not Before: Dec 26 12:00:37 2025 GMT Not After : Dec 27 12:00:37 2025 GMT Subject: CN=f4c82869653c4d14be6b3d2ae551936b600bc50f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:8b:7c:d9:4f:74:2a:f7:2b:96:4f:8c:72:15: 8d:af:3c:72:1a:2e:8e:48:3c:a0:51:c8:00:73:9f: 56:a8:c7:cb:27:4b:f0:0e:dd:de:41:5e:0b:98:a5: 0b:71:e0:61:fb:ad:ae:0c:72:5f:31:87:6a:82:db: 12:c1:94:cd:d9:bb:c2:6e:43:af:93:bb:7c:17:51: bb:71:c6:b0:5f:af:7d:16:c5:01:a8:fc:ce:4a:1e: 26:d6:10:5b:9c:35:c8:9a:32:11:48:25:e2:26:68: c4:68:18:da:b5:4c:54:d5:a9:a1:48:be:a2:70:c0: 4c:b4:53:6e:2b:c2:29:fa:b6:47:56:00:b3:ac:47: 73:47:e3:db:a2:f2:93:c6:91:9f:13:d4:9b:cc:2e: dd:99:a2:01:da:1f:35:93:13:47:9f:67:82:98:3e: 4b:66:b0:b9:7f:79:12:1e:91:88:70:a4:fc:72:66: d8:74:ec:50:48:4f:62:6f:b0:a1:ca:72:d6:0d:4d: 2c:89:aa:56:87:78:47:93:4e:9c:5b:9c:f5:92:4d: 46:f3:23:ef:40:51:be:6f:7c:03:8a:cb:09:a5:4e: 9e:d7:96:19:fe:ca:45:96:76:c0:91:cf:08:da:de: 82:f6:dc:d9:10:76:72:e0:00:60:26:f8:19:4e:c6: 80:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:C8:28:69:65:3C:4D:14:BE:6B:3D:2A:E5:51:93:6B:60:0B:C5:0F X509v3 Authority Key Identifier: keyid:50:53:C7:DA:9C:8F:FF:EA:5C:ED:97:A7:99:02:00:D4:BE:EE:41:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFPH2pyP_-pc7ZenmQIA1L7uQXc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 50:20:8f:2f:53:5e:ca:48:b2:a7:92:24:c8:c6:0d:65:12:85: ae:de:9f:48:74:7d:11:48:a9:2f:0e:fe:72:53:95:85:01:a4: 15:75:44:e7:42:87:ff:6d:0f:20:c8:be:55:ee:a2:3c:95:f3: 48:72:54:03:be:4b:89:78:e5:07:59:6c:4d:70:da:31:a8:ef: 56:53:48:f6:12:c0:b1:8f:9a:61:72:f8:08:08:50:92:25:b0: 23:8d:04:64:09:0a:91:5f:2e:24:c4:53:cf:3d:92:c4:5f:d0: ee:6f:eb:83:20:60:42:ce:a6:7d:91:56:79:5b:18:12:56:8e: bf:f3:6b:a2:32:aa:9a:68:e3:9c:cc:0b:00:98:ec:ab:62:4b: 62:74:3c:2b:98:ed:b0:e5:06:7c:dc:06:1e:bc:62:6b:99:7d: 07:18:89:7d:1a:a8:3c:73:b6:6b:9c:05:e2:b9:0c:b8:cc:72: a8:fb:27:33:b4:d7:a6:d3:a5:97:17:54:d5:51:85:65:23:54: 19:ab:a4:51:37:93:60:4d:6a:02:8c:0c:2c:94:f7:cb:f5:dc: d7:96:31:09:96:ed:e1:49:43:7e:c0:89:27:ef:c8:44:4e:3d: ed:f5:56:58:86:de:d2:ed:8f:85:38:9a:61:63:1d:31:ac:5b: 39:ec:15:9d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtaiEJKxcFog+hWYuOzKsrsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUwNTNjN2RhOWM4ZmZmZWE1Y2VkOTdhNzk5MDIwMGQ0YmVl ZTQxNzcwHhcNMjUxMjI2MTIwMDM3WhcNMjUxMjI3MTIwMDM3WjAzMTEwLwYDVQQD EyhmNGM4Mjg2OTY1M2M0ZDE0YmU2YjNkMmFlNTUxOTM2YjYwMGJjNTBmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtIt82U90Kvcrlk+MchWNrzxyGi6O SDygUcgAc59WqMfLJ0vwDt3eQV4LmKULceBh+62uDHJfMYdqgtsSwZTN2bvCbkOv k7t8F1G7ccawX699FsUBqPzOSh4m1hBbnDXImjIRSCXiJmjEaBjatUxU1amhSL6i cMBMtFNuK8Ip+rZHVgCzrEdzR+PbovKTxpGfE9SbzC7dmaIB2h81kxNHn2eCmD5L ZrC5f3kSHpGIcKT8cmbYdOxQSE9ib7ChynLWDU0siapWh3hHk06cW5z1kk1G8yPv QFG+b3wDissJpU6e15YZ/spFlnbAkc8I2t6C9tzZEHZy4ABgJvgZTsaA0QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPTIKGllPE0Uvms9KuVRk2tgC8UPMB8GA1UdIwQY MBaAFFBTx9qcj//qXO2Xp5kCANS+7kF3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVUZQSDJweVBfLXBjN1plbm1RSUExTDd1UVhjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy8wZjhjZTctY2E5Ni00MzViLTg1NzQt YWM2MjBkYTJmODdlLzEvVUZQSDJweVBfLXBjN1plbm1RSUExTDd1UVhjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNy8wZjhjZTctY2E5Ni00MzViLTg1NzQtYWM2MjBkYTJmODdl LzEvVUZQSDJweVBfLXBjN1plbm1RSUExTDd1UVhjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUCCPL1Ne ykiyp5IkyMYNZRKFrt6fSHR9EUipLw7+clOVhQGkFXVE50KH/20PIMi+Ve6iPJXz SHJUA75LiXjlB1lsTXDaMajvVlNI9hLAsY+aYXL4CAhQkiWwI40EZAkKkV8uJMRT zz2SxF/Q7m/rgyBgQs6mfZFWeVsYElaOv/NrojKqmmjjnMwLAJjsq2JLYnQ8K5jt sOUGfNwGHrxia5l9BxiJfRqoPHO2a5wF4rkMuMxyqPsnM7TXptOllxdU1VGFZSNU GaukUTeTYE1qAowMLJT3y/Xc15YxCZbt4UlDfsCJJ+/IRE497fVWWIbe0u2PhTia YWMdMaxbOewVnQ== -----END CERTIFICATE-----Generated at Fri Dec 26 14:06:25 2025 by rpki-client