This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/351efb-ac27-4957-b896-93b79beccc53/1/USGZZlSgu08AhYxAKoILtkvglUc.mft File: USGZZlSgu08AhYxAKoILtkvglUc.mft (raw, json) Hash identifier: 0jG8/lM5fx2dVXiMMAu7Up8IIal4ttq9eghsSvrwcwY= Subject key identifier: 99:96:11:D7:D1:42:07:1D:50:F6:69:22:2C:DE:8D:74:89:4E:0F:B4 Authority key identifier: 51:21:99:66:54:A0:BB:4F:00:85:8C:40:2A:82:0B:B6:4B:E0:95:47 Certificate issuer: /CN=5121996654a0bb4f00858c402a820bb64be09547 Certificate serial: 019B5976C1EC5C56F44EF082E4B23D049B50 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/USGZZlSgu08AhYxAKoILtkvglUc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/351efb-ac27-4957-b896-93b79beccc53/1/USGZZlSgu08AhYxAKoILtkvglUc.mft Manifest number: 0A16 Signing time: Fri 26 Dec 2025 07:01:53 +0000 Manifest this update: Fri 26 Dec 2025 07:01:53 +0000 Manifest next update: Sat 27 Dec 2025 07:01:53 +0000 Files and hashes: 1: USGZZlSgu08AhYxAKoILtkvglUc.crl (hash: AitXhxCUXnKtTBNsw2ZSeqoZ6LeOWkWsmcWqPLE6jyM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/351efb-ac27-4957-b896-93b79beccc53/1/USGZZlSgu08AhYxAKoILtkvglUc.crl rsync://rpki.ripe.net/repository/DEFAULT/d5/351efb-ac27-4957-b896-93b79beccc53/1/USGZZlSgu08AhYxAKoILtkvglUc.mft rsync://rpki.ripe.net/repository/DEFAULT/USGZZlSgu08AhYxAKoILtkvglUc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:76:c1:ec:5c:56:f4:4e:f0:82:e4:b2:3d:04:9b:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5121996654a0bb4f00858c402a820bb64be09547 Validity Not Before: Dec 26 07:01:53 2025 GMT Not After : Dec 27 07:01:53 2025 GMT Subject: CN=999611d7d142071d50f669222cde8d74894e0fb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:eb:b8:79:fb:a6:5e:c2:a7:42:08:4e:85:85: fa:97:51:66:bc:3a:ad:a7:7c:c5:e9:22:f4:69:77: 98:8f:86:e4:37:d4:6f:5e:88:02:f4:52:7f:f5:35: e2:7e:12:d5:6f:fa:94:22:c9:4a:12:14:31:49:02: 18:f8:09:ee:26:6e:ab:51:e1:aa:1a:56:f3:70:e0: 09:78:1d:8b:67:36:ec:0e:1c:a7:f6:2c:59:02:8a: 75:40:14:98:4b:4f:f8:aa:52:1c:6c:54:5b:6e:f8: 80:f3:fc:94:74:3b:06:a4:af:d4:12:84:bf:59:01: 59:b3:b6:84:fb:a7:9e:f4:91:24:1b:87:01:37:ca: f0:02:7b:b2:7b:4f:5d:94:07:23:57:e9:af:be:15: 2f:ae:b6:da:14:ae:24:99:a9:09:d6:8a:25:40:69: bd:4d:1c:99:dc:d3:84:52:23:86:30:e2:11:49:fe: 0e:32:7a:55:c5:bd:a7:e9:3c:46:e5:7a:4c:a7:bb: 3b:f9:43:28:b2:77:6b:9c:95:cd:cd:d6:42:f6:8e: d4:63:1d:86:56:e1:6f:e5:3b:13:58:a0:39:37:17: 38:bb:3c:cd:fa:3c:17:2b:41:bd:e4:8d:ed:61:4a: 3c:81:22:78:0d:23:74:db:89:c0:b5:7c:fc:6d:0a: 9a:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:96:11:D7:D1:42:07:1D:50:F6:69:22:2C:DE:8D:74:89:4E:0F:B4 X509v3 Authority Key Identifier: keyid:51:21:99:66:54:A0:BB:4F:00:85:8C:40:2A:82:0B:B6:4B:E0:95:47 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/USGZZlSgu08AhYxAKoILtkvglUc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/351efb-ac27-4957-b896-93b79beccc53/1/USGZZlSgu08AhYxAKoILtkvglUc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/351efb-ac27-4957-b896-93b79beccc53/1/USGZZlSgu08AhYxAKoILtkvglUc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 75:8c:1c:7c:0c:d3:d1:86:d8:77:5f:a5:22:47:d3:a9:d3:88: c4:6a:ab:88:ee:0b:35:18:d1:34:6c:02:71:6d:ba:45:5d:a9: 52:c0:79:22:65:e1:6f:76:a8:1a:98:b1:2f:cd:5c:cb:e3:59: da:b9:eb:4d:71:2e:a3:83:81:37:13:7d:e8:33:d6:f6:4f:f3: 45:99:7a:98:f6:c0:0e:a4:3e:74:60:8a:5e:46:07:1c:65:b5: 36:2c:05:0a:9a:1f:eb:26:71:88:86:5d:a7:a9:c6:e1:01:14: dd:88:60:18:12:b5:60:60:38:80:b2:30:e6:45:a3:4f:dc:5f: 1a:ee:ae:e7:a2:49:af:f6:5e:ce:f9:ce:b7:14:70:dd:d2:e1: f7:e2:e5:d3:64:e7:a7:ca:0a:f7:f8:25:21:48:8e:d8:b2:47: 55:b1:e4:8b:da:4d:68:cb:30:23:ac:e2:5b:32:a4:e1:84:5a: 64:2c:21:22:81:32:f3:18:8b:4e:43:10:d1:2b:0d:3a:55:f3: 7e:7c:ad:82:fb:40:6f:0b:24:1a:8e:6f:13:22:56:73:8c:d3: 96:99:f1:14:09:39:fe:1c:dd:f3:6b:02:41:70:41:32:41:48: d7:8e:ef:bf:2c:7a:07:13:b8:04:68:41:ea:5d:21:66:1a:b4: 6c:b9:ce:3f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZdsHsXFb0TvCC5LI9BJtQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUxMjE5OTY2NTRhMGJiNGYwMDg1OGM0MDJhODIwYmI2NGJl MDk1NDcwHhcNMjUxMjI2MDcwMTUzWhcNMjUxMjI3MDcwMTUzWjAzMTEwLwYDVQQD Eyg5OTk2MTFkN2QxNDIwNzFkNTBmNjY5MjIyY2RlOGQ3NDg5NGUwZmI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Ou4efumXsKnQghOhYX6l1FmvDqt p3zF6SL0aXeYj4bkN9RvXogC9FJ/9TXifhLVb/qUIslKEhQxSQIY+AnuJm6rUeGq GlbzcOAJeB2LZzbsDhyn9ixZAop1QBSYS0/4qlIcbFRbbviA8/yUdDsGpK/UEoS/ WQFZs7aE+6ee9JEkG4cBN8rwAnuye09dlAcjV+mvvhUvrrbaFK4kmakJ1oolQGm9 TRyZ3NOEUiOGMOIRSf4OMnpVxb2n6TxG5XpMp7s7+UMosndrnJXNzdZC9o7UYx2G VuFv5TsTWKA5Nxc4uzzN+jwXK0G95I3tYUo8gSJ4DSN024nAtXz8bQqaUwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJmWEdfRQgcdUPZpIizejXSJTg+0MB8GA1UdIwQY MBaAFFEhmWZUoLtPAIWMQCqCC7ZL4JVHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVVNHWlpsU2d1MDhBaFl4QUtvSUx0a3ZnbFVjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS8zNTFlZmItYWMyNy00OTU3LWI4OTYt OTNiNzliZWNjYzUzLzEvVVNHWlpsU2d1MDhBaFl4QUtvSUx0a3ZnbFVjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNS8zNTFlZmItYWMyNy00OTU3LWI4OTYtOTNiNzliZWNjYzUz LzEvVVNHWlpsU2d1MDhBaFl4QUtvSUx0a3ZnbFVjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdYwcfAzT 0YbYd1+lIkfTqdOIxGqriO4LNRjRNGwCcW26RV2pUsB5ImXhb3aoGpixL81cy+NZ 2rnrTXEuo4OBNxN96DPW9k/zRZl6mPbADqQ+dGCKXkYHHGW1NiwFCpof6yZxiIZd p6nG4QEU3YhgGBK1YGA4gLIw5kWjT9xfGu6u56JJr/ZezvnOtxRw3dLh9+Ll02Tn p8oK9/glIUiO2LJHVbHki9pNaMswI6ziWzKk4YRaZCwhIoEy8xiLTkMQ0SsNOlXz fnytgvtAbwskGo5vEyJWc4zTlpnxFAk5/hzd82sCQXBBMkFI147vvyx6BxO4BGhB 6l0hZhq0bLnOPw== -----END CERTIFICATE-----Generated at Fri Dec 26 15:46:21 2025 by rpki-client