This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft File: uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft (raw, json) Hash identifier: 5byXXcznXQwaPeKB/DEtp+SJmzJcBtvq3BiLuqbO/XY= Subject key identifier: A6:66:77:62:CE:AC:DB:B3:B1:67:65:DC:75:D9:61:1F:4C:5E:7F:E8 Authority key identifier: B9:09:07:CE:E4:FA:C5:0F:37:53:62:2A:D2:1A:98:9A:E7:74:1C:47 Certificate issuer: /CN=b90907cee4fac50f3753622ad21a989ae7741c47 Certificate serial: 019B59E46B7760CE4431EADEDAE9497B825D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uQkHzuT6xQ83U2Iq0hqYmud0HEc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft Manifest number: 1499 Signing time: Fri 26 Dec 2025 09:01:40 +0000 Manifest this update: Fri 26 Dec 2025 09:01:40 +0000 Manifest next update: Sat 27 Dec 2025 09:01:40 +0000 Files and hashes: 1: uQkHzuT6xQ83U2Iq0hqYmud0HEc.crl (hash: ijwq5mdJlRzU7l9REXhog/9WMAXMVSgqonGQm74zjow=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft rsync://rpki.ripe.net/repository/DEFAULT/uQkHzuT6xQ83U2Iq0hqYmud0HEc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:e4:6b:77:60:ce:44:31:ea:de:da:e9:49:7b:82:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b90907cee4fac50f3753622ad21a989ae7741c47 Validity Not Before: Dec 26 09:01:40 2025 GMT Not After : Dec 27 09:01:40 2025 GMT Subject: CN=a6667762ceacdbb3b16765dc75d9611f4c5e7fe8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:79:74:cd:74:8a:14:42:b8:0b:f8:b1:e1:30: 67:55:b0:b3:5d:ce:79:9f:c2:bd:cb:2b:d5:81:99: 38:92:dc:3a:3c:3b:49:2b:70:f7:d2:92:48:97:55: 4b:f3:af:5c:27:af:f8:8f:0d:1a:de:19:cf:d3:b7: 04:36:83:87:52:bf:9c:3f:b8:8d:49:8d:d6:86:76: 61:35:dd:a0:14:0d:77:b8:b2:98:fa:0b:b6:88:79: 0f:96:ec:e5:04:7f:28:c7:6d:5d:63:dd:a2:d2:d6: 7c:06:0e:75:bd:fa:e0:87:25:65:4f:90:96:b9:53: 9e:da:b0:76:5f:fb:bc:fa:77:84:2f:22:68:4b:ca: 06:0e:b1:49:3f:cd:05:3b:95:b7:44:b7:bb:6e:c8: 9e:38:45:bd:0c:30:49:d7:06:be:7a:56:de:73:80: 61:01:0b:38:fc:8c:6d:74:31:c5:0d:1c:9b:e8:09: d7:65:2f:c7:ab:cc:e9:90:c6:80:20:b4:70:ed:8f: 47:4a:d5:bd:6f:8b:39:b2:14:cb:16:30:4c:80:12: d1:8e:be:77:f6:c2:b8:2e:fa:4b:09:9a:45:73:d3: 33:03:fe:3f:a3:54:a7:f0:1d:e1:88:e9:b7:70:ff: 9c:5c:42:ad:84:84:56:0f:11:db:06:18:9e:a0:c6: c8:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:66:77:62:CE:AC:DB:B3:B1:67:65:DC:75:D9:61:1F:4C:5E:7F:E8 X509v3 Authority Key Identifier: keyid:B9:09:07:CE:E4:FA:C5:0F:37:53:62:2A:D2:1A:98:9A:E7:74:1C:47 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uQkHzuT6xQ83U2Iq0hqYmud0HEc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/3c16d2-d290-47fb-911d-5996cae9d115/1/uQkHzuT6xQ83U2Iq0hqYmud0HEc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:6e:83:97:f4:ff:54:19:95:31:2a:5e:9a:34:8e:d7:ff:ac: c0:ca:38:f4:3b:16:66:f6:bd:cc:07:e1:b0:f9:53:51:b1:f5: 61:42:30:00:bf:38:9a:cc:c0:99:94:6a:6c:99:f0:07:48:8e: 90:84:5c:fe:b3:9e:88:7e:d7:bc:92:cb:57:98:0d:e4:e4:1f: 21:27:1d:29:11:de:e1:66:53:2b:62:0d:38:16:36:c2:e7:20: 26:96:7e:75:70:13:bc:49:57:14:e6:ee:e7:55:cc:71:04:21: d2:c6:0e:85:be:a1:c8:00:16:46:b9:72:50:9d:e5:41:01:d4: 40:c3:a0:c6:35:fb:45:29:c5:3a:ce:db:00:1a:9f:94:af:9c: ff:35:c0:69:23:41:e6:65:56:ed:b1:6e:26:a7:42:6a:c6:1b: d5:b5:a0:f4:6d:f7:8b:c2:e9:58:51:dc:f8:00:28:8e:b2:13: c4:dd:d7:c1:a7:34:d3:1f:56:63:28:8a:80:28:11:f6:d4:13: 17:db:a1:17:d5:65:24:8d:33:c0:c4:f7:80:f8:f5:a7:76:03: 53:b3:6e:3a:f7:0c:6b:90:da:c1:b8:96:bf:2c:f2:2f:01:a3: 5b:17:e8:57:46:02:87:2a:ab:ee:28:86:4a:2f:6b:73:72:93: 44:5a:f6:63 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZ5Gt3YM5EMere2ulJe4JdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI5MDkwN2NlZTRmYWM1MGYzNzUzNjIyYWQyMWE5ODlhZTc3 NDFjNDcwHhcNMjUxMjI2MDkwMTQwWhcNMjUxMjI3MDkwMTQwWjAzMTEwLwYDVQQD EyhhNjY2Nzc2MmNlYWNkYmIzYjE2NzY1ZGM3NWQ5NjExZjRjNWU3ZmU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr3l0zXSKFEK4C/ix4TBnVbCzXc55 n8K9yyvVgZk4ktw6PDtJK3D30pJIl1VL869cJ6/4jw0a3hnP07cENoOHUr+cP7iN SY3WhnZhNd2gFA13uLKY+gu2iHkPluzlBH8ox21dY92i0tZ8Bg51vfrghyVlT5CW uVOe2rB2X/u8+neELyJoS8oGDrFJP80FO5W3RLe7bsieOEW9DDBJ1wa+elbec4Bh AQs4/IxtdDHFDRyb6AnXZS/Hq8zpkMaAILRw7Y9HStW9b4s5shTLFjBMgBLRjr53 9sK4LvpLCZpFc9MzA/4/o1Sn8B3hiOm3cP+cXEKthIRWDxHbBhieoMbIWQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKZmd2LOrNuzsWdl3HXZYR9MXn/oMB8GA1UdIwQY MBaAFLkJB87k+sUPN1NiKtIamJrndBxHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdVFrSHp1VDZ4UTgzVTJJcTBocVltdWQwSEVjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zYzE2ZDItZDI5MC00N2ZiLTkxMWQt NTk5NmNhZTlkMTE1LzEvdVFrSHp1VDZ4UTgzVTJJcTBocVltdWQwSEVjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zYzE2ZDItZDI5MC00N2ZiLTkxMWQtNTk5NmNhZTlkMTE1 LzEvdVFrSHp1VDZ4UTgzVTJJcTBocVltdWQwSEVjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX26Dl/T/ VBmVMSpemjSO1/+swMo49DsWZva9zAfhsPlTUbH1YUIwAL84mszAmZRqbJnwB0iO kIRc/rOeiH7XvJLLV5gN5OQfIScdKRHe4WZTK2INOBY2wucgJpZ+dXATvElXFObu 51XMcQQh0sYOhb6hyAAWRrlyUJ3lQQHUQMOgxjX7RSnFOs7bABqflK+c/zXAaSNB 5mVW7bFuJqdCasYb1bWg9G33i8LpWFHc+AAojrITxN3Xwac00x9WYyiKgCgR9tQT F9uhF9VlJI0zwMT3gPj1p3YDU7NuOvcMa5DawbiWvyzyLwGjWxfoV0YChyqr7iiG Si9rc3KTRFr2Yw== -----END CERTIFICATE-----Generated at Fri Dec 26 14:17:32 2025 by rpki-client