This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft File: UGF1T3aJFp9qFQZQlUcmcrorRYk.mft (raw, json) Hash identifier: hchMyciXW/+vSnBnbz6E9xpCp02b+/PLvuI6uB53cR8= Subject key identifier: 52:D6:40:9F:03:24:65:B1:B0:57:AB:41:35:50:9B:B5:BA:93:25:06 Authority key identifier: 50:61:75:4F:76:89:16:9F:6A:15:06:50:95:47:26:72:BA:2B:45:89 Certificate issuer: /CN=5061754f7689169f6a15065095472672ba2b4589 Certificate serial: 019B35324719E46516D9FE8F268270692221 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UGF1T3aJFp9qFQZQlUcmcrorRYk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft Manifest number: 0EF8 Signing time: Fri 19 Dec 2025 06:00:45 +0000 Manifest this update: Fri 19 Dec 2025 06:00:45 +0000 Manifest next update: Sat 20 Dec 2025 06:00:45 +0000 Files and hashes: 1: UGF1T3aJFp9qFQZQlUcmcrorRYk.crl (hash: SCbv/sSwKBZdqL1DJGmjS7Yn0Va0/Mo1FVvrGRWEAxs=) 2: yiSfs72_nEyzYSAodCILSS2FNUg.roa (hash: S9gHpNvUCJD2H4bcxuT5WWB4Uck7rHXNRIxCLUlb2hE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.crl rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft rsync://rpki.ripe.net/repository/DEFAULT/UGF1T3aJFp9qFQZQlUcmcrorRYk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:35:32:47:19:e4:65:16:d9:fe:8f:26:82:70:69:22:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5061754f7689169f6a15065095472672ba2b4589 Validity Not Before: Dec 19 06:00:45 2025 GMT Not After : Dec 20 06:00:45 2025 GMT Subject: CN=52d6409f032465b1b057ab4135509bb5ba932506 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:35:58:29:d8:ab:3a:b5:ea:0a:46:7c:11:62: ae:ef:85:5d:c5:4f:6c:52:13:5e:b0:7b:08:9d:fc: 7e:ce:38:1a:92:26:87:46:4e:5d:85:32:49:6b:84: f5:a1:a6:5e:07:b1:21:eb:23:03:98:c8:39:9e:09: c6:d3:90:28:b6:d5:af:84:85:02:48:29:49:fc:2b: 12:2c:5d:6a:a5:1e:1d:3e:a2:c8:4a:8b:37:16:41: b7:36:25:6c:17:91:53:5f:13:72:af:f3:51:1a:8e: a8:8b:f1:fa:71:b3:33:75:9b:7f:aa:4d:8e:86:be: fd:57:3c:63:d6:36:18:f3:52:c5:68:1c:8e:70:cb: 82:10:d2:01:72:19:b8:9c:3e:48:be:f9:2b:25:88: 02:0e:91:59:9c:33:aa:d2:73:81:f9:8b:0f:a3:a3: 8d:ec:da:ba:ce:f5:61:15:ef:71:91:67:db:7b:2a: 4d:9c:b2:bd:f2:dd:db:7f:bf:52:b3:5b:1f:e8:34: b4:75:f5:05:57:d6:2f:ca:69:16:95:72:bb:3b:c9: 01:3e:33:86:6a:71:9f:70:e8:a8:5d:34:af:e7:9e: 83:7a:ae:9f:4d:a0:4f:32:ff:f8:4d:79:c3:5a:5b: 53:5c:8d:d3:ec:af:1a:b5:c2:b6:c4:f4:4d:f3:39: 0e:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:D6:40:9F:03:24:65:B1:B0:57:AB:41:35:50:9B:B5:BA:93:25:06 X509v3 Authority Key Identifier: keyid:50:61:75:4F:76:89:16:9F:6A:15:06:50:95:47:26:72:BA:2B:45:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UGF1T3aJFp9qFQZQlUcmcrorRYk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/3b59d5-602d-4351-96bc-a108649d51e2/1/UGF1T3aJFp9qFQZQlUcmcrorRYk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 03:59:52:e3:57:03:50:cf:bc:c4:6f:f2:e7:e4:c1:4c:3d:fc: 84:1e:f1:04:fd:94:e2:16:93:0b:af:93:f6:1b:d2:08:08:b9: 26:79:b9:aa:5d:73:fe:f1:ab:28:94:07:f7:1c:07:82:fb:5e: b2:3d:7c:20:72:02:a1:03:85:c1:43:b7:25:b8:60:eb:fe:4c: 8d:02:3f:c8:ed:e3:14:88:07:49:66:bb:f8:27:b2:c3:91:f7: 9d:5c:45:86:be:fd:d4:87:fe:71:16:73:f5:df:5e:99:06:a1: 98:23:cd:b4:57:01:e6:3a:42:f4:93:b6:b2:da:16:43:55:1e: 86:26:f7:21:33:5b:ea:7f:51:41:31:7e:f2:c6:94:00:ee:53: b8:af:b2:dc:66:14:f0:05:4c:b8:db:10:0f:dc:1b:54:14:53: b2:66:52:a2:f1:de:e4:fa:8e:19:04:db:27:d0:a7:d9:8a:40: af:fb:eb:b6:8e:fa:38:b3:0c:6e:d8:cc:f9:ae:99:1f:9a:2c: 63:42:cf:53:91:2b:ce:2a:af:2d:ed:f0:80:0a:4f:af:64:26: 0b:61:44:6c:ed:72:1a:67:0c:95:eb:25:14:c4:85:a6:b0:5d: 42:9b:2c:6d:b5:ab:5d:26:db:66:2c:4d:29:b5:06:80:e8:e7: b0:4e:e3:8a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs1MkcZ5GUW2f6PJoJwaSIhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUwNjE3NTRmNzY4OTE2OWY2YTE1MDY1MDk1NDcyNjcyYmEy YjQ1ODkwHhcNMjUxMjE5MDYwMDQ1WhcNMjUxMjIwMDYwMDQ1WjAzMTEwLwYDVQQD Eyg1MmQ2NDA5ZjAzMjQ2NWIxYjA1N2FiNDEzNTUwOWJiNWJhOTMyNTA2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyzVYKdirOrXqCkZ8EWKu74VdxU9s UhNesHsInfx+zjgakiaHRk5dhTJJa4T1oaZeB7Eh6yMDmMg5ngnG05AottWvhIUC SClJ/CsSLF1qpR4dPqLISos3FkG3NiVsF5FTXxNyr/NRGo6oi/H6cbMzdZt/qk2O hr79Vzxj1jYY81LFaByOcMuCENIBchm4nD5IvvkrJYgCDpFZnDOq0nOB+YsPo6ON 7Nq6zvVhFe9xkWfbeypNnLK98t3bf79Ss1sf6DS0dfUFV9YvymkWlXK7O8kBPjOG anGfcOioXTSv556Deq6fTaBPMv/4TXnDWltTXI3T7K8atcK2xPRN8zkOPQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFLWQJ8DJGWxsFerQTVQm7W6kyUGMB8GA1UdIwQY MBaAFFBhdU92iRafahUGUJVHJnK6K0WJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVUdGMVQzYUpGcDlxRlFaUWxVY21jcm9yUllrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi8zYjU5ZDUtNjAyZC00MzUxLTk2YmMt YTEwODY0OWQ1MWUyLzEvVUdGMVQzYUpGcDlxRlFaUWxVY21jcm9yUllrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi8zYjU5ZDUtNjAyZC00MzUxLTk2YmMtYTEwODY0OWQ1MWUy LzEvVUdGMVQzYUpGcDlxRlFaUWxVY21jcm9yUllrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAA1lS41cD UM+8xG/y5+TBTD38hB7xBP2U4haTC6+T9hvSCAi5Jnm5ql1z/vGrKJQH9xwHgvte sj18IHICoQOFwUO3Jbhg6/5MjQI/yO3jFIgHSWa7+Ceyw5H3nVxFhr791If+cRZz 9d9emQahmCPNtFcB5jpC9JO2stoWQ1Uehib3ITNb6n9RQTF+8saUAO5TuK+y3GYU 8AVMuNsQD9wbVBRTsmZSovHe5PqOGQTbJ9Cn2YpAr/vrto76OLMMbtjM+a6ZH5os Y0LPU5ErziqvLe3wgApPr2QmC2FEbO1yGmcMleslFMSFprBdQpssbbWrXSbbZixN KbUGgOjnsE7jig== -----END CERTIFICATE-----Generated at Fri Dec 19 08:10:22 2025 by rpki-client