This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.mft File: U3h815RuENiGRqx53lfMbsWeQTI.mft (raw, json) Hash identifier: 4A/qsR+PYIiLouDclDn3D3XW7F+DMMkPYII414vsKoU= Subject key identifier: 6C:D0:B0:BE:FC:BA:46:B2:2B:38:AD:E7:C3:FC:3F:80:E7:D4:51:A7 Authority key identifier: 53:78:7C:D7:94:6E:10:D8:86:46:AC:79:DE:57:CC:6E:C5:9E:41:32 Certificate issuer: /CN=53787cd7946e10d88646ac79de57cc6ec59e4132 Certificate serial: 019B2107713D273C0BBA059440935381AE41 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U3h815RuENiGRqx53lfMbsWeQTI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.mft Manifest number: 1428 Signing time: Mon 15 Dec 2025 08:01:34 +0000 Manifest this update: Mon 15 Dec 2025 08:01:34 +0000 Manifest next update: Tue 16 Dec 2025 08:01:34 +0000 Files and hashes: 1: Gb_tS4tDYUhq7ZFBBu6bXOHKxSQ.roa (hash: j+ql1A+cPykDsn/U+bRsvn2rorjyFgGlp+mF0Qt3tRQ=) 2: U3h815RuENiGRqx53lfMbsWeQTI.crl (hash: IAjLuY6c+kcDAO61rHEbMyfG2/Hy9Z+5UaTboju1sgk=) 3: aDocXw9aAWTC2tonweXjSXZoNMs.roa (hash: M6NywDoKFY4uKrDQ3WCmTb7f59Ph9hBt6rzgbYZvGvU=) 4: dqRRF9NrCy7kpjHElym2fRaWWpg.roa (hash: yVbcvUrGd5qHEf8kKaXL1t+AGyhms8ILF9sbmeot86I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.crl rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.mft rsync://rpki.ripe.net/repository/DEFAULT/U3h815RuENiGRqx53lfMbsWeQTI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 08:01:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:21:07:71:3d:27:3c:0b:ba:05:94:40:93:53:81:ae:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53787cd7946e10d88646ac79de57cc6ec59e4132 Validity Not Before: Dec 15 08:01:34 2025 GMT Not After : Dec 16 08:01:34 2025 GMT Subject: CN=6cd0b0befcba46b22b38ade7c3fc3f80e7d451a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:b8:0f:40:62:a9:07:7b:36:c7:13:ca:06:e6: 81:4a:04:8b:7f:49:e5:f2:e9:a7:75:f7:18:57:b5: fe:58:37:c4:35:ab:b5:e9:64:fe:b6:a8:bf:d5:3b: bb:b3:6e:37:20:dd:eb:70:f9:d3:09:82:cd:de:b8: df:c3:8d:5f:bd:77:d4:ef:6a:98:41:b8:cd:8a:9d: 5d:af:38:54:3a:8e:5e:54:8a:56:1d:b8:51:df:d6: f5:b5:e5:04:0c:0b:93:17:08:29:c7:5a:16:88:54: a6:86:56:4a:a7:f3:a2:75:46:ee:5f:fb:a0:e7:d6: 23:1c:d1:e6:a6:3a:f1:8b:2d:55:cb:97:23:a9:a2: e7:b1:7c:be:15:dc:2c:8a:9e:8f:0e:de:5b:da:b1: 27:59:7e:b4:a2:cd:b2:0f:90:28:70:fa:45:29:dc: c1:99:c8:ad:68:af:96:d6:07:3f:a7:0e:62:60:36: e5:c3:4d:5b:80:ff:8b:24:14:41:fe:87:e6:15:be: e1:17:f4:b6:41:e3:bd:19:83:75:50:e9:c0:5d:9e: 84:02:f1:c0:1c:bd:67:24:50:69:2b:91:b4:de:5f: eb:61:91:ef:2c:1a:75:ce:65:dc:75:a3:c8:7d:b4: 86:7e:e1:fd:9f:13:7e:e7:e1:32:b8:58:0a:58:42: 55:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:D0:B0:BE:FC:BA:46:B2:2B:38:AD:E7:C3:FC:3F:80:E7:D4:51:A7 X509v3 Authority Key Identifier: keyid:53:78:7C:D7:94:6E:10:D8:86:46:AC:79:DE:57:CC:6E:C5:9E:41:32 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U3h815RuENiGRqx53lfMbsWeQTI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c77825-68a3-4b3e-bc90-523fd86a07c7/1/U3h815RuENiGRqx53lfMbsWeQTI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ad:29:77:26:7b:53:23:e9:3a:65:f2:2b:f4:b8:c7:37:e6:b1: d7:af:cf:03:bb:a6:61:18:c5:b5:53:69:68:94:83:33:d2:93: 5d:17:75:68:74:24:9a:66:ae:ad:bc:9b:96:03:94:11:4e:d5: 4d:c8:6b:d0:f1:7e:08:fd:35:2a:9a:2e:25:37:bf:75:d0:a2: dc:9c:c7:6f:35:3a:13:92:50:3e:58:3a:2c:83:e0:61:b6:4a: 49:d0:64:8d:75:4e:97:2b:df:b3:07:ab:35:ce:53:c8:48:99: ff:f2:f4:57:84:3d:05:e4:d4:7e:a5:ba:23:f7:0a:e0:56:ff: fd:bd:90:5c:e9:b8:32:eb:eb:07:6a:7d:82:dd:0b:98:e8:20: ef:81:b0:0e:42:24:e2:a1:48:ea:9b:69:e4:6f:e5:5c:19:5d: 92:33:34:2b:aa:1c:19:c2:a4:fe:41:89:d3:07:25:0c:c4:de: c2:f2:4f:64:34:12:40:0d:a4:0b:64:97:75:4a:02:49:cb:a2: 21:70:83:fa:ea:17:7a:35:5a:f0:ec:4d:83:be:c1:09:23:48: 25:c4:77:ca:e7:e7:7e:36:4b:3b:9f:28:e5:8a:99:82:70:e2: cc:9a:a1:57:f3:c5:f5:fc:0d:3d:22:81:ca:99:bc:67:9a:18: bb:e3:82:1c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZshB3E9JzwLugWUQJNTga5BMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzNzg3Y2Q3OTQ2ZTEwZDg4NjQ2YWM3OWRlNTdjYzZlYzU5 ZTQxMzIwHhcNMjUxMjE1MDgwMTM0WhcNMjUxMjE2MDgwMTM0WjAzMTEwLwYDVQQD Eyg2Y2QwYjBiZWZjYmE0NmIyMmIzOGFkZTdjM2ZjM2Y4MGU3ZDQ1MWE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmLgPQGKpB3s2xxPKBuaBSgSLf0nl 8umndfcYV7X+WDfENau16WT+tqi/1Tu7s243IN3rcPnTCYLN3rjfw41fvXfU72qY QbjNip1drzhUOo5eVIpWHbhR39b1teUEDAuTFwgpx1oWiFSmhlZKp/OidUbuX/ug 59YjHNHmpjrxiy1Vy5cjqaLnsXy+Fdwsip6PDt5b2rEnWX60os2yD5AocPpFKdzB mcitaK+W1gc/pw5iYDblw01bgP+LJBRB/ofmFb7hF/S2QeO9GYN1UOnAXZ6EAvHA HL1nJFBpK5G03l/rYZHvLBp1zmXcdaPIfbSGfuH9nxN+5+EyuFgKWEJVeQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGzQsL78ukayKzit58P8P4Dn1FGnMB8GA1UdIwQY MBaAFFN4fNeUbhDYhkased5XzG7FnkEyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVTNoODE1UnVFTmlHUnF4NTNsZk1ic1dlUVRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi9jNzc4MjUtNjhhMy00YjNlLWJjOTAt NTIzZmQ4NmEwN2M3LzEvVTNoODE1UnVFTmlHUnF4NTNsZk1ic1dlUVRJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi9jNzc4MjUtNjhhMy00YjNlLWJjOTAtNTIzZmQ4NmEwN2M3 LzEvVTNoODE1UnVFTmlHUnF4NTNsZk1ic1dlUVRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArSl3JntT I+k6ZfIr9LjHN+ax16/PA7umYRjFtVNpaJSDM9KTXRd1aHQkmmaurbyblgOUEU7V Tchr0PF+CP01KpouJTe/ddCi3JzHbzU6E5JQPlg6LIPgYbZKSdBkjXVOlyvfswer Nc5TyEiZ//L0V4Q9BeTUfqW6I/cK4Fb//b2QXOm4MuvrB2p9gt0LmOgg74GwDkIk 4qFI6ptp5G/lXBldkjM0K6ocGcKk/kGJ0wclDMTewvJPZDQSQA2kC2SXdUoCScui IXCD+uoXejVa8OxNg77BCSNIJcR3yufnfjZLO58o5YqZgnDizJqhV/PF9fwNPSKB ypm8Z5oYu+OCHA== -----END CERTIFICATE-----Generated at Mon Dec 15 16:34:02 2025 by rpki-client