This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/6de2dc-ecd2-4af8-bb0a-3d08aabd5e9b/1/UtlINdtX9r4TjoZPWT7mrai4PtA.mft File: UtlINdtX9r4TjoZPWT7mrai4PtA.mft (raw, json) Hash identifier: U3icB6jZDQMyRKX2SbWjHsfQk1qUEzKGnsreQ5aD69s= Subject key identifier: B5:29:27:EB:77:EA:B2:2A:44:78:88:7D:22:8F:81:C5:6D:97:81:79 Authority key identifier: 52:D9:48:35:DB:57:F6:BE:13:8E:86:4F:59:3E:E6:AD:A8:B8:3E:D0 Certificate issuer: /CN=52d94835db57f6be138e864f593ee6ada8b83ed0 Certificate serial: 019B5975E8C673B20F8175E61D100D6EE600 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UtlINdtX9r4TjoZPWT7mrai4PtA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/6de2dc-ecd2-4af8-bb0a-3d08aabd5e9b/1/UtlINdtX9r4TjoZPWT7mrai4PtA.mft Manifest number: 024B Signing time: Fri 26 Dec 2025 07:00:58 +0000 Manifest this update: Fri 26 Dec 2025 07:00:58 +0000 Manifest next update: Sat 27 Dec 2025 07:00:58 +0000 Files and hashes: 1: UtlINdtX9r4TjoZPWT7mrai4PtA.crl (hash: C0vd/Bi2TUOBctUC9wZ/Ase0Q1pcNmvnbQjCBwJGEEo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/6de2dc-ecd2-4af8-bb0a-3d08aabd5e9b/1/UtlINdtX9r4TjoZPWT7mrai4PtA.crl rsync://rpki.ripe.net/repository/DEFAULT/f1/6de2dc-ecd2-4af8-bb0a-3d08aabd5e9b/1/UtlINdtX9r4TjoZPWT7mrai4PtA.mft rsync://rpki.ripe.net/repository/DEFAULT/UtlINdtX9r4TjoZPWT7mrai4PtA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:75:e8:c6:73:b2:0f:81:75:e6:1d:10:0d:6e:e6:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52d94835db57f6be138e864f593ee6ada8b83ed0 Validity Not Before: Dec 26 07:00:58 2025 GMT Not After : Dec 27 07:00:58 2025 GMT Subject: CN=b52927eb77eab22a4478887d228f81c56d978179 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:89:2c:0d:8e:71:75:b7:83:33:25:fc:4e:ec: d1:1a:3f:fb:4e:9b:58:93:ce:81:af:45:96:4e:01: 3f:74:71:22:39:f4:20:7b:73:98:1b:34:21:b5:0f: dc:a5:41:32:8e:da:6e:43:b5:cf:13:5f:fb:1c:a4: 27:6c:5b:23:ba:0c:9f:fa:46:43:73:ac:87:6a:c7: 6b:31:5f:18:8d:9d:9f:45:55:d2:df:42:ba:72:bd: 44:51:df:3a:12:80:25:75:1b:5a:b1:a1:bd:a9:72: bc:25:27:a4:fa:de:0b:72:3e:cc:4a:b5:fa:e9:f7: 27:06:66:8c:38:47:22:d6:fe:1f:dd:f4:ec:c1:7c: 3c:e4:0b:d1:47:d9:e9:5d:1d:20:d7:93:92:f4:de: 49:00:fd:98:44:65:ae:fd:0e:71:f7:f3:6c:50:bd: 8a:d1:6e:bd:62:75:c2:76:0e:38:1f:d0:9b:e3:c6: 46:31:ae:72:be:5a:81:dd:c8:62:17:2a:a0:e4:86: bd:53:23:95:59:0c:c1:f3:56:b7:d3:39:33:de:f4: 99:9a:0d:99:38:18:89:f1:a8:b2:08:e2:8b:01:b5: 8d:af:db:2e:6f:ec:ec:aa:52:0e:e1:1f:5b:8f:97: 2e:6e:36:79:be:b7:2a:79:08:a7:49:a1:eb:99:88: ad:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:29:27:EB:77:EA:B2:2A:44:78:88:7D:22:8F:81:C5:6D:97:81:79 X509v3 Authority Key Identifier: keyid:52:D9:48:35:DB:57:F6:BE:13:8E:86:4F:59:3E:E6:AD:A8:B8:3E:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UtlINdtX9r4TjoZPWT7mrai4PtA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/6de2dc-ecd2-4af8-bb0a-3d08aabd5e9b/1/UtlINdtX9r4TjoZPWT7mrai4PtA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/6de2dc-ecd2-4af8-bb0a-3d08aabd5e9b/1/UtlINdtX9r4TjoZPWT7mrai4PtA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 71:80:88:7a:4b:c0:0d:48:b3:bc:48:47:51:15:9d:e0:ae:3c: e4:7a:67:f8:a5:0e:d1:c3:df:46:ca:1c:1e:9d:b2:aa:e3:80: 19:0c:4b:1b:b1:98:bd:50:8d:71:7a:aa:38:b7:d9:57:9b:90: 6e:90:da:fc:18:2c:23:17:7d:ad:e6:7c:61:22:42:7b:9c:6e: 92:5a:f4:c2:35:e6:4e:a7:e4:cc:e7:b4:f9:90:a4:47:03:a3: d4:88:eb:bf:3f:d7:d8:6e:3e:3f:92:d0:2f:7c:80:d5:c0:b0: 61:07:81:00:69:c8:bf:87:a8:b1:39:05:df:56:3b:4d:54:2c: 07:26:df:bd:24:80:16:fb:bc:c2:56:3e:d7:ff:d2:bf:c9:a9: 04:a2:c2:ad:5a:0d:1b:bb:13:da:ee:a7:d1:7a:aa:73:e5:0f: a4:b0:1d:53:e0:dd:40:2d:d2:12:e4:93:aa:4c:04:51:b3:88: 94:09:ac:cf:22:6f:c4:01:97:90:12:49:d1:67:de:cd:fc:11: ce:ed:dd:bf:3b:b2:1e:be:88:8e:63:67:23:7d:d9:fc:c7:3b: 2d:44:fe:6a:65:6d:09:0b:5b:2d:85:18:4c:f4:90:8b:f7:6b: cd:66:d3:78:fe:2c:5f:3c:84:f0:42:da:1a:7d:8c:75:10:7d: 51:ec:30:cd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZdejGc7IPgXXmHRANbuYAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyZDk0ODM1ZGI1N2Y2YmUxMzhlODY0ZjU5M2VlNmFkYThi ODNlZDAwHhcNMjUxMjI2MDcwMDU4WhcNMjUxMjI3MDcwMDU4WjAzMTEwLwYDVQQD EyhiNTI5MjdlYjc3ZWFiMjJhNDQ3ODg4N2QyMjhmODFjNTZkOTc4MTc5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkIksDY5xdbeDMyX8TuzRGj/7TptY k86Br0WWTgE/dHEiOfQge3OYGzQhtQ/cpUEyjtpuQ7XPE1/7HKQnbFsjugyf+kZD c6yHasdrMV8YjZ2fRVXS30K6cr1EUd86EoAldRtasaG9qXK8JSek+t4Lcj7MSrX6 6fcnBmaMOEci1v4f3fTswXw85AvRR9npXR0g15OS9N5JAP2YRGWu/Q5x9/NsUL2K 0W69YnXCdg44H9Cb48ZGMa5yvlqB3chiFyqg5Ia9UyOVWQzB81a30zkz3vSZmg2Z OBiJ8aiyCOKLAbWNr9sub+zsqlIO4R9bj5cubjZ5vrcqeQinSaHrmYitCwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLUpJ+t36rIqRHiIfSKPgcVtl4F5MB8GA1UdIwQY MBaAFFLZSDXbV/a+E46GT1k+5q2ouD7QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXRsSU5kdFg5cjRUam9aUFdUN21yYWk0UHRBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS82ZGUyZGMtZWNkMi00YWY4LWJiMGEt M2QwOGFhYmQ1ZTliLzEvVXRsSU5kdFg5cjRUam9aUFdUN21yYWk0UHRBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMS82ZGUyZGMtZWNkMi00YWY4LWJiMGEtM2QwOGFhYmQ1ZTli LzEvVXRsSU5kdFg5cjRUam9aUFdUN21yYWk0UHRBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcYCIekvA DUizvEhHURWd4K485Hpn+KUO0cPfRsocHp2yquOAGQxLG7GYvVCNcXqqOLfZV5uQ bpDa/BgsIxd9reZ8YSJCe5xuklr0wjXmTqfkzOe0+ZCkRwOj1Ijrvz/X2G4+P5LQ L3yA1cCwYQeBAGnIv4eosTkF31Y7TVQsBybfvSSAFvu8wlY+1//Sv8mpBKLCrVoN G7sT2u6n0Xqqc+UPpLAdU+DdQC3SEuSTqkwEUbOIlAmszyJvxAGXkBJJ0WfezfwR zu3dvzuyHr6IjmNnI33Z/Mc7LUT+amVtCQtbLYUYTPSQi/drzWbTeP4sXzyE8ELa Gn2MdRB9UewwzQ== -----END CERTIFICATE-----Generated at Fri Dec 26 14:05:54 2025 by rpki-client