This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/0d3b2b-e304-4d61-b6d0-27e8f4f1c684/1/U-qhnKJ6b1fyy7TkY3ILQ2rxfeo.mft File: U-qhnKJ6b1fyy7TkY3ILQ2rxfeo.mft (raw, json) Hash identifier: eUkqaxdCRAmU95hqSiIUy6LLqMA4NnTu+el6JFV9pvk= Subject key identifier: 92:6E:E0:DE:69:3A:2B:FE:E8:4A:4A:FA:9E:9B:FA:30:DD:7C:64:94 Authority key identifier: 53:EA:A1:9C:A2:7A:6F:57:F2:CB:B4:E4:63:72:0B:43:6A:F1:7D:EA Certificate issuer: /CN=53eaa19ca27a6f57f2cbb4e463720b436af17dea Certificate serial: 019B2F67A08B25033B814EEA89451295D297 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U-qhnKJ6b1fyy7TkY3ILQ2rxfeo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/0d3b2b-e304-4d61-b6d0-27e8f4f1c684/1/U-qhnKJ6b1fyy7TkY3ILQ2rxfeo.mft Manifest number: 0764 Signing time: Thu 18 Dec 2025 03:01:18 +0000 Manifest this update: Thu 18 Dec 2025 03:01:18 +0000 Manifest next update: Fri 19 Dec 2025 03:01:18 +0000 Files and hashes: 1: HoEt4y6zf8w5L0OHd11vl-inukI.roa (hash: 470AufFFRZgA9ydBk/s9OXGNkkDkg7YffxaoQosYMko=) 2: U-qhnKJ6b1fyy7TkY3ILQ2rxfeo.crl (hash: YALx8OOJyI6E6Qv9FeC7eWdaoKUrCI4honM7uszA5Yg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/0d3b2b-e304-4d61-b6d0-27e8f4f1c684/1/U-qhnKJ6b1fyy7TkY3ILQ2rxfeo.crl rsync://rpki.ripe.net/repository/DEFAULT/f7/0d3b2b-e304-4d61-b6d0-27e8f4f1c684/1/U-qhnKJ6b1fyy7TkY3ILQ2rxfeo.mft rsync://rpki.ripe.net/repository/DEFAULT/U-qhnKJ6b1fyy7TkY3ILQ2rxfeo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 03:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2f:67:a0:8b:25:03:3b:81:4e:ea:89:45:12:95:d2:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53eaa19ca27a6f57f2cbb4e463720b436af17dea Validity Not Before: Dec 18 03:01:18 2025 GMT Not After : Dec 19 03:01:18 2025 GMT Subject: CN=926ee0de693a2bfee84a4afa9e9bfa30dd7c6494 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:21:28:25:3b:0c:10:c7:1e:a2:33:62:16:1e: cc:0b:09:1c:42:05:b5:b1:49:54:72:94:8f:67:c8: 99:5f:c7:0b:fe:32:04:2a:b6:4d:77:14:33:a4:ad: a6:53:7d:dc:48:e0:8d:ca:ac:03:b7:51:28:c9:a2: 17:83:14:11:ee:cf:9f:74:29:bc:d9:5a:4b:7f:a5: eb:c8:06:ed:97:47:04:29:3a:c9:f1:38:73:e3:e6: 49:cd:75:97:57:06:c5:d4:a4:46:f0:3b:69:a2:3b: eb:82:9b:0e:03:ac:70:5b:8b:70:c7:b4:fa:9a:9b: 21:68:d5:11:3e:4b:70:f8:56:05:81:a0:a4:7e:90: 13:9e:6b:5b:65:fb:ca:15:63:3f:ff:f6:eb:f3:49: 51:21:09:ae:1f:b4:d2:97:00:0d:1f:86:2b:b0:22: 46:b6:f8:5a:ff:61:b5:30:b1:91:9e:9d:9c:57:5b: b5:3e:e6:4a:d9:2b:f3:3b:04:50:02:bf:cd:63:b5: c3:d7:28:05:90:dd:49:a7:b6:9d:c4:0b:3c:c3:95: ed:c6:d8:f9:fd:21:b2:82:e0:e4:dc:de:4a:f1:ac: fa:fc:9c:b0:36:ef:2c:66:2c:f3:f3:15:45:72:f2: 5a:01:9b:49:44:43:69:e3:6f:ed:b1:1b:30:43:96: 05:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:6E:E0:DE:69:3A:2B:FE:E8:4A:4A:FA:9E:9B:FA:30:DD:7C:64:94 X509v3 Authority Key Identifier: keyid:53:EA:A1:9C:A2:7A:6F:57:F2:CB:B4:E4:63:72:0B:43:6A:F1:7D:EA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U-qhnKJ6b1fyy7TkY3ILQ2rxfeo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/0d3b2b-e304-4d61-b6d0-27e8f4f1c684/1/U-qhnKJ6b1fyy7TkY3ILQ2rxfeo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/0d3b2b-e304-4d61-b6d0-27e8f4f1c684/1/U-qhnKJ6b1fyy7TkY3ILQ2rxfeo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 74:02:d3:2d:2c:79:c2:22:a4:43:71:ba:b3:05:58:77:c5:6b: 6f:8d:c1:a5:7b:6a:e8:1c:d1:e9:4c:f2:d6:29:5f:f5:e9:f2: b5:f7:7f:8f:ab:ab:b0:01:b9:27:cd:5b:0d:56:b8:5a:1a:fc: ea:17:fa:18:00:4b:e4:7b:03:3d:0f:04:76:36:94:6c:19:4a: 22:e9:fd:4c:be:75:71:a8:79:0c:82:73:dd:05:cc:4e:76:1f: b6:09:95:84:09:4e:35:34:aa:ec:db:61:26:69:e4:27:b5:fc: 90:cf:96:aa:57:a7:ef:43:65:6e:3b:33:22:4b:ed:5e:3e:43: d5:32:9b:ba:00:6f:34:dd:26:1f:09:99:8b:88:45:74:c3:52: 51:5f:f7:6d:f4:c3:16:f6:76:99:34:52:1b:22:2f:84:e4:f7: f9:4a:56:3b:f6:59:f1:2a:2c:ac:67:12:8a:ab:ad:8f:92:42: 9b:47:85:38:20:c0:48:d8:fb:14:58:e2:78:4d:ea:fe:ea:c1: a6:1b:6b:76:27:98:27:61:56:65:a1:ca:0c:52:b7:8b:ce:2a: dd:76:f9:c7:cb:c2:c5:2a:c8:a6:29:e5:65:09:ef:0e:f2:32: 42:8a:80:47:8f:c4:56:0c:9b:4a:2b:ee:df:c2:40:c8:7d:f1: ca:cb:8d:6e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsvZ6CLJQM7gU7qiUUSldKXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzZWFhMTljYTI3YTZmNTdmMmNiYjRlNDYzNzIwYjQzNmFm MTdkZWEwHhcNMjUxMjE4MDMwMTE4WhcNMjUxMjE5MDMwMTE4WjAzMTEwLwYDVQQD Eyg5MjZlZTBkZTY5M2EyYmZlZTg0YTRhZmE5ZTliZmEzMGRkN2M2NDk0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzSEoJTsMEMceojNiFh7MCwkcQgW1 sUlUcpSPZ8iZX8cL/jIEKrZNdxQzpK2mU33cSOCNyqwDt1EoyaIXgxQR7s+fdCm8 2VpLf6XryAbtl0cEKTrJ8Thz4+ZJzXWXVwbF1KRG8DtpojvrgpsOA6xwW4twx7T6 mpshaNURPktw+FYFgaCkfpATnmtbZfvKFWM///br80lRIQmuH7TSlwANH4YrsCJG tvha/2G1MLGRnp2cV1u1PuZK2SvzOwRQAr/NY7XD1ygFkN1Jp7adxAs8w5Xtxtj5 /SGyguDk3N5K8az6/JywNu8sZizz8xVFcvJaAZtJRENp42/tsRswQ5YFjwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJJu4N5pOiv+6EpK+p6b+jDdfGSUMB8GA1UdIwQY MBaAFFPqoZyiem9X8su05GNyC0Nq8X3qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVS1xaG5LSjZiMWZ5eTdUa1kzSUxRMnJ4ZmVvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy8wZDNiMmItZTMwNC00ZDYxLWI2ZDAt MjdlOGY0ZjFjNjg0LzEvVS1xaG5LSjZiMWZ5eTdUa1kzSUxRMnJ4ZmVvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNy8wZDNiMmItZTMwNC00ZDYxLWI2ZDAtMjdlOGY0ZjFjNjg0 LzEvVS1xaG5LSjZiMWZ5eTdUa1kzSUxRMnJ4ZmVvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdALTLSx5 wiKkQ3G6swVYd8Vrb43BpXtq6BzR6Uzy1ilf9enytfd/j6ursAG5J81bDVa4Whr8 6hf6GABL5HsDPQ8EdjaUbBlKIun9TL51cah5DIJz3QXMTnYftgmVhAlONTSq7Nth JmnkJ7X8kM+Wqlen70NlbjszIkvtXj5D1TKbugBvNN0mHwmZi4hFdMNSUV/3bfTD FvZ2mTRSGyIvhOT3+UpWO/ZZ8SosrGcSiqutj5JCm0eFOCDASNj7FFjieE3q/urB phtrdieYJ2FWZaHKDFK3i84q3Xb5x8vCxSrIpinlZQnvDvIyQoqAR4/EVgybSivu 38JAyH3xysuNbg== -----END CERTIFICATE-----Generated at Thu Dec 18 08:00:44 2025 by rpki-client