This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/1d457b-40bd-448f-a915-20c8ab92696f/1/U4sGLLVCbwDmU3Pu9OTNihwn9o4.mft File: U4sGLLVCbwDmU3Pu9OTNihwn9o4.mft (raw, json) Hash identifier: 1gxbD9VUUQdYpYl/V1BaAAHzz+OY9Ohc0poWLhLyXno= Subject key identifier: 5E:93:BA:BB:43:98:CC:3B:CD:69:D5:51:BD:5D:1E:1F:EC:4B:BE:0A Authority key identifier: 53:8B:06:2C:B5:42:6F:00:E6:53:73:EE:F4:E4:CD:8A:1C:27:F6:8E Certificate issuer: /CN=538b062cb5426f00e65373eef4e4cd8a1c27f68e Certificate serial: 019B59775327131D246F6A48B99AF3839664 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U4sGLLVCbwDmU3Pu9OTNihwn9o4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/1d457b-40bd-448f-a915-20c8ab92696f/1/U4sGLLVCbwDmU3Pu9OTNihwn9o4.mft Manifest number: 1794 Signing time: Fri 26 Dec 2025 07:02:30 +0000 Manifest this update: Fri 26 Dec 2025 07:02:30 +0000 Manifest next update: Sat 27 Dec 2025 07:02:30 +0000 Files and hashes: 1: U4sGLLVCbwDmU3Pu9OTNihwn9o4.crl (hash: 4YcPJLh0cc9qQsckygYcnjx8pCqNLBhCkzYuiJwwvBo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/1d457b-40bd-448f-a915-20c8ab92696f/1/U4sGLLVCbwDmU3Pu9OTNihwn9o4.crl rsync://rpki.ripe.net/repository/DEFAULT/ff/1d457b-40bd-448f-a915-20c8ab92696f/1/U4sGLLVCbwDmU3Pu9OTNihwn9o4.mft rsync://rpki.ripe.net/repository/DEFAULT/U4sGLLVCbwDmU3Pu9OTNihwn9o4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:77:53:27:13:1d:24:6f:6a:48:b9:9a:f3:83:96:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=538b062cb5426f00e65373eef4e4cd8a1c27f68e Validity Not Before: Dec 26 07:02:30 2025 GMT Not After : Dec 27 07:02:30 2025 GMT Subject: CN=5e93babb4398cc3bcd69d551bd5d1e1fec4bbe0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:45:5f:16:12:d4:63:ed:4e:70:40:81:c9:2a: 88:bf:d4:f7:1d:a3:91:7c:89:fb:c7:4b:3a:eb:36: 0f:ce:82:c5:32:ea:b5:46:d8:97:f1:bb:90:74:d6: a8:b2:07:37:48:63:ab:c2:fc:96:9f:48:e2:7a:b7: 5f:f4:f2:96:9b:0a:c6:1c:ad:e2:99:68:44:a9:4c: 10:4a:45:1f:30:69:a7:85:9c:90:03:f2:21:d8:16: 60:ce:35:11:c4:cf:a9:80:10:8e:26:71:4c:2c:ce: 4c:30:e8:7a:ab:e0:55:34:53:db:1c:ee:9e:23:89: c5:2c:77:56:16:61:5a:d4:79:1d:a0:dd:b9:20:70: 00:db:62:bc:f6:d1:f5:50:3c:8e:54:f0:04:33:e6: 2c:05:62:0f:96:44:4b:77:ee:61:5d:7c:a9:a5:47: 9a:2b:a7:3c:ae:17:22:99:a9:49:6d:80:13:d9:73: b9:25:d0:86:fa:2a:c4:17:b3:7c:5b:8b:83:b6:02: 1d:04:96:f3:32:82:dd:fb:ac:1e:5c:d7:61:2d:35: 91:68:d5:67:2f:d4:52:0e:df:71:3d:6a:c3:d0:d4: ff:7e:fa:f3:1a:67:10:05:7a:80:04:b1:d3:a0:3b: 90:e7:11:eb:ee:c8:38:b5:12:42:8a:f6:5a:7e:36: 13:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:93:BA:BB:43:98:CC:3B:CD:69:D5:51:BD:5D:1E:1F:EC:4B:BE:0A X509v3 Authority Key Identifier: keyid:53:8B:06:2C:B5:42:6F:00:E6:53:73:EE:F4:E4:CD:8A:1C:27:F6:8E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U4sGLLVCbwDmU3Pu9OTNihwn9o4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/1d457b-40bd-448f-a915-20c8ab92696f/1/U4sGLLVCbwDmU3Pu9OTNihwn9o4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/1d457b-40bd-448f-a915-20c8ab92696f/1/U4sGLLVCbwDmU3Pu9OTNihwn9o4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 90:12:e2:57:04:a7:13:c1:17:80:15:61:27:df:b7:f0:61:9f: 2b:08:8d:3f:28:c6:d5:46:2e:f5:f1:1a:8e:06:b5:ed:22:ae: 91:87:a2:51:28:d0:2d:6d:c5:74:de:ea:b4:ea:a9:b6:5b:fb: 9a:9b:0c:6f:33:09:dc:f6:0e:28:35:d3:22:05:c6:4c:4d:d0: 1a:e6:b5:4f:a2:ea:9a:76:3c:e5:f0:3b:cd:9d:24:a1:75:a2: b3:4a:33:77:db:74:89:bb:55:8c:44:15:06:21:f0:f0:be:8b: c1:50:42:49:9f:36:e8:b0:22:e9:1e:f9:6d:ed:07:e1:39:65: 1f:23:79:be:d2:d2:90:9a:30:f8:b8:ad:3e:6b:4e:17:55:12: dd:99:a4:34:56:ce:40:fc:25:71:fa:cf:07:48:c6:08:20:50: 9a:48:af:4f:50:73:4e:90:65:a2:0e:e9:6f:21:ef:e4:03:a7: 3d:1d:31:f0:6e:9b:fc:d6:a6:8d:35:51:2c:b9:8e:9e:ad:71: fd:c3:80:e3:fc:fc:01:2b:a1:99:ef:14:3e:dd:91:90:24:ca: 6f:36:44:a3:e4:98:2a:4a:37:1f:1d:93:a1:a6:22:85:d1:2f: 7e:19:50:99:33:e2:9d:eb:cb:ac:67:7a:a7:c4:a2:cd:40:da: aa:12:8e:83 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZd1MnEx0kb2pIuZrzg5ZkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzOGIwNjJjYjU0MjZmMDBlNjUzNzNlZWY0ZTRjZDhhMWMy N2Y2OGUwHhcNMjUxMjI2MDcwMjMwWhcNMjUxMjI3MDcwMjMwWjAzMTEwLwYDVQQD Eyg1ZTkzYmFiYjQzOThjYzNiY2Q2OWQ1NTFiZDVkMWUxZmVjNGJiZTBhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyEVfFhLUY+1OcECBySqIv9T3HaOR fIn7x0s66zYPzoLFMuq1RtiX8buQdNaosgc3SGOrwvyWn0jierdf9PKWmwrGHK3i mWhEqUwQSkUfMGmnhZyQA/Ih2BZgzjURxM+pgBCOJnFMLM5MMOh6q+BVNFPbHO6e I4nFLHdWFmFa1HkdoN25IHAA22K89tH1UDyOVPAEM+YsBWIPlkRLd+5hXXyppUea K6c8rhcimalJbYAT2XO5JdCG+irEF7N8W4uDtgIdBJbzMoLd+6weXNdhLTWRaNVn L9RSDt9xPWrD0NT/fvrzGmcQBXqABLHToDuQ5xHr7sg4tRJCivZafjYTHQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF6TurtDmMw7zWnVUb1dHh/sS74KMB8GA1UdIwQY MBaAFFOLBiy1Qm8A5lNz7vTkzYocJ/aOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVTRzR0xMVkNid0RtVTNQdTlPVE5paHduOW80LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi8xZDQ1N2ItNDBiZC00NDhmLWE5MTUt MjBjOGFiOTI2OTZmLzEvVTRzR0xMVkNid0RtVTNQdTlPVE5paHduOW80Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZi8xZDQ1N2ItNDBiZC00NDhmLWE5MTUtMjBjOGFiOTI2OTZm LzEvVTRzR0xMVkNid0RtVTNQdTlPVE5paHduOW80LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkBLiVwSn E8EXgBVhJ9+38GGfKwiNPyjG1UYu9fEajga17SKukYeiUSjQLW3FdN7qtOqptlv7 mpsMbzMJ3PYOKDXTIgXGTE3QGua1T6LqmnY85fA7zZ0koXWis0ozd9t0ibtVjEQV BiHw8L6LwVBCSZ826LAi6R75be0H4TllHyN5vtLSkJow+LitPmtOF1US3ZmkNFbO QPwlcfrPB0jGCCBQmkivT1BzTpBlog7pbyHv5AOnPR0x8G6b/NamjTVRLLmOnq1x /cOA4/z8ASuhme8UPt2RkCTKbzZEo+SYKko3Hx2ToaYihdEvfhlQmTPinevLrGd6 p8SizUDaqhKOgw== -----END CERTIFICATE-----Generated at Fri Dec 26 15:47:26 2025 by rpki-client