This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/a31884-2952-4647-815e-e52525db12db/1/UDCmlphoVt51uCLWrpX-ATE4IK8.mft File: UDCmlphoVt51uCLWrpX-ATE4IK8.mft (raw, json) Hash identifier: /uCCQQw++xsAER73WWoK0sNfXr+4672qfuDeToITt5Y= Subject key identifier: 2D:D6:95:C4:3F:90:8F:14:46:B5:D9:31:38:84:FC:66:0C:C5:34:8E Authority key identifier: 50:30:A6:96:98:68:56:DE:75:B8:22:D6:AE:95:FE:01:31:38:20:AF Certificate issuer: /CN=5030a696986856de75b822d6ae95fe01313820af Certificate serial: 019B43928437D8CE8CD02D2C7E22D7380987 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UDCmlphoVt51uCLWrpX-ATE4IK8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/a31884-2952-4647-815e-e52525db12db/1/UDCmlphoVt51uCLWrpX-ATE4IK8.mft Manifest number: 1184 Signing time: Mon 22 Dec 2025 01:00:34 +0000 Manifest this update: Mon 22 Dec 2025 01:00:34 +0000 Manifest next update: Tue 23 Dec 2025 01:00:34 +0000 Files and hashes: 1: UDCmlphoVt51uCLWrpX-ATE4IK8.crl (hash: P6SwHnKWhQ6DMdgmio37oXS2YKzO5iMiTNgipQrKQn0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/a31884-2952-4647-815e-e52525db12db/1/UDCmlphoVt51uCLWrpX-ATE4IK8.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/a31884-2952-4647-815e-e52525db12db/1/UDCmlphoVt51uCLWrpX-ATE4IK8.mft rsync://rpki.ripe.net/repository/DEFAULT/UDCmlphoVt51uCLWrpX-ATE4IK8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 01:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:43:92:84:37:d8:ce:8c:d0:2d:2c:7e:22:d7:38:09:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5030a696986856de75b822d6ae95fe01313820af Validity Not Before: Dec 22 01:00:34 2025 GMT Not After : Dec 23 01:00:34 2025 GMT Subject: CN=2dd695c43f908f1446b5d9313884fc660cc5348e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c8:6b:b0:f3:2e:da:e4:1a:d7:84:22:b9:95: c4:8e:6a:aa:a5:98:c6:39:aa:00:b3:80:ce:31:39: f9:8c:33:b5:d3:71:64:42:7a:04:99:d1:58:6b:dd: 79:6b:5a:50:de:d0:f0:15:fc:32:55:64:97:47:1c: 03:3b:6e:c2:d0:8b:b2:df:20:1c:ce:e5:ec:33:6b: 7f:95:64:fb:05:1d:ac:90:62:f5:e6:b6:b5:44:22: 62:2f:81:64:c1:ea:f8:5d:e9:02:97:d6:d7:9a:1b: 6b:b8:a6:d6:2b:f8:50:22:3a:88:fa:94:e7:a0:1a: 73:ec:38:33:25:5c:bf:2c:7e:32:cb:57:fd:8f:e4: bd:44:d6:b8:f8:26:1f:94:6c:9a:17:e8:16:7a:97: e7:7b:c2:ae:de:10:25:e1:f4:5c:66:bf:25:56:98: 36:9c:ae:ab:bf:db:2a:3d:23:cc:f2:f9:51:71:a1: d4:d9:4e:79:2e:7e:df:a9:2e:7b:a1:77:c7:20:95: 52:db:54:3c:11:9e:94:d5:91:c6:ea:2d:b0:70:36: 8c:87:92:38:66:c0:5e:14:de:db:1f:55:89:fe:45: 47:59:df:7a:66:f3:d9:03:60:eb:ed:6f:7c:42:69: 09:45:6d:39:42:de:a2:4d:42:54:d7:ed:dc:62:21: 39:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:D6:95:C4:3F:90:8F:14:46:B5:D9:31:38:84:FC:66:0C:C5:34:8E X509v3 Authority Key Identifier: keyid:50:30:A6:96:98:68:56:DE:75:B8:22:D6:AE:95:FE:01:31:38:20:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UDCmlphoVt51uCLWrpX-ATE4IK8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a31884-2952-4647-815e-e52525db12db/1/UDCmlphoVt51uCLWrpX-ATE4IK8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a31884-2952-4647-815e-e52525db12db/1/UDCmlphoVt51uCLWrpX-ATE4IK8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption af:c2:9c:57:be:09:e5:33:9c:39:93:a8:28:23:df:1d:28:e1: 29:55:5f:57:60:8d:51:da:45:12:a5:35:07:da:d5:46:fc:1a: 40:2f:3d:b3:12:e7:9b:b6:53:e8:f5:e8:ac:70:29:e8:e6:d7: b1:de:bd:69:72:a7:40:a0:29:39:60:4f:45:11:c4:5f:42:c9: a3:b2:de:84:18:a1:a8:bd:7c:a3:30:74:96:b0:dc:94:f7:21: 13:0d:36:dd:68:78:f0:33:ac:62:11:a4:9a:5b:af:76:07:f0: 65:5d:c8:d2:af:65:0e:5b:5b:66:c8:36:ae:89:ff:bc:db:7d: 2b:ec:df:f1:95:8e:3e:63:97:3d:f2:94:eb:40:d1:cf:fb:cb: 90:a7:d1:7b:2d:6d:69:1f:f8:87:50:33:6b:b4:05:9b:7b:b0: 12:4d:9c:90:93:b3:33:2d:70:e1:83:b2:63:2b:2a:92:86:7c: ee:33:47:3f:18:bc:4a:cc:47:db:9c:30:8c:24:c7:23:7d:1a: dc:23:d0:17:3d:cc:31:10:fe:d5:63:2d:04:e8:c8:17:20:8a: bb:f6:ff:96:13:f4:9b:6e:24:5c:00:6b:c8:80:1f:25:21:67: f4:c8:1b:43:36:d9:9f:f8:68:1a:fa:b5:aa:30:16:b6:99:38: 5c:a3:ca:b6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtDkoQ32M6M0C0sfiLXOAmHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUwMzBhNjk2OTg2ODU2ZGU3NWI4MjJkNmFlOTVmZTAxMzEz ODIwYWYwHhcNMjUxMjIyMDEwMDM0WhcNMjUxMjIzMDEwMDM0WjAzMTEwLwYDVQQD EygyZGQ2OTVjNDNmOTA4ZjE0NDZiNWQ5MzEzODg0ZmM2NjBjYzUzNDhlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyMhrsPMu2uQa14QiuZXEjmqqpZjG OaoAs4DOMTn5jDO103FkQnoEmdFYa915a1pQ3tDwFfwyVWSXRxwDO27C0Iuy3yAc zuXsM2t/lWT7BR2skGL15ra1RCJiL4Fkwer4XekCl9bXmhtruKbWK/hQIjqI+pTn oBpz7DgzJVy/LH4yy1f9j+S9RNa4+CYflGyaF+gWepfne8Ku3hAl4fRcZr8lVpg2 nK6rv9sqPSPM8vlRcaHU2U55Ln7fqS57oXfHIJVS21Q8EZ6U1ZHG6i2wcDaMh5I4 ZsBeFN7bH1WJ/kVHWd96ZvPZA2Dr7W98QmkJRW05Qt6iTUJU1+3cYiE5YQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC3WlcQ/kI8URrXZMTiE/GYMxTSOMB8GA1UdIwQY MBaAFFAwppaYaFbedbgi1q6V/gExOCCvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVURDbWxwaG9WdDUxdUNMV3JwWC1BVEU0SUs4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC9hMzE4ODQtMjk1Mi00NjQ3LTgxNWUt ZTUyNTI1ZGIxMmRiLzEvVURDbWxwaG9WdDUxdUNMV3JwWC1BVEU0SUs4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC9hMzE4ODQtMjk1Mi00NjQ3LTgxNWUtZTUyNTI1ZGIxMmRi LzEvVURDbWxwaG9WdDUxdUNMV3JwWC1BVEU0SUs4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAr8KcV74J 5TOcOZOoKCPfHSjhKVVfV2CNUdpFEqU1B9rVRvwaQC89sxLnm7ZT6PXorHAp6ObX sd69aXKnQKApOWBPRRHEX0LJo7LehBihqL18ozB0lrDclPchEw023Wh48DOsYhGk mluvdgfwZV3I0q9lDltbZsg2ron/vNt9K+zf8ZWOPmOXPfKU60DRz/vLkKfRey1t aR/4h1Aza7QFm3uwEk2ckJOzMy1w4YOyYysqkoZ87jNHPxi8SsxH25wwjCTHI30a 3CPQFz3MMRD+1WMtBOjIFyCKu/b/lhP0m24kXABryIAfJSFn9MgbQzbZn/hoGvq1 qjAWtpk4XKPKtg== -----END CERTIFICATE-----Generated at Mon Dec 22 09:44:40 2025 by rpki-client