This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/6278c4-64df-4f8f-ad34-68384ffd6e6f/1/UGG999pVZ22XGIK-7pAhvF-zFy0.mft File: UGG999pVZ22XGIK-7pAhvF-zFy0.mft (raw, json) Hash identifier: ESSUQm6/Ej1v5AVPRWjcwbpwXq/2JRUwquVPQ/K1chI= Subject key identifier: F6:EC:85:B7:1A:72:C4:DE:60:98:33:2F:AE:7F:89:63:E2:72:7B:44 Authority key identifier: 50:61:BD:F7:DA:55:67:6D:97:18:82:BE:EE:90:21:BC:5F:B3:17:2D Certificate issuer: /CN=5061bdf7da55676d971882beee9021bc5fb3172d Certificate serial: 019B5C406E2C92DF38F9B6212FA003FE1076 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UGG999pVZ22XGIK-7pAhvF-zFy0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/6278c4-64df-4f8f-ad34-68384ffd6e6f/1/UGG999pVZ22XGIK-7pAhvF-zFy0.mft Manifest number: 0A4F Signing time: Fri 26 Dec 2025 20:01:24 +0000 Manifest this update: Fri 26 Dec 2025 20:01:24 +0000 Manifest next update: Sat 27 Dec 2025 20:01:24 +0000 Files and hashes: 1: UGG999pVZ22XGIK-7pAhvF-zFy0.crl (hash: T1LC5fsWwp11/6B4/SYQoONb9aigu1pcSYLO0XRw+mI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/6278c4-64df-4f8f-ad34-68384ffd6e6f/1/UGG999pVZ22XGIK-7pAhvF-zFy0.crl rsync://rpki.ripe.net/repository/DEFAULT/db/6278c4-64df-4f8f-ad34-68384ffd6e6f/1/UGG999pVZ22XGIK-7pAhvF-zFy0.mft rsync://rpki.ripe.net/repository/DEFAULT/UGG999pVZ22XGIK-7pAhvF-zFy0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 20:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5c:40:6e:2c:92:df:38:f9:b6:21:2f:a0:03:fe:10:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5061bdf7da55676d971882beee9021bc5fb3172d Validity Not Before: Dec 26 20:01:24 2025 GMT Not After : Dec 27 20:01:24 2025 GMT Subject: CN=f6ec85b71a72c4de6098332fae7f8963e2727b44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:59:8f:b3:56:c9:2f:d4:48:6d:62:3a:14:1a: a4:dc:bb:b0:a7:23:b0:97:bd:cb:f3:81:5d:3a:cd: 62:80:3e:01:fe:45:21:e6:81:bb:e8:23:be:7a:de: 39:06:92:19:fd:6c:a0:4b:a4:d9:38:d5:c1:68:06: c0:ff:6b:c6:f0:28:33:c5:bc:97:ef:a7:18:87:72: 4f:b1:c9:a1:89:d2:03:d9:5b:d5:6e:34:2f:64:a2: 4a:24:fd:3c:5d:40:4a:c2:e6:6b:24:7f:ea:bf:64: f5:bc:88:2a:2d:48:90:c5:db:06:d2:e0:67:b4:7e: 36:39:a9:a5:7d:e3:d1:70:a3:8c:6b:90:8d:7b:82: 7e:0b:ae:a3:57:db:84:98:df:1c:1a:2e:40:fa:69: 0f:2e:ab:f4:39:51:11:54:69:8d:03:52:e8:da:a5: 54:8b:8f:c8:93:c8:d1:e9:f2:13:02:73:90:63:af: d8:a6:e9:84:f5:b5:b0:1c:74:7f:18:fa:50:73:a2: fb:5e:e2:93:00:b7:bd:03:26:4b:b3:bc:33:ca:a6: ef:22:4a:2a:97:b1:c8:95:22:91:d7:14:71:d2:26: 77:d5:41:dc:f6:36:14:56:1f:44:ef:b6:7a:d3:bb: ce:19:11:a1:e1:54:cc:83:bc:e9:75:26:47:c1:2e: 0d:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:EC:85:B7:1A:72:C4:DE:60:98:33:2F:AE:7F:89:63:E2:72:7B:44 X509v3 Authority Key Identifier: keyid:50:61:BD:F7:DA:55:67:6D:97:18:82:BE:EE:90:21:BC:5F:B3:17:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UGG999pVZ22XGIK-7pAhvF-zFy0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/6278c4-64df-4f8f-ad34-68384ffd6e6f/1/UGG999pVZ22XGIK-7pAhvF-zFy0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/6278c4-64df-4f8f-ad34-68384ffd6e6f/1/UGG999pVZ22XGIK-7pAhvF-zFy0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:c5:c3:73:09:91:fb:f5:57:81:90:a1:6f:1c:1a:dc:7c:66: fb:76:70:73:b2:ae:06:81:12:ab:20:48:5d:0f:ed:23:21:d0: 3a:ab:46:03:43:3a:e0:69:ff:93:f0:ff:c0:d9:af:44:2b:b5: 61:cc:c1:5f:57:3e:54:f8:65:ec:68:94:31:a3:85:d9:ad:63: b2:66:21:c5:5c:9c:d8:3d:bc:47:91:ae:48:5a:c9:21:78:67: 9a:51:ad:8c:53:0b:a1:1c:c8:34:79:f4:e3:18:44:32:db:50: d7:6a:ca:93:06:eb:a6:39:6f:80:3d:87:57:e1:07:f1:e8:3d: 2b:8a:ce:75:a1:51:9b:4e:f1:2b:bb:c6:90:8e:27:02:a5:ec: 0c:73:35:99:b4:89:cb:77:ad:92:31:f0:df:e9:00:d1:99:5c: 6a:80:2f:c0:f5:f3:06:c4:22:9c:b4:84:5b:a7:cc:9e:ef:3f: cf:a1:be:bc:5d:8a:15:46:b3:96:4b:0d:5a:c4:b0:d1:76:4d: a2:05:ee:be:a7:62:26:e1:f5:9a:61:6e:14:17:d8:8e:9f:bf: 74:a5:76:13:ca:52:f5:a0:e3:87:51:88:25:fd:39:63:a9:c0: e2:ad:71:7f:8e:71:33:8c:a9:e0:40:13:f4:bb:c0:22:be:1c: c4:e7:b3:21 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtcQG4skt84+bYhL6AD/hB2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUwNjFiZGY3ZGE1NTY3NmQ5NzE4ODJiZWVlOTAyMWJjNWZi MzE3MmQwHhcNMjUxMjI2MjAwMTI0WhcNMjUxMjI3MjAwMTI0WjAzMTEwLwYDVQQD EyhmNmVjODViNzFhNzJjNGRlNjA5ODMzMmZhZTdmODk2M2UyNzI3YjQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA41mPs1bJL9RIbWI6FBqk3LuwpyOw l73L84FdOs1igD4B/kUh5oG76CO+et45BpIZ/WygS6TZONXBaAbA/2vG8CgzxbyX 76cYh3JPscmhidID2VvVbjQvZKJKJP08XUBKwuZrJH/qv2T1vIgqLUiQxdsG0uBn tH42OamlfePRcKOMa5CNe4J+C66jV9uEmN8cGi5A+mkPLqv0OVERVGmNA1Lo2qVU i4/Ik8jR6fITAnOQY6/YpumE9bWwHHR/GPpQc6L7XuKTALe9AyZLs7wzyqbvIkoq l7HIlSKR1xRx0iZ31UHc9jYUVh9E77Z607vOGRGh4VTMg7zpdSZHwS4NMQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPbshbcacsTeYJgzL65/iWPicntEMB8GA1UdIwQY MBaAFFBhvffaVWdtlxiCvu6QIbxfsxctMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVUdHOTk5cFZaMjJYR0lLLTdwQWh2Ri16RnkwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi82Mjc4YzQtNjRkZi00ZjhmLWFkMzQt NjgzODRmZmQ2ZTZmLzEvVUdHOTk5cFZaMjJYR0lLLTdwQWh2Ri16RnkwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi82Mjc4YzQtNjRkZi00ZjhmLWFkMzQtNjgzODRmZmQ2ZTZm LzEvVUdHOTk5cFZaMjJYR0lLLTdwQWh2Ri16RnkwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYsXDcwmR +/VXgZChbxwa3Hxm+3Zwc7KuBoESqyBIXQ/tIyHQOqtGA0M64Gn/k/D/wNmvRCu1 YczBX1c+VPhl7GiUMaOF2a1jsmYhxVyc2D28R5GuSFrJIXhnmlGtjFMLoRzINHn0 4xhEMttQ12rKkwbrpjlvgD2HV+EH8eg9K4rOdaFRm07xK7vGkI4nAqXsDHM1mbSJ y3etkjHw3+kA0ZlcaoAvwPXzBsQinLSEW6fMnu8/z6G+vF2KFUazlksNWsSw0XZN ogXuvqdiJuH1mmFuFBfYjp+/dKV2E8pS9aDjh1GIJf05Y6nA4q1xf45xM4yp4EAT 9LvAIr4cxOezIQ== -----END CERTIFICATE-----Generated at Sat Dec 27 03:59:50 2025 by rpki-client