This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/a73900-b34f-4ffc-9e39-2315cd9b9fa2/1/UcPMVEFPtEK-OdbhpK9yTP_u7v8.mft File: UcPMVEFPtEK-OdbhpK9yTP_u7v8.mft (raw, json) Hash identifier: HzWXE40pVR1UJwNA7+wMvfjTpNUGAkoTvfxTBeOjzeI= Subject key identifier: AC:4F:71:F0:83:9C:EC:21:46:1C:DA:19:10:5D:E8:C7:A2:C9:8F:57 Authority key identifier: 51:C3:CC:54:41:4F:B4:42:BE:39:D6:E1:A4:AF:72:4C:FF:EE:EE:FF Certificate issuer: /CN=51c3cc54414fb442be39d6e1a4af724cffeeeeff Certificate serial: 019B273FAC10F7799D8906C18DC2AA005040 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UcPMVEFPtEK-OdbhpK9yTP_u7v8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/a73900-b34f-4ffc-9e39-2315cd9b9fa2/1/UcPMVEFPtEK-OdbhpK9yTP_u7v8.mft Manifest number: 1682 Signing time: Tue 16 Dec 2025 13:00:42 +0000 Manifest this update: Tue 16 Dec 2025 13:00:42 +0000 Manifest next update: Wed 17 Dec 2025 13:00:42 +0000 Files and hashes: 1: UcPMVEFPtEK-OdbhpK9yTP_u7v8.crl (hash: HaSpTDisDRpSO49jp1gEY4TW3/sgYQUdIY1rwoGP9GY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/a73900-b34f-4ffc-9e39-2315cd9b9fa2/1/UcPMVEFPtEK-OdbhpK9yTP_u7v8.crl rsync://rpki.ripe.net/repository/DEFAULT/f3/a73900-b34f-4ffc-9e39-2315cd9b9fa2/1/UcPMVEFPtEK-OdbhpK9yTP_u7v8.mft rsync://rpki.ripe.net/repository/DEFAULT/UcPMVEFPtEK-OdbhpK9yTP_u7v8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 13:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:27:3f:ac:10:f7:79:9d:89:06:c1:8d:c2:aa:00:50:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=51c3cc54414fb442be39d6e1a4af724cffeeeeff Validity Not Before: Dec 16 13:00:42 2025 GMT Not After : Dec 17 13:00:42 2025 GMT Subject: CN=ac4f71f0839cec21461cda19105de8c7a2c98f57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d5:62:1c:89:90:c4:48:63:e9:80:26:51:8b: a0:e9:b8:63:39:2c:3e:6f:31:44:ac:57:a2:fd:8e: 1b:56:c9:46:76:81:56:d1:b0:5e:f3:e2:84:4e:c3: c2:d1:97:2e:f1:c1:96:2d:6e:73:33:dd:06:6b:85: 69:d9:e1:5f:f8:d5:24:88:6a:95:71:44:b8:f9:32: 11:ab:67:fd:3a:1e:1d:6c:f2:82:6e:e1:c0:16:88: 64:eb:6b:5e:21:9c:c0:a4:84:d7:63:5d:eb:84:24: 43:55:f4:ff:a1:b1:4a:ac:32:05:52:84:b2:d5:7b: a8:8f:0c:85:09:ab:90:c9:4e:bf:e3:e5:eb:9e:71: 99:a1:0b:87:1a:77:7f:55:88:2e:ca:06:de:e9:cf: 9c:f9:df:6d:33:36:4a:4b:45:60:28:9c:5d:27:02: c3:83:75:ef:55:0e:a0:cb:1f:4b:c4:64:07:41:70: dc:cc:eb:2a:cd:b4:db:7b:8f:71:82:e4:1c:a5:9e: 28:b7:89:62:35:96:21:df:61:01:ea:e3:03:4a:54: 5f:9a:22:2b:8a:84:49:70:8f:65:7c:1f:4f:6a:13: ee:08:4f:8a:38:0b:c7:56:35:b4:94:cb:ec:e3:d3: 48:56:58:63:a9:02:d6:d8:ae:bc:15:80:80:8f:92: bb:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:4F:71:F0:83:9C:EC:21:46:1C:DA:19:10:5D:E8:C7:A2:C9:8F:57 X509v3 Authority Key Identifier: keyid:51:C3:CC:54:41:4F:B4:42:BE:39:D6:E1:A4:AF:72:4C:FF:EE:EE:FF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UcPMVEFPtEK-OdbhpK9yTP_u7v8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/a73900-b34f-4ffc-9e39-2315cd9b9fa2/1/UcPMVEFPtEK-OdbhpK9yTP_u7v8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/a73900-b34f-4ffc-9e39-2315cd9b9fa2/1/UcPMVEFPtEK-OdbhpK9yTP_u7v8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:4d:fe:dc:1d:60:4f:2e:3c:eb:cb:9f:40:d3:dc:8b:5e:2b: 06:b8:46:e7:85:ac:47:58:ad:ee:81:bb:6f:71:81:62:ee:9d: 9a:ca:7e:b1:ad:27:22:05:69:05:2d:da:af:68:fc:45:fd:4e: be:42:f2:70:46:95:d3:fd:73:3c:be:87:44:1c:aa:6e:3f:fb: e1:64:c1:95:26:75:e3:80:01:34:a3:dd:7d:83:4b:3a:6a:66: ec:3e:b7:78:1b:70:00:05:b6:77:12:ad:ef:d5:71:e9:d9:fa: 27:e7:cf:82:14:82:91:f1:b7:41:25:a0:ec:a0:a0:91:2e:1c: d8:8f:2b:d4:3d:b2:f2:29:ea:ec:4d:63:9a:15:9d:be:26:0f: 43:71:b9:b2:f4:c3:77:7b:92:aa:de:01:e6:2a:fb:59:f9:e8: 30:87:28:1c:98:a4:ac:08:9c:39:b8:5a:d6:00:ca:bc:bb:58: bc:04:b1:7a:9d:af:4e:46:86:bc:f8:b7:06:62:61:17:68:40: 7f:d9:20:5e:25:2e:6e:fc:b1:2b:17:5f:f9:51:a8:90:1d:51: 7b:1a:0c:8f:02:2c:11:bf:c3:56:de:43:45:99:c2:03:0b:80: e9:62:e3:87:8d:92:a9:40:8b:19:09:83:c8:02:17:4f:1e:e1: 1f:1a:e7:30 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsnP6wQ93mdiQbBjcKqAFBAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUxYzNjYzU0NDE0ZmI0NDJiZTM5ZDZlMWE0YWY3MjRjZmZl ZWVlZmYwHhcNMjUxMjE2MTMwMDQyWhcNMjUxMjE3MTMwMDQyWjAzMTEwLwYDVQQD EyhhYzRmNzFmMDgzOWNlYzIxNDYxY2RhMTkxMDVkZThjN2EyYzk4ZjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx9ViHImQxEhj6YAmUYug6bhjOSw+ bzFErFei/Y4bVslGdoFW0bBe8+KETsPC0Zcu8cGWLW5zM90Ga4Vp2eFf+NUkiGqV cUS4+TIRq2f9Oh4dbPKCbuHAFohk62teIZzApITXY13rhCRDVfT/obFKrDIFUoSy 1XuojwyFCauQyU6/4+XrnnGZoQuHGnd/VYguygbe6c+c+d9tMzZKS0VgKJxdJwLD g3XvVQ6gyx9LxGQHQXDczOsqzbTbe49xguQcpZ4ot4liNZYh32EB6uMDSlRfmiIr ioRJcI9lfB9PahPuCE+KOAvHVjW0lMvs49NIVlhjqQLW2K68FYCAj5K7XwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKxPcfCDnOwhRhzaGRBd6MeiyY9XMB8GA1UdIwQY MBaAFFHDzFRBT7RCvjnW4aSvckz/7u7/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVWNQTVZFRlB0RUstT2RiaHBLOXlUUF91N3Y4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy9hNzM5MDAtYjM0Zi00ZmZjLTllMzkt MjMxNWNkOWI5ZmEyLzEvVWNQTVZFRlB0RUstT2RiaHBLOXlUUF91N3Y4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMy9hNzM5MDAtYjM0Zi00ZmZjLTllMzktMjMxNWNkOWI5ZmEy LzEvVWNQTVZFRlB0RUstT2RiaHBLOXlUUF91N3Y4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkU3+3B1g Ty4868ufQNPci14rBrhG54WsR1it7oG7b3GBYu6dmsp+sa0nIgVpBS3ar2j8Rf1O vkLycEaV0/1zPL6HRByqbj/74WTBlSZ144ABNKPdfYNLOmpm7D63eBtwAAW2dxKt 79Vx6dn6J+fPghSCkfG3QSWg7KCgkS4c2I8r1D2y8inq7E1jmhWdviYPQ3G5svTD d3uSqt4B5ir7WfnoMIcoHJikrAicObha1gDKvLtYvASxep2vTkaGvPi3BmJhF2hA f9kgXiUubvyxKxdf+VGokB1RexoMjwIsEb/DVt5DRZnCAwuA6WLjh42SqUCLGQmD yAIXTx7hHxrnMA== -----END CERTIFICATE-----Generated at Tue Dec 16 22:31:28 2025 by rpki-client