This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/a31884-2952-4647-815e-e52525db12db/1/UDCmlphoVt51uCLWrpX-ATE4IK8.mft File: UDCmlphoVt51uCLWrpX-ATE4IK8.mft (raw, json) Hash identifier: +93bpEIE2TS+JxT5hhpfTb82hZ/dnMAwLWxPuY2wxRI= Subject key identifier: D6:E4:AD:77:8F:1E:AE:F6:A8:B0:C0:3A:24:17:30:04:AB:FF:0A:1D Authority key identifier: 50:30:A6:96:98:68:56:DE:75:B8:22:D6:AE:95:FE:01:31:38:20:AF Certificate issuer: /CN=5030a696986856de75b822d6ae95fe01313820af Certificate serial: 019AF465506271A3FD10A471A3A204F37125 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UDCmlphoVt51uCLWrpX-ATE4IK8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/a31884-2952-4647-815e-e52525db12db/1/UDCmlphoVt51uCLWrpX-ATE4IK8.mft Manifest number: 115B Signing time: Sat 06 Dec 2025 16:01:11 +0000 Manifest this update: Sat 06 Dec 2025 16:01:11 +0000 Manifest next update: Sun 07 Dec 2025 16:01:11 +0000 Files and hashes: 1: UDCmlphoVt51uCLWrpX-ATE4IK8.crl (hash: Yk+ly1jKjMwzKewMi4yLGGHooO0nSO7Hlec6yKQN8GY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/a31884-2952-4647-815e-e52525db12db/1/UDCmlphoVt51uCLWrpX-ATE4IK8.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/a31884-2952-4647-815e-e52525db12db/1/UDCmlphoVt51uCLWrpX-ATE4IK8.mft rsync://rpki.ripe.net/repository/DEFAULT/UDCmlphoVt51uCLWrpX-ATE4IK8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:65:50:62:71:a3:fd:10:a4:71:a3:a2:04:f3:71:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5030a696986856de75b822d6ae95fe01313820af Validity Not Before: Dec 6 16:01:11 2025 GMT Not After : Dec 7 16:01:11 2025 GMT Subject: CN=d6e4ad778f1eaef6a8b0c03a24173004abff0a1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:1e:95:6c:a5:0c:fe:0f:2d:87:a4:ce:b4:b6: 2e:74:94:d2:c2:0a:6d:cd:7d:39:78:b7:cb:17:db: 80:8e:9c:9a:54:92:16:84:1a:52:a7:e5:17:9f:60: 50:9d:f3:67:4b:77:7a:cd:d7:74:5f:41:e6:6a:43: f9:a1:7e:0d:27:ee:bc:02:73:2e:0d:3e:d2:49:75: b3:6c:cd:e0:b6:f4:c3:d2:6c:b7:5a:e9:a4:88:3b: 09:3c:f1:92:81:06:d1:ad:03:9f:cc:84:92:2c:de: e3:a6:d4:03:83:c9:39:f0:cd:dd:ac:ce:f6:c6:15: 7e:87:39:03:6a:35:14:9a:47:20:a2:af:c4:6c:4f: 9b:0b:a9:b9:49:44:31:69:6c:8e:cd:7d:ec:cb:1f: 38:4c:82:53:7f:88:c6:22:f5:26:91:2c:7b:f7:b6: 7e:2f:12:7a:76:50:e5:44:a9:cb:f1:23:5e:fe:ff: 63:5b:f4:f2:7c:22:c2:c0:0a:17:3e:cb:ba:f4:6e: 0a:37:53:f1:09:a6:19:ea:e9:f2:46:26:fd:1e:8e: db:d9:e3:64:11:8a:c0:12:f0:95:75:6c:0b:06:f8: eb:b9:19:a0:2d:92:b9:0a:54:7d:7d:8c:0d:ec:26: 45:29:d8:ec:a2:3d:81:2f:62:4c:1e:10:8b:c0:c5: 39:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:E4:AD:77:8F:1E:AE:F6:A8:B0:C0:3A:24:17:30:04:AB:FF:0A:1D X509v3 Authority Key Identifier: keyid:50:30:A6:96:98:68:56:DE:75:B8:22:D6:AE:95:FE:01:31:38:20:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UDCmlphoVt51uCLWrpX-ATE4IK8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a31884-2952-4647-815e-e52525db12db/1/UDCmlphoVt51uCLWrpX-ATE4IK8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a31884-2952-4647-815e-e52525db12db/1/UDCmlphoVt51uCLWrpX-ATE4IK8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 29:bd:99:bc:a5:48:b9:5f:0d:ea:d3:83:6f:9b:2a:ba:1c:d3: d4:9b:cc:9a:8c:ac:70:36:42:27:88:5b:c8:5e:72:e0:88:c1: c3:f5:d5:7b:03:4f:26:ae:10:64:80:9d:45:db:0d:fc:6c:db: a1:a3:44:d4:b9:3a:6c:f4:2d:62:23:41:d3:d0:a0:78:47:e0: 79:da:7a:c0:b0:dc:d0:6b:7d:2f:3b:cb:96:c2:35:da:67:4e: 69:f2:82:bd:1f:34:d3:91:26:c9:16:61:06:26:74:5a:76:30: 53:26:ea:d2:f3:4b:84:3f:fa:88:a9:80:e8:54:48:e3:40:e4: 2a:6c:ed:32:1d:10:77:7a:55:5a:58:c4:4a:af:54:31:dd:6e: 5c:21:6f:7e:c0:d2:16:bd:46:ea:d0:4f:31:b8:e3:f0:57:b9: 61:84:c5:bc:fb:f1:72:a4:e0:73:f3:03:33:5c:e9:1a:40:8b: 1a:e6:0b:7a:49:97:a7:a3:52:32:e9:b7:75:9f:2f:37:89:2b: 0b:67:d5:1e:22:f7:bb:b5:d2:35:95:b8:38:11:0e:39:12:1c: ed:1a:38:a6:b9:3b:9d:fa:eb:b7:61:ad:03:4f:fe:1c:0b:8d: 5c:94:87:b5:c6:aa:0b:e8:83:0b:3a:b3:28:10:4f:8f:6d:8d: 51:ae:d9:64 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0ZVBicaP9EKRxo6IE83ElMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUwMzBhNjk2OTg2ODU2ZGU3NWI4MjJkNmFlOTVmZTAxMzEz ODIwYWYwHhcNMjUxMjA2MTYwMTExWhcNMjUxMjA3MTYwMTExWjAzMTEwLwYDVQQD EyhkNmU0YWQ3NzhmMWVhZWY2YThiMGMwM2EyNDE3MzAwNGFiZmYwYTFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2B6VbKUM/g8th6TOtLYudJTSwgpt zX05eLfLF9uAjpyaVJIWhBpSp+UXn2BQnfNnS3d6zdd0X0HmakP5oX4NJ+68AnMu DT7SSXWzbM3gtvTD0my3WumkiDsJPPGSgQbRrQOfzISSLN7jptQDg8k58M3drM72 xhV+hzkDajUUmkcgoq/EbE+bC6m5SUQxaWyOzX3syx84TIJTf4jGIvUmkSx797Z+ LxJ6dlDlRKnL8SNe/v9jW/TyfCLCwAoXPsu69G4KN1PxCaYZ6unyRib9Ho7b2eNk EYrAEvCVdWwLBvjruRmgLZK5ClR9fYwN7CZFKdjsoj2BL2JMHhCLwMU5aQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNbkrXePHq72qLDAOiQXMASr/wodMB8GA1UdIwQY MBaAFFAwppaYaFbedbgi1q6V/gExOCCvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVURDbWxwaG9WdDUxdUNMV3JwWC1BVEU0SUs4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC9hMzE4ODQtMjk1Mi00NjQ3LTgxNWUt ZTUyNTI1ZGIxMmRiLzEvVURDbWxwaG9WdDUxdUNMV3JwWC1BVEU0SUs4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC9hMzE4ODQtMjk1Mi00NjQ3LTgxNWUtZTUyNTI1ZGIxMmRi LzEvVURDbWxwaG9WdDUxdUNMV3JwWC1BVEU0SUs4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKb2ZvKVI uV8N6tODb5squhzT1JvMmoyscDZCJ4hbyF5y4IjBw/XVewNPJq4QZICdRdsN/Gzb oaNE1Lk6bPQtYiNB09CgeEfgedp6wLDc0Gt9LzvLlsI12mdOafKCvR8005EmyRZh BiZ0WnYwUybq0vNLhD/6iKmA6FRI40DkKmztMh0Qd3pVWljESq9UMd1uXCFvfsDS Fr1G6tBPMbjj8Fe5YYTFvPvxcqTgc/MDM1zpGkCLGuYLekmXp6NSMum3dZ8vN4kr C2fVHiL3u7XSNZW4OBEOORIc7Ro4prk7nfrrt2GtA0/+HAuNXJSHtcaqC+iDCzqz KBBPj22NUa7ZZA== -----END CERTIFICATE-----Generated at Sat Dec 6 23:02:35 2025 by rpki-client