This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/0bc955-25de-4798-b3ce-6eaf9dabae0f/1/UdspKXLBDGn5fs0k8vtptPZ3beg.mft File: UdspKXLBDGn5fs0k8vtptPZ3beg.mft (raw, json) Hash identifier: i6tnFZ5bEgPW6g1rHtWamJqU/97Nl/Tjtt7+tNkkZVs= Subject key identifier: 22:E9:5A:4D:9E:C6:8D:8A:16:65:C6:CA:3D:E7:E0:4C:5D:0F:5B:A1 Authority key identifier: 51:DB:29:29:72:C1:0C:69:F9:7E:CD:24:F2:FB:69:B4:F6:77:6D:E8 Certificate issuer: /CN=51db292972c10c69f97ecd24f2fb69b4f6776de8 Certificate serial: 019AF12DDA65C3F36C20664CF1BD5667FE47 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UdspKXLBDGn5fs0k8vtptPZ3beg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/0bc955-25de-4798-b3ce-6eaf9dabae0f/1/UdspKXLBDGn5fs0k8vtptPZ3beg.mft Manifest number: 175E Signing time: Sat 06 Dec 2025 01:01:45 +0000 Manifest this update: Sat 06 Dec 2025 01:01:45 +0000 Manifest next update: Sun 07 Dec 2025 01:01:45 +0000 Files and hashes: 1: UdspKXLBDGn5fs0k8vtptPZ3beg.crl (hash: TIyp7ZwbW1A9nX/M91XMa8y3T9YaycMBZlQK4MIyGrw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/0bc955-25de-4798-b3ce-6eaf9dabae0f/1/UdspKXLBDGn5fs0k8vtptPZ3beg.crl rsync://rpki.ripe.net/repository/DEFAULT/de/0bc955-25de-4798-b3ce-6eaf9dabae0f/1/UdspKXLBDGn5fs0k8vtptPZ3beg.mft rsync://rpki.ripe.net/repository/DEFAULT/UdspKXLBDGn5fs0k8vtptPZ3beg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:da:65:c3:f3:6c:20:66:4c:f1:bd:56:67:fe:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=51db292972c10c69f97ecd24f2fb69b4f6776de8 Validity Not Before: Dec 6 01:01:45 2025 GMT Not After : Dec 7 01:01:45 2025 GMT Subject: CN=22e95a4d9ec68d8a1665c6ca3de7e04c5d0f5ba1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:0f:b6:d7:b9:55:78:6c:63:5c:25:51:3c:41: 84:e4:5e:b6:0f:30:ac:ab:4c:3b:9a:90:7c:76:bf: bb:d2:b4:70:57:5a:fd:b3:3e:de:45:d0:a5:61:cb: d1:49:0d:c5:1f:d5:58:83:63:73:c1:f6:79:e2:e5: eb:9f:a9:c2:a8:5f:64:69:ec:b7:94:e6:1f:fe:0a: 94:57:2f:5a:3d:89:e3:30:2e:97:35:f2:32:dc:d4: 2b:ef:4c:f5:c0:25:7d:f7:9b:5f:45:40:39:f8:b8: f3:b1:d4:df:c3:72:06:0e:80:e4:49:d3:9c:b5:b9: 44:f8:fd:95:8e:5e:5e:04:a7:b5:7e:33:1d:92:50: 6e:88:e0:90:78:a1:b5:7d:54:b7:9d:d3:7f:74:d4: 19:3e:08:bc:2f:99:24:10:6f:b4:60:88:ec:14:36: a9:31:5e:aa:9c:59:4e:f8:c2:10:a9:a7:84:5a:1d: ad:ec:b0:5d:f9:65:15:34:68:53:14:34:58:b2:34: f8:0f:04:45:83:0e:1d:1a:4f:a9:5f:b7:e8:7f:69: 81:3d:57:0e:2a:d6:1a:f3:fd:2b:5e:09:c8:13:01: 9c:0f:50:c6:58:bb:0a:f8:18:e4:17:0d:6b:1a:18: bb:e8:62:83:1a:e2:b6:ab:c6:aa:39:5d:7a:b9:23: a3:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:E9:5A:4D:9E:C6:8D:8A:16:65:C6:CA:3D:E7:E0:4C:5D:0F:5B:A1 X509v3 Authority Key Identifier: keyid:51:DB:29:29:72:C1:0C:69:F9:7E:CD:24:F2:FB:69:B4:F6:77:6D:E8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UdspKXLBDGn5fs0k8vtptPZ3beg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/0bc955-25de-4798-b3ce-6eaf9dabae0f/1/UdspKXLBDGn5fs0k8vtptPZ3beg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/de/0bc955-25de-4798-b3ce-6eaf9dabae0f/1/UdspKXLBDGn5fs0k8vtptPZ3beg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 95:cd:54:a7:63:48:04:39:00:f4:dd:43:37:6f:4c:ba:1b:c5: cf:b1:b8:25:20:b9:d1:63:a9:fb:35:8e:96:e6:18:65:0b:52: 5d:82:45:bb:40:2f:89:0f:21:d8:51:0a:38:90:6c:ec:1e:9d: 96:14:5b:d5:80:a6:38:59:ff:df:b1:d0:33:58:49:36:04:ed: 57:20:92:75:77:d6:aa:4e:1e:b8:84:f1:72:c0:ac:8a:1e:78: 07:0b:af:7c:dd:da:e6:40:1c:be:d4:a5:d8:b5:95:0d:a6:47: 15:cd:e4:24:cf:72:7f:4d:ed:0e:58:c3:ce:79:fd:93:53:1a: a1:5b:fb:9c:8f:d0:66:8f:b3:92:22:0e:7e:2d:01:24:c8:50: ed:b8:48:19:64:ce:5f:87:ea:3f:77:6a:c1:69:9f:d7:bb:e9: 70:9c:db:45:d5:a9:8b:d4:4a:4f:27:c1:74:33:fb:ca:86:92: bf:cf:e7:3d:46:f3:0e:97:b8:f8:52:32:a4:15:27:1d:aa:67: b5:69:22:1b:93:d5:1c:80:44:e0:0d:4b:7c:7f:f4:fa:c3:54: ac:04:ba:ef:f1:7c:91:d7:18:96:4b:ca:48:f6:34:7d:58:cc: 41:ae:82:e1:ef:7a:06:c4:22:f2:26:4c:ed:6c:5a:87:9e:be: 83:9e:be:e0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLdplw/NsIGZM8b1WZ/5HMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUxZGIyOTI5NzJjMTBjNjlmOTdlY2QyNGYyZmI2OWI0ZjY3 NzZkZTgwHhcNMjUxMjA2MDEwMTQ1WhcNMjUxMjA3MDEwMTQ1WjAzMTEwLwYDVQQD EygyMmU5NWE0ZDllYzY4ZDhhMTY2NWM2Y2EzZGU3ZTA0YzVkMGY1YmExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAog+217lVeGxjXCVRPEGE5F62DzCs q0w7mpB8dr+70rRwV1r9sz7eRdClYcvRSQ3FH9VYg2NzwfZ54uXrn6nCqF9kaey3 lOYf/gqUVy9aPYnjMC6XNfIy3NQr70z1wCV995tfRUA5+LjzsdTfw3IGDoDkSdOc tblE+P2Vjl5eBKe1fjMdklBuiOCQeKG1fVS3ndN/dNQZPgi8L5kkEG+0YIjsFDap MV6qnFlO+MIQqaeEWh2t7LBd+WUVNGhTFDRYsjT4DwRFgw4dGk+pX7fof2mBPVcO KtYa8/0rXgnIEwGcD1DGWLsK+BjkFw1rGhi76GKDGuK2q8aqOV16uSOjNwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCLpWk2exo2KFmXGyj3n4ExdD1uhMB8GA1UdIwQY MBaAFFHbKSlywQxp+X7NJPL7abT2d23oMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVWRzcEtYTEJER241ZnMwazh2dHB0UFozYmVnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS8wYmM5NTUtMjVkZS00Nzk4LWIzY2Ut NmVhZjlkYWJhZTBmLzEvVWRzcEtYTEJER241ZnMwazh2dHB0UFozYmVnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZS8wYmM5NTUtMjVkZS00Nzk4LWIzY2UtNmVhZjlkYWJhZTBm LzEvVWRzcEtYTEJER241ZnMwazh2dHB0UFozYmVnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlc1Up2NI BDkA9N1DN29MuhvFz7G4JSC50WOp+zWOluYYZQtSXYJFu0AviQ8h2FEKOJBs7B6d lhRb1YCmOFn/37HQM1hJNgTtVyCSdXfWqk4euITxcsCsih54BwuvfN3a5kAcvtSl 2LWVDaZHFc3kJM9yf03tDljDznn9k1MaoVv7nI/QZo+zkiIOfi0BJMhQ7bhIGWTO X4fqP3dqwWmf17vpcJzbRdWpi9RKTyfBdDP7yoaSv8/nPUbzDpe4+FIypBUnHapn tWkiG5PVHIBE4A1LfH/0+sNUrAS67/F8kdcYlkvKSPY0fVjMQa6C4e96BsQi8iZM 7Wxah56+g56+4A== -----END CERTIFICATE-----Generated at Sat Dec 6 08:11:21 2025 by rpki-client