This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/758467-6818-4e84-87ba-5d838668bebe/1/vygFmS5lMdPaMe4a9rzVwG0Ctso.mft File: vygFmS5lMdPaMe4a9rzVwG0Ctso.mft (raw, json) Hash identifier: nUhXAsvEHtMZAtXKbrmIUyukYe0nRnMhXAjNx8adquk= Subject key identifier: 27:4D:89:05:49:0E:1F:77:0B:17:F8:6F:3D:97:83:BB:2D:62:4C:3B Authority key identifier: BF:28:05:99:2E:65:31:D3:DA:31:EE:1A:F6:BC:D5:C0:6D:02:B6:CA Certificate issuer: /CN=bf2805992e6531d3da31ee1af6bcd5c06d02b6ca Certificate serial: 019B4B15CCAD9BB1EADCC5783B0F46EFAB47 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vygFmS5lMdPaMe4a9rzVwG0Ctso.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/758467-6818-4e84-87ba-5d838668bebe/1/vygFmS5lMdPaMe4a9rzVwG0Ctso.mft Manifest number: 178F Signing time: Tue 23 Dec 2025 12:01:18 +0000 Manifest this update: Tue 23 Dec 2025 12:01:18 +0000 Manifest next update: Wed 24 Dec 2025 12:01:18 +0000 Files and hashes: 1: ZA2eo4PhOO6YarPBjFuZYerlXM8.roa (hash: OaUR9ntwZSMTqF4rae/f45ntDF7DCdGD74N9a3x5n8s=) 2: iU6o8UX2fMqdnVT4GPBZLMHQUVk.roa (hash: L7qS2Pktcg+3MFOhFw0UCguQbXdIgIfJZ4PXXKIQFAI=) 3: vygFmS5lMdPaMe4a9rzVwG0Ctso.crl (hash: 0e9WRe4ErnZasNQfzA9nRUBmXBBtZ0wIBPIolNZsOZQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/758467-6818-4e84-87ba-5d838668bebe/1/vygFmS5lMdPaMe4a9rzVwG0Ctso.crl rsync://rpki.ripe.net/repository/DEFAULT/0b/758467-6818-4e84-87ba-5d838668bebe/1/vygFmS5lMdPaMe4a9rzVwG0Ctso.mft rsync://rpki.ripe.net/repository/DEFAULT/vygFmS5lMdPaMe4a9rzVwG0Ctso.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 24 Dec 2025 09:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4b:15:cc:ad:9b:b1:ea:dc:c5:78:3b:0f:46:ef:ab:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bf2805992e6531d3da31ee1af6bcd5c06d02b6ca Validity Not Before: Dec 23 12:01:18 2025 GMT Not After : Dec 24 12:01:18 2025 GMT Subject: CN=274d8905490e1f770b17f86f3d9783bb2d624c3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:90:5f:90:67:36:70:ab:9f:e8:e4:48:0b:c1: 68:d4:13:0a:02:cb:3a:9f:bf:19:37:57:29:04:2f: 85:83:c3:d9:e8:ae:b0:7c:c1:87:cc:f4:db:fa:d5: f3:93:0f:38:92:fe:0a:2f:05:f0:5a:d4:4e:b5:c8: 88:77:9c:a7:3c:5e:87:38:b5:98:92:d3:36:49:76: a4:6f:4c:a4:12:73:3d:b8:05:22:5e:f5:98:80:52: e7:cd:de:61:ee:e7:fb:00:94:8b:5a:85:bc:02:43: 28:36:fb:25:3b:7d:ef:67:31:10:31:aa:6c:16:7a: 36:6d:58:fb:35:53:2c:54:90:3f:d9:dc:cd:7e:45: fb:83:1f:c6:5a:80:6a:b2:95:82:ea:4f:bd:e1:42: 63:19:4d:ba:96:07:4b:ae:cc:27:49:07:fa:f6:14: 4e:38:8d:a3:e1:ef:8b:ad:e6:42:a2:6c:13:fa:9a: f5:27:17:87:98:c3:8e:cf:f9:e9:4b:1d:e0:78:97: 07:26:84:28:7c:a2:d6:92:7d:b7:ee:75:2d:a8:ca: d7:1e:12:3f:a5:64:c7:b1:74:ca:4f:54:c4:60:29: d8:52:3b:8d:34:3c:51:34:ea:b4:17:45:15:e8:e0: a1:69:df:15:b1:69:f3:6c:4f:0c:05:fe:bf:9d:4b: 55:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:4D:89:05:49:0E:1F:77:0B:17:F8:6F:3D:97:83:BB:2D:62:4C:3B X509v3 Authority Key Identifier: keyid:BF:28:05:99:2E:65:31:D3:DA:31:EE:1A:F6:BC:D5:C0:6D:02:B6:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vygFmS5lMdPaMe4a9rzVwG0Ctso.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/758467-6818-4e84-87ba-5d838668bebe/1/vygFmS5lMdPaMe4a9rzVwG0Ctso.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/758467-6818-4e84-87ba-5d838668bebe/1/vygFmS5lMdPaMe4a9rzVwG0Ctso.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 28:ec:1e:28:77:77:da:4d:e8:46:42:4b:39:6a:4d:34:77:2e: 2c:fd:15:71:7b:09:6c:dd:b0:3d:99:73:0f:80:c2:de:8e:11: 4f:4b:5f:6b:13:44:c6:a0:f3:c5:49:e6:75:50:40:0e:d0:20: db:32:42:76:a3:25:a0:e2:2a:15:42:7e:84:aa:14:a3:7e:b8: ec:e4:c1:f2:b6:25:6c:3a:ed:d8:ff:b8:0f:42:c8:e6:e9:11: 2a:07:b0:8f:33:a2:5e:0d:f3:b9:ec:4e:d8:3c:63:e2:9d:88: 31:76:b7:c1:36:ef:00:3f:e2:4f:f1:d7:a9:47:75:75:16:e7: 47:2e:36:21:36:4c:de:dd:c5:2f:53:1d:31:28:8a:a1:23:03: 9c:ad:2f:b8:d4:2c:3e:99:b3:57:09:e5:6c:11:a9:3f:fc:62: f1:20:61:60:64:aa:39:ad:9c:10:c7:10:77:1f:37:10:e8:ec: fc:19:b4:29:15:c2:96:bc:d8:11:aa:3d:07:3c:30:14:9d:a3: 54:c7:68:a8:6e:b0:1b:3f:99:d9:11:4f:3c:1e:55:d6:37:5e: 4f:9d:59:df:51:ba:6e:01:5e:fd:6e:ce:a3:9c:d4:50:86:04: 52:9a:9b:68:cb:61:61:f6:1f:38:8e:96:f9:e3:2f:8f:77:9b: df:6c:65:fb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtLFcytm7Hq3MV4Ow9G76tHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJmMjgwNTk5MmU2NTMxZDNkYTMxZWUxYWY2YmNkNWMwNmQw MmI2Y2EwHhcNMjUxMjIzMTIwMTE4WhcNMjUxMjI0MTIwMTE4WjAzMTEwLwYDVQQD EygyNzRkODkwNTQ5MGUxZjc3MGIxN2Y4NmYzZDk3ODNiYjJkNjI0YzNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvZBfkGc2cKuf6ORIC8Fo1BMKAss6 n78ZN1cpBC+Fg8PZ6K6wfMGHzPTb+tXzkw84kv4KLwXwWtROtciId5ynPF6HOLWY ktM2SXakb0ykEnM9uAUiXvWYgFLnzd5h7uf7AJSLWoW8AkMoNvslO33vZzEQMaps Fno2bVj7NVMsVJA/2dzNfkX7gx/GWoBqspWC6k+94UJjGU26lgdLrswnSQf69hRO OI2j4e+LreZComwT+pr1JxeHmMOOz/npSx3geJcHJoQofKLWkn237nUtqMrXHhI/ pWTHsXTKT1TEYCnYUjuNNDxRNOq0F0UV6OChad8VsWnzbE8MBf6/nUtVgQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCdNiQVJDh93Cxf4bz2Xg7stYkw7MB8GA1UdIwQY MBaAFL8oBZkuZTHT2jHuGva81cBtArbKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdnlnRm1TNWxNZFBhTWU0YTlyelZ3RzBDdHNvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi83NTg0NjctNjgxOC00ZTg0LTg3YmEt NWQ4Mzg2NjhiZWJlLzEvdnlnRm1TNWxNZFBhTWU0YTlyelZ3RzBDdHNvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYi83NTg0NjctNjgxOC00ZTg0LTg3YmEtNWQ4Mzg2NjhiZWJl LzEvdnlnRm1TNWxNZFBhTWU0YTlyelZ3RzBDdHNvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKOweKHd3 2k3oRkJLOWpNNHcuLP0VcXsJbN2wPZlzD4DC3o4RT0tfaxNExqDzxUnmdVBADtAg 2zJCdqMloOIqFUJ+hKoUo3647OTB8rYlbDrt2P+4D0LI5ukRKgewjzOiXg3zuexO 2Dxj4p2IMXa3wTbvAD/iT/HXqUd1dRbnRy42ITZM3t3FL1MdMSiKoSMDnK0vuNQs PpmzVwnlbBGpP/xi8SBhYGSqOa2cEMcQdx83EOjs/Bm0KRXClrzYEao9BzwwFJ2j VMdoqG6wGz+Z2RFPPB5V1jdeT51Z31G6bgFe/W7Oo5zUUIYEUpqbaMthYfYfOI6W +eMvj3eb32xl+w== -----END CERTIFICATE-----Generated at Tue Dec 23 13:58:40 2025 by rpki-client