This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/758467-6818-4e84-87ba-5d838668bebe/1/vygFmS5lMdPaMe4a9rzVwG0Ctso.mft File: vygFmS5lMdPaMe4a9rzVwG0Ctso.mft (raw, json) Hash identifier: TePYGHYNrBxEcDp2eFZhYkSoA/ljMdXRo84kRZiofLM= Subject key identifier: A4:A0:A3:AF:27:15:7E:6E:7A:C4:DA:E9:92:BB:D9:6F:8D:87:C5:AE Authority key identifier: BF:28:05:99:2E:65:31:D3:DA:31:EE:1A:F6:BC:D5:C0:6D:02:B6:CA Certificate issuer: /CN=bf2805992e6531d3da31ee1af6bcd5c06d02b6ca Certificate serial: 019B71B51210ACC8E1D96AA3950518633623 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vygFmS5lMdPaMe4a9rzVwG0Ctso.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/758467-6818-4e84-87ba-5d838668bebe/1/vygFmS5lMdPaMe4a9rzVwG0Ctso.mft Manifest number: 17A3 Signing time: Wed 31 Dec 2025 00:00:50 +0000 Manifest this update: Wed 31 Dec 2025 00:00:50 +0000 Manifest next update: Thu 01 Jan 2026 00:00:50 +0000 Files and hashes: 1: ZA2eo4PhOO6YarPBjFuZYerlXM8.roa (hash: OaUR9ntwZSMTqF4rae/f45ntDF7DCdGD74N9a3x5n8s=) 2: iU6o8UX2fMqdnVT4GPBZLMHQUVk.roa (hash: L7qS2Pktcg+3MFOhFw0UCguQbXdIgIfJZ4PXXKIQFAI=) 3: vygFmS5lMdPaMe4a9rzVwG0Ctso.crl (hash: W29/9BmNq9Du6TuBwEjbnwFKoJyFe385b0cYQUcWnp0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/758467-6818-4e84-87ba-5d838668bebe/1/vygFmS5lMdPaMe4a9rzVwG0Ctso.crl rsync://rpki.ripe.net/repository/DEFAULT/0b/758467-6818-4e84-87ba-5d838668bebe/1/vygFmS5lMdPaMe4a9rzVwG0Ctso.mft rsync://rpki.ripe.net/repository/DEFAULT/vygFmS5lMdPaMe4a9rzVwG0Ctso.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 31 Dec 2025 23:41:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:71:b5:12:10:ac:c8:e1:d9:6a:a3:95:05:18:63:36:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bf2805992e6531d3da31ee1af6bcd5c06d02b6ca Validity Not Before: Dec 31 00:00:50 2025 GMT Not After : Jan 1 00:00:50 2026 GMT Subject: CN=a4a0a3af27157e6e7ac4dae992bbd96f8d87c5ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:cb:f5:37:8e:2d:02:77:59:db:47:e2:28:77: 9c:b1:83:43:25:22:f7:79:4a:d5:bf:56:f6:08:d6: 6e:bb:c2:4e:9b:ac:9d:96:37:00:b3:c6:13:43:1b: c4:3e:bd:fd:dd:9e:da:2d:81:0f:0e:da:cf:e7:06: 20:2c:be:1b:ac:ef:72:b9:c7:0c:f3:e9:6d:f1:a5: 6d:15:87:e0:e9:4a:2b:63:9d:8f:4d:c5:92:d6:5d: 15:cd:17:6f:d5:ca:d2:92:e5:66:7f:d3:41:0b:d1: 15:1f:40:80:6e:f9:3a:c8:d4:17:ba:be:31:a5:50: cb:bb:46:a9:2b:d8:50:1f:a6:50:78:d0:06:8a:f4: 2e:af:45:5b:ad:51:41:46:6f:8b:15:5a:1d:d1:ae: 8e:28:7b:75:83:31:8b:2d:ea:af:79:94:d6:98:42: 30:2c:c0:14:df:32:97:85:b6:bc:fa:15:00:1a:d7: f9:cd:5a:0e:fc:69:05:cf:58:b3:51:09:d3:7d:cd: 6b:ec:ba:8b:50:7b:b7:e7:a3:10:67:59:95:9c:7d: 04:8b:56:24:a2:cd:99:bb:cf:ea:be:21:8e:d7:93: a4:45:4d:17:33:a1:a6:cc:60:26:42:fe:0b:3a:90: 5b:dd:6c:02:38:48:46:46:2d:4e:84:d7:89:71:b1: 18:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:A0:A3:AF:27:15:7E:6E:7A:C4:DA:E9:92:BB:D9:6F:8D:87:C5:AE X509v3 Authority Key Identifier: keyid:BF:28:05:99:2E:65:31:D3:DA:31:EE:1A:F6:BC:D5:C0:6D:02:B6:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vygFmS5lMdPaMe4a9rzVwG0Ctso.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/758467-6818-4e84-87ba-5d838668bebe/1/vygFmS5lMdPaMe4a9rzVwG0Ctso.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/758467-6818-4e84-87ba-5d838668bebe/1/vygFmS5lMdPaMe4a9rzVwG0Ctso.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 81:ee:2f:cb:09:8b:0a:f4:10:3e:73:b2:5a:ae:c7:e5:b3:23: c6:66:0c:ee:7d:b8:60:d7:f2:cf:b5:26:0c:57:52:7a:be:d6: 3c:d5:59:92:90:35:d3:20:6d:3a:4a:16:94:4b:a7:73:18:3d: 86:03:c2:bc:76:3f:3c:61:ef:33:1d:c6:81:10:ec:e9:2a:30: b6:f1:fd:23:f4:ca:c9:74:2d:ea:37:0e:44:61:43:b1:46:48: 0f:8c:b8:fb:77:f3:27:64:59:c7:f5:f0:30:6b:e2:97:10:25: db:d9:a0:f3:9b:56:b5:ca:18:73:40:b5:15:90:09:18:50:d6: b6:c3:c3:03:3e:4d:4f:fc:1d:c3:73:15:1e:6b:c5:cb:34:45: 23:31:d1:92:e5:88:5e:ef:0e:8e:a7:01:68:15:36:78:2a:03: 46:96:7e:c5:82:89:81:97:ea:d0:36:a7:e1:ea:e0:a8:14:c2: d7:a1:8b:c3:b1:de:c5:09:8f:96:61:c5:c0:de:ea:53:ff:9d: f6:e4:fd:0b:c4:d7:e3:73:6c:07:67:3d:42:a9:6d:74:dd:7d: 08:11:15:d8:a5:5a:82:e9:b9:7e:60:44:16:65:02:b2:a4:62: 0f:7c:9f:34:54:03:d8:b8:36:2e:87:57:b4:13:38:a3:8c:43: 58:06:57:08 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtxtRIQrMjh2WqjlQUYYzYjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJmMjgwNTk5MmU2NTMxZDNkYTMxZWUxYWY2YmNkNWMwNmQw MmI2Y2EwHhcNMjUxMjMxMDAwMDUwWhcNMjYwMTAxMDAwMDUwWjAzMTEwLwYDVQQD EyhhNGEwYTNhZjI3MTU3ZTZlN2FjNGRhZTk5MmJiZDk2ZjhkODdjNWFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3Mv1N44tAndZ20fiKHecsYNDJSL3 eUrVv1b2CNZuu8JOm6ydljcAs8YTQxvEPr393Z7aLYEPDtrP5wYgLL4brO9yuccM 8+lt8aVtFYfg6UorY52PTcWS1l0VzRdv1crSkuVmf9NBC9EVH0CAbvk6yNQXur4x pVDLu0apK9hQH6ZQeNAGivQur0VbrVFBRm+LFVod0a6OKHt1gzGLLeqveZTWmEIw LMAU3zKXhba8+hUAGtf5zVoO/GkFz1izUQnTfc1r7LqLUHu356MQZ1mVnH0Ei1Yk os2Zu8/qviGO15OkRU0XM6GmzGAmQv4LOpBb3WwCOEhGRi1OhNeJcbEYAwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKSgo68nFX5uesTa6ZK72W+Nh8WuMB8GA1UdIwQY MBaAFL8oBZkuZTHT2jHuGva81cBtArbKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdnlnRm1TNWxNZFBhTWU0YTlyelZ3RzBDdHNvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi83NTg0NjctNjgxOC00ZTg0LTg3YmEt NWQ4Mzg2NjhiZWJlLzEvdnlnRm1TNWxNZFBhTWU0YTlyelZ3RzBDdHNvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYi83NTg0NjctNjgxOC00ZTg0LTg3YmEtNWQ4Mzg2NjhiZWJl LzEvdnlnRm1TNWxNZFBhTWU0YTlyelZ3RzBDdHNvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAge4vywmL CvQQPnOyWq7H5bMjxmYM7n24YNfyz7UmDFdSer7WPNVZkpA10yBtOkoWlEuncxg9 hgPCvHY/PGHvMx3GgRDs6SowtvH9I/TKyXQt6jcORGFDsUZID4y4+3fzJ2RZx/Xw MGvilxAl29mg85tWtcoYc0C1FZAJGFDWtsPDAz5NT/wdw3MVHmvFyzRFIzHRkuWI Xu8OjqcBaBU2eCoDRpZ+xYKJgZfq0Dan4ergqBTC16GLw7HexQmPlmHFwN7qU/+d 9uT9C8TX43NsB2c9QqltdN19CBEV2KVagum5fmBEFmUCsqRiD3yfNFQD2Lg2LodX tBM4o4xDWAZXCA== -----END CERTIFICATE-----Generated at Wed Dec 31 02:00:43 2025 by rpki-client