This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/4f4eff-af54-4db0-91cd-1369cef7a4ca/1/vWjB2tkaQQHHFTwPbQFWI4rXRrs.mft File: vWjB2tkaQQHHFTwPbQFWI4rXRrs.mft (raw, json) Hash identifier: TS1qW02BhN/tQmuoy+yBWTm9J6JgAr3sSE27l0iypoE= Subject key identifier: 00:0D:EE:42:07:9F:27:8B:7B:B4:CE:C7:08:C0:8E:36:C0:B1:8A:2F Authority key identifier: BD:68:C1:DA:D9:1A:41:01:C7:15:3C:0F:6D:01:56:23:8A:D7:46:BB Certificate issuer: /CN=bd68c1dad91a4101c7153c0f6d0156238ad746bb Certificate serial: 019B3FB6629694AFF59060E5BAAA6A5D5A42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vWjB2tkaQQHHFTwPbQFWI4rXRrs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/4f4eff-af54-4db0-91cd-1369cef7a4ca/1/vWjB2tkaQQHHFTwPbQFWI4rXRrs.mft Manifest number: 171A Signing time: Sun 21 Dec 2025 07:01:15 +0000 Manifest this update: Sun 21 Dec 2025 07:01:15 +0000 Manifest next update: Mon 22 Dec 2025 07:01:15 +0000 Files and hashes: 1: T6mhvGgjsjqSjSFXAxAChHn88ic.roa (hash: FPbExUKvK5N7b1i2EWlflqO6OJIjL5/osRySrLfPqFk=) 2: vWjB2tkaQQHHFTwPbQFWI4rXRrs.crl (hash: VsP81fNHAF9MpeSU2QVXNV2e2P+GpcKmZ40pjMPUvds=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/4f4eff-af54-4db0-91cd-1369cef7a4ca/1/vWjB2tkaQQHHFTwPbQFWI4rXRrs.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/4f4eff-af54-4db0-91cd-1369cef7a4ca/1/vWjB2tkaQQHHFTwPbQFWI4rXRrs.mft rsync://rpki.ripe.net/repository/DEFAULT/vWjB2tkaQQHHFTwPbQFWI4rXRrs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3f:b6:62:96:94:af:f5:90:60:e5:ba:aa:6a:5d:5a:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bd68c1dad91a4101c7153c0f6d0156238ad746bb Validity Not Before: Dec 21 07:01:15 2025 GMT Not After : Dec 22 07:01:15 2025 GMT Subject: CN=000dee42079f278b7bb4cec708c08e36c0b18a2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:50:43:f0:58:c0:00:3f:a9:6c:21:f8:3a:ca: 3f:c1:63:c2:5c:a5:57:25:2b:ac:a3:f9:f5:38:5c: dc:b3:eb:a5:9f:13:74:e6:48:e6:17:83:8a:a7:44: d3:76:6e:10:71:4b:76:dd:06:07:d9:af:cc:e4:eb: 6b:12:93:83:c1:fb:7c:a3:f2:a1:04:9c:4a:5e:25: e2:c7:4e:20:b3:b1:75:ed:00:6f:47:70:94:db:b9: 28:1a:13:12:15:43:3b:37:40:fc:52:c6:b6:47:cf: e3:0a:2a:e0:50:93:d0:9a:05:7f:55:b1:ad:1a:3f: 75:32:a2:c8:98:a5:b6:17:35:d3:24:72:c8:60:0d: b2:0c:38:15:81:14:68:eb:18:54:d8:b1:ce:01:3c: 22:83:f7:b2:ca:0a:ad:aa:1c:e1:2e:8c:bd:bd:12: 00:d8:4f:71:2b:61:8f:5c:ca:ca:70:66:b7:65:63: c3:6b:4a:36:53:61:14:9a:09:b5:e1:bf:30:c4:97: 95:b7:88:ec:78:b1:4f:6e:c6:84:07:bd:b2:e4:7e: 72:40:69:d1:67:e5:78:8f:d2:b1:cc:cc:fc:14:55: b7:f2:f8:66:34:67:c6:74:26:22:77:72:a6:f4:81: 91:53:6f:3f:91:a1:6a:6e:1e:42:11:ef:de:8e:3b: 83:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:0D:EE:42:07:9F:27:8B:7B:B4:CE:C7:08:C0:8E:36:C0:B1:8A:2F X509v3 Authority Key Identifier: keyid:BD:68:C1:DA:D9:1A:41:01:C7:15:3C:0F:6D:01:56:23:8A:D7:46:BB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vWjB2tkaQQHHFTwPbQFWI4rXRrs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/4f4eff-af54-4db0-91cd-1369cef7a4ca/1/vWjB2tkaQQHHFTwPbQFWI4rXRrs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/4f4eff-af54-4db0-91cd-1369cef7a4ca/1/vWjB2tkaQQHHFTwPbQFWI4rXRrs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 69:72:21:97:48:f8:dd:ff:71:22:18:a6:c9:0e:f5:9f:dd:34: 44:2e:bc:7c:60:55:db:ae:fb:67:2f:40:95:bc:89:0f:2e:aa: 33:84:97:36:b8:31:d0:aa:7f:ba:3e:af:3a:2a:12:5d:70:44: 84:ce:94:eb:f9:48:9b:fb:a6:34:af:58:c6:33:62:35:40:e9: b5:4a:af:b8:b1:29:f7:c4:08:f2:2a:81:0a:14:98:b1:3a:9d: 47:a7:44:58:a6:5e:29:30:8c:0c:fc:a0:2b:74:1d:b4:6f:77: 42:d2:74:5e:46:c7:d9:a0:89:f2:a4:b7:b5:c0:54:34:45:7d: a2:8c:88:d5:db:7e:a6:c3:aa:fe:35:3f:48:0e:88:ca:8f:d3: 5d:31:3a:12:69:21:0d:9f:b9:46:f3:47:a0:dc:72:68:ff:6b: b8:ec:30:b6:8a:04:ee:cf:0e:3c:fa:e6:e4:06:cd:ea:a7:de: 19:88:52:9d:4d:b6:52:35:d3:1e:f3:1d:04:18:af:62:50:2e: 40:a3:77:e5:11:4a:95:f2:cd:26:59:92:59:87:f3:f9:1c:6c: 70:ba:23:c7:b8:1b:4d:cc:8b:6c:2f:4d:6b:db:9e:b5:8f:f9: c7:6f:94:85:2e:15:75:ad:9d:db:eb:72:4b:fe:6c:1a:8f:10: ed:b3:f4:a3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs/tmKWlK/1kGDluqpqXVpCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJkNjhjMWRhZDkxYTQxMDFjNzE1M2MwZjZkMDE1NjIzOGFk NzQ2YmIwHhcNMjUxMjIxMDcwMTE1WhcNMjUxMjIyMDcwMTE1WjAzMTEwLwYDVQQD EygwMDBkZWU0MjA3OWYyNzhiN2JiNGNlYzcwOGMwOGUzNmMwYjE4YTJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm1BD8FjAAD+pbCH4Oso/wWPCXKVX JSuso/n1OFzcs+ulnxN05kjmF4OKp0TTdm4QcUt23QYH2a/M5OtrEpODwft8o/Kh BJxKXiXix04gs7F17QBvR3CU27koGhMSFUM7N0D8Usa2R8/jCirgUJPQmgV/VbGt Gj91MqLImKW2FzXTJHLIYA2yDDgVgRRo6xhU2LHOATwig/eyygqtqhzhLoy9vRIA 2E9xK2GPXMrKcGa3ZWPDa0o2U2EUmgm14b8wxJeVt4jseLFPbsaEB72y5H5yQGnR Z+V4j9KxzMz8FFW38vhmNGfGdCYid3Km9IGRU28/kaFqbh5CEe/ejjuD7QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAAN7kIHnyeLe7TOxwjAjjbAsYovMB8GA1UdIwQY MBaAFL1owdrZGkEBxxU8D20BViOK10a7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdldqQjJ0a2FRUUhIRlR3UGJRRldJNHJYUnJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi80ZjRlZmYtYWY1NC00ZGIwLTkxY2Qt MTM2OWNlZjdhNGNhLzEvdldqQjJ0a2FRUUhIRlR3UGJRRldJNHJYUnJzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi80ZjRlZmYtYWY1NC00ZGIwLTkxY2QtMTM2OWNlZjdhNGNh LzEvdldqQjJ0a2FRUUhIRlR3UGJRRldJNHJYUnJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaXIhl0j4 3f9xIhimyQ71n900RC68fGBV2677Zy9AlbyJDy6qM4SXNrgx0Kp/uj6vOioSXXBE hM6U6/lIm/umNK9YxjNiNUDptUqvuLEp98QI8iqBChSYsTqdR6dEWKZeKTCMDPyg K3QdtG93QtJ0XkbH2aCJ8qS3tcBUNEV9ooyI1dt+psOq/jU/SA6Iyo/TXTE6Emkh DZ+5RvNHoNxyaP9ruOwwtooE7s8OPPrm5AbN6qfeGYhSnU22UjXTHvMdBBivYlAu QKN35RFKlfLNJlmSWYfz+RxscLojx7gbTcyLbC9Na9uetY/5x2+UhS4Vda2d2+ty S/5sGo8Q7bP0ow== -----END CERTIFICATE-----Generated at Sun Dec 21 10:17:46 2025 by rpki-client