This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/0184bd-b5d2-4b9c-916b-d0456f729873/1/vdZBBaGdzVxnXAo_mO6MYE6Ajxs.mft File: vdZBBaGdzVxnXAo_mO6MYE6Ajxs.mft (raw, json) Hash identifier: 5YJFeqDSpRHFSe/Fse296Z2cKCQWMCSYS5Aokjr2GOc= Subject key identifier: 38:58:D5:3B:44:A9:90:F9:F3:FB:6D:27:C9:A1:6A:B1:E3:DD:DE:73 Authority key identifier: BD:D6:41:05:A1:9D:CD:5C:67:5C:0A:3F:98:EE:8C:60:4E:80:8F:1B Certificate issuer: /CN=bdd64105a19dcd5c675c0a3f98ee8c604e808f1b Certificate serial: 019B5D53B830ED7F8F05FD5856B170B9026A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vdZBBaGdzVxnXAo_mO6MYE6Ajxs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/0184bd-b5d2-4b9c-916b-d0456f729873/1/vdZBBaGdzVxnXAo_mO6MYE6Ajxs.mft Manifest number: 0C73 Signing time: Sat 27 Dec 2025 01:02:06 +0000 Manifest this update: Sat 27 Dec 2025 01:02:06 +0000 Manifest next update: Sun 28 Dec 2025 01:02:06 +0000 Files and hashes: 1: vdZBBaGdzVxnXAo_mO6MYE6Ajxs.crl (hash: npgo3cgbMuEKB3NZkGUDHL0SqBpK9JBskN8bozisOzU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/0184bd-b5d2-4b9c-916b-d0456f729873/1/vdZBBaGdzVxnXAo_mO6MYE6Ajxs.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/0184bd-b5d2-4b9c-916b-d0456f729873/1/vdZBBaGdzVxnXAo_mO6MYE6Ajxs.mft rsync://rpki.ripe.net/repository/DEFAULT/vdZBBaGdzVxnXAo_mO6MYE6Ajxs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 28 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5d:53:b8:30:ed:7f:8f:05:fd:58:56:b1:70:b9:02:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bdd64105a19dcd5c675c0a3f98ee8c604e808f1b Validity Not Before: Dec 27 01:02:06 2025 GMT Not After : Dec 28 01:02:06 2025 GMT Subject: CN=3858d53b44a990f9f3fb6d27c9a16ab1e3ddde73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:54:16:07:09:52:ad:04:55:7d:0b:9e:e0:0e: 5d:c8:3b:00:72:16:7d:1f:24:a4:20:1d:e4:89:62: a7:be:9c:d3:4d:14:f7:d6:b1:02:96:c5:66:c6:a1: 73:a1:7d:00:e8:dc:c7:cd:96:9b:7d:96:59:b8:7c: 92:86:0d:85:ef:52:6f:25:7b:cb:ec:88:1f:99:5e: f5:9f:82:95:7b:57:7e:e3:a5:d1:f9:af:0c:b8:d6: 0c:bb:fb:d9:9b:ea:86:2b:43:72:7b:16:1a:8f:ed: a4:3a:1f:50:27:8e:4f:ae:8b:a3:09:50:34:f8:07: b0:cb:2f:a5:24:93:c0:18:63:22:6e:c1:75:76:02: dc:67:7d:90:23:39:31:63:b7:ce:30:8d:d8:4d:ff: 99:83:85:f2:d8:1e:c3:73:c0:e6:e9:ad:3c:0b:d4: a1:20:b7:f5:bc:b5:67:8d:c2:46:cf:9b:b5:2c:ff: ac:d0:52:95:41:95:fa:1b:5f:34:0e:ad:f5:f8:13: ad:c2:1c:bb:0b:51:6c:d1:d6:f3:bf:ea:c8:1e:f9: cd:87:89:65:7d:59:ec:e3:bd:06:65:db:15:11:5e: ea:7a:38:8c:90:67:27:37:9c:2a:7a:f8:94:45:9b: b9:a0:c7:4e:3a:bd:7a:12:1e:66:4d:89:b7:85:f7: 05:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:58:D5:3B:44:A9:90:F9:F3:FB:6D:27:C9:A1:6A:B1:E3:DD:DE:73 X509v3 Authority Key Identifier: keyid:BD:D6:41:05:A1:9D:CD:5C:67:5C:0A:3F:98:EE:8C:60:4E:80:8F:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vdZBBaGdzVxnXAo_mO6MYE6Ajxs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/0184bd-b5d2-4b9c-916b-d0456f729873/1/vdZBBaGdzVxnXAo_mO6MYE6Ajxs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/0184bd-b5d2-4b9c-916b-d0456f729873/1/vdZBBaGdzVxnXAo_mO6MYE6Ajxs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7c:f1:ff:96:ab:ee:94:fb:6b:50:a0:cc:bd:08:c8:26:0c:2b: 4b:cc:c8:6b:fd:ba:81:69:09:45:61:0f:20:69:98:80:99:9c: 0d:bd:a3:30:a6:ff:a5:57:61:99:49:00:0d:05:fd:b4:d8:b0: 6d:32:00:ac:8f:ce:13:06:c4:9e:98:3f:5c:21:35:27:26:a1: 09:0d:d9:35:31:48:d9:64:4c:71:60:e6:a3:ab:35:ac:80:c4: f7:40:db:13:29:ea:72:11:a5:3a:33:3e:64:6a:f9:71:da:5e: c6:c0:f2:18:ac:09:ab:f6:58:28:63:cd:42:ac:d8:3a:cd:16: 63:91:87:41:5b:a0:12:38:a7:4d:ea:88:f0:cd:0f:03:c2:38: c1:f2:27:8c:f2:9d:52:ba:c8:6b:99:e1:f4:f6:38:2e:34:6c: ba:1a:06:00:38:0f:7a:90:10:81:7d:7f:63:ec:2a:9f:c7:d2: 3f:58:fd:87:0b:cc:e0:ec:e6:79:b8:9b:ec:c3:9d:97:6d:82: 39:d4:31:1b:35:cc:85:52:14:b3:9f:d4:06:f1:07:bc:ec:2c: 0f:c3:81:bd:e9:c2:3e:d0:cd:00:d4:92:ea:de:f1:be:c1:7b: 8f:3d:6f:c7:c2:91:10:ae:46:70:5a:94:29:4b:de:19:54:54: da:9f:9b:33 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtdU7gw7X+PBf1YVrFwuQJqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJkZDY0MTA1YTE5ZGNkNWM2NzVjMGEzZjk4ZWU4YzYwNGU4 MDhmMWIwHhcNMjUxMjI3MDEwMjA2WhcNMjUxMjI4MDEwMjA2WjAzMTEwLwYDVQQD EygzODU4ZDUzYjQ0YTk5MGY5ZjNmYjZkMjdjOWExNmFiMWUzZGRkZTczMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzlQWBwlSrQRVfQue4A5dyDsAchZ9 HySkIB3kiWKnvpzTTRT31rEClsVmxqFzoX0A6NzHzZabfZZZuHyShg2F71JvJXvL 7IgfmV71n4KVe1d+46XR+a8MuNYMu/vZm+qGK0NyexYaj+2kOh9QJ45ProujCVA0 +Aewyy+lJJPAGGMibsF1dgLcZ32QIzkxY7fOMI3YTf+Zg4Xy2B7Dc8Dm6a08C9Sh ILf1vLVnjcJGz5u1LP+s0FKVQZX6G180Dq31+BOtwhy7C1Fs0dbzv+rIHvnNh4ll fVns470GZdsVEV7qejiMkGcnN5wqeviURZu5oMdOOr16Eh5mTYm3hfcFMQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDhY1TtEqZD58/ttJ8mharHj3d5zMB8GA1UdIwQY MBaAFL3WQQWhnc1cZ1wKP5jujGBOgI8bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdmRaQkJhR2R6VnhuWEFvX21PNk1ZRTZBanhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy8wMTg0YmQtYjVkMi00YjljLTkxNmIt ZDA0NTZmNzI5ODczLzEvdmRaQkJhR2R6VnhuWEFvX21PNk1ZRTZBanhzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy8wMTg0YmQtYjVkMi00YjljLTkxNmItZDA0NTZmNzI5ODcz LzEvdmRaQkJhR2R6VnhuWEFvX21PNk1ZRTZBanhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfPH/lqvu lPtrUKDMvQjIJgwrS8zIa/26gWkJRWEPIGmYgJmcDb2jMKb/pVdhmUkADQX9tNiw bTIArI/OEwbEnpg/XCE1JyahCQ3ZNTFI2WRMcWDmo6s1rIDE90DbEynqchGlOjM+ ZGr5cdpexsDyGKwJq/ZYKGPNQqzYOs0WY5GHQVugEjinTeqI8M0PA8I4wfInjPKd UrrIa5nh9PY4LjRsuhoGADgPepAQgX1/Y+wqn8fSP1j9hwvM4Ozmebib7MOdl22C OdQxGzXMhVIUs5/UBvEHvOwsD8OBvenCPtDNANSS6t7xvsF7jz1vx8KREK5GcFqU KUveGVRU2p+bMw== -----END CERTIFICATE-----Generated at Sat Dec 27 07:24:49 2025 by rpki-client