This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft File: vYUnKkCAkE914jWkevC0EmbipgM.mft (raw, json) Hash identifier: uI/eySy7qTtE70usTPscbhGk+Ns0TCjt0+qPBPWNOO8= Subject key identifier: 81:D1:1D:98:43:3A:A0:0B:B1:57:6A:56:C3:72:48:32:0C:83:6E:CF Authority key identifier: BD:85:27:2A:40:80:90:4F:75:E2:35:A4:7A:F0:B4:12:66:E2:A6:03 Certificate issuer: /CN=bd85272a4080904f75e235a47af0b41266e2a603 Certificate serial: 019B3E6C3046236D8F94C45E4B223833038B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft Manifest number: 0AB3 Signing time: Sun 21 Dec 2025 01:00:36 +0000 Manifest this update: Sun 21 Dec 2025 01:00:36 +0000 Manifest next update: Mon 22 Dec 2025 01:00:36 +0000 Files and hashes: 1: qUq_q62qYu3qxVOMe_F0xihpmUw.roa (hash: SovqRJc4ePvthgrrsQXCalBtYnWMU+TdM7o0xgmwIiE=) 2: vYUnKkCAkE914jWkevC0EmbipgM.crl (hash: VZAs0GQvFUIIrno8kpP6RTYOrWbu+rn0xUCtI38FjTY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.crl rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3e:6c:30:46:23:6d:8f:94:c4:5e:4b:22:38:33:03:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bd85272a4080904f75e235a47af0b41266e2a603 Validity Not Before: Dec 21 01:00:36 2025 GMT Not After : Dec 22 01:00:36 2025 GMT Subject: CN=81d11d98433aa00bb1576a56c37248320c836ecf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:6d:32:74:47:2a:42:52:b2:7a:e9:25:db:4b: 99:92:a6:52:7e:0f:3a:70:f7:79:f1:6d:a3:89:ce: 30:10:cb:58:d3:9c:6d:54:a1:45:b0:f2:b3:29:e4: 93:ab:a2:37:59:54:d0:fb:50:c2:aa:58:c1:3b:22: cc:50:e9:a7:10:5e:e8:e1:0f:2a:f0:1d:10:a9:df: f0:32:90:3e:df:5c:fb:9c:7f:c8:33:09:d9:e8:95: 4b:3a:b2:64:f0:83:d1:79:02:9f:9b:1b:58:66:3d: 9a:47:fe:1d:53:c4:51:06:21:9a:5a:12:9a:d1:f0: 45:33:a2:9d:c2:91:91:f6:9a:47:ca:16:84:80:f8: 68:af:83:ac:61:80:92:c7:e3:86:70:28:f1:1e:c4: 60:4d:c1:de:5d:f7:fa:ce:ac:29:60:ee:f1:0d:26: 0e:e8:18:f3:53:b5:ad:1e:37:46:0a:34:25:2c:c3: 0d:d8:be:b0:33:4e:d1:42:e8:7f:2e:e4:48:c0:35: d2:39:07:a5:1a:9e:0d:b5:98:ff:67:1b:0b:95:31: 7c:7c:e3:50:ae:1d:8e:61:1f:e1:30:55:92:f2:2d: 57:b6:ba:da:d5:fc:ce:42:25:23:b6:8d:14:c2:3c: 9b:6e:aa:5c:12:61:7a:55:3a:fa:e5:76:d8:f2:f5: 69:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:D1:1D:98:43:3A:A0:0B:B1:57:6A:56:C3:72:48:32:0C:83:6E:CF X509v3 Authority Key Identifier: keyid:BD:85:27:2A:40:80:90:4F:75:E2:35:A4:7A:F0:B4:12:66:E2:A6:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1b:16:86:d3:2e:23:e5:58:5b:74:d8:c8:98:6b:c3:86:3a:50: 5f:e8:f7:3d:8c:86:9b:93:01:8a:e2:e7:a0:5b:e8:ee:3e:bf: fc:b7:1a:fd:4c:c5:31:70:31:23:2f:10:2e:28:89:51:8d:47: 23:e4:f0:f3:5b:d1:cf:05:f2:e9:f9:82:f0:f8:ff:4b:74:94: 40:d1:dd:23:e8:d8:70:34:a3:bc:7c:c7:91:51:0f:ae:ec:1c: 50:3f:2c:32:0d:c7:a7:21:cb:32:d2:eb:19:7c:14:79:04:bd: 35:84:ef:4e:4b:40:64:0f:a6:f0:13:6c:4c:24:1a:82:47:b3: a5:82:50:cb:f9:a5:7f:45:8d:40:48:36:3b:50:81:83:1d:b2: ff:53:e8:b5:07:c9:46:0a:d2:a7:e6:b1:90:20:07:4f:e5:c0: 3c:9d:9c:fa:aa:71:f7:e5:aa:54:3d:55:bd:fd:98:47:35:4f: 49:9f:3b:00:c3:34:60:0a:b9:73:a5:ae:a8:ac:a6:9c:6c:a8: e5:99:33:1a:e8:b6:61:8b:56:f9:bb:f4:a2:29:09:b5:93:92: 00:0d:81:c3:88:34:84:12:57:65:6b:10:b3:97:c6:10:1b:c0: 4a:e8:2f:6d:8a:cf:8a:84:2c:69:31:12:5f:e7:94:0f:01:45: 2a:71:31:e5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs+bDBGI22PlMReSyI4MwOLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJkODUyNzJhNDA4MDkwNGY3NWUyMzVhNDdhZjBiNDEyNjZl MmE2MDMwHhcNMjUxMjIxMDEwMDM2WhcNMjUxMjIyMDEwMDM2WjAzMTEwLwYDVQQD Eyg4MWQxMWQ5ODQzM2FhMDBiYjE1NzZhNTZjMzcyNDgzMjBjODM2ZWNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtm0ydEcqQlKyeukl20uZkqZSfg86 cPd58W2jic4wEMtY05xtVKFFsPKzKeSTq6I3WVTQ+1DCqljBOyLMUOmnEF7o4Q8q 8B0Qqd/wMpA+31z7nH/IMwnZ6JVLOrJk8IPReQKfmxtYZj2aR/4dU8RRBiGaWhKa 0fBFM6KdwpGR9ppHyhaEgPhor4OsYYCSx+OGcCjxHsRgTcHeXff6zqwpYO7xDSYO 6BjzU7WtHjdGCjQlLMMN2L6wM07RQuh/LuRIwDXSOQelGp4NtZj/ZxsLlTF8fONQ rh2OYR/hMFWS8i1Xtrra1fzOQiUjto0UwjybbqpcEmF6VTr65XbY8vVpFQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIHRHZhDOqALsVdqVsNySDIMg27PMB8GA1UdIwQY MBaAFL2FJypAgJBPdeI1pHrwtBJm4qYDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdllVbktrQ0FrRTkxNGpXa2V2QzBFbWJpcGdNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC8yODJjYjAtOTFiZS00MjJhLTk1ZDMt MjRmMjBmOTY3NWVjLzEvdllVbktrQ0FrRTkxNGpXa2V2QzBFbWJpcGdNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNC8yODJjYjAtOTFiZS00MjJhLTk1ZDMtMjRmMjBmOTY3NWVj LzEvdllVbktrQ0FrRTkxNGpXa2V2QzBFbWJpcGdNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGxaG0y4j 5VhbdNjImGvDhjpQX+j3PYyGm5MBiuLnoFvo7j6//Lca/UzFMXAxIy8QLiiJUY1H I+Tw81vRzwXy6fmC8Pj/S3SUQNHdI+jYcDSjvHzHkVEPruwcUD8sMg3HpyHLMtLr GXwUeQS9NYTvTktAZA+m8BNsTCQagkezpYJQy/mlf0WNQEg2O1CBgx2y/1PotQfJ RgrSp+axkCAHT+XAPJ2c+qpx9+WqVD1Vvf2YRzVPSZ87AMM0YAq5c6WuqKymnGyo 5ZkzGui2YYtW+bv0oikJtZOSAA2Bw4g0hBJXZWsQs5fGEBvASugvbYrPioQsaTES X+eUDwFFKnEx5Q== -----END CERTIFICATE-----Generated at Sun Dec 21 07:19:52 2025 by rpki-client