This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/3ad43e-a4db-4465-82b5-ffae20700e93/1/vGNYdq8cfvgkEbQEpw2It5FlCfY.mft File: vGNYdq8cfvgkEbQEpw2It5FlCfY.mft (raw, json) Hash identifier: 2O5N4p182hLnDP6J2LuEgj2LzvJscE+ocv/G2id0O/s= Subject key identifier: D6:E5:38:70:3C:A4:B4:93:3E:20:E2:2C:DC:E1:6B:99:5C:EF:B1:4D Authority key identifier: BC:63:58:76:AF:1C:7E:F8:24:11:B4:04:A7:0D:88:B7:91:65:09:F6 Certificate issuer: /CN=bc635876af1c7ef82411b404a70d88b7916509f6 Certificate serial: 019B3A910A44AA3A2DFE37A3F49046F5E187 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vGNYdq8cfvgkEbQEpw2It5FlCfY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/3ad43e-a4db-4465-82b5-ffae20700e93/1/vGNYdq8cfvgkEbQEpw2It5FlCfY.mft Manifest number: 06C6 Signing time: Sat 20 Dec 2025 07:02:22 +0000 Manifest this update: Sat 20 Dec 2025 07:02:22 +0000 Manifest next update: Sun 21 Dec 2025 07:02:22 +0000 Files and hashes: 1: LSy4pwlxx6ifbllGQJDj8D7o8bU.roa (hash: VlWSPvQ7mW3Gy9fHD3zUtzLx6zn5FCR5wnd8Mk9PMXI=) 2: vGNYdq8cfvgkEbQEpw2It5FlCfY.crl (hash: 9FIclSrVsIACyiHGV9c/gvYygTyiffx4A9jz7OJDOmM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/3ad43e-a4db-4465-82b5-ffae20700e93/1/vGNYdq8cfvgkEbQEpw2It5FlCfY.crl rsync://rpki.ripe.net/repository/DEFAULT/a4/3ad43e-a4db-4465-82b5-ffae20700e93/1/vGNYdq8cfvgkEbQEpw2It5FlCfY.mft rsync://rpki.ripe.net/repository/DEFAULT/vGNYdq8cfvgkEbQEpw2It5FlCfY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 07:02:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3a:91:0a:44:aa:3a:2d:fe:37:a3:f4:90:46:f5:e1:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bc635876af1c7ef82411b404a70d88b7916509f6 Validity Not Before: Dec 20 07:02:22 2025 GMT Not After : Dec 21 07:02:22 2025 GMT Subject: CN=d6e538703ca4b4933e20e22cdce16b995cefb14d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:31:14:b2:92:92:44:7b:1a:bd:d0:61:67:c6: c6:82:46:c9:8e:9b:a3:0a:d8:9e:72:24:08:d7:51: 1c:32:b1:d7:10:0c:a0:dc:68:13:38:21:43:f9:b0: de:63:f9:ca:0c:67:2b:9e:d0:d7:fa:e4:24:9a:8e: 53:a8:2d:b8:fd:69:b9:45:b6:f3:b8:10:f1:da:df: 7d:91:ea:33:95:a0:67:fd:2d:2e:40:74:50:63:9e: 7a:45:b6:3a:16:b9:ae:58:0b:93:a6:12:62:b5:49: a7:8a:81:bb:e9:e9:df:ea:36:97:09:a7:2a:1d:9d: f5:15:a8:48:9e:f3:af:5c:61:2a:ac:bc:21:2c:bf: 45:ef:cb:69:93:d1:96:33:5e:41:53:45:5c:60:20: 75:c7:ec:66:c8:e6:ae:d9:5f:fb:01:1b:c0:3e:fe: af:c1:78:b1:79:57:b1:4b:2e:61:03:95:5e:6c:1b: ed:51:e2:98:ae:55:39:fc:df:48:c5:f9:0d:2e:81: 51:47:ad:22:95:fb:fa:54:d5:db:b5:9e:90:a3:28: f7:bc:91:be:05:90:f0:8c:4b:3e:57:27:fb:2b:7e: 3b:f5:60:7b:3d:5f:e9:ec:c7:fd:67:e3:e5:62:c3: 42:c7:cc:7a:5d:6c:14:f2:53:ad:3f:fe:fa:f4:94: be:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:E5:38:70:3C:A4:B4:93:3E:20:E2:2C:DC:E1:6B:99:5C:EF:B1:4D X509v3 Authority Key Identifier: keyid:BC:63:58:76:AF:1C:7E:F8:24:11:B4:04:A7:0D:88:B7:91:65:09:F6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vGNYdq8cfvgkEbQEpw2It5FlCfY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/3ad43e-a4db-4465-82b5-ffae20700e93/1/vGNYdq8cfvgkEbQEpw2It5FlCfY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/3ad43e-a4db-4465-82b5-ffae20700e93/1/vGNYdq8cfvgkEbQEpw2It5FlCfY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 81:e4:cc:72:31:4c:d9:98:2c:14:55:1c:5d:98:2f:00:42:a4: 1b:23:be:b5:c9:ad:05:52:36:dc:1e:5e:7a:2a:cd:c3:22:4d: da:b9:cd:68:25:31:32:9d:60:05:38:63:97:ed:25:41:b0:5e: 25:6e:55:fe:f9:78:79:cf:24:28:42:62:0a:e1:a0:de:26:42: 8f:a5:98:48:e1:60:6f:75:c5:ec:43:6f:d0:e1:ef:99:3d:47: 59:be:08:5c:9c:87:f4:0e:a1:41:56:61:4f:b5:76:88:df:f5: 7d:b7:ce:06:55:ec:4c:63:26:cc:e8:fd:9a:dd:3a:3d:b2:3e: 4c:ee:0f:cd:2e:50:e8:d4:e8:c7:11:be:0d:23:9d:25:0b:9e: d8:47:47:6d:58:dc:0a:6b:d2:11:12:05:79:dc:61:c4:8b:99: 3a:1f:1c:c6:3e:cd:5f:b4:9b:51:17:dc:b0:28:17:70:4b:35: f6:5d:7b:1b:07:e8:eb:c2:74:41:58:b5:67:5b:fa:64:ee:37: 12:ef:d6:6a:8e:8b:84:3c:82:d6:09:9f:c2:d8:cb:0c:ac:c2: b4:0f:df:8a:2c:2e:9b:48:10:1a:7c:d4:57:85:c2:55:54:1c: 00:1f:cd:70:7e:49:4d:86:28:49:b6:3d:1f:ba:71:b9:60:6a: ac:57:df:0a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs6kQpEqjot/jej9JBG9eGHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJjNjM1ODc2YWYxYzdlZjgyNDExYjQwNGE3MGQ4OGI3OTE2 NTA5ZjYwHhcNMjUxMjIwMDcwMjIyWhcNMjUxMjIxMDcwMjIyWjAzMTEwLwYDVQQD EyhkNmU1Mzg3MDNjYTRiNDkzM2UyMGUyMmNkY2UxNmI5OTVjZWZiMTRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwzEUspKSRHsavdBhZ8bGgkbJjpuj CtieciQI11EcMrHXEAyg3GgTOCFD+bDeY/nKDGcrntDX+uQkmo5TqC24/Wm5Rbbz uBDx2t99keozlaBn/S0uQHRQY556RbY6FrmuWAuTphJitUmnioG76enf6jaXCacq HZ31FahInvOvXGEqrLwhLL9F78tpk9GWM15BU0VcYCB1x+xmyOau2V/7ARvAPv6v wXixeVexSy5hA5VebBvtUeKYrlU5/N9IxfkNLoFRR60ilfv6VNXbtZ6Qoyj3vJG+ BZDwjEs+Vyf7K3479WB7PV/p7Mf9Z+PlYsNCx8x6XWwU8lOtP/769JS+zQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNblOHA8pLSTPiDiLNzha5lc77FNMB8GA1UdIwQY MBaAFLxjWHavHH74JBG0BKcNiLeRZQn2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdkdOWWRxOGNmdmdrRWJRRXB3Mkl0NUZsQ2ZZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC8zYWQ0M2UtYTRkYi00NDY1LTgyYjUt ZmZhZTIwNzAwZTkzLzEvdkdOWWRxOGNmdmdrRWJRRXB3Mkl0NUZsQ2ZZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNC8zYWQ0M2UtYTRkYi00NDY1LTgyYjUtZmZhZTIwNzAwZTkz LzEvdkdOWWRxOGNmdmdrRWJRRXB3Mkl0NUZsQ2ZZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgeTMcjFM 2ZgsFFUcXZgvAEKkGyO+tcmtBVI23B5eeirNwyJN2rnNaCUxMp1gBThjl+0lQbBe JW5V/vl4ec8kKEJiCuGg3iZCj6WYSOFgb3XF7ENv0OHvmT1HWb4IXJyH9A6hQVZh T7V2iN/1fbfOBlXsTGMmzOj9mt06PbI+TO4PzS5Q6NToxxG+DSOdJQue2EdHbVjc CmvSERIFedxhxIuZOh8cxj7NX7SbURfcsCgXcEs19l17Gwfo68J0QVi1Z1v6ZO43 Eu/Wao6LhDyC1gmfwtjLDKzCtA/fiiwum0gQGnzUV4XCVVQcAB/NcH5JTYYoSbY9 H7pxuWBqrFffCg== -----END CERTIFICATE-----Generated at Sat Dec 20 15:25:10 2025 by rpki-client