This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6bd104-25f6-4826-b234-11d0f20e8cb0/1/vtJXlaaCsRmplIBal2V4U9dUoFw.mft File: vtJXlaaCsRmplIBal2V4U9dUoFw.mft (raw, json) Hash identifier: foqHl9XqAqNVSyLS1DxnYstqAeiAqAkKAf5/BXLCl8Q= Subject key identifier: 3C:3E:91:78:09:A0:EB:A9:47:04:A4:87:41:6C:E0:EA:02:D0:5A:9D Authority key identifier: BE:D2:57:95:A6:82:B1:19:A9:94:80:5A:97:65:78:53:D7:54:A0:5C Certificate issuer: /CN=bed25795a682b119a994805a97657853d754a05c Certificate serial: 019B2D788D8C19B072F7DD3BBE77D996DA24 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vtJXlaaCsRmplIBal2V4U9dUoFw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6bd104-25f6-4826-b234-11d0f20e8cb0/1/vtJXlaaCsRmplIBal2V4U9dUoFw.mft Manifest number: 0C0E Signing time: Wed 17 Dec 2025 18:00:33 +0000 Manifest this update: Wed 17 Dec 2025 18:00:33 +0000 Manifest next update: Thu 18 Dec 2025 18:00:33 +0000 Files and hashes: 1: vtJXlaaCsRmplIBal2V4U9dUoFw.crl (hash: 8HdFOo74UDeEdC2nxUgzW+NXU3oAK5BJtZsHrXlPwDo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/6bd104-25f6-4826-b234-11d0f20e8cb0/1/vtJXlaaCsRmplIBal2V4U9dUoFw.crl rsync://rpki.ripe.net/repository/DEFAULT/cd/6bd104-25f6-4826-b234-11d0f20e8cb0/1/vtJXlaaCsRmplIBal2V4U9dUoFw.mft rsync://rpki.ripe.net/repository/DEFAULT/vtJXlaaCsRmplIBal2V4U9dUoFw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 10:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2d:78:8d:8c:19:b0:72:f7:dd:3b:be:77:d9:96:da:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bed25795a682b119a994805a97657853d754a05c Validity Not Before: Dec 17 18:00:33 2025 GMT Not After : Dec 18 18:00:33 2025 GMT Subject: CN=3c3e917809a0eba94704a487416ce0ea02d05a9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:4d:74:1b:94:34:53:80:11:23:9e:db:b2:24: ff:88:db:d0:00:af:ba:b8:79:d2:c5:7b:08:0b:d6: 32:e6:b0:68:1f:78:e1:d2:f8:5a:d8:29:46:8a:5e: 27:2b:26:a0:b8:9f:6b:df:a6:24:60:e0:7a:80:13: 58:83:37:2b:db:c2:2e:16:32:9c:91:af:6e:11:8b: 66:27:6f:2d:a7:41:c5:54:a8:9f:3d:ba:c5:9f:71: f1:d3:18:01:07:bb:0d:65:6b:8a:4b:59:f3:2c:af: d5:4f:10:ea:ec:cb:2b:61:5b:4c:88:6d:73:3a:a0: 67:b2:7c:93:52:b6:9b:d8:cc:85:23:81:d2:6c:f5: 40:f9:ce:e2:6e:ad:fa:52:00:00:98:cd:9b:34:89: 2c:d3:52:31:81:a3:05:c6:5a:35:1c:6c:ff:e2:5b: 96:a9:a6:2b:ff:9b:7f:8e:62:97:d2:08:43:c4:62: 58:0b:66:36:3e:fa:e5:aa:a5:d8:d1:29:d4:9a:8b: 34:8a:f1:63:7e:02:f2:01:cd:38:1b:33:20:50:6d: f5:81:58:b2:9b:0a:13:53:34:1c:0b:37:ba:65:56: df:b5:1d:f5:fc:83:38:4a:94:a1:72:aa:73:28:c4: c9:f7:ab:8d:01:63:ca:16:4f:4d:11:3c:1a:87:3b: 62:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:3E:91:78:09:A0:EB:A9:47:04:A4:87:41:6C:E0:EA:02:D0:5A:9D X509v3 Authority Key Identifier: keyid:BE:D2:57:95:A6:82:B1:19:A9:94:80:5A:97:65:78:53:D7:54:A0:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vtJXlaaCsRmplIBal2V4U9dUoFw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6bd104-25f6-4826-b234-11d0f20e8cb0/1/vtJXlaaCsRmplIBal2V4U9dUoFw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6bd104-25f6-4826-b234-11d0f20e8cb0/1/vtJXlaaCsRmplIBal2V4U9dUoFw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 22:d6:a0:4b:49:39:82:0c:c5:a5:f4:ba:f4:08:74:c8:15:b2: de:88:b1:6a:66:d8:e6:28:87:53:cb:1c:5c:99:32:d3:fe:10: 9f:81:b6:17:c6:a5:a7:2e:98:06:c0:13:35:63:7d:12:b3:31: 83:9d:ce:b0:3c:a0:ed:ee:7e:d9:ff:64:84:29:19:1a:77:fd: a1:c3:1d:89:37:42:f3:da:67:16:44:d3:7a:b4:22:64:48:4f: c3:9f:96:97:30:b2:c7:de:ef:de:6d:e3:b6:e7:be:f9:64:dc: 47:57:96:3b:b7:89:3a:a7:61:4b:40:e5:0f:54:b8:7d:23:41: 4a:77:c9:8a:8e:e5:39:26:c7:19:7a:bc:bd:3e:18:bb:d3:1b: 91:6c:ec:cf:d7:c0:27:59:5b:33:7c:ac:f4:95:0e:10:80:17: 7b:57:37:b0:ae:59:c9:00:52:d9:87:14:ba:44:34:9f:50:50: 9a:42:64:59:dc:39:41:d7:82:78:c3:25:d5:34:d9:53:6f:b1: 82:5b:70:29:38:9a:3d:18:0a:97:d4:19:d3:82:31:ca:15:12: 82:80:3e:4b:f4:ee:5b:0d:cc:60:d9:da:6c:4a:fb:23:ad:8d: af:12:5e:95:62:6a:cf:52:c4:d3:37:f0:16:10:45:3a:e5:b7: 38:09:2d:59 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsteI2MGbBy9907vnfZltokMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJlZDI1Nzk1YTY4MmIxMTlhOTk0ODA1YTk3NjU3ODUzZDc1 NGEwNWMwHhcNMjUxMjE3MTgwMDMzWhcNMjUxMjE4MTgwMDMzWjAzMTEwLwYDVQQD EygzYzNlOTE3ODA5YTBlYmE5NDcwNGE0ODc0MTZjZTBlYTAyZDA1YTlkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx010G5Q0U4ARI57bsiT/iNvQAK+6 uHnSxXsIC9Yy5rBoH3jh0vha2ClGil4nKyaguJ9r36YkYOB6gBNYgzcr28IuFjKc ka9uEYtmJ28tp0HFVKifPbrFn3Hx0xgBB7sNZWuKS1nzLK/VTxDq7MsrYVtMiG1z OqBnsnyTUrab2MyFI4HSbPVA+c7ibq36UgAAmM2bNIks01IxgaMFxlo1HGz/4luW qaYr/5t/jmKX0ghDxGJYC2Y2PvrlqqXY0SnUmos0ivFjfgLyAc04GzMgUG31gViy mwoTUzQcCze6ZVbftR31/IM4SpShcqpzKMTJ96uNAWPKFk9NETwahzti6QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDw+kXgJoOupRwSkh0Fs4OoC0FqdMB8GA1UdIwQY MBaAFL7SV5WmgrEZqZSAWpdleFPXVKBcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdnRKWGxhYUNzUm1wbElCYWwyVjRVOWRVb0Z3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC82YmQxMDQtMjVmNi00ODI2LWIyMzQt MTFkMGYyMGU4Y2IwLzEvdnRKWGxhYUNzUm1wbElCYWwyVjRVOWRVb0Z3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZC82YmQxMDQtMjVmNi00ODI2LWIyMzQtMTFkMGYyMGU4Y2Iw LzEvdnRKWGxhYUNzUm1wbElCYWwyVjRVOWRVb0Z3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAItagS0k5 ggzFpfS69Ah0yBWy3oixambY5iiHU8scXJky0/4Qn4G2F8alpy6YBsATNWN9ErMx g53OsDyg7e5+2f9khCkZGnf9ocMdiTdC89pnFkTTerQiZEhPw5+WlzCyx97v3m3j tue++WTcR1eWO7eJOqdhS0DlD1S4fSNBSnfJio7lOSbHGXq8vT4Yu9MbkWzsz9fA J1lbM3ys9JUOEIAXe1c3sK5ZyQBS2YcUukQ0n1BQmkJkWdw5QdeCeMMl1TTZU2+x gltwKTiaPRgKl9QZ04IxyhUSgoA+S/TuWw3MYNnabEr7I62NrxJelWJqz1LE0zfw FhBFOuW3OAktWQ== -----END CERTIFICATE-----Generated at Wed Dec 17 19:37:17 2025 by rpki-client