This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/d07e9e-132a-48e2-9538-902aec440464/1/vK-LpZ96PF0A_grUVk2AUk33-pA.mft File: vK-LpZ96PF0A_grUVk2AUk33-pA.mft (raw, json) Hash identifier: LBF1m+VdH97Z2+44RtgOT75/0/amUwO0DsIEzSZsPOA= Subject key identifier: 65:CD:A6:D2:00:C4:40:94:41:4D:CE:11:AE:DE:D0:A1:73:93:44:74 Authority key identifier: BC:AF:8B:A5:9F:7A:3C:5D:00:FE:0A:D4:56:4D:80:52:4D:F7:FA:90 Certificate issuer: /CN=bcaf8ba59f7a3c5d00fe0ad4564d80524df7fa90 Certificate serial: 019B3EA3BDE00B63DF67A68EE04B72E7CF2B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vK-LpZ96PF0A_grUVk2AUk33-pA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/d07e9e-132a-48e2-9538-902aec440464/1/vK-LpZ96PF0A_grUVk2AUk33-pA.mft Manifest number: 1786 Signing time: Sun 21 Dec 2025 02:01:16 +0000 Manifest this update: Sun 21 Dec 2025 02:01:16 +0000 Manifest next update: Mon 22 Dec 2025 02:01:16 +0000 Files and hashes: 1: A27u4uaTW6Wfn1YJN7sriqWyvlY.roa (hash: eRUT0mnKKp1D1eZhZRZxpjyCM3yHa+jgOt2PMVH/I+o=) 2: vK-LpZ96PF0A_grUVk2AUk33-pA.crl (hash: EKcBaSYmnmXeK6Q4I9no9ZRxdCV/JfAckB7bJTXldLk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/d07e9e-132a-48e2-9538-902aec440464/1/vK-LpZ96PF0A_grUVk2AUk33-pA.crl rsync://rpki.ripe.net/repository/DEFAULT/cd/d07e9e-132a-48e2-9538-902aec440464/1/vK-LpZ96PF0A_grUVk2AUk33-pA.mft rsync://rpki.ripe.net/repository/DEFAULT/vK-LpZ96PF0A_grUVk2AUk33-pA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3e:a3:bd:e0:0b:63:df:67:a6:8e:e0:4b:72:e7:cf:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bcaf8ba59f7a3c5d00fe0ad4564d80524df7fa90 Validity Not Before: Dec 21 02:01:16 2025 GMT Not After : Dec 22 02:01:16 2025 GMT Subject: CN=65cda6d200c44094414dce11aeded0a173934474 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:34:e1:55:b2:24:ce:ae:5b:06:1b:d7:1b:a1: 5b:37:21:b6:08:84:ad:76:df:3f:a7:15:d3:30:bc: f1:ce:c4:3a:db:7e:19:50:60:fe:41:d0:8c:2a:cc: 0b:2d:4d:4c:78:7b:93:92:f3:0b:d3:cb:b1:1f:32: 36:2d:97:6f:01:56:83:08:02:f3:fd:0b:0f:18:54: d7:3d:2e:aa:dd:de:16:c5:ad:cd:c9:4c:b8:15:1c: 91:b6:96:35:f4:80:2b:15:a5:07:1c:49:f7:08:de: 8c:d4:2f:f3:39:69:ec:3c:7d:f2:89:4c:09:3d:85: 87:3c:56:fc:d1:de:53:cb:53:d1:31:09:01:8d:fd: a1:8b:86:31:dc:1f:e6:d1:31:24:a4:a4:ee:86:8d: 18:54:a7:f3:19:42:30:b6:97:92:e8:67:69:82:b4: 33:f8:b2:d4:03:71:00:7d:0f:ac:86:de:f1:f6:6a: 43:56:6e:86:72:7b:fc:4a:55:cc:85:54:64:50:a2: 82:42:7c:e2:36:1d:27:5b:34:22:c7:c6:da:ca:04: 8a:70:d6:4c:70:d1:83:c1:0b:8e:ce:b8:59:ad:95: 88:3f:16:2e:f0:89:f3:3f:be:91:21:23:83:c0:4e: 6b:00:50:81:9b:25:14:a6:21:0f:0a:c8:71:50:07: 42:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:CD:A6:D2:00:C4:40:94:41:4D:CE:11:AE:DE:D0:A1:73:93:44:74 X509v3 Authority Key Identifier: keyid:BC:AF:8B:A5:9F:7A:3C:5D:00:FE:0A:D4:56:4D:80:52:4D:F7:FA:90 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vK-LpZ96PF0A_grUVk2AUk33-pA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d07e9e-132a-48e2-9538-902aec440464/1/vK-LpZ96PF0A_grUVk2AUk33-pA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d07e9e-132a-48e2-9538-902aec440464/1/vK-LpZ96PF0A_grUVk2AUk33-pA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5d:65:e6:33:65:c9:f7:31:b3:20:63:df:0a:6b:6e:16:39:f7: 99:0f:f1:03:02:cd:3e:5d:fa:55:39:01:57:c0:2c:7f:57:6c: ee:76:53:a7:4a:b3:56:c5:43:e3:05:b7:b5:fe:f2:47:ba:d2: d2:11:92:ce:bf:b7:d3:0c:f1:70:32:7e:97:30:7a:6f:38:c6: 91:2e:d7:5b:f5:07:95:a1:d8:8f:a4:55:16:ee:e6:ea:e8:16: 26:b1:a2:ab:f0:31:f9:c2:da:1e:a2:96:f8:5c:dc:88:7e:22: 62:9a:9b:39:1a:90:70:f1:61:ce:03:57:1e:1c:79:a7:02:ce: ad:ac:ad:1c:c2:69:4a:c6:92:16:30:5c:78:7a:8d:28:57:26: 77:72:87:c7:b5:cd:2f:cd:ee:4b:00:2b:b6:fd:32:93:cc:d4: ed:a3:fd:09:d9:c6:1d:ac:98:60:35:99:16:b8:8d:48:5e:14: 0e:17:57:43:e0:59:1f:8c:2a:b7:9f:5c:96:a1:55:06:4b:74: fe:c2:f4:12:51:d2:dd:6a:ec:74:5d:d5:5a:c2:e2:ea:37:18: 66:35:43:4c:66:86:4d:c9:96:7e:38:52:70:ad:56:d9:6d:54: 9f:5d:ef:b2:c9:21:be:68:39:c3:93:73:b8:db:e6:5e:5e:15: 17:2e:c4:9c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs+o73gC2PfZ6aO4Ety588rMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJjYWY4YmE1OWY3YTNjNWQwMGZlMGFkNDU2NGQ4MDUyNGRm N2ZhOTAwHhcNMjUxMjIxMDIwMTE2WhcNMjUxMjIyMDIwMTE2WjAzMTEwLwYDVQQD Eyg2NWNkYTZkMjAwYzQ0MDk0NDE0ZGNlMTFhZWRlZDBhMTczOTM0NDc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApzThVbIkzq5bBhvXG6FbNyG2CISt dt8/pxXTMLzxzsQ6234ZUGD+QdCMKswLLU1MeHuTkvML08uxHzI2LZdvAVaDCALz /QsPGFTXPS6q3d4Wxa3NyUy4FRyRtpY19IArFaUHHEn3CN6M1C/zOWnsPH3yiUwJ PYWHPFb80d5Ty1PRMQkBjf2hi4Yx3B/m0TEkpKTuho0YVKfzGUIwtpeS6GdpgrQz +LLUA3EAfQ+sht7x9mpDVm6Gcnv8SlXMhVRkUKKCQnziNh0nWzQix8baygSKcNZM cNGDwQuOzrhZrZWIPxYu8InzP76RISODwE5rAFCBmyUUpiEPCshxUAdCUQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGXNptIAxECUQU3OEa7e0KFzk0R0MB8GA1UdIwQY MBaAFLyvi6WfejxdAP4K1FZNgFJN9/qQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdkstTHBaOTZQRjBBX2dyVVZrMkFVazMzLXBBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC9kMDdlOWUtMTMyYS00OGUyLTk1Mzgt OTAyYWVjNDQwNDY0LzEvdkstTHBaOTZQRjBBX2dyVVZrMkFVazMzLXBBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZC9kMDdlOWUtMTMyYS00OGUyLTk1MzgtOTAyYWVjNDQwNDY0 LzEvdkstTHBaOTZQRjBBX2dyVVZrMkFVazMzLXBBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXWXmM2XJ 9zGzIGPfCmtuFjn3mQ/xAwLNPl36VTkBV8Asf1ds7nZTp0qzVsVD4wW3tf7yR7rS 0hGSzr+30wzxcDJ+lzB6bzjGkS7XW/UHlaHYj6RVFu7m6ugWJrGiq/Ax+cLaHqKW +FzciH4iYpqbORqQcPFhzgNXHhx5pwLOraytHMJpSsaSFjBceHqNKFcmd3KHx7XN L83uSwArtv0yk8zU7aP9CdnGHayYYDWZFriNSF4UDhdXQ+BZH4wqt59clqFVBkt0 /sL0ElHS3WrsdF3VWsLi6jcYZjVDTGaGTcmWfjhScK1W2W1Un13vsskhvmg5w5Nz uNvmXl4VFy7EnA== -----END CERTIFICATE-----Generated at Sun Dec 21 06:44:45 2025 by rpki-client