This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/2ddd39-e7bd-44ba-ab21-2f0655f01029/1/VKwN3sMOJORX4W5lB9IZcoMQiT0.mft File: VKwN3sMOJORX4W5lB9IZcoMQiT0.mft (raw, json) Hash identifier: VUS7RfWkgogwxH7XbYOIiY3/5b70W7CmKfJTH3nuYNs= Subject key identifier: 15:41:29:6B:26:88:2E:AC:DF:83:ED:4E:65:38:E8:92:A0:A6:9B:D5 Authority key identifier: 54:AC:0D:DE:C3:0E:24:E4:57:E1:6E:65:07:D2:19:72:83:10:89:3D Certificate issuer: /CN=54ac0ddec30e24e457e16e6507d219728310893d Certificate serial: 019B5ABFA946E9BB03A5C56917505215ACB9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VKwN3sMOJORX4W5lB9IZcoMQiT0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/2ddd39-e7bd-44ba-ab21-2f0655f01029/1/VKwN3sMOJORX4W5lB9IZcoMQiT0.mft Manifest number: 0301 Signing time: Fri 26 Dec 2025 13:01:08 +0000 Manifest this update: Fri 26 Dec 2025 13:01:08 +0000 Manifest next update: Sat 27 Dec 2025 13:01:08 +0000 Files and hashes: 1: VKwN3sMOJORX4W5lB9IZcoMQiT0.crl (hash: vzIW7AWfpXHPgfOWPDZBn9fkMVYyNtohkcIghPtV6Mk=) 2: vZQ8DYlXaa-1KdDuQQWyFWrY5xY.roa (hash: uYVj3mBuLw9REup3cNf5o/ZVZ2uRBM7pKiuYKla1arE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/2ddd39-e7bd-44ba-ab21-2f0655f01029/1/VKwN3sMOJORX4W5lB9IZcoMQiT0.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/2ddd39-e7bd-44ba-ab21-2f0655f01029/1/VKwN3sMOJORX4W5lB9IZcoMQiT0.mft rsync://rpki.ripe.net/repository/DEFAULT/VKwN3sMOJORX4W5lB9IZcoMQiT0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:bf:a9:46:e9:bb:03:a5:c5:69:17:50:52:15:ac:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=54ac0ddec30e24e457e16e6507d219728310893d Validity Not Before: Dec 26 13:01:08 2025 GMT Not After : Dec 27 13:01:08 2025 GMT Subject: CN=1541296b26882eacdf83ed4e6538e892a0a69bd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:6b:17:09:8f:d5:ce:50:32:d1:37:3c:77:09: 29:01:77:af:98:32:cc:de:2b:20:c1:65:a2:c5:92: 43:1a:7c:04:b9:64:dc:ce:d8:fe:ef:ca:46:69:7a: 49:a4:74:31:80:80:e2:6d:d8:c7:8c:b0:cd:ff:6d: e3:2f:16:2c:1d:d1:cf:80:b6:ef:92:a6:9d:a8:d1: 5b:ed:e3:5d:d5:01:07:41:87:f7:87:08:30:84:7d: 8a:0f:32:9d:b9:d2:aa:50:96:a6:18:4e:f9:23:a3: cf:cd:37:af:90:11:e6:56:b8:67:94:0d:24:7c:bf: c3:7f:f3:23:80:8f:1e:38:1a:e6:43:de:1f:d5:dd: 67:c0:c3:b4:d1:51:d1:25:b5:e0:82:59:cb:f3:dd: f4:21:c5:2e:91:fe:3b:6e:6b:fc:34:c9:10:99:ca: c0:96:f7:4d:d0:c9:c4:93:11:6d:d8:bd:2f:9b:32: a2:ee:90:95:e5:78:ee:eb:c2:22:b5:6d:9e:ce:20: e6:71:33:48:47:dd:5a:e1:ab:9d:2a:aa:38:21:d4: a7:a4:c7:a2:47:8b:6c:1c:37:16:c2:c5:17:cc:ce: 84:dc:ff:23:94:ee:13:83:a9:1b:9d:65:ec:03:f8: d6:7a:54:aa:24:bd:0f:b3:ad:cb:50:b5:a4:54:1d: 96:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:41:29:6B:26:88:2E:AC:DF:83:ED:4E:65:38:E8:92:A0:A6:9B:D5 X509v3 Authority Key Identifier: keyid:54:AC:0D:DE:C3:0E:24:E4:57:E1:6E:65:07:D2:19:72:83:10:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VKwN3sMOJORX4W5lB9IZcoMQiT0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/2ddd39-e7bd-44ba-ab21-2f0655f01029/1/VKwN3sMOJORX4W5lB9IZcoMQiT0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/2ddd39-e7bd-44ba-ab21-2f0655f01029/1/VKwN3sMOJORX4W5lB9IZcoMQiT0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4c:e0:c3:90:89:62:a8:ac:ee:1b:d5:f9:6e:ea:ba:7a:52:b2: 34:95:0e:b1:dc:7e:91:27:b8:81:01:ca:86:ad:99:1d:3e:5d: b0:e1:08:eb:ae:66:bb:25:68:70:95:20:8c:9c:92:98:73:ac: ad:6b:1f:83:f6:dc:6c:2b:76:6e:bc:6b:51:ac:91:1f:cd:47: 3b:83:87:1b:53:c1:a2:d6:01:bb:f7:87:d6:e2:8d:64:4d:0b: 14:7e:1e:84:2f:7e:45:a7:43:b2:67:da:25:d6:1d:16:1b:ab: ce:81:de:67:bc:ae:82:37:d0:c2:50:ba:ac:b5:98:35:37:f0: 50:a4:aa:04:bf:f1:c7:65:2a:c9:d7:bd:3f:22:17:f2:8a:c4: f4:57:50:85:1f:26:be:4d:4e:24:0d:ea:96:c4:93:b0:2b:69: 3b:f3:d0:3e:46:5f:f4:01:f1:a4:5b:e9:4c:80:b5:d1:2d:ac: 79:0a:8b:15:5a:7d:68:df:69:72:65:df:3b:70:d4:bc:41:c4: 61:97:3f:44:b9:19:ff:c5:6c:be:1c:af:72:57:de:8e:81:44: e8:73:23:c0:fe:81:79:df:4d:f8:8f:f9:d4:f4:48:1c:e3:e2: be:e1:74:fb:c7:a8:54:b9:9e:bd:9e:4e:57:64:0a:e2:99:2c: c7:19:c7:3f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtav6lG6bsDpcVpF1BSFay5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU0YWMwZGRlYzMwZTI0ZTQ1N2UxNmU2NTA3ZDIxOTcyODMx MDg5M2QwHhcNMjUxMjI2MTMwMTA4WhcNMjUxMjI3MTMwMTA4WjAzMTEwLwYDVQQD EygxNTQxMjk2YjI2ODgyZWFjZGY4M2VkNGU2NTM4ZTg5MmEwYTY5YmQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvmsXCY/VzlAy0Tc8dwkpAXevmDLM 3isgwWWixZJDGnwEuWTcztj+78pGaXpJpHQxgIDibdjHjLDN/23jLxYsHdHPgLbv kqadqNFb7eNd1QEHQYf3hwgwhH2KDzKdudKqUJamGE75I6PPzTevkBHmVrhnlA0k fL/Df/MjgI8eOBrmQ94f1d1nwMO00VHRJbXgglnL8930IcUukf47bmv8NMkQmcrA lvdN0MnEkxFt2L0vmzKi7pCV5Xju68IitW2eziDmcTNIR91a4audKqo4IdSnpMei R4tsHDcWwsUXzM6E3P8jlO4Tg6kbnWXsA/jWelSqJL0Ps63LULWkVB2WTQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBVBKWsmiC6s34PtTmU46JKgppvVMB8GA1UdIwQY MBaAFFSsDd7DDiTkV+FuZQfSGXKDEIk9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVkt3TjNzTU9KT1JYNFc1bEI5SVpjb01RaVQwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC8yZGRkMzktZTdiZC00NGJhLWFiMjEt MmYwNjU1ZjAxMDI5LzEvVkt3TjNzTU9KT1JYNFc1bEI5SVpjb01RaVQwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC8yZGRkMzktZTdiZC00NGJhLWFiMjEtMmYwNjU1ZjAxMDI5 LzEvVkt3TjNzTU9KT1JYNFc1bEI5SVpjb01RaVQwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATODDkIli qKzuG9X5buq6elKyNJUOsdx+kSe4gQHKhq2ZHT5dsOEI665muyVocJUgjJySmHOs rWsfg/bcbCt2brxrUayRH81HO4OHG1PBotYBu/eH1uKNZE0LFH4ehC9+RadDsmfa JdYdFhurzoHeZ7yugjfQwlC6rLWYNTfwUKSqBL/xx2Uqyde9PyIX8orE9FdQhR8m vk1OJA3qlsSTsCtpO/PQPkZf9AHxpFvpTIC10S2seQqLFVp9aN9pcmXfO3DUvEHE YZc/RLkZ/8VsvhyvclfejoFE6HMjwP6Bed9N+I/51PRIHOPivuF0+8eoVLmevZ5O V2QK4pksxxnHPw== -----END CERTIFICATE-----Generated at Fri Dec 26 14:16:03 2025 by rpki-client