This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/23244d-4886-470b-b1fc-290aa4318caa/1/_1VJGZMcZ70mUPxODHPC-z4ijZU.mft File: _1VJGZMcZ70mUPxODHPC-z4ijZU.mft (raw, json) Hash identifier: BUlSOlFIL5H3wlDsCz1viaMK+gublLwb90G1jZEczGc= Subject key identifier: 81:30:D2:D7:28:41:A0:C0:0D:01:7D:BF:58:76:30:75:4B:30:B1:B2 Authority key identifier: FF:55:49:19:93:1C:67:BD:26:50:FC:4E:0C:73:C2:FB:3E:22:8D:95 Certificate issuer: /CN=ff554919931c67bd2650fc4e0c73c2fb3e228d95 Certificate serial: 019B40FFC3F1936920D057526F5D11510A0B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_1VJGZMcZ70mUPxODHPC-z4ijZU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/23244d-4886-470b-b1fc-290aa4318caa/1/_1VJGZMcZ70mUPxODHPC-z4ijZU.mft Manifest number: 1785 Signing time: Sun 21 Dec 2025 13:01:02 +0000 Manifest this update: Sun 21 Dec 2025 13:01:02 +0000 Manifest next update: Mon 22 Dec 2025 13:01:02 +0000 Files and hashes: 1: _1VJGZMcZ70mUPxODHPC-z4ijZU.crl (hash: 7kyHrZFMgVpaXEwqOmuastiFAmMf1nxWWzROjaU6BlQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/23244d-4886-470b-b1fc-290aa4318caa/1/_1VJGZMcZ70mUPxODHPC-z4ijZU.crl rsync://rpki.ripe.net/repository/DEFAULT/11/23244d-4886-470b-b1fc-290aa4318caa/1/_1VJGZMcZ70mUPxODHPC-z4ijZU.mft rsync://rpki.ripe.net/repository/DEFAULT/_1VJGZMcZ70mUPxODHPC-z4ijZU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 13:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:40:ff:c3:f1:93:69:20:d0:57:52:6f:5d:11:51:0a:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ff554919931c67bd2650fc4e0c73c2fb3e228d95 Validity Not Before: Dec 21 13:01:02 2025 GMT Not After : Dec 22 13:01:02 2025 GMT Subject: CN=8130d2d72841a0c00d017dbf587630754b30b1b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:23:a7:27:fb:b9:5d:44:a8:99:73:bc:a8:19: a2:c6:3d:a7:f6:63:ee:f3:82:5c:be:c8:c9:e3:d0: 88:6f:88:f0:2e:10:d8:c8:e2:ed:c8:c4:99:56:84: 39:22:9c:66:da:ea:df:47:2e:b6:58:fe:3f:44:6f: 5d:ad:bc:7a:e9:02:77:f5:34:38:78:58:49:a3:90: 31:db:58:09:c4:37:4b:8c:59:cb:9c:13:ef:83:65: a7:21:95:4e:d3:ae:70:b7:4f:d5:ad:3c:ca:8e:5b: 10:60:f7:4d:28:98:47:f7:a9:d1:53:71:ad:b2:a3: de:36:36:e0:ab:bb:ba:8a:7f:9e:5c:80:e4:5c:c9: ea:0e:05:97:d5:df:18:c6:21:2a:e2:39:57:72:c5: 4f:14:8f:be:a4:67:77:8a:62:2f:9c:41:5e:4a:d2: 67:5c:c5:e8:4d:b6:ed:57:f3:5b:1e:a1:be:9b:fb: c9:81:73:9f:06:5e:3c:c8:2c:74:0e:e7:12:8e:d0: 47:2a:4e:34:3f:38:0e:c2:f0:76:a9:15:d6:5b:30: f8:f5:74:34:7b:3f:51:df:92:3a:52:82:bb:7f:ba: ef:c6:43:95:75:a9:6c:13:36:ed:3e:23:fb:42:de: c8:c5:af:9e:d4:6e:0f:b4:53:21:40:16:14:a2:4d: 69:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:30:D2:D7:28:41:A0:C0:0D:01:7D:BF:58:76:30:75:4B:30:B1:B2 X509v3 Authority Key Identifier: keyid:FF:55:49:19:93:1C:67:BD:26:50:FC:4E:0C:73:C2:FB:3E:22:8D:95 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_1VJGZMcZ70mUPxODHPC-z4ijZU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/23244d-4886-470b-b1fc-290aa4318caa/1/_1VJGZMcZ70mUPxODHPC-z4ijZU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/23244d-4886-470b-b1fc-290aa4318caa/1/_1VJGZMcZ70mUPxODHPC-z4ijZU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 60:d5:21:43:ce:14:19:40:2f:5c:3c:f4:30:c5:d0:8b:14:66: 7c:bf:1d:ff:e0:a8:38:1c:4b:ed:1a:f7:bf:ec:fd:bf:e5:82: 12:13:89:7f:72:29:b8:ef:ae:20:f3:c6:6c:8c:8b:09:dd:48: 87:28:dd:65:89:6e:be:a0:1f:66:f9:7b:ec:cd:5f:1d:3b:18: 4a:e3:fd:38:38:6e:8b:13:9a:54:a1:16:bc:33:ee:46:5d:ef: a7:3e:92:30:ec:41:3a:73:8f:b3:c4:4f:4d:7c:7e:42:3c:bc: bd:42:6e:92:77:6a:1f:03:c8:83:46:92:0f:53:9b:a4:35:3d: 5d:8d:ba:db:2d:ed:cb:ac:dc:fa:40:00:2f:4b:f9:da:81:a5: b0:ef:14:a6:b8:62:77:43:47:5c:22:df:7e:d7:04:d7:45:81: ec:fe:09:d5:8a:a6:62:57:15:f7:ae:c2:19:88:53:95:e8:85: 5d:a6:21:2a:46:6f:74:e9:f2:66:6f:2f:a7:1c:e2:9b:30:45: 17:80:12:70:10:f7:58:a0:c1:56:02:5b:3f:da:b3:94:6f:8b: c8:8b:2d:63:95:5a:2d:cf:5f:ac:68:8e:d3:ef:39:b5:79:9f: 3c:1b:bc:86:c7:d6:61:1e:f1:a3:ed:f6:cd:4f:75:0d:8c:0d: 2c:76:bd:46 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtA/8Pxk2kg0FdSb10RUQoLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZmNTU0OTE5OTMxYzY3YmQyNjUwZmM0ZTBjNzNjMmZiM2Uy MjhkOTUwHhcNMjUxMjIxMTMwMTAyWhcNMjUxMjIyMTMwMTAyWjAzMTEwLwYDVQQD Eyg4MTMwZDJkNzI4NDFhMGMwMGQwMTdkYmY1ODc2MzA3NTRiMzBiMWIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoCOnJ/u5XUSomXO8qBmixj2n9mPu 84JcvsjJ49CIb4jwLhDYyOLtyMSZVoQ5Ipxm2urfRy62WP4/RG9drbx66QJ39TQ4 eFhJo5Ax21gJxDdLjFnLnBPvg2WnIZVO065wt0/VrTzKjlsQYPdNKJhH96nRU3Gt sqPeNjbgq7u6in+eXIDkXMnqDgWX1d8YxiEq4jlXcsVPFI++pGd3imIvnEFeStJn XMXoTbbtV/NbHqG+m/vJgXOfBl48yCx0DucSjtBHKk40PzgOwvB2qRXWWzD49XQ0 ez9R35I6UoK7f7rvxkOVdalsEzbtPiP7Qt7Ixa+e1G4PtFMhQBYUok1pSQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIEw0tcoQaDADQF9v1h2MHVLMLGyMB8GA1UdIwQY MBaAFP9VSRmTHGe9JlD8Tgxzwvs+Io2VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvXzFWSkdaTWNaNzBtVVB4T0RIUEMtejRpalpVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS8yMzI0NGQtNDg4Ni00NzBiLWIxZmMt MjkwYWE0MzE4Y2FhLzEvXzFWSkdaTWNaNzBtVVB4T0RIUEMtejRpalpVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS8yMzI0NGQtNDg4Ni00NzBiLWIxZmMtMjkwYWE0MzE4Y2Fh LzEvXzFWSkdaTWNaNzBtVVB4T0RIUEMtejRpalpVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYNUhQ84U GUAvXDz0MMXQixRmfL8d/+CoOBxL7Rr3v+z9v+WCEhOJf3IpuO+uIPPGbIyLCd1I hyjdZYluvqAfZvl77M1fHTsYSuP9ODhuixOaVKEWvDPuRl3vpz6SMOxBOnOPs8RP TXx+Qjy8vUJukndqHwPIg0aSD1ObpDU9XY262y3ty6zc+kAAL0v52oGlsO8Uprhi d0NHXCLfftcE10WB7P4J1YqmYlcV967CGYhTleiFXaYhKkZvdOnyZm8vpxzimzBF F4AScBD3WKDBVgJbP9qzlG+LyIstY5VaLc9frGiO0+85tXmfPBu8hsfWYR7xo+32 zU91DYwNLHa9Rg== -----END CERTIFICATE-----Generated at Sun Dec 21 15:37:49 2025 by rpki-client