This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/d67a58-380f-427a-849a-f9940fa1e108/1/VElaL0HNEFrvBvKHCnYzmAHtuQ0.mft File: VElaL0HNEFrvBvKHCnYzmAHtuQ0.mft (raw, json) Hash identifier: sRTvP7uAdlmkmXKNZZptIaR75IDwd1W/3aBZzmlUEAc= Subject key identifier: B0:17:67:52:5B:08:0F:A9:D2:32:CD:33:87:FE:CF:9D:8F:07:BD:4F Authority key identifier: 54:49:5A:2F:41:CD:10:5A:EF:06:F2:87:0A:76:33:98:01:ED:B9:0D Certificate issuer: /CN=54495a2f41cd105aef06f2870a76339801edb90d Certificate serial: 019B38D867D8A165862ADC538DABD54C636B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VElaL0HNEFrvBvKHCnYzmAHtuQ0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/d67a58-380f-427a-849a-f9940fa1e108/1/VElaL0HNEFrvBvKHCnYzmAHtuQ0.mft Manifest number: 0375 Signing time: Fri 19 Dec 2025 23:01:05 +0000 Manifest this update: Fri 19 Dec 2025 23:01:05 +0000 Manifest next update: Sat 20 Dec 2025 23:01:05 +0000 Files and hashes: 1: VElaL0HNEFrvBvKHCnYzmAHtuQ0.crl (hash: LIQVXKHKvjzPeLv1SzFyhtwigCe0cNGOktisyO1eK5I=) 2: iWKzGh5m2_oz6qvqBjoyFnizgxw.roa (hash: YVbdlpkB57bicqIuUwT2dIakABg210l0QU3avOsuQbo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/d67a58-380f-427a-849a-f9940fa1e108/1/VElaL0HNEFrvBvKHCnYzmAHtuQ0.crl rsync://rpki.ripe.net/repository/DEFAULT/21/d67a58-380f-427a-849a-f9940fa1e108/1/VElaL0HNEFrvBvKHCnYzmAHtuQ0.mft rsync://rpki.ripe.net/repository/DEFAULT/VElaL0HNEFrvBvKHCnYzmAHtuQ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:38:d8:67:d8:a1:65:86:2a:dc:53:8d:ab:d5:4c:63:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=54495a2f41cd105aef06f2870a76339801edb90d Validity Not Before: Dec 19 23:01:05 2025 GMT Not After : Dec 20 23:01:05 2025 GMT Subject: CN=b01767525b080fa9d232cd3387fecf9d8f07bd4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:a8:32:ff:d8:96:aa:a5:70:c4:8e:74:21:3e: 74:3b:b1:03:9b:c0:a8:a5:75:17:88:b3:51:8c:94: 99:1f:b1:c0:a8:04:6c:bb:1c:c3:68:3b:1f:40:5a: 68:ef:2d:76:c9:d1:d1:76:c0:e9:b8:47:15:13:61: 5b:7a:48:02:89:ec:7e:67:b1:ae:59:22:3a:cd:14: 3e:45:df:12:5b:43:af:d1:a7:cc:a6:78:7b:59:5c: e6:79:2d:6a:62:af:0e:fc:35:a3:87:4a:db:7f:f7: f1:ef:75:e3:07:79:25:3c:ac:2c:02:cb:e7:83:d9: 3d:2a:a2:3a:e0:67:82:21:40:69:b1:9e:1a:ce:37: 9b:b4:ab:d2:8c:e9:51:bd:0d:73:9b:81:55:98:d3: 4a:7a:0c:e9:13:a5:eb:12:9e:d6:b6:d0:37:a6:29: 48:3f:a6:d6:62:81:b5:d3:23:28:1a:26:f2:7f:6e: a1:70:b8:0d:6b:aa:68:ad:0b:12:8b:27:0b:f6:62: 5d:ce:fc:48:25:29:55:84:60:06:db:42:59:8c:86: e3:06:2e:e4:58:26:97:42:50:2d:e0:8a:7a:4f:76: 7c:3a:c5:6f:d8:41:9d:2e:af:93:12:9a:12:9d:81: c2:86:48:c8:30:b8:5e:04:fd:7d:10:fe:11:2f:80: f3:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:17:67:52:5B:08:0F:A9:D2:32:CD:33:87:FE:CF:9D:8F:07:BD:4F X509v3 Authority Key Identifier: keyid:54:49:5A:2F:41:CD:10:5A:EF:06:F2:87:0A:76:33:98:01:ED:B9:0D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VElaL0HNEFrvBvKHCnYzmAHtuQ0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/d67a58-380f-427a-849a-f9940fa1e108/1/VElaL0HNEFrvBvKHCnYzmAHtuQ0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/21/d67a58-380f-427a-849a-f9940fa1e108/1/VElaL0HNEFrvBvKHCnYzmAHtuQ0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:b9:e8:bd:61:2f:b6:8c:ba:3e:ea:29:67:4c:86:e4:8a:e0: 7b:89:f1:f2:a5:a3:1e:43:74:9e:5e:76:fd:fc:a7:ac:2c:8d: e6:d4:5a:5f:75:46:93:5a:0c:d3:18:3e:d1:4e:5d:76:d7:2b: 12:42:da:14:02:84:55:e9:54:47:6a:cc:53:74:8b:32:82:72: 7b:c6:42:03:d4:e5:f8:51:6c:fa:bd:45:de:16:77:b0:c2:20: 78:54:18:ba:ae:38:e4:a7:11:f6:81:02:84:9e:33:30:0c:3c: 2d:cf:42:7f:d3:ab:1b:f3:b1:d3:d2:57:23:7b:4a:57:23:1e: a9:e3:65:a8:ed:99:1c:4d:fc:dc:2b:3f:36:ec:45:d6:56:71: b0:65:18:75:fc:09:e2:f1:72:ae:f1:63:1f:4f:af:72:04:68: 75:4d:62:00:93:64:80:6a:cc:66:bb:64:9e:37:5a:30:01:ea: 8e:d1:31:65:be:be:98:ba:ec:e2:a4:b7:d2:b4:81:32:43:cd: f0:59:15:82:dc:d1:7e:5a:79:fc:a5:7d:10:8c:10:e7:5f:27: 70:a2:16:b0:a7:02:96:09:ee:de:0b:f8:ba:4b:cf:25:f3:dd: 7d:36:b5:ef:3b:be:0e:be:99:0e:6e:c8:db:40:19:f7:60:fc: c2:26:ac:47 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs42GfYoWWGKtxTjavVTGNrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU0NDk1YTJmNDFjZDEwNWFlZjA2ZjI4NzBhNzYzMzk4MDFl ZGI5MGQwHhcNMjUxMjE5MjMwMTA1WhcNMjUxMjIwMjMwMTA1WjAzMTEwLwYDVQQD EyhiMDE3Njc1MjViMDgwZmE5ZDIzMmNkMzM4N2ZlY2Y5ZDhmMDdiZDRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoagy/9iWqqVwxI50IT50O7EDm8Co pXUXiLNRjJSZH7HAqARsuxzDaDsfQFpo7y12ydHRdsDpuEcVE2FbekgCiex+Z7Gu WSI6zRQ+Rd8SW0Ov0afMpnh7WVzmeS1qYq8O/DWjh0rbf/fx73XjB3klPKwsAsvn g9k9KqI64GeCIUBpsZ4azjebtKvSjOlRvQ1zm4FVmNNKegzpE6XrEp7WttA3pilI P6bWYoG10yMoGibyf26hcLgNa6porQsSiycL9mJdzvxIJSlVhGAG20JZjIbjBi7k WCaXQlAt4Ip6T3Z8OsVv2EGdLq+TEpoSnYHChkjIMLheBP19EP4RL4Dz0QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLAXZ1JbCA+p0jLNM4f+z52PB71PMB8GA1UdIwQY MBaAFFRJWi9BzRBa7wbyhwp2M5gB7bkNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVkVsYUwwSE5FRnJ2QnZLSENuWXptQUh0dVEwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS9kNjdhNTgtMzgwZi00MjdhLTg0OWEt Zjk5NDBmYTFlMTA4LzEvVkVsYUwwSE5FRnJ2QnZLSENuWXptQUh0dVEwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMS9kNjdhNTgtMzgwZi00MjdhLTg0OWEtZjk5NDBmYTFlMTA4 LzEvVkVsYUwwSE5FRnJ2QnZLSENuWXptQUh0dVEwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARrnovWEv toy6PuopZ0yG5Irge4nx8qWjHkN0nl52/fynrCyN5tRaX3VGk1oM0xg+0U5ddtcr EkLaFAKEVelUR2rMU3SLMoJye8ZCA9Tl+FFs+r1F3hZ3sMIgeFQYuq445KcR9oEC hJ4zMAw8Lc9Cf9OrG/Ox09JXI3tKVyMeqeNlqO2ZHE383Cs/NuxF1lZxsGUYdfwJ 4vFyrvFjH0+vcgRodU1iAJNkgGrMZrtknjdaMAHqjtExZb6+mLrs4qS30rSBMkPN 8FkVgtzRflp5/KV9EIwQ518ncKIWsKcClgnu3gv4ukvPJfPdfTa17zu+Dr6ZDm7I 20AZ92D8wiasRw== -----END CERTIFICATE-----Generated at Sat Dec 20 00:13:18 2025 by rpki-client