This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft File: vaYQQ1QkhQlrDfQ1HMDal383cN0.mft (raw, json) Hash identifier: 5g1Q6dGM3/gSCdUX8d4lQT8oKRtxdM5g3dG1pe+fR4Y= Subject key identifier: 6F:5A:55:43:C9:52:5E:FA:B5:56:ED:F2:7B:A0:5C:05:6E:16:B9:D7 Authority key identifier: BD:A6:10:43:54:24:85:09:6B:0D:F4:35:1C:C0:DA:97:7F:37:70:DD Certificate issuer: /CN=bda61043542485096b0df4351cc0da977f3770dd Certificate serial: 019B1F18AE800FB205B0BA302E9E9208477F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vaYQQ1QkhQlrDfQ1HMDal383cN0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft Manifest number: 177B Signing time: Sun 14 Dec 2025 23:01:09 +0000 Manifest this update: Sun 14 Dec 2025 23:01:09 +0000 Manifest next update: Mon 15 Dec 2025 23:01:09 +0000 Files and hashes: 1: RYZ_HUggvvOzHTuXBACbgajQpo0.roa (hash: Fp6s79hRrwq+bZ12gZrNnH0nQeo4puoviWIdP4EjMXQ=) 2: vaYQQ1QkhQlrDfQ1HMDal383cN0.crl (hash: 4zmsE1dEZc6tEG5priorrlnadazTDSkl1K6VA9+GnOg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.crl rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft rsync://rpki.ripe.net/repository/DEFAULT/vaYQQ1QkhQlrDfQ1HMDal383cN0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 20:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1f:18:ae:80:0f:b2:05:b0:ba:30:2e:9e:92:08:47:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bda61043542485096b0df4351cc0da977f3770dd Validity Not Before: Dec 14 23:01:09 2025 GMT Not After : Dec 15 23:01:09 2025 GMT Subject: CN=6f5a5543c9525efab556edf27ba05c056e16b9d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:4e:83:9e:05:86:e9:6f:74:99:9d:af:08:55: 3b:74:cc:76:40:14:be:76:23:99:46:79:8c:a0:f1: 52:a3:35:2d:17:12:03:f7:17:5c:ed:40:72:0a:35: b7:2c:27:22:05:aa:bd:8a:70:ba:91:a2:da:c6:cb: 3a:d1:6f:83:22:2b:e7:c8:04:f7:4b:32:25:00:99: 64:d8:d2:a1:b1:40:fb:d0:36:e5:fc:0c:c4:c7:f1: ba:f1:b7:61:3b:f8:5b:11:cc:03:da:b7:59:c3:f7: a3:20:07:10:43:15:2d:14:16:57:8d:41:29:59:65: b0:1a:32:65:77:e6:aa:da:aa:ef:b9:0e:07:46:dc: fd:af:59:3d:0a:59:6e:fd:71:33:0a:2b:83:2f:c3: 16:a8:f1:b0:96:1a:22:18:74:07:d8:22:fc:19:db: b0:32:7f:df:bd:03:21:81:be:ba:67:2d:55:ce:76: cc:51:95:1f:c0:41:d2:13:81:03:2d:e9:15:ea:52: 91:9f:b5:0a:b8:23:c4:86:48:45:72:42:a8:30:b8: a2:83:9d:68:4d:9d:cd:3a:e3:fc:f8:af:6f:45:66: f6:a5:65:a5:0c:26:5a:f9:a4:3d:26:5c:06:e1:c1: a0:43:6b:8c:83:2e:07:57:f7:5a:b3:a6:e5:c6:fa: bd:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:5A:55:43:C9:52:5E:FA:B5:56:ED:F2:7B:A0:5C:05:6E:16:B9:D7 X509v3 Authority Key Identifier: keyid:BD:A6:10:43:54:24:85:09:6B:0D:F4:35:1C:C0:DA:97:7F:37:70:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vaYQQ1QkhQlrDfQ1HMDal383cN0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8a:f6:4b:cd:61:de:79:2a:7f:5b:46:b3:3e:c8:00:01:a8:76: 3c:81:27:91:0f:1c:dc:59:ed:62:38:49:d7:56:91:24:b9:cc: 91:53:69:29:91:d3:13:c2:a4:a8:b5:ee:21:f9:6f:77:e7:c8: e2:c3:44:e2:3c:40:c2:41:ed:51:f9:c3:47:bc:64:31:03:b1: f5:fd:92:c4:4a:bf:7a:1c:35:03:42:ea:91:dc:9e:35:b9:49: 36:ca:ef:cf:62:57:47:a8:d7:10:8d:bd:6a:d2:33:8c:7e:64: 95:67:e6:3a:41:14:65:c6:c2:f2:74:cd:98:3f:2a:46:b4:19: cb:60:43:84:c7:65:c1:8c:ab:8d:66:6d:19:9a:51:33:b7:6f: d4:f0:79:16:5c:4b:cb:66:22:c0:ab:ef:3f:0e:f9:23:a0:c2: 42:19:5c:e8:5c:fc:3d:bb:8a:8e:f3:00:29:77:83:b3:1f:54: 26:51:73:4d:c1:f5:09:f6:25:1a:4b:36:50:0e:b5:58:c5:d7: e4:0d:15:d0:37:a7:69:bd:a1:c8:b7:b0:6d:89:40:0e:41:d2: 88:4b:1c:80:d0:33:0b:16:89:e5:12:6c:a0:77:59:6b:63:11: 84:a9:8e:28:c5:e7:a7:44:b6:30:97:6e:cf:78:8e:fd:2b:95: f9:07:22:ab -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsfGK6AD7IFsLowLp6SCEd/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJkYTYxMDQzNTQyNDg1MDk2YjBkZjQzNTFjYzBkYTk3N2Yz NzcwZGQwHhcNMjUxMjE0MjMwMTA5WhcNMjUxMjE1MjMwMTA5WjAzMTEwLwYDVQQD Eyg2ZjVhNTU0M2M5NTI1ZWZhYjU1NmVkZjI3YmEwNWMwNTZlMTZiOWQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsE6DngWG6W90mZ2vCFU7dMx2QBS+ diOZRnmMoPFSozUtFxID9xdc7UByCjW3LCciBaq9inC6kaLaxss60W+DIivnyAT3 SzIlAJlk2NKhsUD70Dbl/AzEx/G68bdhO/hbEcwD2rdZw/ejIAcQQxUtFBZXjUEp WWWwGjJld+aq2qrvuQ4HRtz9r1k9Cllu/XEzCiuDL8MWqPGwlhoiGHQH2CL8Gduw Mn/fvQMhgb66Zy1VznbMUZUfwEHSE4EDLekV6lKRn7UKuCPEhkhFckKoMLiig51o TZ3NOuP8+K9vRWb2pWWlDCZa+aQ9JlwG4cGgQ2uMgy4HV/das6blxvq9wwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG9aVUPJUl76tVbt8nugXAVuFrnXMB8GA1UdIwQY MBaAFL2mEENUJIUJaw30NRzA2pd/N3DdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdmFZUVExUWtoUWxyRGZRMUhNRGFsMzgzY04wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS8xOTY2ODktMmRiNy00ZTgwLWI5MmMt M2EyYWQ4OGRlYWRlLzEvdmFZUVExUWtoUWxyRGZRMUhNRGFsMzgzY04wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZS8xOTY2ODktMmRiNy00ZTgwLWI5MmMtM2EyYWQ4OGRlYWRl LzEvdmFZUVExUWtoUWxyRGZRMUhNRGFsMzgzY04wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAivZLzWHe eSp/W0azPsgAAah2PIEnkQ8c3FntYjhJ11aRJLnMkVNpKZHTE8KkqLXuIflvd+fI 4sNE4jxAwkHtUfnDR7xkMQOx9f2SxEq/ehw1A0LqkdyeNblJNsrvz2JXR6jXEI29 atIzjH5klWfmOkEUZcbC8nTNmD8qRrQZy2BDhMdlwYyrjWZtGZpRM7dv1PB5FlxL y2YiwKvvPw75I6DCQhlc6Fz8PbuKjvMAKXeDsx9UJlFzTcH1CfYlGks2UA61WMXX 5A0V0Denab2hyLewbYlADkHSiEscgNAzCxaJ5RJsoHdZa2MRhKmOKMXnp0S2MJdu z3iO/SuV+Qciqw== -----END CERTIFICATE-----Generated at Mon Dec 15 01:22:41 2025 by rpki-client