This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/1356cf-ab79-4c69-9e55-628400671d0e/1/1VhaLgj-RDzn_Qy_QG97mtoqfMU.mft File: 1VhaLgj-RDzn_Qy_QG97mtoqfMU.mft (raw, json) Hash identifier: sBA2CqoMMRIPVtEIIgmBX0dmudNHzSNldvcfxyFC+Xs= Subject key identifier: D9:93:D6:9E:21:58:4C:0B:5E:E0:13:B5:97:3B:A4:ED:82:D2:C6:00 Authority key identifier: D5:58:5A:2E:08:FE:44:3C:E7:FD:0C:BF:40:6F:7B:9A:DA:2A:7C:C5 Certificate issuer: /CN=d5585a2e08fe443ce7fd0cbf406f7b9ada2a7cc5 Certificate serial: 019B5AF60B07A00687F6C3CC96A61A77F057 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1VhaLgj-RDzn_Qy_QG97mtoqfMU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/1356cf-ab79-4c69-9e55-628400671d0e/1/1VhaLgj-RDzn_Qy_QG97mtoqfMU.mft Manifest number: 0292 Signing time: Fri 26 Dec 2025 14:00:32 +0000 Manifest this update: Fri 26 Dec 2025 14:00:32 +0000 Manifest next update: Sat 27 Dec 2025 14:00:32 +0000 Files and hashes: 1: 1VhaLgj-RDzn_Qy_QG97mtoqfMU.crl (hash: LdOMAh5ERmCWcp2say/TF/Yh931jNA40XdUZXpS5g2M=) 2: BcelUhdXxacAQU97XkdcwjtJzVg.roa (hash: XXQpfHpkHgSaCtL3AHunwK9n34HNeTtzIRJIEYTmJHs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/1356cf-ab79-4c69-9e55-628400671d0e/1/1VhaLgj-RDzn_Qy_QG97mtoqfMU.crl rsync://rpki.ripe.net/repository/DEFAULT/36/1356cf-ab79-4c69-9e55-628400671d0e/1/1VhaLgj-RDzn_Qy_QG97mtoqfMU.mft rsync://rpki.ripe.net/repository/DEFAULT/1VhaLgj-RDzn_Qy_QG97mtoqfMU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 11:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:f6:0b:07:a0:06:87:f6:c3:cc:96:a6:1a:77:f0:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d5585a2e08fe443ce7fd0cbf406f7b9ada2a7cc5 Validity Not Before: Dec 26 14:00:32 2025 GMT Not After : Dec 27 14:00:32 2025 GMT Subject: CN=d993d69e21584c0b5ee013b5973ba4ed82d2c600 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:90:4d:c1:4f:bf:92:36:c3:46:4e:d0:5c:e7: 89:9d:3a:50:33:58:ba:49:d1:6c:94:6d:60:2b:40: 3f:1d:2f:07:7d:a9:c0:9b:ba:06:6e:1c:9e:30:75: 13:f0:31:c5:8f:d7:74:02:35:e2:7f:51:67:8a:7c: 37:41:af:5c:f1:e4:70:8c:dd:4d:05:9c:75:86:b5: 27:0b:77:81:40:70:66:ad:5d:a4:9f:33:e4:a6:63: af:fc:91:34:5f:a0:81:ab:ee:56:e5:84:31:73:df: 1b:55:53:72:eb:f6:1e:9c:db:7c:72:b5:49:33:69: 13:52:e8:19:65:b1:7e:c3:61:27:02:f9:e7:88:5f: d8:e2:08:f6:37:c5:fb:84:bb:cd:88:cc:00:e0:70: e8:ea:7a:2b:26:b2:2a:12:34:18:b7:7b:39:28:ce: 9c:f9:6a:ae:04:3a:78:6a:3b:d6:cd:08:4c:c8:9a: 92:fa:ab:79:5e:6a:34:2f:ee:22:d1:3f:2b:3b:ee: 97:cb:34:7b:cd:41:8d:0c:8e:56:e9:8b:6d:d0:04: 8d:16:00:33:c4:20:e9:ec:30:ec:5b:3d:d5:82:c7: 54:26:2a:26:72:75:5e:a4:fa:01:34:28:33:70:64: 8b:58:a7:40:0b:25:7e:72:5b:1d:de:85:c7:f2:bf: ec:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:93:D6:9E:21:58:4C:0B:5E:E0:13:B5:97:3B:A4:ED:82:D2:C6:00 X509v3 Authority Key Identifier: keyid:D5:58:5A:2E:08:FE:44:3C:E7:FD:0C:BF:40:6F:7B:9A:DA:2A:7C:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1VhaLgj-RDzn_Qy_QG97mtoqfMU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1356cf-ab79-4c69-9e55-628400671d0e/1/1VhaLgj-RDzn_Qy_QG97mtoqfMU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1356cf-ab79-4c69-9e55-628400671d0e/1/1VhaLgj-RDzn_Qy_QG97mtoqfMU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 35:0e:f4:68:23:4d:36:25:b7:56:51:0a:26:b8:fe:8a:73:09: 24:ca:af:f3:0f:40:49:ce:9d:67:1a:ca:bd:11:b3:f8:0d:18: 62:fe:c0:96:da:f1:f9:f9:87:a2:08:a2:b4:ca:4b:cd:22:e4: fc:88:10:70:72:70:d0:b2:fa:99:d9:09:56:0a:66:d8:3e:9a: 64:be:78:34:bf:c0:5c:bd:83:78:fe:d9:fd:36:c6:c1:fa:93: 2c:74:b5:08:bc:65:33:a5:a1:95:82:fc:7f:4c:86:ce:62:01: 73:6d:a2:d5:c5:d2:0a:33:93:2f:64:57:0e:c7:8b:a6:35:4f: 3d:e7:59:42:04:51:a6:23:a3:9a:33:0f:ca:bc:f7:40:e3:2f: 71:1c:28:27:8e:ee:68:c5:a8:22:44:d5:7d:43:4a:2b:75:45: ef:85:85:55:3f:6d:50:35:78:54:6f:e3:aa:cb:5b:f2:5b:af: dc:98:84:25:36:9c:e1:0a:60:ea:17:ca:22:90:70:5d:f5:f4: 39:98:26:0a:8d:64:6d:20:b5:02:49:64:2d:3d:ad:b4:98:42: cc:c9:b2:14:97:5e:2d:34:6f:f9:e4:25:9c:bd:ec:8d:e9:94: 0c:9e:be:88:99:5d:c2:97:38:33:90:74:33:20:31:8d:32:ec: 99:2d:96:b1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZta9gsHoAaH9sPMlqYad/BXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ1NTg1YTJlMDhmZTQ0M2NlN2ZkMGNiZjQwNmY3YjlhZGEy YTdjYzUwHhcNMjUxMjI2MTQwMDMyWhcNMjUxMjI3MTQwMDMyWjAzMTEwLwYDVQQD EyhkOTkzZDY5ZTIxNTg0YzBiNWVlMDEzYjU5NzNiYTRlZDgyZDJjNjAwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw5BNwU+/kjbDRk7QXOeJnTpQM1i6 SdFslG1gK0A/HS8HfanAm7oGbhyeMHUT8DHFj9d0AjXif1Fninw3Qa9c8eRwjN1N BZx1hrUnC3eBQHBmrV2knzPkpmOv/JE0X6CBq+5W5YQxc98bVVNy6/YenNt8crVJ M2kTUugZZbF+w2EnAvnniF/Y4gj2N8X7hLvNiMwA4HDo6norJrIqEjQYt3s5KM6c +WquBDp4ajvWzQhMyJqS+qt5Xmo0L+4i0T8rO+6XyzR7zUGNDI5W6Ytt0ASNFgAz xCDp7DDsWz3VgsdUJiomcnVepPoBNCgzcGSLWKdACyV+clsd3oXH8r/sjwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNmT1p4hWEwLXuATtZc7pO2C0sYAMB8GA1UdIwQY MBaAFNVYWi4I/kQ85/0Mv0Bve5raKnzFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMVZoYUxnai1SRHpuX1F5X1FHOTdtdG9xZk1VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi8xMzU2Y2YtYWI3OS00YzY5LTllNTUt NjI4NDAwNjcxZDBlLzEvMVZoYUxnai1SRHpuX1F5X1FHOTdtdG9xZk1VLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi8xMzU2Y2YtYWI3OS00YzY5LTllNTUtNjI4NDAwNjcxZDBl LzEvMVZoYUxnai1SRHpuX1F5X1FHOTdtdG9xZk1VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANQ70aCNN NiW3VlEKJrj+inMJJMqv8w9ASc6dZxrKvRGz+A0YYv7Altrx+fmHogiitMpLzSLk /IgQcHJw0LL6mdkJVgpm2D6aZL54NL/AXL2DeP7Z/TbGwfqTLHS1CLxlM6WhlYL8 f0yGzmIBc22i1cXSCjOTL2RXDseLpjVPPedZQgRRpiOjmjMPyrz3QOMvcRwoJ47u aMWoIkTVfUNKK3VF74WFVT9tUDV4VG/jqstb8luv3JiEJTac4Qpg6hfKIpBwXfX0 OZgmCo1kbSC1AklkLT2ttJhCzMmyFJdeLTRv+eQlnL3sjemUDJ6+iJldwpc4M5B0 MyAxjTLsmS2WsQ== -----END CERTIFICATE-----Generated at Fri Dec 26 16:03:58 2025 by rpki-client