This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.mft File: vnIqmXMsnDy8ILCkcpKoI3gmA6w.mft (raw, json) Hash identifier: Kj/cbwKIlIdSDMtpESfH8QXBbDqZF3tTi1ISyImkHuo= Subject key identifier: EF:C6:29:34:D4:90:50:16:59:1C:1B:23:3A:AD:AE:5B:8B:A6:38:9B Authority key identifier: BE:72:2A:99:73:2C:9C:3C:BC:20:B0:A4:72:92:A8:23:78:26:03:AC Certificate issuer: /CN=be722a99732c9c3cbc20b0a47292a823782603ac Certificate serial: 019B0E92D98B5650D911D9E25B1BB068581E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vnIqmXMsnDy8ILCkcpKoI3gmA6w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.mft Manifest number: 1701 Signing time: Thu 11 Dec 2025 18:01:03 +0000 Manifest this update: Thu 11 Dec 2025 18:01:03 +0000 Manifest next update: Fri 12 Dec 2025 18:01:03 +0000 Files and hashes: 1: KEoMu2N6_T8O9ufaf0Y2clZ16n8.roa (hash: TtnWx5gcstoPtaU3BdfsPkG0EZi+JY/3eJmxv3P7PTM=) 2: vnIqmXMsnDy8ILCkcpKoI3gmA6w.crl (hash: 4OJhZwRQEitKu/DPoxIbud/w796BJWlIk2hNa9zqbZ8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.crl rsync://rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.mft rsync://rpki.ripe.net/repository/DEFAULT/vnIqmXMsnDy8ILCkcpKoI3gmA6w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 14:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0e:92:d9:8b:56:50:d9:11:d9:e2:5b:1b:b0:68:58:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=be722a99732c9c3cbc20b0a47292a823782603ac Validity Not Before: Dec 11 18:01:03 2025 GMT Not After : Dec 12 18:01:03 2025 GMT Subject: CN=efc62934d4905016591c1b233aadae5b8ba6389b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:73:0a:06:0e:13:40:f3:4e:75:ec:a8:94:18: 76:d7:11:93:59:ee:d9:1b:e4:fe:96:f2:23:07:9f: fd:2e:b9:31:2d:b3:a6:30:b4:5c:60:c1:44:3f:18: 4b:aa:32:58:0b:4f:2c:78:37:f4:3f:75:a9:2e:f8: 79:27:05:fe:96:a9:33:34:a8:a4:30:a5:80:8e:2a: cf:ec:02:fc:0e:a1:1e:bd:9d:d9:f0:40:23:1d:85: 85:bb:14:1f:25:22:ed:ea:af:92:84:b5:d7:45:50: 12:ac:1d:60:3f:1d:0a:5c:38:fb:07:87:11:d1:eb: f1:4f:01:c7:cf:c7:d7:fc:9c:18:8c:7b:f6:82:b3: c4:17:b2:53:7f:48:5a:87:9d:f2:29:86:00:fc:3f: 77:d5:5e:f2:a1:74:79:1d:7f:b1:55:f7:d0:55:f1: 2c:cd:9e:15:fd:fa:bd:eb:66:4a:b3:4f:8f:91:a6: 02:24:ff:49:2b:60:9a:ac:10:4d:20:f5:b1:d7:30: 96:be:fa:a3:4f:3c:b1:68:dc:01:b1:9f:50:3c:01: 87:be:dd:01:90:e8:ea:d7:3d:fc:30:40:76:26:aa: d9:2c:44:70:80:80:e7:59:42:e4:b5:9a:e0:33:4f: 1e:4e:0e:53:70:9a:2f:0d:f7:77:0e:ee:4a:48:b4: 1e:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:C6:29:34:D4:90:50:16:59:1C:1B:23:3A:AD:AE:5B:8B:A6:38:9B X509v3 Authority Key Identifier: keyid:BE:72:2A:99:73:2C:9C:3C:BC:20:B0:A4:72:92:A8:23:78:26:03:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vnIqmXMsnDy8ILCkcpKoI3gmA6w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:19:fc:cb:cf:ec:19:8f:a5:05:e8:f9:1b:3d:39:c3:3b:7e: d5:51:94:78:20:d6:ed:66:ab:69:c6:b7:0e:f5:7b:87:a7:10: 2e:49:25:02:d6:24:e9:f1:44:2e:24:27:08:f4:23:75:c5:db: 8b:dc:2f:24:cc:23:64:c7:94:e6:53:c7:73:92:57:f7:91:8f: 1d:95:d5:a3:74:f8:db:e8:5d:38:18:37:8e:d4:f8:b4:d8:2a: a5:86:a5:df:87:c6:22:3a:5b:7e:c0:30:10:24:6d:2f:7f:52: fe:97:af:4f:82:1e:ce:76:e2:06:7b:34:a6:e5:5e:b4:8c:52: 9d:fe:7f:c6:c6:08:df:95:03:a3:2b:7f:92:50:c1:61:ed:37: 0d:fb:72:d8:d0:e6:68:b7:17:86:98:80:6d:a9:61:e9:ad:0f: be:3f:a7:12:50:d9:c4:19:e7:71:31:34:ef:8d:3d:db:df:a0: b1:af:9a:03:23:a7:ae:18:65:65:69:54:ca:9d:40:72:16:2c: 45:ca:24:11:1f:23:4d:52:46:19:27:b7:4f:19:77:d8:ed:d5: 80:a6:d1:e7:81:9f:c1:7a:80:bf:34:d3:ae:40:1f:e0:a3:2a: 17:ec:b6:3e:6e:80:42:24:60:03:8b:44:0b:fa:fc:7a:79:19: 7d:87:41:c6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsOktmLVlDZEdniWxuwaFgeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJlNzIyYTk5NzMyYzljM2NiYzIwYjBhNDcyOTJhODIzNzgy NjAzYWMwHhcNMjUxMjExMTgwMTAzWhcNMjUxMjEyMTgwMTAzWjAzMTEwLwYDVQQD EyhlZmM2MjkzNGQ0OTA1MDE2NTkxYzFiMjMzYWFkYWU1YjhiYTYzODliMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnnMKBg4TQPNOdeyolBh21xGTWe7Z G+T+lvIjB5/9LrkxLbOmMLRcYMFEPxhLqjJYC08seDf0P3WpLvh5JwX+lqkzNKik MKWAjirP7AL8DqEevZ3Z8EAjHYWFuxQfJSLt6q+ShLXXRVASrB1gPx0KXDj7B4cR 0evxTwHHz8fX/JwYjHv2grPEF7JTf0hah53yKYYA/D931V7yoXR5HX+xVffQVfEs zZ4V/fq962ZKs0+PkaYCJP9JK2CarBBNIPWx1zCWvvqjTzyxaNwBsZ9QPAGHvt0B kOjq1z38MEB2JqrZLERwgIDnWULktZrgM08eTg5TcJovDfd3Du5KSLQeTQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO/GKTTUkFAWWRwbIzqtrluLpjibMB8GA1UdIwQY MBaAFL5yKplzLJw8vCCwpHKSqCN4JgOsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdm5JcW1YTXNuRHk4SUxDa2NwS29JM2dtQTZ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy8wNDFiOWYtMWEwNy00MmU1LWI0ODct MjliOTdhMTg3N2ZiLzEvdm5JcW1YTXNuRHk4SUxDa2NwS29JM2dtQTZ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yy8wNDFiOWYtMWEwNy00MmU1LWI0ODctMjliOTdhMTg3N2Zi LzEvdm5JcW1YTXNuRHk4SUxDa2NwS29JM2dtQTZ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbhn8y8/s GY+lBej5Gz05wzt+1VGUeCDW7Waraca3DvV7h6cQLkklAtYk6fFELiQnCPQjdcXb i9wvJMwjZMeU5lPHc5JX95GPHZXVo3T42+hdOBg3jtT4tNgqpYal34fGIjpbfsAw ECRtL39S/pevT4IeznbiBns0puVetIxSnf5/xsYI35UDoyt/klDBYe03Dfty2NDm aLcXhpiAbalh6a0Pvj+nElDZxBnncTE0740929+gsa+aAyOnrhhlZWlUyp1AchYs RcokER8jTVJGGSe3Txl32O3VgKbR54GfwXqAvzTTrkAf4KMqF+y2Pm6AQiRgA4tE C/r8enkZfYdBxg== -----END CERTIFICATE-----Generated at Thu Dec 11 22:55:01 2025 by rpki-client