This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/71fdd5-c29d-4d38-8ef9-4f656f29a51b/1/Vu9y3nfRt-K0RwW2y85jlCHam-8.mft File: Vu9y3nfRt-K0RwW2y85jlCHam-8.mft (raw, json) Hash identifier: kfZeJj3w/k/PTAX6heW/ak9JeEBo18AeK3i7XHd1hpE= Subject key identifier: 0F:6E:17:59:57:29:3D:29:45:0B:4C:79:B3:A5:C9:BD:04:DD:96:20 Authority key identifier: 56:EF:72:DE:77:D1:B7:E2:B4:47:05:B6:CB:CE:63:94:21:DA:9B:EF Certificate issuer: /CN=56ef72de77d1b7e2b44705b6cbce639421da9bef Certificate serial: 019B3720C54740116A0E4A57102FC9B17C7F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vu9y3nfRt-K0RwW2y85jlCHam-8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/71fdd5-c29d-4d38-8ef9-4f656f29a51b/1/Vu9y3nfRt-K0RwW2y85jlCHam-8.mft Manifest number: 05C7 Signing time: Fri 19 Dec 2025 15:00:53 +0000 Manifest this update: Fri 19 Dec 2025 15:00:53 +0000 Manifest next update: Sat 20 Dec 2025 15:00:53 +0000 Files and hashes: 1: Vu9y3nfRt-K0RwW2y85jlCHam-8.crl (hash: aIRu2vUeCCVOSw6aa5OjmoFVREfRdI0hh4U2lNrYV0Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/71fdd5-c29d-4d38-8ef9-4f656f29a51b/1/Vu9y3nfRt-K0RwW2y85jlCHam-8.crl rsync://rpki.ripe.net/repository/DEFAULT/63/71fdd5-c29d-4d38-8ef9-4f656f29a51b/1/Vu9y3nfRt-K0RwW2y85jlCHam-8.mft rsync://rpki.ripe.net/repository/DEFAULT/Vu9y3nfRt-K0RwW2y85jlCHam-8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 15:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:37:20:c5:47:40:11:6a:0e:4a:57:10:2f:c9:b1:7c:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=56ef72de77d1b7e2b44705b6cbce639421da9bef Validity Not Before: Dec 19 15:00:53 2025 GMT Not After : Dec 20 15:00:53 2025 GMT Subject: CN=0f6e175957293d29450b4c79b3a5c9bd04dd9620 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:3c:1b:ff:58:2e:d0:6a:57:2d:02:63:b3:33: 33:74:05:1c:ce:a7:9e:72:ad:ae:80:1d:9c:5e:72: 20:46:b4:69:ea:7b:26:66:b3:44:b3:ac:6e:00:ab: 4b:3b:39:a1:fd:dd:f4:74:5b:0c:8d:08:7c:97:5c: 2a:1b:b2:18:db:80:af:fc:83:e9:c9:dc:91:37:38: 21:94:96:a7:28:ac:3d:70:8b:33:e8:56:6b:76:ed: a1:af:5f:11:92:42:5b:62:f1:e2:6d:4f:cd:a4:e1: 77:1a:ff:8c:19:69:57:0c:62:79:9a:a2:79:40:9c: 76:82:1c:3c:39:1c:47:0d:a8:0d:47:90:34:3f:47: 51:8c:13:11:f9:56:c3:1e:50:76:56:bb:97:ad:42: b8:36:8c:c1:f0:0d:78:b1:26:ff:7b:fa:2a:1c:73: e3:ec:57:a6:cf:68:e3:d1:1b:90:49:5c:3b:6a:fa: c2:4e:22:08:61:1e:36:9f:83:dc:03:60:20:12:c9: df:ff:d4:77:eb:ff:63:e0:35:0f:d1:83:b1:fd:15: 6c:9b:5c:52:f8:78:d8:41:ac:6c:34:d9:ab:d5:a0: 6d:4f:45:23:11:4f:f7:fb:89:1b:2a:f3:31:01:49: 97:1c:44:21:0d:ea:87:03:6f:d6:2e:d9:99:26:b2: 3b:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:6E:17:59:57:29:3D:29:45:0B:4C:79:B3:A5:C9:BD:04:DD:96:20 X509v3 Authority Key Identifier: keyid:56:EF:72:DE:77:D1:B7:E2:B4:47:05:B6:CB:CE:63:94:21:DA:9B:EF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vu9y3nfRt-K0RwW2y85jlCHam-8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/71fdd5-c29d-4d38-8ef9-4f656f29a51b/1/Vu9y3nfRt-K0RwW2y85jlCHam-8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/63/71fdd5-c29d-4d38-8ef9-4f656f29a51b/1/Vu9y3nfRt-K0RwW2y85jlCHam-8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 03:ba:92:b8:00:de:f4:ac:bd:06:fd:2e:de:c7:7d:14:c7:a4: b0:1f:52:f2:41:99:de:33:97:11:3e:38:46:25:aa:5c:94:25: 36:24:e0:0c:a4:71:00:74:b6:6a:ff:5a:1d:67:0f:0d:45:df: 0e:ce:fa:82:f6:76:6f:f6:9e:69:9c:ee:62:3f:0d:33:c2:9d: 7e:13:53:7b:2c:81:50:a2:cf:53:6d:29:72:d1:db:d2:29:bf: ae:da:ef:21:ed:4d:ae:6f:53:19:06:bd:95:da:5f:04:68:e5: 0c:76:28:71:92:3a:91:9f:0b:7d:d8:44:b7:f6:78:89:d5:01: 74:75:76:28:7f:25:9c:92:03:c3:10:36:85:0a:20:af:9e:8f: 75:7f:e7:fc:34:a5:19:1a:8b:d6:cb:47:db:5c:41:a5:ca:2f: 1a:08:2c:f3:36:12:12:bf:ff:fd:08:7e:d2:fd:84:da:c8:2c: 5b:f6:cb:5c:c6:8c:4e:33:53:09:ce:f1:ce:56:4b:f8:73:b4: d5:1b:4a:b1:36:ae:44:4d:5d:92:cb:6a:50:39:81:ad:23:7a: 69:3a:4b:b0:45:2a:77:cf:13:78:3e:70:8f:2f:50:1a:d9:c3: c8:b1:1d:ac:95:27:4a:4d:c5:b7:4d:04:18:03:82:de:c4:ae: 5f:b3:82:8a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs3IMVHQBFqDkpXEC/JsXx/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU2ZWY3MmRlNzdkMWI3ZTJiNDQ3MDViNmNiY2U2Mzk0MjFk YTliZWYwHhcNMjUxMjE5MTUwMDUzWhcNMjUxMjIwMTUwMDUzWjAzMTEwLwYDVQQD EygwZjZlMTc1OTU3MjkzZDI5NDUwYjRjNzliM2E1YzliZDA0ZGQ5NjIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6jwb/1gu0GpXLQJjszMzdAUczqee cq2ugB2cXnIgRrRp6nsmZrNEs6xuAKtLOzmh/d30dFsMjQh8l1wqG7IY24Cv/IPp ydyRNzghlJanKKw9cIsz6FZrdu2hr18RkkJbYvHibU/NpOF3Gv+MGWlXDGJ5mqJ5 QJx2ghw8ORxHDagNR5A0P0dRjBMR+VbDHlB2VruXrUK4NozB8A14sSb/e/oqHHPj 7Femz2jj0RuQSVw7avrCTiIIYR42n4PcA2AgEsnf/9R36/9j4DUP0YOx/RVsm1xS +HjYQaxsNNmr1aBtT0UjEU/3+4kbKvMxAUmXHEQhDeqHA2/WLtmZJrI7bQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA9uF1lXKT0pRQtMebOlyb0E3ZYgMB8GA1UdIwQY MBaAFFbvct530bfitEcFtsvOY5Qh2pvvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVnU5eTNuZlJ0LUswUndXMnk4NWpsQ0hhbS04LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My83MWZkZDUtYzI5ZC00ZDM4LThlZjkt NGY2NTZmMjlhNTFiLzEvVnU5eTNuZlJ0LUswUndXMnk4NWpsQ0hhbS04Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82My83MWZkZDUtYzI5ZC00ZDM4LThlZjktNGY2NTZmMjlhNTFi LzEvVnU5eTNuZlJ0LUswUndXMnk4NWpsQ0hhbS04LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAA7qSuADe 9Ky9Bv0u3sd9FMeksB9S8kGZ3jOXET44RiWqXJQlNiTgDKRxAHS2av9aHWcPDUXf Ds76gvZ2b/aeaZzuYj8NM8KdfhNTeyyBUKLPU20pctHb0im/rtrvIe1Nrm9TGQa9 ldpfBGjlDHYocZI6kZ8LfdhEt/Z4idUBdHV2KH8lnJIDwxA2hQogr56PdX/n/DSl GRqL1stH21xBpcovGggs8zYSEr///Qh+0v2E2sgsW/bLXMaMTjNTCc7xzlZL+HO0 1RtKsTauRE1dkstqUDmBrSN6aTpLsEUqd88TeD5wjy9QGtnDyLEdrJUnSk3Ft00E GAOC3sSuX7OCig== -----END CERTIFICATE-----Generated at Fri Dec 19 22:09:18 2025 by rpki-client