This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.mft File: VvciqIWr65qv-zLadk7wkbWyA0A.mft (raw, json) Hash identifier: avw3hAavw/otjwgGSUQOO8m/hjyMqYKdr9fWLFskIfE= Subject key identifier: 86:A4:04:6A:3D:1E:63:4F:F6:F2:D1:70:B5:B9:66:23:59:72:9B:87 Authority key identifier: 56:F7:22:A8:85:AB:EB:9A:AF:FB:32:DA:76:4E:F0:91:B5:B2:03:40 Certificate issuer: /CN=56f722a885abeb9aaffb32da764ef091b5b20340 Certificate serial: 019B5A1AB6BACC42A536AC8B825919AA03FB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VvciqIWr65qv-zLadk7wkbWyA0A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.mft Manifest number: 0AB9 Signing time: Fri 26 Dec 2025 10:00:58 +0000 Manifest this update: Fri 26 Dec 2025 10:00:58 +0000 Manifest next update: Sat 27 Dec 2025 10:00:58 +0000 Files and hashes: 1: VvciqIWr65qv-zLadk7wkbWyA0A.crl (hash: McYB2GeRnk5vRfahZ10SLBvuOCnTyUrHwz0yly1dsE8=) 2: vpimmj50rM3b693dSW6yAkLWvvA.roa (hash: 5VKPzqmzdczcoLOJtvbaVQfmAQ+1p8lObAjIuI3KfsM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.crl rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.mft rsync://rpki.ripe.net/repository/DEFAULT/VvciqIWr65qv-zLadk7wkbWyA0A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 10:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:1a:b6:ba:cc:42:a5:36:ac:8b:82:59:19:aa:03:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=56f722a885abeb9aaffb32da764ef091b5b20340 Validity Not Before: Dec 26 10:00:58 2025 GMT Not After : Dec 27 10:00:58 2025 GMT Subject: CN=86a4046a3d1e634ff6f2d170b5b9662359729b87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:27:e6:80:b8:da:9d:09:f4:b2:c9:d8:ba:cb: d7:f7:f2:8a:66:ab:ad:ef:7d:69:5f:8b:86:ba:25: fd:4b:7f:24:c6:2b:23:05:71:ca:90:25:97:01:4f: 9b:07:e0:a1:c6:95:3e:7c:01:69:de:e8:cb:b7:b8: d6:71:8c:c8:03:b4:54:ad:7f:08:e5:ad:60:01:c7: ee:99:d8:50:6b:cd:3c:56:ac:62:ad:c0:9e:31:bd: 97:9e:3e:f6:5d:ef:eb:fd:6f:ba:34:b4:1f:22:34: 4b:da:43:36:2a:b7:4f:90:f3:04:aa:3e:51:dd:21: 93:5c:9e:49:4c:f9:fc:ef:20:b4:64:0b:0b:7d:15: da:6b:1a:35:55:01:20:83:59:bc:72:5a:d5:f3:3b: d8:71:15:af:c4:78:25:6c:77:f3:ae:af:67:6f:1e: a0:f2:30:82:6b:14:89:72:a2:fd:29:35:99:69:be: 0d:41:3e:de:06:e2:f4:e7:c2:a8:0f:4d:7b:00:8e: 80:c2:dc:a0:3e:3f:53:1e:99:a0:d3:05:12:b0:21: 7d:94:bb:72:e9:43:e9:06:81:a2:26:4f:c2:54:09: 4b:29:d0:19:36:b1:ad:d8:8d:70:2f:e9:04:ff:0d: 51:fd:96:1f:30:8a:07:33:82:49:94:11:16:3f:09: 03:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:A4:04:6A:3D:1E:63:4F:F6:F2:D1:70:B5:B9:66:23:59:72:9B:87 X509v3 Authority Key Identifier: keyid:56:F7:22:A8:85:AB:EB:9A:AF:FB:32:DA:76:4E:F0:91:B5:B2:03:40 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VvciqIWr65qv-zLadk7wkbWyA0A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:54:e3:7e:fe:f9:64:6c:a6:27:70:7d:c0:c1:b3:0c:33:0f: 68:fc:a9:75:25:5e:b1:19:23:af:dc:7b:a2:0a:2c:25:4f:f8: 49:44:a7:12:2a:51:82:7e:9d:ca:1a:de:4d:17:56:00:44:c1: 2e:40:49:c1:f7:b4:fa:45:c9:cc:8f:22:bf:24:e5:89:b4:b3: 58:74:04:1b:01:c7:ef:76:8f:48:c0:74:22:8e:5c:21:44:d6: b2:2e:b9:53:30:a1:2a:0f:22:18:51:0b:76:74:ee:25:14:64: 0e:0d:5f:ac:c2:74:2e:6d:c3:6a:78:e7:48:13:40:ee:88:21: 72:c2:cb:56:a3:9f:ba:a2:71:3a:38:9b:cd:4c:a0:46:b5:10: cb:9f:7f:b8:68:70:2f:a7:3d:39:08:9c:ea:9e:d9:79:36:90: f0:b0:1d:7d:e0:2e:c1:fa:48:7c:ce:29:33:82:cc:29:cd:9a: ce:4f:c1:87:e6:0b:3d:47:04:fc:c9:91:c4:17:2b:c4:fe:af: 76:70:44:12:33:e4:33:32:82:91:a2:ae:e6:d6:6a:1b:e2:1e: a7:bc:2f:13:35:a3:71:ba:d8:79:1b:b5:20:8e:78:51:d6:44: e6:11:ae:66:0e:e6:b3:b7:9b:1f:f0:4a:d2:1f:8f:c2:44:98: ff:2b:f7:47 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtaGra6zEKlNqyLglkZqgP7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU2ZjcyMmE4ODVhYmViOWFhZmZiMzJkYTc2NGVmMDkxYjVi MjAzNDAwHhcNMjUxMjI2MTAwMDU4WhcNMjUxMjI3MTAwMDU4WjAzMTEwLwYDVQQD Eyg4NmE0MDQ2YTNkMWU2MzRmZjZmMmQxNzBiNWI5NjYyMzU5NzI5Yjg3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsSfmgLjanQn0ssnYusvX9/KKZqut 731pX4uGuiX9S38kxisjBXHKkCWXAU+bB+ChxpU+fAFp3ujLt7jWcYzIA7RUrX8I 5a1gAcfumdhQa808VqxircCeMb2Xnj72Xe/r/W+6NLQfIjRL2kM2KrdPkPMEqj5R 3SGTXJ5JTPn87yC0ZAsLfRXaaxo1VQEgg1m8clrV8zvYcRWvxHglbHfzrq9nbx6g 8jCCaxSJcqL9KTWZab4NQT7eBuL058KoD017AI6AwtygPj9THpmg0wUSsCF9lLty 6UPpBoGiJk/CVAlLKdAZNrGt2I1wL+kE/w1R/ZYfMIoHM4JJlBEWPwkDcQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIakBGo9HmNP9vLRcLW5ZiNZcpuHMB8GA1UdIwQY MBaAFFb3IqiFq+uar/sy2nZO8JG1sgNAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVnZjaXFJV3I2NXF2LXpMYWRrN3drYld5QTBBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni84OTkyYjEtMTYwMC00YjkyLTk5YTUt ODE0MGMxMTZmMGM4LzEvVnZjaXFJV3I2NXF2LXpMYWRrN3drYld5QTBBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni84OTkyYjEtMTYwMC00YjkyLTk5YTUtODE0MGMxMTZmMGM4 LzEvVnZjaXFJV3I2NXF2LXpMYWRrN3drYld5QTBBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARVTjfv75 ZGymJ3B9wMGzDDMPaPypdSVesRkjr9x7ogosJU/4SUSnEipRgn6dyhreTRdWAETB LkBJwfe0+kXJzI8ivyTlibSzWHQEGwHH73aPSMB0Io5cIUTWsi65UzChKg8iGFEL dnTuJRRkDg1frMJ0Lm3DanjnSBNA7oghcsLLVqOfuqJxOjibzUygRrUQy59/uGhw L6c9OQic6p7ZeTaQ8LAdfeAuwfpIfM4pM4LMKc2azk/Bh+YLPUcE/MmRxBcrxP6v dnBEEjPkMzKCkaKu5tZqG+Iep7wvEzWjcbrYeRu1II54UdZE5hGuZg7ms7ebH/BK 0h+PwkSY/yv3Rw== -----END CERTIFICATE-----Generated at Fri Dec 26 17:44:15 2025 by rpki-client