This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b441ca-e77c-4211-8712-182cd4aac436/1/vxtInm2bjH2Dyh5yelmE2-V3r7w.mft File: vxtInm2bjH2Dyh5yelmE2-V3r7w.mft (raw, json) Hash identifier: 9h3z2xcu+Ql2dXUD3xJ/H2SkAQWG3lTfozjP5fzgQMg= Subject key identifier: DC:8B:5D:37:37:B8:17:96:80:0A:77:9D:7D:2D:93:27:BB:3A:14:2D Authority key identifier: BF:1B:48:9E:6D:9B:8C:7D:83:CA:1E:72:7A:59:84:DB:E5:77:AF:BC Certificate issuer: /CN=bf1b489e6d9b8c7d83ca1e727a5984dbe577afbc Certificate serial: 019B5A1B0BBACF5068A240556A3BC68BCAEC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vxtInm2bjH2Dyh5yelmE2-V3r7w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b441ca-e77c-4211-8712-182cd4aac436/1/vxtInm2bjH2Dyh5yelmE2-V3r7w.mft Manifest number: A1 Signing time: Fri 26 Dec 2025 10:01:20 +0000 Manifest this update: Fri 26 Dec 2025 10:01:20 +0000 Manifest next update: Sat 27 Dec 2025 10:01:20 +0000 Files and hashes: 1: 1-rB8XTQYqpP7MjgG7HR4P6rMeyU.roa (hash: o9F/zfrqIdfUaOEIn5d4Y/Rf/lN8VClY0SnZ+RAIGLc=) 2: vxtInm2bjH2Dyh5yelmE2-V3r7w.crl (hash: Zcfs8rwWpLs5SLpobeOYC13qu5U/9qmG9AaoxyiFQrk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/b441ca-e77c-4211-8712-182cd4aac436/1/vxtInm2bjH2Dyh5yelmE2-V3r7w.crl rsync://rpki.ripe.net/repository/DEFAULT/66/b441ca-e77c-4211-8712-182cd4aac436/1/vxtInm2bjH2Dyh5yelmE2-V3r7w.mft rsync://rpki.ripe.net/repository/DEFAULT/vxtInm2bjH2Dyh5yelmE2-V3r7w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:1b:0b:ba:cf:50:68:a2:40:55:6a:3b:c6:8b:ca:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bf1b489e6d9b8c7d83ca1e727a5984dbe577afbc Validity Not Before: Dec 26 10:01:20 2025 GMT Not After : Dec 27 10:01:20 2025 GMT Subject: CN=dc8b5d3737b81796800a779d7d2d9327bb3a142d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:db:59:b4:b5:13:43:ed:e4:76:c4:a8:17:b6: 99:07:ab:59:76:cf:2a:92:4d:fe:22:c6:43:86:1f: 6a:d7:e5:67:39:4e:02:77:80:8c:08:c2:77:32:56: 1c:ab:a5:c9:cc:94:6c:b9:4b:36:f0:55:9b:72:43: 4d:16:ba:e4:ea:8a:b2:40:dc:b1:81:97:5b:3b:69: 16:b9:68:3f:17:b3:2e:de:c3:da:a4:48:6b:a1:de: e2:a6:1d:04:fb:6c:75:92:49:fa:ad:ee:ab:cf:57: 49:1c:10:44:6c:6d:58:ec:ff:ec:97:d0:a6:05:8e: 0e:23:d7:d7:3a:0b:1a:2b:ad:f2:2c:b8:a7:00:f7: db:93:0b:82:ea:19:bd:03:95:db:27:ce:0f:90:f5: 50:26:c4:8b:e9:e8:c3:cf:8e:2b:61:f8:20:c0:ed: c6:d8:57:69:52:54:55:60:73:a9:6e:83:41:81:4d: fb:f7:8e:4b:ce:ef:6b:64:c4:2d:ca:56:b7:d6:a6: ad:bf:01:58:80:65:7f:d4:70:18:e6:b1:78:96:bd: 0b:a2:f8:f2:f6:29:bb:d6:41:7d:5c:a9:5a:bd:98: ce:e8:2a:fc:99:5c:ee:6a:ef:fc:82:d1:d3:c7:2b: 75:98:aa:c7:35:27:22:0f:61:c6:5a:38:a8:de:48: 35:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:8B:5D:37:37:B8:17:96:80:0A:77:9D:7D:2D:93:27:BB:3A:14:2D X509v3 Authority Key Identifier: keyid:BF:1B:48:9E:6D:9B:8C:7D:83:CA:1E:72:7A:59:84:DB:E5:77:AF:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vxtInm2bjH2Dyh5yelmE2-V3r7w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b441ca-e77c-4211-8712-182cd4aac436/1/vxtInm2bjH2Dyh5yelmE2-V3r7w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b441ca-e77c-4211-8712-182cd4aac436/1/vxtInm2bjH2Dyh5yelmE2-V3r7w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c7:50:41:39:4f:45:3f:8b:a6:0d:7e:e7:13:43:e0:55:2d:af: 4d:42:6c:8d:40:97:32:54:e8:4c:b7:9a:ae:78:10:45:08:c8: 92:fa:23:eb:77:89:ad:10:55:1c:d8:f1:c1:b0:b8:b9:ef:f4: ab:f9:07:65:09:0d:4d:b7:ac:dd:9a:1a:06:f9:c0:93:1a:1b: af:29:3f:8e:84:ee:55:20:0e:12:eb:8a:83:a9:3f:33:c8:2f: 50:b4:02:7d:e8:47:90:ca:a9:26:43:68:98:a7:a0:14:29:b7: 48:a7:38:67:8e:ec:3c:3c:75:89:58:67:ab:cf:d4:92:6a:3b: 35:b5:55:79:fa:ad:f9:3a:fa:4a:f6:4f:d4:51:d7:1c:d1:fd: e7:15:51:b6:64:ed:ba:38:19:90:ac:39:73:45:ba:b7:ff:b0: f9:75:09:03:57:bb:f3:3f:07:ae:87:b7:0b:43:02:1b:d0:e9: 84:f6:f3:34:64:52:65:03:12:b6:24:01:df:92:4d:e4:e6:7b: 25:69:f8:49:a0:74:e5:aa:b0:73:ed:89:13:04:35:83:69:84: ba:1e:69:b9:ef:78:e2:ce:b6:d9:ef:99:ee:d7:79:0d:5d:d0: 75:93:95:70:db:6a:94:f4:df:b7:79:7a:2f:47:9b:1a:b0:c4: 42:94:32:4c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtaGwu6z1BookBVajvGi8rsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJmMWI0ODllNmQ5YjhjN2Q4M2NhMWU3MjdhNTk4NGRiZTU3 N2FmYmMwHhcNMjUxMjI2MTAwMTIwWhcNMjUxMjI3MTAwMTIwWjAzMTEwLwYDVQQD EyhkYzhiNWQzNzM3YjgxNzk2ODAwYTc3OWQ3ZDJkOTMyN2JiM2ExNDJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvNtZtLUTQ+3kdsSoF7aZB6tZds8q kk3+IsZDhh9q1+VnOU4Cd4CMCMJ3MlYcq6XJzJRsuUs28FWbckNNFrrk6oqyQNyx gZdbO2kWuWg/F7Mu3sPapEhrod7iph0E+2x1kkn6re6rz1dJHBBEbG1Y7P/sl9Cm BY4OI9fXOgsaK63yLLinAPfbkwuC6hm9A5XbJ84PkPVQJsSL6ejDz44rYfggwO3G 2FdpUlRVYHOpboNBgU37945Lzu9rZMQtyla31qatvwFYgGV/1HAY5rF4lr0Lovjy 9im71kF9XKlavZjO6Cr8mVzuau/8gtHTxyt1mKrHNSciD2HGWjio3kg1dwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNyLXTc3uBeWgAp3nX0tkye7OhQtMB8GA1UdIwQY MBaAFL8bSJ5tm4x9g8oecnpZhNvld6+8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdnh0SW5tMmJqSDJEeWg1eWVsbUUyLVYzcjd3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9iNDQxY2EtZTc3Yy00MjExLTg3MTIt MTgyY2Q0YWFjNDM2LzEvdnh0SW5tMmJqSDJEeWg1eWVsbUUyLVYzcjd3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni9iNDQxY2EtZTc3Yy00MjExLTg3MTItMTgyY2Q0YWFjNDM2 LzEvdnh0SW5tMmJqSDJEeWg1eWVsbUUyLVYzcjd3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAx1BBOU9F P4umDX7nE0PgVS2vTUJsjUCXMlToTLearngQRQjIkvoj63eJrRBVHNjxwbC4ue/0 q/kHZQkNTbes3ZoaBvnAkxobryk/joTuVSAOEuuKg6k/M8gvULQCfehHkMqpJkNo mKegFCm3SKc4Z47sPDx1iVhnq8/Ukmo7NbVVefqt+Tr6SvZP1FHXHNH95xVRtmTt ujgZkKw5c0W6t/+w+XUJA1e78z8Hroe3C0MCG9DphPbzNGRSZQMStiQB35JN5OZ7 JWn4SaB05aqwc+2JEwQ1g2mEuh5pue944s622e+Z7td5DV3QdZOVcNtqlPTft3l6 L0ebGrDEQpQyTA== -----END CERTIFICATE-----Generated at Fri Dec 26 15:45:44 2025 by rpki-client