This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/770966-7dac-4e1c-b3ed-df5902013cdf/1/VRDNubrguTLHmin42XktMJ9617c.mft File: VRDNubrguTLHmin42XktMJ9617c.mft (raw, json) Hash identifier: GnwzuS9ngyvY8HfxsNqMIt8y3R4tX8aVEnQAI83R+0Y= Subject key identifier: 44:23:3D:07:8B:6B:46:55:F2:18:EA:8B:B4:CB:A1:61:4B:BB:F4:1D Authority key identifier: 55:10:CD:B9:BA:E0:B9:32:C7:9A:29:F8:D9:79:2D:30:9F:7A:D7:B7 Certificate issuer: /CN=5510cdb9bae0b932c79a29f8d9792d309f7ad7b7 Certificate serial: 019B59AC7C1985054E4F76557CB826D0F612 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VRDNubrguTLHmin42XktMJ9617c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/770966-7dac-4e1c-b3ed-df5902013cdf/1/VRDNubrguTLHmin42XktMJ9617c.mft Manifest number: 043D Signing time: Fri 26 Dec 2025 08:00:34 +0000 Manifest this update: Fri 26 Dec 2025 08:00:34 +0000 Manifest next update: Sat 27 Dec 2025 08:00:34 +0000 Files and hashes: 1: VRDNubrguTLHmin42XktMJ9617c.crl (hash: rGGNJzWrV7AaIf7U6cpFIG8xSSclPFinb/P9MOZYVJg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/770966-7dac-4e1c-b3ed-df5902013cdf/1/VRDNubrguTLHmin42XktMJ9617c.crl rsync://rpki.ripe.net/repository/DEFAULT/67/770966-7dac-4e1c-b3ed-df5902013cdf/1/VRDNubrguTLHmin42XktMJ9617c.mft rsync://rpki.ripe.net/repository/DEFAULT/VRDNubrguTLHmin42XktMJ9617c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:ac:7c:19:85:05:4e:4f:76:55:7c:b8:26:d0:f6:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5510cdb9bae0b932c79a29f8d9792d309f7ad7b7 Validity Not Before: Dec 26 08:00:34 2025 GMT Not After : Dec 27 08:00:34 2025 GMT Subject: CN=44233d078b6b4655f218ea8bb4cba1614bbbf41d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:4e:9b:56:b6:4e:4d:9b:ad:ca:dd:2b:1c:b1: a9:fb:d6:0e:98:4c:5d:bf:fe:b5:ef:c9:5d:63:aa: 55:28:ea:19:a4:8a:53:2d:94:55:03:27:02:b5:9b: 0f:0c:64:05:0c:57:cd:86:97:d7:fd:3d:8f:19:0e: 35:cf:b9:cc:8f:24:aa:17:73:24:01:72:8a:d7:ab: cb:11:f3:b9:04:c6:1c:97:b8:28:01:d7:26:ec:17: 06:25:11:5a:ab:c8:95:f8:6a:e4:e1:ea:f5:1e:f5: 32:83:61:97:71:b6:96:f2:93:5b:27:33:23:4f:55: c2:5e:4a:ac:a8:44:55:8a:e7:bb:8c:27:01:75:c3: 82:65:de:0e:eb:d0:cc:ce:d2:58:fa:0a:91:77:03: ad:42:18:af:66:06:20:15:79:a2:c1:d6:b7:73:ce: a4:3f:cf:8b:34:5b:be:10:0e:b5:92:2d:01:5b:78: a6:b6:8a:4f:23:ca:2c:87:58:91:dd:b6:1e:9e:a7: 23:8f:40:7a:2c:05:79:6c:90:db:3b:a4:9a:3f:73: 03:86:ac:b0:2c:7e:0b:93:25:80:e9:ee:de:84:d4: fe:98:b2:5b:00:e8:f6:d0:cd:70:81:5e:d2:46:39: 7f:db:cd:4f:07:a5:e5:4a:d8:79:c3:23:5f:34:1e: 0a:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:23:3D:07:8B:6B:46:55:F2:18:EA:8B:B4:CB:A1:61:4B:BB:F4:1D X509v3 Authority Key Identifier: keyid:55:10:CD:B9:BA:E0:B9:32:C7:9A:29:F8:D9:79:2D:30:9F:7A:D7:B7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VRDNubrguTLHmin42XktMJ9617c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/770966-7dac-4e1c-b3ed-df5902013cdf/1/VRDNubrguTLHmin42XktMJ9617c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/67/770966-7dac-4e1c-b3ed-df5902013cdf/1/VRDNubrguTLHmin42XktMJ9617c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:fe:04:f4:b9:47:73:fc:ca:94:85:29:4c:5c:0e:03:c4:83: 03:0d:bb:62:98:df:1e:4d:0b:39:7d:97:89:87:d3:f9:10:70: de:83:01:5d:36:8a:cd:82:aa:bb:45:08:b1:24:5d:97:ff:7f: 0b:0a:40:77:94:bf:64:37:45:c3:b7:7a:25:55:9f:0d:c7:8e: 3e:75:e0:9f:2d:f4:25:f6:ea:99:b4:31:3d:dd:ea:82:50:dd: ab:a9:71:b6:4e:c7:ec:ad:8b:0e:a2:2f:2c:49:cf:5a:53:62: 22:01:5a:e8:bf:f7:ac:8d:57:b6:cb:f3:db:c7:d4:35:e8:85: 9a:7f:78:81:ab:85:fe:09:f0:02:77:f5:99:2f:6f:ec:29:ce: cc:fe:83:0d:65:75:08:2d:d4:e6:4b:10:97:cf:80:55:23:c9: eb:99:1a:36:05:68:e4:d5:14:ae:00:1e:96:ad:a4:30:f2:54: 31:55:f6:a3:5c:ec:93:a6:34:cb:42:ae:82:51:1e:db:09:6a: f4:ee:ff:1d:3c:73:b4:11:a4:9d:9c:db:f4:2e:08:1f:db:b1: 63:74:b2:1a:ae:3d:10:df:4d:85:cb:9a:e2:04:bd:13:2b:8a: b7:2e:94:45:ed:0e:66:47:01:d1:31:48:83:ed:49:ed:ea:a7: 88:3c:b2:f5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZrHwZhQVOT3ZVfLgm0PYSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU1MTBjZGI5YmFlMGI5MzJjNzlhMjlmOGQ5NzkyZDMwOWY3 YWQ3YjcwHhcNMjUxMjI2MDgwMDM0WhcNMjUxMjI3MDgwMDM0WjAzMTEwLwYDVQQD Eyg0NDIzM2QwNzhiNmI0NjU1ZjIxOGVhOGJiNGNiYTE2MTRiYmJmNDFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqk6bVrZOTZutyt0rHLGp+9YOmExd v/6178ldY6pVKOoZpIpTLZRVAycCtZsPDGQFDFfNhpfX/T2PGQ41z7nMjySqF3Mk AXKK16vLEfO5BMYcl7goAdcm7BcGJRFaq8iV+Grk4er1HvUyg2GXcbaW8pNbJzMj T1XCXkqsqERViue7jCcBdcOCZd4O69DMztJY+gqRdwOtQhivZgYgFXmiwda3c86k P8+LNFu+EA61ki0BW3imtopPI8osh1iR3bYenqcjj0B6LAV5bJDbO6SaP3MDhqyw LH4LkyWA6e7ehNT+mLJbAOj20M1wgV7SRjl/281PB6XlSth5wyNfNB4KOQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEQjPQeLa0ZV8hjqi7TLoWFLu/QdMB8GA1UdIwQY MBaAFFUQzbm64Lkyx5op+Nl5LTCfete3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVlJETnVicmd1VExIbWluNDJYa3RNSjk2MTdjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny83NzA5NjYtN2RhYy00ZTFjLWIzZWQt ZGY1OTAyMDEzY2RmLzEvVlJETnVicmd1VExIbWluNDJYa3RNSjk2MTdjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ny83NzA5NjYtN2RhYy00ZTFjLWIzZWQtZGY1OTAyMDEzY2Rm LzEvVlJETnVicmd1VExIbWluNDJYa3RNSjk2MTdjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAff4E9LlH c/zKlIUpTFwOA8SDAw27YpjfHk0LOX2XiYfT+RBw3oMBXTaKzYKqu0UIsSRdl/9/ CwpAd5S/ZDdFw7d6JVWfDceOPnXgny30JfbqmbQxPd3qglDdq6lxtk7H7K2LDqIv LEnPWlNiIgFa6L/3rI1Xtsvz28fUNeiFmn94gauF/gnwAnf1mS9v7CnOzP6DDWV1 CC3U5ksQl8+AVSPJ65kaNgVo5NUUrgAelq2kMPJUMVX2o1zsk6Y0y0KuglEe2wlq 9O7/HTxztBGknZzb9C4IH9uxY3SyGq49EN9Nhcua4gS9EyuKty6URe0OZkcB0TFI g+1J7eqniDyy9Q== -----END CERTIFICATE-----Generated at Fri Dec 26 14:06:10 2025 by rpki-client