This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/69f1e5-28a3-4008-9dcd-5c47ca28112b/1/vkFhezq6Mltoxn6z0ghK3RnmTt8.mft File: vkFhezq6Mltoxn6z0ghK3RnmTt8.mft (raw, json) Hash identifier: k4TEnuZCmUXq3IGVyxQFEow8zSPoIguSjcsA/aq3VPM= Subject key identifier: 0E:1C:29:90:12:62:29:D8:50:31:26:A8:17:0A:0D:DC:22:3B:E8:0D Authority key identifier: BE:41:61:7B:3A:BA:32:5B:68:C6:7E:B3:D2:08:4A:DD:19:E6:4E:DF Certificate issuer: /CN=be41617b3aba325b68c67eb3d2084add19e64edf Certificate serial: 019B5A1AB7C30413F36F81674DA249DCA256 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vkFhezq6Mltoxn6z0ghK3RnmTt8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/69f1e5-28a3-4008-9dcd-5c47ca28112b/1/vkFhezq6Mltoxn6z0ghK3RnmTt8.mft Manifest number: 7E Signing time: Fri 26 Dec 2025 10:00:58 +0000 Manifest this update: Fri 26 Dec 2025 10:00:58 +0000 Manifest next update: Sat 27 Dec 2025 10:00:58 +0000 Files and hashes: 1: vkFhezq6Mltoxn6z0ghK3RnmTt8.crl (hash: 3Yi/DtpklXcJtzfQT+5j3esy5plXJiIHf7qVWazI7Jo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/69f1e5-28a3-4008-9dcd-5c47ca28112b/1/vkFhezq6Mltoxn6z0ghK3RnmTt8.crl rsync://rpki.ripe.net/repository/DEFAULT/77/69f1e5-28a3-4008-9dcd-5c47ca28112b/1/vkFhezq6Mltoxn6z0ghK3RnmTt8.mft rsync://rpki.ripe.net/repository/DEFAULT/vkFhezq6Mltoxn6z0ghK3RnmTt8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:1a:b7:c3:04:13:f3:6f:81:67:4d:a2:49:dc:a2:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=be41617b3aba325b68c67eb3d2084add19e64edf Validity Not Before: Dec 26 10:00:58 2025 GMT Not After : Dec 27 10:00:58 2025 GMT Subject: CN=0e1c2990126229d8503126a8170a0ddc223be80d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:92:46:9c:e5:1a:2b:81:7a:0e:c4:98:e9:ab: f2:2a:5a:7d:02:f7:fd:3b:bd:fd:b8:9f:50:91:4b: 72:16:fa:c3:46:19:5d:cd:3c:ea:cc:bb:ba:39:00: a3:80:d9:ed:63:22:91:a2:30:c9:16:39:45:ad:bc: 12:0f:43:b2:f6:11:6e:45:1a:99:ea:23:c4:41:b3: 2b:15:5a:34:da:1b:d8:4d:77:8e:5c:4d:72:4c:30: 1a:49:1f:3a:73:02:3b:76:84:d2:0f:32:df:f2:68: 4a:80:0b:1a:6b:7a:41:f9:94:ad:20:7e:80:6c:85: 47:6b:6d:11:48:0e:ad:21:31:3c:ec:bc:6b:19:1b: 07:9c:ea:57:f5:23:c6:59:28:6b:7e:87:1e:db:a8: 29:6b:f0:e3:75:2d:28:e7:0e:9e:f7:ce:71:aa:31: c0:81:17:f0:d6:26:c2:b5:8a:fe:47:65:08:4f:e9: 42:4c:96:c9:3e:c9:e7:e5:cb:8f:f0:cd:5e:24:a9: 78:90:bc:6a:29:68:24:63:48:d0:fc:39:1f:a7:c3: 99:98:33:55:bd:2f:61:b2:a9:0e:1b:17:a6:65:0a: 5b:f3:32:a6:1a:88:f0:fc:8a:9d:53:90:cf:99:ea: bc:1e:76:48:33:3b:a2:17:d7:fb:27:7d:7c:30:85: 49:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:1C:29:90:12:62:29:D8:50:31:26:A8:17:0A:0D:DC:22:3B:E8:0D X509v3 Authority Key Identifier: keyid:BE:41:61:7B:3A:BA:32:5B:68:C6:7E:B3:D2:08:4A:DD:19:E6:4E:DF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vkFhezq6Mltoxn6z0ghK3RnmTt8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/69f1e5-28a3-4008-9dcd-5c47ca28112b/1/vkFhezq6Mltoxn6z0ghK3RnmTt8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/77/69f1e5-28a3-4008-9dcd-5c47ca28112b/1/vkFhezq6Mltoxn6z0ghK3RnmTt8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:f6:d3:69:5a:b8:68:eb:c0:91:85:33:50:5c:3d:ae:22:83: 96:a8:c9:b6:a1:33:17:a7:c0:35:9e:fb:7e:fd:1c:41:a9:0f: 95:4c:8a:74:a0:f5:2d:06:11:1b:e9:84:ac:71:02:64:92:76: d0:be:9c:ce:8c:d9:e7:c9:99:8b:f8:93:dd:c4:31:1f:dd:20: 1c:de:10:99:b5:29:a1:58:03:48:9b:41:46:57:0c:2c:5b:6e: 0a:48:13:e8:e4:ef:00:07:b7:38:b0:d0:f4:a0:0b:2f:85:fe: d7:57:d7:95:ea:de:92:c4:99:87:71:d6:b4:aa:48:6a:a3:27: 67:25:a6:1e:7f:92:06:7b:a8:f6:c0:0b:80:7d:8a:c2:4d:93: 5c:48:9b:02:0c:5b:76:d2:26:2f:36:ab:ae:ed:23:9d:a7:bc: 13:80:70:88:ea:cb:c9:67:84:48:b5:2d:ef:e6:aa:41:a6:11: 7c:cd:d5:0d:2a:36:85:b8:dd:95:5d:c4:be:74:7c:d4:33:81: 1e:78:16:aa:e1:ca:93:c3:18:c6:84:c8:94:52:2a:92:ca:0f: b6:95:97:ea:dd:b2:8d:4b:0f:d7:8a:32:b4:28:6a:71:0b:dd: 12:7b:8e:78:0f:51:5c:31:7c:33:5b:fb:69:ac:9b:b0:a7:3b: 4f:94:e8:66 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtaGrfDBBPzb4FnTaJJ3KJWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJlNDE2MTdiM2FiYTMyNWI2OGM2N2ViM2QyMDg0YWRkMTll NjRlZGYwHhcNMjUxMjI2MTAwMDU4WhcNMjUxMjI3MTAwMDU4WjAzMTEwLwYDVQQD EygwZTFjMjk5MDEyNjIyOWQ4NTAzMTI2YTgxNzBhMGRkYzIyM2JlODBkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsZJGnOUaK4F6DsSY6avyKlp9Avf9 O739uJ9QkUtyFvrDRhldzTzqzLu6OQCjgNntYyKRojDJFjlFrbwSD0Oy9hFuRRqZ 6iPEQbMrFVo02hvYTXeOXE1yTDAaSR86cwI7doTSDzLf8mhKgAsaa3pB+ZStIH6A bIVHa20RSA6tITE87LxrGRsHnOpX9SPGWShrfoce26gpa/DjdS0o5w6e985xqjHA gRfw1ibCtYr+R2UIT+lCTJbJPsnn5cuP8M1eJKl4kLxqKWgkY0jQ/Dkfp8OZmDNV vS9hsqkOGxemZQpb8zKmGojw/IqdU5DPmeq8HnZIMzuiF9f7J318MIVJswIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA4cKZASYinYUDEmqBcKDdwiO+gNMB8GA1UdIwQY MBaAFL5BYXs6ujJbaMZ+s9IISt0Z5k7fMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdmtGaGV6cTZNbHRveG42ejBnaEszUm5tVHQ4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny82OWYxZTUtMjhhMy00MDA4LTlkY2Qt NWM0N2NhMjgxMTJiLzEvdmtGaGV6cTZNbHRveG42ejBnaEszUm5tVHQ4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ny82OWYxZTUtMjhhMy00MDA4LTlkY2QtNWM0N2NhMjgxMTJi LzEvdmtGaGV6cTZNbHRveG42ejBnaEszUm5tVHQ4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAF/bTaVq4 aOvAkYUzUFw9riKDlqjJtqEzF6fANZ77fv0cQakPlUyKdKD1LQYRG+mErHECZJJ2 0L6czozZ58mZi/iT3cQxH90gHN4QmbUpoVgDSJtBRlcMLFtuCkgT6OTvAAe3OLDQ 9KALL4X+11fXlereksSZh3HWtKpIaqMnZyWmHn+SBnuo9sALgH2Kwk2TXEibAgxb dtImLzarru0jnae8E4BwiOrLyWeESLUt7+aqQaYRfM3VDSo2hbjdlV3EvnR81DOB HngWquHKk8MYxoTIlFIqksoPtpWX6t2yjUsP14oytChqcQvdEnuOeA9RXDF8M1v7 aaybsKc7T5ToZg== -----END CERTIFICATE-----Generated at Fri Dec 26 16:02:28 2025 by rpki-client