This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft File: vYUnKkCAkE914jWkevC0EmbipgM.mft (raw, json) Hash identifier: Iscn/5nF3YWXBsuUxZHVxvfQsCfUl7L1dQW0IsakpFs= Subject key identifier: FA:28:1B:9C:88:DA:F4:D1:18:AA:06:8C:89:88:19:B3:AC:AE:A0:96 Authority key identifier: BD:85:27:2A:40:80:90:4F:75:E2:35:A4:7A:F0:B4:12:66:E2:A6:03 Certificate issuer: /CN=bd85272a4080904f75e235a47af0b41266e2a603 Certificate serial: 019B0859BBA9B674EF2E02C1B2683B8F3BE9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft Manifest number: 0A97 Signing time: Wed 10 Dec 2025 13:00:56 +0000 Manifest this update: Wed 10 Dec 2025 13:00:56 +0000 Manifest next update: Thu 11 Dec 2025 13:00:56 +0000 Files and hashes: 1: qUq_q62qYu3qxVOMe_F0xihpmUw.roa (hash: SovqRJc4ePvthgrrsQXCalBtYnWMU+TdM7o0xgmwIiE=) 2: vYUnKkCAkE914jWkevC0EmbipgM.crl (hash: SFI+miC26oqbkCmjBS4G5F8fABf1z6k5DZFwtIMdNP8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.crl rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 11 Dec 2025 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:08:59:bb:a9:b6:74:ef:2e:02:c1:b2:68:3b:8f:3b:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bd85272a4080904f75e235a47af0b41266e2a603 Validity Not Before: Dec 10 13:00:56 2025 GMT Not After : Dec 11 13:00:56 2025 GMT Subject: CN=fa281b9c88daf4d118aa068c898819b3acaea096 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:aa:19:8b:d8:6e:7f:67:cd:03:c0:b8:c8:c7: 13:75:d7:7b:10:10:42:10:da:ad:83:34:1d:5e:18: 0e:48:ab:cd:a0:24:01:02:f4:d5:fa:f8:62:3f:11: d4:f4:79:db:a3:fb:e5:43:71:e8:a6:3d:b3:13:ec: 3f:11:75:ab:b9:11:6c:e1:91:0b:6b:63:46:c9:50: bf:a4:34:af:52:7f:f1:ce:82:51:90:4e:b4:b1:67: 40:cc:c5:41:e8:fe:e2:a6:96:75:56:40:af:cc:ab: 0e:fc:c9:32:fe:af:a0:e1:f2:70:8f:db:c6:0a:4b: fd:0a:68:e2:5d:9c:9e:47:59:3d:a4:c1:99:17:e2: 92:8a:9e:d8:7c:c3:17:c4:19:85:1a:29:ef:30:f9: b8:6e:6b:ad:e2:ff:21:a3:1f:91:0c:52:d7:9f:dd: bd:4c:54:03:92:96:98:80:60:3d:7d:5d:59:ec:9a: ed:7f:63:60:80:1a:cb:5f:e7:fe:26:03:16:5a:45: 7d:83:b2:7d:50:56:a2:19:75:e2:39:27:4c:40:86: f7:69:88:0d:2d:d6:c7:bb:29:31:bb:4b:b7:03:fb: 13:ce:5e:96:35:81:61:94:fc:55:a6:3d:5b:8e:34: 1a:a7:71:85:0e:e2:0b:8d:00:2c:e8:d6:89:0c:97: 13:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:28:1B:9C:88:DA:F4:D1:18:AA:06:8C:89:88:19:B3:AC:AE:A0:96 X509v3 Authority Key Identifier: keyid:BD:85:27:2A:40:80:90:4F:75:E2:35:A4:7A:F0:B4:12:66:E2:A6:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a7:bf:ec:2e:c8:d7:bf:cc:74:b8:47:e1:ea:32:65:dc:41:1d: 31:73:be:98:aa:5f:35:c3:0c:ee:86:a5:23:23:0c:52:03:0c: 1e:6b:fe:dd:97:d4:da:41:f7:de:ff:9e:5a:b7:5e:10:a5:27: 03:10:f7:88:d5:16:f4:64:69:96:80:b3:b5:cb:d6:52:90:22: 0e:23:b5:8e:24:53:37:e9:25:c8:fc:a1:b5:ab:f8:a5:74:be: 27:58:da:bd:fb:7d:15:9f:34:b9:34:e3:1b:0d:16:51:d9:57: 80:e8:df:54:d0:a8:81:db:3c:a9:2d:cc:29:52:6f:30:f7:36: c0:b1:b9:04:87:86:a6:bb:41:36:d4:e7:8d:d9:59:49:05:92: e6:6a:13:4d:0a:e0:4b:d2:0c:35:13:4f:df:c6:06:4f:c5:97: 32:80:ce:db:95:93:be:16:86:1a:61:cb:e2:41:e7:55:a7:93: 70:a2:8c:74:d1:69:57:aa:ba:ac:81:1f:0a:d9:c1:82:43:a1: ca:ab:09:59:10:b2:a6:32:3d:1d:a3:9c:55:89:6c:8f:68:4c: 6e:c8:6b:75:f7:71:a2:70:8a:b8:ea:da:a4:75:cf:c5:a8:d9: 66:bb:8d:7b:f1:17:37:03:2f:d4:ce:a4:6e:08:22:e2:fb:61: 96:05:11:ee -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsIWbuptnTvLgLBsmg7jzvpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJkODUyNzJhNDA4MDkwNGY3NWUyMzVhNDdhZjBiNDEyNjZl MmE2MDMwHhcNMjUxMjEwMTMwMDU2WhcNMjUxMjExMTMwMDU2WjAzMTEwLwYDVQQD EyhmYTI4MWI5Yzg4ZGFmNGQxMThhYTA2OGM4OTg4MTliM2FjYWVhMDk2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzaoZi9huf2fNA8C4yMcTddd7EBBC ENqtgzQdXhgOSKvNoCQBAvTV+vhiPxHU9Hnbo/vlQ3Hopj2zE+w/EXWruRFs4ZEL a2NGyVC/pDSvUn/xzoJRkE60sWdAzMVB6P7ippZ1VkCvzKsO/Mky/q+g4fJwj9vG Ckv9CmjiXZyeR1k9pMGZF+KSip7YfMMXxBmFGinvMPm4bmut4v8hox+RDFLXn929 TFQDkpaYgGA9fV1Z7Jrtf2NggBrLX+f+JgMWWkV9g7J9UFaiGXXiOSdMQIb3aYgN LdbHuykxu0u3A/sTzl6WNYFhlPxVpj1bjjQap3GFDuILjQAs6NaJDJcToQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPooG5yI2vTRGKoGjImIGbOsrqCWMB8GA1UdIwQY MBaAFL2FJypAgJBPdeI1pHrwtBJm4qYDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdllVbktrQ0FrRTkxNGpXa2V2QzBFbWJpcGdNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC8yODJjYjAtOTFiZS00MjJhLTk1ZDMt MjRmMjBmOTY3NWVjLzEvdllVbktrQ0FrRTkxNGpXa2V2QzBFbWJpcGdNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNC8yODJjYjAtOTFiZS00MjJhLTk1ZDMtMjRmMjBmOTY3NWVj LzEvdllVbktrQ0FrRTkxNGpXa2V2QzBFbWJpcGdNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAp7/sLsjX v8x0uEfh6jJl3EEdMXO+mKpfNcMM7oalIyMMUgMMHmv+3ZfU2kH33v+eWrdeEKUn AxD3iNUW9GRploCztcvWUpAiDiO1jiRTN+klyPyhtav4pXS+J1javft9FZ80uTTj Gw0WUdlXgOjfVNCogds8qS3MKVJvMPc2wLG5BIeGprtBNtTnjdlZSQWS5moTTQrg S9IMNRNP38YGT8WXMoDO25WTvhaGGmHL4kHnVaeTcKKMdNFpV6q6rIEfCtnBgkOh yqsJWRCypjI9HaOcVYlsj2hMbshrdfdxonCKuOrapHXPxajZZruNe/EXNwMv1M6k bggi4vthlgUR7g== -----END CERTIFICATE-----Generated at Wed Dec 10 18:18:19 2025 by rpki-client