This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/vjcHM7jbYU2qdgoALCQEgCgwDi0.mft File: vjcHM7jbYU2qdgoALCQEgCgwDi0.mft (raw, json) Hash identifier: hRlrDboQTITi7tJGZsEUZPgp+Ztoz0K000dWlZt/jnE= Subject key identifier: CE:80:8B:D7:21:1C:C0:91:A8:A3:A9:91:D0:FA:78:8B:4B:45:1D:D3 Authority key identifier: BE:37:07:33:B8:DB:61:4D:AA:76:0A:00:2C:24:04:80:28:30:0E:2D Certificate issuer: /CN=be370733b8db614daa760a002c24048028300e2d Certificate serial: 019B4927085A7C2B762EB3FEA40948EBEF31 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vjcHM7jbYU2qdgoALCQEgCgwDi0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/vjcHM7jbYU2qdgoALCQEgCgwDi0.mft Manifest number: 178E Signing time: Tue 23 Dec 2025 03:00:53 +0000 Manifest this update: Tue 23 Dec 2025 03:00:53 +0000 Manifest next update: Wed 24 Dec 2025 03:00:53 +0000 Files and hashes: 1: paMGJN73rjp1fa_w9RA1xrwwx18.roa (hash: Z6fxiaAqnra9zk/dGdgt7claLY2U/7DrFceSHabOI5E=) 2: vjcHM7jbYU2qdgoALCQEgCgwDi0.crl (hash: ZTj966rKCPvqPRHpW9YByl663FNXx1GeF9MycxL9yy4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/vjcHM7jbYU2qdgoALCQEgCgwDi0.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/vjcHM7jbYU2qdgoALCQEgCgwDi0.mft rsync://rpki.ripe.net/repository/DEFAULT/vjcHM7jbYU2qdgoALCQEgCgwDi0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 23:03:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:49:27:08:5a:7c:2b:76:2e:b3:fe:a4:09:48:eb:ef:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=be370733b8db614daa760a002c24048028300e2d Validity Not Before: Dec 23 03:00:53 2025 GMT Not After : Dec 24 03:00:53 2025 GMT Subject: CN=ce808bd7211cc091a8a3a991d0fa788b4b451dd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:1a:92:df:8c:5c:2e:23:5e:b5:5b:f0:85:d1: 28:82:ef:ce:79:e8:b9:f7:c5:b4:df:0b:9f:86:64: f5:e8:46:84:4f:8e:65:76:32:a7:c6:03:9b:23:d4: 86:68:74:b8:94:ad:e9:fd:00:6d:11:59:55:3a:82: d5:4f:e0:a8:ec:6d:15:f4:2c:38:01:e7:9d:bc:d7: e1:12:f3:b5:6d:07:97:c8:a1:07:99:34:d6:f5:e5: 40:52:28:7d:9b:d2:af:91:0b:2b:92:96:a0:3c:7f: 8a:26:2b:63:2f:90:55:b3:86:88:b2:f9:3c:3b:c2: ae:49:76:51:32:20:a8:c7:06:aa:3f:59:0c:d9:5f: 19:f7:08:da:74:e5:4a:9b:c5:ce:f4:af:f9:2e:2b: af:a5:cb:cf:00:5b:7b:a9:03:60:d1:04:af:37:d1: 57:7c:5b:a3:e5:f0:d8:00:ec:e6:ae:33:21:f6:eb: 3d:ae:d6:95:dd:73:37:d9:61:3a:19:75:fd:66:e0: 5e:e5:89:3b:7e:d9:00:dc:98:e8:0b:79:4d:2f:69: aa:c0:b0:50:b3:b7:c8:73:34:51:64:95:81:34:ce: d1:f8:e9:e8:2a:4d:b8:8d:3e:80:28:a2:1c:2e:36: 37:c7:c7:53:3c:0d:97:b1:2f:25:81:0f:78:e4:e4: 5b:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:80:8B:D7:21:1C:C0:91:A8:A3:A9:91:D0:FA:78:8B:4B:45:1D:D3 X509v3 Authority Key Identifier: keyid:BE:37:07:33:B8:DB:61:4D:AA:76:0A:00:2C:24:04:80:28:30:0E:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vjcHM7jbYU2qdgoALCQEgCgwDi0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/vjcHM7jbYU2qdgoALCQEgCgwDi0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/vjcHM7jbYU2qdgoALCQEgCgwDi0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 63:b0:80:27:8b:32:21:3c:e0:71:b8:73:24:85:32:d4:f1:64: 91:18:85:3b:d9:be:5a:41:1e:52:f2:fa:3c:c9:41:18:97:cc: 21:9b:6e:24:2c:95:03:b0:14:83:26:d7:e9:0b:9c:e0:fa:84: dd:ab:71:6e:ca:93:27:d9:20:b9:4d:de:ec:97:9a:70:82:3e: fe:45:4c:16:23:41:95:98:ee:c7:e9:25:6c:ee:80:0e:60:c2: e9:23:00:35:58:5a:28:00:47:ae:5e:07:59:1f:1d:85:9c:66: b6:d7:8b:e0:28:cc:de:a3:d1:67:96:be:99:dd:0d:e4:fc:1e: bb:cb:4a:73:78:d5:2f:ee:98:2e:97:91:3c:a6:f4:1f:9b:19: 23:c8:68:9a:14:15:bc:2b:46:3a:ca:6c:62:9d:aa:92:d0:96: 1e:d3:ad:ed:19:3f:c8:56:11:5d:4f:e7:80:d4:26:88:de:71: 16:86:a2:e3:ce:8b:f1:e8:53:df:e8:79:53:a2:05:b9:0d:8d: a9:03:36:71:4b:6c:64:07:73:1c:1c:44:5a:91:04:ec:02:a7: dc:2e:c1:d9:35:c2:ef:8b:d7:0c:b2:c0:62:29:e3:ce:ae:61: eb:ad:89:0b:f6:32:fc:46:e1:2e:ba:66:fe:e9:5f:2c:29:50: 96:ba:43:84 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtJJwhafCt2LrP+pAlI6+8xMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJlMzcwNzMzYjhkYjYxNGRhYTc2MGEwMDJjMjQwNDgwMjgz MDBlMmQwHhcNMjUxMjIzMDMwMDUzWhcNMjUxMjI0MDMwMDUzWjAzMTEwLwYDVQQD EyhjZTgwOGJkNzIxMWNjMDkxYThhM2E5OTFkMGZhNzg4YjRiNDUxZGQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjhqS34xcLiNetVvwhdEogu/Oeei5 98W03wufhmT16EaET45ldjKnxgObI9SGaHS4lK3p/QBtEVlVOoLVT+Co7G0V9Cw4 AeedvNfhEvO1bQeXyKEHmTTW9eVAUih9m9KvkQsrkpagPH+KJitjL5BVs4aIsvk8 O8KuSXZRMiCoxwaqP1kM2V8Z9wjadOVKm8XO9K/5LiuvpcvPAFt7qQNg0QSvN9FX fFuj5fDYAOzmrjMh9us9rtaV3XM32WE6GXX9ZuBe5Yk7ftkA3JjoC3lNL2mqwLBQ s7fIczRRZJWBNM7R+OnoKk24jT6AKKIcLjY3x8dTPA2XsS8lgQ945ORbcQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM6Ai9chHMCRqKOpkdD6eItLRR3TMB8GA1UdIwQY MBaAFL43BzO422FNqnYKACwkBIAoMA4tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdmpjSE03amJZVTJxZGdvQUxDUUVnQ2d3RGkwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy84OTZhYjMtYzQ3OS00NzBhLThiYjkt MjQyMjJkODdmODhkLzEvdmpjSE03amJZVTJxZGdvQUxDUUVnQ2d3RGkwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy84OTZhYjMtYzQ3OS00NzBhLThiYjktMjQyMjJkODdmODhk LzEvdmpjSE03amJZVTJxZGdvQUxDUUVnQ2d3RGkwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY7CAJ4sy ITzgcbhzJIUy1PFkkRiFO9m+WkEeUvL6PMlBGJfMIZtuJCyVA7AUgybX6Quc4PqE 3atxbsqTJ9kguU3e7JeacII+/kVMFiNBlZjux+klbO6ADmDC6SMANVhaKABHrl4H WR8dhZxmtteL4CjM3qPRZ5a+md0N5Pweu8tKc3jVL+6YLpeRPKb0H5sZI8homhQV vCtGOspsYp2qktCWHtOt7Rk/yFYRXU/ngNQmiN5xFoai486L8ehT3+h5U6IFuQ2N qQM2cUtsZAdzHBxEWpEE7AKn3C7B2TXC74vXDLLAYinjzq5h662JC/Yy/EbhLrpm /ulfLClQlrpDhA== -----END CERTIFICATE-----Generated at Tue Dec 23 06:46:08 2025 by rpki-client