This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/ebb39e-be6b-428d-b50e-c7a366b91f43/1/veWU40bxTQmDwaa_S7XHFP-bhEI.mft File: veWU40bxTQmDwaa_S7XHFP-bhEI.mft (raw, json) Hash identifier: lfyzuM9eaGRwE4l1RwKSHrOLhLBBWgPiSdrHzpNMswo= Subject key identifier: 61:D7:72:E8:13:85:84:05:46:4F:BC:1E:AF:09:AA:6B:B8:7C:C3:A9 Authority key identifier: BD:E5:94:E3:46:F1:4D:09:83:C1:A6:BF:4B:B5:C7:14:FF:9B:84:42 Certificate issuer: /CN=bde594e346f14d0983c1a6bf4bb5c714ff9b8442 Certificate serial: 019B59E459438A8056476CB317C89B72110B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/veWU40bxTQmDwaa_S7XHFP-bhEI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/ebb39e-be6b-428d-b50e-c7a366b91f43/1/veWU40bxTQmDwaa_S7XHFP-bhEI.mft Manifest number: 1794 Signing time: Fri 26 Dec 2025 09:01:35 +0000 Manifest this update: Fri 26 Dec 2025 09:01:35 +0000 Manifest next update: Sat 27 Dec 2025 09:01:35 +0000 Files and hashes: 1: veWU40bxTQmDwaa_S7XHFP-bhEI.crl (hash: HoJkIZa/3J6fSrqdcQDWVEgaSDqUb/ngiRUlG0zEe4s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/ebb39e-be6b-428d-b50e-c7a366b91f43/1/veWU40bxTQmDwaa_S7XHFP-bhEI.crl rsync://rpki.ripe.net/repository/DEFAULT/a8/ebb39e-be6b-428d-b50e-c7a366b91f43/1/veWU40bxTQmDwaa_S7XHFP-bhEI.mft rsync://rpki.ripe.net/repository/DEFAULT/veWU40bxTQmDwaa_S7XHFP-bhEI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 09:01:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:e4:59:43:8a:80:56:47:6c:b3:17:c8:9b:72:11:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bde594e346f14d0983c1a6bf4bb5c714ff9b8442 Validity Not Before: Dec 26 09:01:35 2025 GMT Not After : Dec 27 09:01:35 2025 GMT Subject: CN=61d772e813858405464fbc1eaf09aa6bb87cc3a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:96:6f:94:18:82:39:ad:6f:04:42:db:3c:d1: af:1b:86:f7:47:c6:34:79:ae:48:99:65:a7:bb:2b: bf:df:26:ac:83:2f:a8:4f:4a:8e:53:ec:fb:08:7a: 34:82:15:91:47:d2:a9:2c:0f:5f:98:53:72:b1:62: 40:9b:55:19:e6:e6:22:c7:eb:8d:c2:5c:c9:80:b9: 96:1c:cd:fe:bc:7d:f5:d3:12:bb:90:04:97:b0:7f: 93:9f:cc:1b:36:39:72:3a:c9:c6:a2:48:0a:b3:45: f8:1e:f2:c4:28:3b:27:12:13:30:fe:ce:aa:0f:35: d9:c2:b7:c3:aa:67:1d:55:1a:bb:a0:ae:18:c7:b1: 79:50:52:de:e0:3d:4e:22:a4:80:1f:c0:e3:ef:fc: 07:49:28:04:9b:11:4e:17:e6:e7:23:87:a3:d8:7a: bf:54:21:02:e5:a4:eb:d4:65:c9:18:63:8c:eb:71: 1f:c5:60:8d:05:4a:c3:aa:14:1f:b1:16:3c:74:88: c0:2a:b6:2e:e0:2c:77:3f:84:12:0a:25:99:30:25: 30:a1:25:2b:f4:25:bd:c7:ff:9d:54:e5:59:92:b0: 79:06:ca:32:3f:35:b0:a4:d5:73:fb:8f:2e:f1:ff: 52:32:0d:30:a1:0d:3e:f9:17:aa:0f:0d:f0:8e:9a: c7:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:D7:72:E8:13:85:84:05:46:4F:BC:1E:AF:09:AA:6B:B8:7C:C3:A9 X509v3 Authority Key Identifier: keyid:BD:E5:94:E3:46:F1:4D:09:83:C1:A6:BF:4B:B5:C7:14:FF:9B:84:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/veWU40bxTQmDwaa_S7XHFP-bhEI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/ebb39e-be6b-428d-b50e-c7a366b91f43/1/veWU40bxTQmDwaa_S7XHFP-bhEI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/ebb39e-be6b-428d-b50e-c7a366b91f43/1/veWU40bxTQmDwaa_S7XHFP-bhEI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9b:48:c0:c8:e2:0c:23:94:65:30:61:fe:ef:81:75:08:87:b7: 02:8f:e2:c8:0a:53:88:b4:6e:98:e8:ad:35:4b:bc:35:db:a3: 41:b3:34:77:ff:56:53:1d:da:1e:8a:a0:66:50:c9:ee:45:ce: 11:52:19:83:da:87:09:8b:ab:e7:70:9b:8c:19:d0:a7:cd:7f: 87:46:21:a6:5b:33:0f:5d:bc:33:76:ff:f0:29:e5:30:9c:e1: c5:cb:17:1e:c9:e1:f7:97:59:a0:02:96:ee:8a:c8:fb:ca:78: eb:c4:b7:31:87:16:5a:97:3e:5b:10:0a:9b:ce:a7:14:f8:76: 70:f0:5c:67:9b:46:ed:53:f3:e1:8b:ba:22:49:b2:13:4e:86: 33:92:54:14:68:2f:ee:64:a3:3b:3d:53:55:51:a1:49:85:60: 63:3a:d4:2b:1c:35:81:e3:7c:85:d5:6f:ab:a2:87:e2:fa:07: 8f:9c:e3:c6:dd:6f:bc:1c:35:0e:d4:4d:52:04:2a:80:9c:b0: 14:3e:d7:e6:86:f9:05:d4:ac:8b:02:a1:ff:fb:02:2d:d3:5a: 00:f9:90:5f:a3:1b:4c:4d:39:09:2e:0e:d0:ca:ce:1b:bf:37: 02:a2:34:3f:10:b5:7c:da:e7:20:ff:b6:38:8b:5d:19:6e:be: 7a:f0:45:c1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZ5FlDioBWR2yzF8ibchELMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJkZTU5NGUzNDZmMTRkMDk4M2MxYTZiZjRiYjVjNzE0ZmY5 Yjg0NDIwHhcNMjUxMjI2MDkwMTM1WhcNMjUxMjI3MDkwMTM1WjAzMTEwLwYDVQQD Eyg2MWQ3NzJlODEzODU4NDA1NDY0ZmJjMWVhZjA5YWE2YmI4N2NjM2E5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyJZvlBiCOa1vBELbPNGvG4b3R8Y0 ea5ImWWnuyu/3yasgy+oT0qOU+z7CHo0ghWRR9KpLA9fmFNysWJAm1UZ5uYix+uN wlzJgLmWHM3+vH310xK7kASXsH+Tn8wbNjlyOsnGokgKs0X4HvLEKDsnEhMw/s6q DzXZwrfDqmcdVRq7oK4Yx7F5UFLe4D1OIqSAH8Dj7/wHSSgEmxFOF+bnI4ej2Hq/ VCEC5aTr1GXJGGOM63EfxWCNBUrDqhQfsRY8dIjAKrYu4Cx3P4QSCiWZMCUwoSUr 9CW9x/+dVOVZkrB5BsoyPzWwpNVz+48u8f9SMg0woQ0++ReqDw3wjprHxQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGHXcugThYQFRk+8Hq8Jqmu4fMOpMB8GA1UdIwQY MBaAFL3llONG8U0Jg8Gmv0u1xxT/m4RCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdmVXVTQwYnhUUW1Ed2FhX1M3WEhGUC1iaEVJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9lYmIzOWUtYmU2Yi00MjhkLWI1MGUt YzdhMzY2YjkxZjQzLzEvdmVXVTQwYnhUUW1Ed2FhX1M3WEhGUC1iaEVJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOC9lYmIzOWUtYmU2Yi00MjhkLWI1MGUtYzdhMzY2YjkxZjQz LzEvdmVXVTQwYnhUUW1Ed2FhX1M3WEhGUC1iaEVJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAm0jAyOIM I5RlMGH+74F1CIe3Ao/iyApTiLRumOitNUu8NdujQbM0d/9WUx3aHoqgZlDJ7kXO EVIZg9qHCYur53CbjBnQp81/h0YhplszD128M3b/8CnlMJzhxcsXHsnh95dZoAKW 7orI+8p468S3MYcWWpc+WxAKm86nFPh2cPBcZ5tG7VPz4Yu6IkmyE06GM5JUFGgv 7mSjOz1TVVGhSYVgYzrUKxw1geN8hdVvq6KH4voHj5zjxt1vvBw1DtRNUgQqgJyw FD7X5ob5BdSsiwKh//sCLdNaAPmQX6MbTE05CS4O0MrOG783AqI0PxC1fNrnIP+2 OItdGW6+evBFwQ== -----END CERTIFICATE-----Generated at Fri Dec 26 17:40:25 2025 by rpki-client