This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.mft File: VytO2SaC1xio_ESIFAAnQGlgeV8.mft (raw, json) Hash identifier: ho5VyoEtitSzQUPVrRbjTJJASVn1ZcCtC5expplZR+o= Subject key identifier: 4F:88:40:C5:EF:E4:70:B3:AE:3F:A5:A5:EE:71:89:5C:57:14:A6:6E Authority key identifier: 57:2B:4E:D9:26:82:D7:18:A8:FC:44:88:14:00:27:40:69:60:79:5F Certificate issuer: /CN=572b4ed92682d718a8fc4488140027406960795f Certificate serial: 019B12DDABCD89E6615C4DE651A7C9DD4962 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VytO2SaC1xio_ESIFAAnQGlgeV8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.mft Manifest number: 0DCF Signing time: Fri 12 Dec 2025 14:01:15 +0000 Manifest this update: Fri 12 Dec 2025 14:01:15 +0000 Manifest next update: Sat 13 Dec 2025 14:01:15 +0000 Files and hashes: 1: 8R_SRNPLxmibFS1usJIWud4x3Z8.roa (hash: b2dIcGiMsdbDXAx7DhwSvU4UC5F6aoWQ/Pjpo9tIfQA=) 2: HSPZejR5lJB8cqlG1i1XbvBd4AY.roa (hash: LYg4VkRRLjikz7I2hzCQk0ST28urIdVmK83g08e6nBA=) 3: VytO2SaC1xio_ESIFAAnQGlgeV8.crl (hash: PkuLJaqPDMVypEtBaZjgQivjOHQ+9Bfq/LQSYLtYeHI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.crl rsync://rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.mft rsync://rpki.ripe.net/repository/DEFAULT/VytO2SaC1xio_ESIFAAnQGlgeV8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Dec 2025 08:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:12:dd:ab:cd:89:e6:61:5c:4d:e6:51:a7:c9:dd:49:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=572b4ed92682d718a8fc4488140027406960795f Validity Not Before: Dec 12 14:01:15 2025 GMT Not After : Dec 13 14:01:15 2025 GMT Subject: CN=4f8840c5efe470b3ae3fa5a5ee71895c5714a66e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f3:e4:02:83:af:ea:15:00:27:21:0d:da:5d: 22:a4:17:25:0a:bc:83:78:cb:fa:e4:86:45:48:be: ed:62:bf:d1:f2:67:e0:04:e0:eb:91:1b:72:d7:d1: b8:75:eb:75:02:55:60:5b:09:55:5f:46:bf:ed:be: 3e:a8:b8:b1:66:e2:ac:ed:d9:eb:44:13:66:fd:ce: ac:16:55:2b:9c:57:5c:20:8f:69:9d:43:af:f0:7e: ac:58:ad:ea:c0:26:72:dd:92:48:3d:cc:03:77:75: 32:b4:c1:31:8a:d0:8c:5b:44:a7:c0:49:5d:e5:7c: 66:fa:99:4c:46:23:cb:44:02:ae:36:b8:be:e0:d8: 75:71:63:09:b6:e2:5d:8d:ab:a9:e8:50:d9:db:74: b9:30:a6:66:58:b0:1f:3e:64:2f:9b:2b:8d:1a:0c: 5d:11:38:0f:7f:53:21:9d:3b:fb:00:0a:28:7c:a4: d5:3e:7f:d3:d5:b3:33:68:fc:75:99:90:a3:09:d5: ce:cc:4b:87:6e:31:4d:4c:67:f4:ee:48:96:71:ed: cd:51:7a:87:4e:b9:e5:cc:26:ab:7f:2c:78:e6:68: 4d:a2:b6:b5:85:e2:7b:de:57:b8:1d:8c:a2:b0:33: 44:e1:e9:e0:37:d4:ef:0f:26:b8:d4:c0:cf:cd:a2: a9:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:88:40:C5:EF:E4:70:B3:AE:3F:A5:A5:EE:71:89:5C:57:14:A6:6E X509v3 Authority Key Identifier: keyid:57:2B:4E:D9:26:82:D7:18:A8:FC:44:88:14:00:27:40:69:60:79:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VytO2SaC1xio_ESIFAAnQGlgeV8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a1:29:a6:fd:9e:05:b4:c3:da:57:89:e6:68:8f:70:ac:29:f5: 89:d3:0b:02:fc:ba:48:b6:fe:41:e5:7e:0f:ec:dd:3a:00:09: c8:35:77:a6:75:57:b9:b5:a6:83:17:0e:4b:e7:4b:c1:d9:3f: d9:62:24:06:49:60:2c:d4:1a:8d:ae:ef:42:16:c1:4c:c8:a8: cf:a3:7f:c0:46:93:0c:9c:d0:00:d3:9e:b1:b6:cf:19:8c:6b: dc:09:67:bd:98:bb:e9:54:e2:0d:1b:a1:9f:43:75:a0:f4:f9: c1:54:06:36:d2:90:e8:e3:07:f0:0c:df:5f:a7:af:97:a1:f6: 02:b9:35:4f:c0:17:1a:e9:96:59:92:b3:ae:1a:39:63:60:c0: e9:21:bb:8c:da:3e:4f:b4:2b:7c:97:d8:fc:3b:bc:ac:ed:71: 49:80:b5:be:25:e1:08:cd:20:9d:1e:b0:e5:0a:55:1b:2e:c3: a9:b0:de:d6:fa:4d:1b:81:53:04:59:2c:7b:f0:a9:13:48:bc: 40:44:80:89:fc:21:3d:90:90:42:8c:d6:4d:ea:27:9e:c5:24: 10:e6:88:e1:e7:c0:af:76:fb:d0:6f:ac:99:77:dd:0f:0c:3a: 41:e1:bd:84:53:2f:ac:11:b6:a7:5f:29:07:d8:59:0d:2f:13: 84:eb:bf:a8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsS3avNieZhXE3mUafJ3UliMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU3MmI0ZWQ5MjY4MmQ3MThhOGZjNDQ4ODE0MDAyNzQwNjk2 MDc5NWYwHhcNMjUxMjEyMTQwMTE1WhcNMjUxMjEzMTQwMTE1WjAzMTEwLwYDVQQD Eyg0Zjg4NDBjNWVmZTQ3MGIzYWUzZmE1YTVlZTcxODk1YzU3MTRhNjZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw/PkAoOv6hUAJyEN2l0ipBclCryD eMv65IZFSL7tYr/R8mfgBODrkRty19G4det1AlVgWwlVX0a/7b4+qLixZuKs7dnr RBNm/c6sFlUrnFdcII9pnUOv8H6sWK3qwCZy3ZJIPcwDd3UytMExitCMW0SnwEld 5Xxm+plMRiPLRAKuNri+4Nh1cWMJtuJdjaup6FDZ23S5MKZmWLAfPmQvmyuNGgxd ETgPf1MhnTv7AAoofKTVPn/T1bMzaPx1mZCjCdXOzEuHbjFNTGf07kiWce3NUXqH TrnlzCarfyx45mhNora1heJ73le4HYyisDNE4engN9TvDya41MDPzaKpSwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE+IQMXv5HCzrj+lpe5xiVxXFKZuMB8GA1UdIwQY MBaAFFcrTtkmgtcYqPxEiBQAJ0BpYHlfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVnl0TzJTYUMxeGlvX0VTSUZBQW5RR2xnZVY4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi84ODRjMzEtZTUwOS00MjJiLWIwYTEt YWY5ZmMwMTJiZDU0LzEvVnl0TzJTYUMxeGlvX0VTSUZBQW5RR2xnZVY4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYi84ODRjMzEtZTUwOS00MjJiLWIwYTEtYWY5ZmMwMTJiZDU0 LzEvVnl0TzJTYUMxeGlvX0VTSUZBQW5RR2xnZVY4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoSmm/Z4F tMPaV4nmaI9wrCn1idMLAvy6SLb+QeV+D+zdOgAJyDV3pnVXubWmgxcOS+dLwdk/ 2WIkBklgLNQaja7vQhbBTMioz6N/wEaTDJzQANOesbbPGYxr3AlnvZi76VTiDRuh n0N1oPT5wVQGNtKQ6OMH8AzfX6evl6H2Ark1T8AXGumWWZKzrho5Y2DA6SG7jNo+ T7QrfJfY/Du8rO1xSYC1viXhCM0gnR6w5QpVGy7DqbDe1vpNG4FTBFkse/CpE0i8 QESAifwhPZCQQozWTeonnsUkEOaI4efAr3b70G+smXfdDww6QeG9hFMvrBG2p18p B9hZDS8ThOu/qA== -----END CERTIFICATE-----Generated at Fri Dec 12 18:31:25 2025 by rpki-client