This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/f4478b-b6f3-40c2-b858-2c333a5a1646/1/vwsqDaqOVGfNM-lIJaeGMyLThT4.mft File: vwsqDaqOVGfNM-lIJaeGMyLThT4.mft (raw, json) Hash identifier: tVOqnph+H07WEyUtv66FEbGU2bDz9Eudbu/1A2Vi0ho= Subject key identifier: 3D:14:B7:E1:74:4C:7B:3F:21:07:CF:B3:CF:50:28:2B:E1:22:1A:6A Authority key identifier: BF:0B:2A:0D:AA:8E:54:67:CD:33:E9:48:25:A7:86:33:22:D3:85:3E Certificate issuer: /CN=bf0b2a0daa8e5467cd33e94825a7863322d3853e Certificate serial: 019B1E3C6DEFBCA4410798B0046D47AA6024 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vwsqDaqOVGfNM-lIJaeGMyLThT4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/f4478b-b6f3-40c2-b858-2c333a5a1646/1/vwsqDaqOVGfNM-lIJaeGMyLThT4.mft Manifest number: 44 Signing time: Sun 14 Dec 2025 19:00:35 +0000 Manifest this update: Sun 14 Dec 2025 19:00:35 +0000 Manifest next update: Mon 15 Dec 2025 19:00:35 +0000 Files and hashes: 1: YnVixS9QBSNC1Xd1ey8mGokC-Ds.roa (hash: eDkLHOySAjp0NYwilNk4so4mTyd47A0v6j4fqq/qTBo=) 2: _q95QGktBeaejm8XuHwJspqn26w.roa (hash: ZSUCS6tPG9DZgxCUv1bJms098kV8051ECQpKbYkAKVc=) 3: vwsqDaqOVGfNM-lIJaeGMyLThT4.crl (hash: yvR96yxD5le4kn++eOHMzreeqPmNe3zW1VI+X5jgQz8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/f4478b-b6f3-40c2-b858-2c333a5a1646/1/vwsqDaqOVGfNM-lIJaeGMyLThT4.crl rsync://rpki.ripe.net/repository/DEFAULT/ab/f4478b-b6f3-40c2-b858-2c333a5a1646/1/vwsqDaqOVGfNM-lIJaeGMyLThT4.mft rsync://rpki.ripe.net/repository/DEFAULT/vwsqDaqOVGfNM-lIJaeGMyLThT4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 19:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1e:3c:6d:ef:bc:a4:41:07:98:b0:04:6d:47:aa:60:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bf0b2a0daa8e5467cd33e94825a7863322d3853e Validity Not Before: Dec 14 19:00:35 2025 GMT Not After : Dec 15 19:00:35 2025 GMT Subject: CN=3d14b7e1744c7b3f2107cfb3cf50282be1221a6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:79:68:d8:ed:8c:44:40:32:36:ae:fa:8a:8a: 01:58:58:44:77:42:c7:ab:a5:5d:04:02:91:85:39: b5:d3:2c:cc:87:f8:b9:68:3b:7b:99:e1:97:c9:b8: cd:56:43:3d:57:7c:c4:9f:8e:d3:48:9d:2c:7c:bc: 1e:64:8a:84:fc:2a:ee:9d:95:98:fb:c3:01:6b:02: 92:b0:32:33:e8:83:61:d8:d5:37:de:5a:bb:b3:9b: 63:02:13:34:c8:ac:2e:f6:a0:1d:a2:ae:77:a4:5a: 68:1d:ed:30:11:0c:2a:0e:43:e4:f2:9c:02:6b:69: ea:33:7a:9b:78:48:6d:cd:48:75:0d:5a:03:11:5f: 5c:58:dc:dc:d7:a3:a9:a4:53:d7:09:94:12:ed:a1: e8:8b:1d:b4:29:f0:42:5d:13:e7:99:c7:8c:05:f6: cd:61:74:6a:73:10:13:41:13:1a:0e:35:f9:65:5d: 9a:5a:80:7c:16:0f:82:39:a7:69:a7:6c:f3:57:d6: 17:9c:c2:ad:60:da:5b:1a:b1:90:8d:14:a2:30:b6: 11:a8:c0:41:5c:5b:0c:16:9a:ca:76:4e:2e:11:42: f1:9b:ee:15:b9:5f:47:71:62:93:a6:fb:88:31:a7: d8:2e:7d:1e:b2:d2:47:6e:02:84:aa:10:7e:55:65: 1b:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:14:B7:E1:74:4C:7B:3F:21:07:CF:B3:CF:50:28:2B:E1:22:1A:6A X509v3 Authority Key Identifier: keyid:BF:0B:2A:0D:AA:8E:54:67:CD:33:E9:48:25:A7:86:33:22:D3:85:3E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vwsqDaqOVGfNM-lIJaeGMyLThT4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/f4478b-b6f3-40c2-b858-2c333a5a1646/1/vwsqDaqOVGfNM-lIJaeGMyLThT4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/f4478b-b6f3-40c2-b858-2c333a5a1646/1/vwsqDaqOVGfNM-lIJaeGMyLThT4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4a:60:d6:c6:4d:2d:8c:20:b5:b2:25:03:f3:a2:8a:55:ec:13: 6e:4d:b6:99:e6:1b:63:06:91:f6:d2:65:55:15:68:a5:0b:16: 79:52:ae:24:35:2b:38:ec:5d:d2:bd:ff:09:6a:c0:46:c7:b7: 49:ba:ae:19:5f:29:16:c1:61:0c:43:07:8a:0a:aa:20:fd:f6: 48:19:38:b8:57:7a:4f:bf:5b:62:40:9c:05:a3:e3:a5:be:79: b9:9b:1d:d5:c7:ce:8e:78:5f:96:10:60:b2:21:2b:90:8f:e1: ae:2e:48:75:7e:73:0e:0c:2b:6d:0a:7f:b8:c1:39:a4:b4:cd: 72:72:af:d0:8f:54:a4:53:fe:04:3e:a4:c6:75:24:46:67:38: 1a:d0:59:fd:3c:1c:88:3d:9f:f7:8c:24:c5:99:78:bb:ab:54: a2:da:53:c5:38:22:c8:49:8a:51:26:1b:6c:65:3a:92:8d:45: d9:06:dd:97:c9:53:59:35:9a:7e:be:e8:c6:8c:30:89:02:b8: 75:52:1a:4c:61:30:70:6b:28:37:5a:3c:7c:3d:99:3c:73:45: 82:66:0f:61:82:86:0f:f2:49:dc:20:f7:e7:2d:37:4a:28:17: eb:a3:79:a6:af:b0:5c:7c:61:d3:f5:20:63:b5:b7:ff:4a:cf: 66:50:d9:a4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsePG3vvKRBB5iwBG1HqmAkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJmMGIyYTBkYWE4ZTU0NjdjZDMzZTk0ODI1YTc4NjMzMjJk Mzg1M2UwHhcNMjUxMjE0MTkwMDM1WhcNMjUxMjE1MTkwMDM1WjAzMTEwLwYDVQQD EygzZDE0YjdlMTc0NGM3YjNmMjEwN2NmYjNjZjUwMjgyYmUxMjIxYTZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtnlo2O2MREAyNq76iooBWFhEd0LH q6VdBAKRhTm10yzMh/i5aDt7meGXybjNVkM9V3zEn47TSJ0sfLweZIqE/CrunZWY +8MBawKSsDIz6INh2NU33lq7s5tjAhM0yKwu9qAdoq53pFpoHe0wEQwqDkPk8pwC a2nqM3qbeEhtzUh1DVoDEV9cWNzc16OppFPXCZQS7aHoix20KfBCXRPnmceMBfbN YXRqcxATQRMaDjX5ZV2aWoB8Fg+COadpp2zzV9YXnMKtYNpbGrGQjRSiMLYRqMBB XFsMFprKdk4uEULxm+4VuV9HcWKTpvuIMafYLn0estJHbgKEqhB+VWUbNQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD0Ut+F0THs/IQfPs89QKCvhIhpqMB8GA1UdIwQY MBaAFL8LKg2qjlRnzTPpSCWnhjMi04U+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdndzcURhcU9WR2ZOTS1sSUphZUdNeUxUaFQ0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi9mNDQ3OGItYjZmMy00MGMyLWI4NTgt MmMzMzNhNWExNjQ2LzEvdndzcURhcU9WR2ZOTS1sSUphZUdNeUxUaFQ0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYi9mNDQ3OGItYjZmMy00MGMyLWI4NTgtMmMzMzNhNWExNjQ2 LzEvdndzcURhcU9WR2ZOTS1sSUphZUdNeUxUaFQ0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASmDWxk0t jCC1siUD86KKVewTbk22meYbYwaR9tJlVRVopQsWeVKuJDUrOOxd0r3/CWrARse3 SbquGV8pFsFhDEMHigqqIP32SBk4uFd6T79bYkCcBaPjpb55uZsd1cfOjnhflhBg siErkI/hri5IdX5zDgwrbQp/uME5pLTNcnKv0I9UpFP+BD6kxnUkRmc4GtBZ/Twc iD2f94wkxZl4u6tUotpTxTgiyEmKUSYbbGU6ko1F2Qbdl8lTWTWafr7oxowwiQK4 dVIaTGEwcGsoN1o8fD2ZPHNFgmYPYYKGD/JJ3CD35y03SigX66N5pq+wXHxh0/Ug Y7W3/0rPZlDZpA== -----END CERTIFICATE-----Generated at Mon Dec 15 04:04:58 2025 by rpki-client