This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/d4635f-2195-4d94-8d16-470a93b3d3e7/1/vttqTtOT2KO3UH-Wo4vuDEyLR38.mft File: vttqTtOT2KO3UH-Wo4vuDEyLR38.mft (raw, json) Hash identifier: W4j/8na+IBDzgJgjq+jyO92FD49YD+NJPcsolpG/k7I= Subject key identifier: FE:62:0B:97:D5:15:5D:C6:BE:48:B0:5F:0E:80:80:3A:14:93:9E:F9 Authority key identifier: BE:DB:6A:4E:D3:93:D8:A3:B7:50:7F:96:A3:8B:EE:0C:4C:8B:47:7F Certificate issuer: /CN=bedb6a4ed393d8a3b7507f96a38bee0c4c8b477f Certificate serial: 019B5975AF3D5372EC7DA40AC03DAC123210 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vttqTtOT2KO3UH-Wo4vuDEyLR38.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/d4635f-2195-4d94-8d16-470a93b3d3e7/1/vttqTtOT2KO3UH-Wo4vuDEyLR38.mft Manifest number: 1796 Signing time: Fri 26 Dec 2025 07:00:43 +0000 Manifest this update: Fri 26 Dec 2025 07:00:43 +0000 Manifest next update: Sat 27 Dec 2025 07:00:43 +0000 Files and hashes: 1: 70lNK5fBDtyKP1-Uoyim5AlDIhs.roa (hash: j96/AeWDc3evjhceJaK+DEno6uY4hCQMsDxAEfX1LUM=) 2: vttqTtOT2KO3UH-Wo4vuDEyLR38.crl (hash: 4Z3xgJvPV3VtqLZsGl61SNEtEuVyFbXWBNk+M51YP4c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/d4635f-2195-4d94-8d16-470a93b3d3e7/1/vttqTtOT2KO3UH-Wo4vuDEyLR38.crl rsync://rpki.ripe.net/repository/DEFAULT/bc/d4635f-2195-4d94-8d16-470a93b3d3e7/1/vttqTtOT2KO3UH-Wo4vuDEyLR38.mft rsync://rpki.ripe.net/repository/DEFAULT/vttqTtOT2KO3UH-Wo4vuDEyLR38.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 07:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:75:af:3d:53:72:ec:7d:a4:0a:c0:3d:ac:12:32:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bedb6a4ed393d8a3b7507f96a38bee0c4c8b477f Validity Not Before: Dec 26 07:00:43 2025 GMT Not After : Dec 27 07:00:43 2025 GMT Subject: CN=fe620b97d5155dc6be48b05f0e80803a14939ef9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:1b:0f:d9:e2:21:40:92:29:03:82:11:c0:ef: 83:b8:d7:e5:e6:1a:93:3d:06:92:77:ac:cc:cb:27: 77:17:b0:5f:e2:52:2e:26:dd:76:b5:60:02:88:34: 90:32:dc:da:88:68:28:c7:d9:78:b8:61:6a:ea:4f: 0d:36:62:a7:f2:56:1b:01:1a:38:1d:c5:9b:de:23: de:12:82:0f:18:3a:73:e3:8c:a7:d5:81:42:d6:34: 30:b6:b0:11:c4:b2:62:d2:09:69:66:ce:6d:e6:10: dc:bd:06:2d:de:66:97:ab:34:fe:03:fa:27:52:fb: da:c7:8f:a5:10:5d:2f:8a:16:53:ce:df:37:63:8f: 97:87:d6:a2:e7:11:42:fd:d8:86:f6:e5:ff:e8:55: 4a:b8:89:12:84:62:a6:ab:35:6c:99:a2:be:31:ce: b2:97:30:42:2d:59:7a:9b:67:55:2a:60:7c:43:be: fe:42:df:5a:8e:dd:3b:ba:cb:63:ac:bd:00:3b:fa: 3a:df:d6:13:20:c4:f1:53:bb:4f:4b:d5:41:e7:e7: f7:a4:6c:44:90:85:67:3e:65:71:16:20:04:d6:4b: ef:c4:94:6d:27:44:d5:b0:bc:f7:ef:b9:06:18:4d: f9:b1:86:a6:69:19:f0:a8:2d:88:29:be:e7:a7:b8: 54:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:62:0B:97:D5:15:5D:C6:BE:48:B0:5F:0E:80:80:3A:14:93:9E:F9 X509v3 Authority Key Identifier: keyid:BE:DB:6A:4E:D3:93:D8:A3:B7:50:7F:96:A3:8B:EE:0C:4C:8B:47:7F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vttqTtOT2KO3UH-Wo4vuDEyLR38.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/d4635f-2195-4d94-8d16-470a93b3d3e7/1/vttqTtOT2KO3UH-Wo4vuDEyLR38.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/d4635f-2195-4d94-8d16-470a93b3d3e7/1/vttqTtOT2KO3UH-Wo4vuDEyLR38.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption be:eb:68:0b:ae:b7:3e:07:6d:34:e0:43:97:5f:e7:ac:b7:10: 19:8b:b2:4f:af:23:f3:4a:b1:1b:08:56:05:40:74:37:c7:62: e4:a6:23:75:9e:00:07:0a:34:eb:43:6e:ee:8a:13:61:57:2a: 7b:75:a9:bf:7f:3e:39:9c:15:51:ae:66:1d:fd:7b:35:58:71: 11:ec:eb:0d:07:02:c1:d9:2f:5e:f7:da:b8:3f:e6:34:68:cc: b4:a4:a0:16:45:ef:5c:06:ce:c8:ce:08:c4:50:7f:80:c2:a1: 7e:36:23:da:42:c6:f0:6e:62:dd:97:4c:ce:c0:0f:04:fb:09: 27:f1:68:26:47:59:2c:f1:af:da:40:ff:5e:f1:c3:d5:13:8d: f6:0e:44:fa:93:01:92:81:d4:b4:b0:78:78:15:c8:6e:db:ca: d8:c1:4f:5a:68:22:58:6f:e0:0b:74:47:2d:ed:19:e0:12:33: 34:dc:ec:b6:77:d5:12:65:6a:ce:39:3b:2d:27:f4:94:75:80: dc:bf:77:a4:45:ad:a0:71:78:d6:12:5c:1c:9f:c9:66:44:84: 44:9f:0a:4d:b6:88:d6:32:29:10:78:2d:95:91:67:40:63:75: 41:67:14:9c:b8:f4:c6:ee:05:1d:f7:1f:d5:ab:43:9e:b7:51: eb:e9:47:00 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZda89U3LsfaQKwD2sEjIQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJlZGI2YTRlZDM5M2Q4YTNiNzUwN2Y5NmEzOGJlZTBjNGM4 YjQ3N2YwHhcNMjUxMjI2MDcwMDQzWhcNMjUxMjI3MDcwMDQzWjAzMTEwLwYDVQQD EyhmZTYyMGI5N2Q1MTU1ZGM2YmU0OGIwNWYwZTgwODAzYTE0OTM5ZWY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvRsP2eIhQJIpA4IRwO+DuNfl5hqT PQaSd6zMyyd3F7Bf4lIuJt12tWACiDSQMtzaiGgox9l4uGFq6k8NNmKn8lYbARo4 HcWb3iPeEoIPGDpz44yn1YFC1jQwtrARxLJi0glpZs5t5hDcvQYt3maXqzT+A/on Uvvax4+lEF0vihZTzt83Y4+Xh9ai5xFC/diG9uX/6FVKuIkShGKmqzVsmaK+Mc6y lzBCLVl6m2dVKmB8Q77+Qt9ajt07ustjrL0AO/o639YTIMTxU7tPS9VB5+f3pGxE kIVnPmVxFiAE1kvvxJRtJ0TVsLz377kGGE35sYamaRnwqC2IKb7np7hUwQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP5iC5fVFV3GvkiwXw6AgDoUk575MB8GA1UdIwQY MBaAFL7bak7Tk9ijt1B/lqOL7gxMi0d/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdnR0cVR0T1QyS08zVUgtV280dnVERXlMUjM4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy9kNDYzNWYtMjE5NS00ZDk0LThkMTYt NDcwYTkzYjNkM2U3LzEvdnR0cVR0T1QyS08zVUgtV280dnVERXlMUjM4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYy9kNDYzNWYtMjE5NS00ZDk0LThkMTYtNDcwYTkzYjNkM2U3 LzEvdnR0cVR0T1QyS08zVUgtV280dnVERXlMUjM4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvutoC663 PgdtNOBDl1/nrLcQGYuyT68j80qxGwhWBUB0N8di5KYjdZ4ABwo060Nu7ooTYVcq e3Wpv38+OZwVUa5mHf17NVhxEezrDQcCwdkvXvfauD/mNGjMtKSgFkXvXAbOyM4I xFB/gMKhfjYj2kLG8G5i3ZdMzsAPBPsJJ/FoJkdZLPGv2kD/XvHD1RON9g5E+pMB koHUtLB4eBXIbtvK2MFPWmgiWG/gC3RHLe0Z4BIzNNzstnfVEmVqzjk7LSf0lHWA 3L93pEWtoHF41hJcHJ/JZkSERJ8KTbaI1jIpEHgtlZFnQGN1QWcUnLj0xu4FHfcf 1atDnrdR6+lHAA== -----END CERTIFICATE-----Generated at Fri Dec 26 16:05:45 2025 by rpki-client