This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/4f3254-5442-4c87-8b14-9813f0906c4b/1/VkQtN4qHkyt22vks6Pye80Hrx1k.mft File: VkQtN4qHkyt22vks6Pye80Hrx1k.mft (raw, json) Hash identifier: nnVRUBVXCywVFgYr0OMr8Ux0J+/AVLTLC560Vfr9OgI= Subject key identifier: FC:8B:40:16:E3:A3:23:8F:4A:20:4E:4B:CC:27:78:30:29:82:09:10 Authority key identifier: 56:44:2D:37:8A:87:93:2B:76:DA:F9:2C:E8:FC:9E:F3:41:EB:C7:59 Certificate issuer: /CN=56442d378a87932b76daf92ce8fc9ef341ebc759 Certificate serial: 019B5A1A867485545B582228FAB4608A8D9F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VkQtN4qHkyt22vks6Pye80Hrx1k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/4f3254-5442-4c87-8b14-9813f0906c4b/1/VkQtN4qHkyt22vks6Pye80Hrx1k.mft Manifest number: 0D59 Signing time: Fri 26 Dec 2025 10:00:46 +0000 Manifest this update: Fri 26 Dec 2025 10:00:46 +0000 Manifest next update: Sat 27 Dec 2025 10:00:46 +0000 Files and hashes: 1: VkQtN4qHkyt22vks6Pye80Hrx1k.crl (hash: I8qMId+RUCUlYdpuhNvy4OMMaA01lj3iDMN/ciGi6i8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/4f3254-5442-4c87-8b14-9813f0906c4b/1/VkQtN4qHkyt22vks6Pye80Hrx1k.crl rsync://rpki.ripe.net/repository/DEFAULT/c7/4f3254-5442-4c87-8b14-9813f0906c4b/1/VkQtN4qHkyt22vks6Pye80Hrx1k.mft rsync://rpki.ripe.net/repository/DEFAULT/VkQtN4qHkyt22vks6Pye80Hrx1k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 10:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:1a:86:74:85:54:5b:58:22:28:fa:b4:60:8a:8d:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=56442d378a87932b76daf92ce8fc9ef341ebc759 Validity Not Before: Dec 26 10:00:46 2025 GMT Not After : Dec 27 10:00:46 2025 GMT Subject: CN=fc8b4016e3a3238f4a204e4bcc27783029820910 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:e3:8a:9e:16:17:ae:25:be:01:67:d4:44:85: f4:b0:c6:19:0e:85:c3:82:99:5a:1a:e6:de:e5:cf: 77:2d:52:a5:cc:05:3a:bd:57:d4:9d:c2:64:f2:7d: c7:c9:87:28:1e:2f:8e:e9:db:36:81:7c:cf:c4:03: 3a:8f:b0:35:13:cb:c3:f7:9a:7f:ce:2f:98:e9:5d: c5:2d:2f:8f:4d:e8:a2:a2:90:63:d2:02:54:07:3d: 44:34:d2:09:a3:98:b7:d9:45:f7:e8:69:dd:04:c8: bc:45:b4:c1:db:cd:66:63:c8:b9:6a:49:c5:c9:25: 7f:c5:b5:b6:c0:b6:a7:62:e0:c0:6d:d1:a0:52:23: 5a:dd:50:26:11:af:a7:9e:77:0a:90:ce:07:e7:81: 73:54:2c:17:b2:2b:d3:72:bd:c4:a9:a8:15:08:01: e4:da:d6:f1:13:cc:f6:a1:4e:f5:30:d5:ab:6f:bd: 92:03:d7:5b:12:26:70:17:82:78:56:e6:74:33:a8: 1e:3a:b3:85:b4:fb:36:b8:ae:2a:11:2e:6d:f2:0c: 87:8e:d6:16:13:f1:cf:13:82:d7:30:2f:16:3f:81: 54:5e:16:b3:51:9f:03:8d:0f:3e:36:d2:05:f3:ef: 00:56:e1:be:ca:a7:f4:47:94:fd:d3:bc:15:fe:fd: 8f:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:8B:40:16:E3:A3:23:8F:4A:20:4E:4B:CC:27:78:30:29:82:09:10 X509v3 Authority Key Identifier: keyid:56:44:2D:37:8A:87:93:2B:76:DA:F9:2C:E8:FC:9E:F3:41:EB:C7:59 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VkQtN4qHkyt22vks6Pye80Hrx1k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/4f3254-5442-4c87-8b14-9813f0906c4b/1/VkQtN4qHkyt22vks6Pye80Hrx1k.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/4f3254-5442-4c87-8b14-9813f0906c4b/1/VkQtN4qHkyt22vks6Pye80Hrx1k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1f:9e:63:01:ba:c0:a8:c2:da:ab:c2:f9:aa:cc:44:cd:a5:ba: dd:d4:98:aa:e5:86:ec:3b:2f:dc:e2:c6:2f:ff:e9:f8:38:f2: 63:31:7c:de:09:dc:78:9f:7a:0d:02:d9:4b:3d:69:a2:a6:d6: 24:18:e4:26:7d:5d:ac:fc:1d:35:a8:f3:70:0c:8c:c1:fe:ba: 9d:c6:0a:df:ab:17:da:09:66:2e:a4:e5:dd:26:ff:fc:d0:0c: df:e7:be:b1:d1:28:0b:b2:7c:dd:0b:e1:cf:1a:40:5f:a3:42: df:2b:63:33:5e:9f:99:65:9b:a6:57:a7:80:3f:c1:9b:95:74: 33:a5:a0:47:63:de:83:5e:1b:48:db:e7:6c:84:24:1d:cd:03: 98:f8:af:b8:3c:ea:81:49:19:a1:4c:c5:7e:1e:6f:03:b9:06: c9:10:d5:83:bf:4d:a0:22:49:31:de:49:14:6f:01:03:e0:bf: 2b:d8:e4:9e:61:03:8c:f7:66:9d:e1:d0:53:ec:69:99:ff:be: f1:a0:65:95:41:70:61:04:72:9f:8e:25:c8:a7:16:50:af:86: 9d:05:18:87:13:ea:c4:1f:d3:f7:cb:ba:60:6f:46:80:ba:ab: b0:99:b9:7b:6f:c3:e3:d9:1c:15:32:f4:e6:f4:99:fb:3c:20: 7f:8b:88:fb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtaGoZ0hVRbWCIo+rRgio2fMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU2NDQyZDM3OGE4NzkzMmI3NmRhZjkyY2U4ZmM5ZWYzNDFl YmM3NTkwHhcNMjUxMjI2MTAwMDQ2WhcNMjUxMjI3MTAwMDQ2WjAzMTEwLwYDVQQD EyhmYzhiNDAxNmUzYTMyMzhmNGEyMDRlNGJjYzI3NzgzMDI5ODIwOTEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0eOKnhYXriW+AWfURIX0sMYZDoXD gplaGube5c93LVKlzAU6vVfUncJk8n3HyYcoHi+O6ds2gXzPxAM6j7A1E8vD95p/ zi+Y6V3FLS+PTeiiopBj0gJUBz1ENNIJo5i32UX36GndBMi8RbTB281mY8i5aknF ySV/xbW2wLanYuDAbdGgUiNa3VAmEa+nnncKkM4H54FzVCwXsivTcr3EqagVCAHk 2tbxE8z2oU71MNWrb72SA9dbEiZwF4J4VuZ0M6geOrOFtPs2uK4qES5t8gyHjtYW E/HPE4LXMC8WP4FUXhazUZ8DjQ8+NtIF8+8AVuG+yqf0R5T907wV/v2PwQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPyLQBbjoyOPSiBOS8wneDApggkQMB8GA1UdIwQY MBaAFFZELTeKh5Mrdtr5LOj8nvNB68dZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVmtRdE40cUhreXQyMnZrczZQeWU4MEhyeDFrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy80ZjMyNTQtNTQ0Mi00Yzg3LThiMTQt OTgxM2YwOTA2YzRiLzEvVmtRdE40cUhreXQyMnZrczZQeWU4MEhyeDFrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNy80ZjMyNTQtNTQ0Mi00Yzg3LThiMTQtOTgxM2YwOTA2YzRi LzEvVmtRdE40cUhreXQyMnZrczZQeWU4MEhyeDFrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAH55jAbrA qMLaq8L5qsxEzaW63dSYquWG7Dsv3OLGL//p+DjyYzF83gnceJ96DQLZSz1poqbW JBjkJn1drPwdNajzcAyMwf66ncYK36sX2glmLqTl3Sb//NAM3+e+sdEoC7J83Qvh zxpAX6NC3ytjM16fmWWbplengD/Bm5V0M6WgR2Peg14bSNvnbIQkHc0DmPivuDzq gUkZoUzFfh5vA7kGyRDVg79NoCJJMd5JFG8BA+C/K9jknmEDjPdmneHQU+xpmf++ 8aBllUFwYQRyn44lyKcWUK+GnQUYhxPqxB/T98u6YG9GgLqrsJm5e2/D49kcFTL0 5vSZ+zwgf4uI+w== -----END CERTIFICATE-----Generated at Fri Dec 26 17:44:14 2025 by rpki-client