This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.mft File: vkjMNUiL2ebzErIPx2oQJy8M3to.mft (raw, json) Hash identifier: OuLRL3Ab8YMLA4qMdRScJ9KTTDnEoNz/Em0Xv9EQO9Y= Subject key identifier: 03:5B:49:5F:9B:22:5C:A1:5D:37:04:11:48:5F:1E:BF:3C:41:2A:43 Authority key identifier: BE:48:CC:35:48:8B:D9:E6:F3:12:B2:0F:C7:6A:10:27:2F:0C:DE:DA Certificate issuer: /CN=be48cc35488bd9e6f312b20fc76a10272f0cdeda Certificate serial: 019B2776C5F6AD5057F4F43BFD5BCF95CB20 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vkjMNUiL2ebzErIPx2oQJy8M3to.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.mft Manifest number: 1780 Signing time: Tue 16 Dec 2025 14:00:53 +0000 Manifest this update: Tue 16 Dec 2025 14:00:53 +0000 Manifest next update: Wed 17 Dec 2025 14:00:53 +0000 Files and hashes: 1: YmYarA5XO8juvrriR0BtAqIdcCU.roa (hash: J8e/3PBcMoffAup3qudGNq5pMDjkvtJSIDtohCQMO8M=) 2: vkjMNUiL2ebzErIPx2oQJy8M3to.crl (hash: soOHi4B8W+LXlttFpaPsQV1e6cbHgEF8sSbFWvwoK7g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.mft rsync://rpki.ripe.net/repository/DEFAULT/vkjMNUiL2ebzErIPx2oQJy8M3to.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 14:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:27:76:c5:f6:ad:50:57:f4:f4:3b:fd:5b:cf:95:cb:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=be48cc35488bd9e6f312b20fc76a10272f0cdeda Validity Not Before: Dec 16 14:00:53 2025 GMT Not After : Dec 17 14:00:53 2025 GMT Subject: CN=035b495f9b225ca15d370411485f1ebf3c412a43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:27:e8:17:50:89:70:e7:9b:7a:13:e7:6b:ed: d5:42:3a:73:3b:68:7a:a7:78:ea:a9:87:24:03:f1: 92:42:6c:c8:92:6a:a2:47:5a:2a:6a:91:38:2e:a6: 22:84:4e:2a:d5:9d:76:b0:3e:9c:c5:a0:88:85:83: 80:bb:2b:2e:9c:89:06:2e:14:2c:e1:a6:e2:e7:a6: df:da:c3:19:10:e4:45:53:09:6a:36:95:ac:4a:45: b3:00:27:3b:45:a4:5a:e5:3a:3e:a0:8f:8e:bb:05: 96:46:84:75:b3:07:65:b5:17:4f:8e:2c:0e:3e:ef: 4f:af:39:e4:b9:0a:f1:a1:83:15:be:b9:9a:c5:78: 1f:90:03:f7:49:3f:da:06:a3:b7:f9:ac:94:e8:4e: 11:7d:16:59:f8:74:51:51:73:5d:e9:8d:37:f0:37: 6c:5d:aa:c8:3a:69:87:e4:48:ce:9f:02:69:42:ae: 94:cd:21:b5:3e:b5:2c:6d:8e:fd:53:34:45:96:63: 18:eb:0c:d8:85:f2:28:3f:71:fb:fa:62:c1:3f:fd: 29:1f:06:e7:ee:a5:c1:26:dc:5e:ef:ee:b6:55:58: 7c:a3:57:d0:11:99:61:6e:67:55:77:53:33:e3:7c: 2a:33:bf:eb:e5:01:13:8a:6f:21:dc:50:f7:52:db: ed:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:5B:49:5F:9B:22:5C:A1:5D:37:04:11:48:5F:1E:BF:3C:41:2A:43 X509v3 Authority Key Identifier: keyid:BE:48:CC:35:48:8B:D9:E6:F3:12:B2:0F:C7:6A:10:27:2F:0C:DE:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vkjMNUiL2ebzErIPx2oQJy8M3to.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:7d:93:b8:ad:b3:9c:be:b8:37:13:3c:63:59:7f:e3:6c:66: 25:3e:d8:53:6a:7f:00:95:d1:f0:15:1d:78:26:ae:2f:f5:0a: c1:36:ad:96:b7:4d:3b:04:f4:9f:b8:cb:bd:55:3c:25:1a:6d: 78:84:ad:4f:4e:7a:46:c4:3f:17:8b:cf:b2:e5:4e:89:0c:1d: a4:35:9c:0a:82:2c:60:86:bd:47:fd:fd:70:d9:cb:6d:d5:21: 03:1f:9e:31:ba:d2:d4:58:dd:01:65:be:13:50:03:c3:e0:6a: 44:de:ff:4d:41:82:9d:03:7c:74:af:1e:c8:af:1e:d7:68:f2: 63:31:68:dc:4b:7c:56:5f:1d:dd:a5:60:4d:79:49:6e:a8:1c: a5:d1:63:7c:e3:41:b3:4a:eb:e9:91:af:8a:2d:db:01:3f:65: 36:a6:2f:a5:22:7f:03:5c:8f:7a:79:4d:c9:1a:29:c6:85:d0: 8a:b3:a4:69:f6:68:ec:11:0a:42:69:a4:15:f3:39:3b:73:b4: 5a:0b:63:30:08:83:91:ab:11:44:52:45:f2:53:88:c1:3a:68: 75:1b:06:48:2e:1a:cd:6b:fe:48:c3:81:24:8c:c4:3d:9d:db: 01:de:ca:52:b2:e3:3a:30:5b:07:aa:2d:7f:c9:27:7d:fd:e6: 27:cd:03:44 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsndsX2rVBX9PQ7/VvPlcsgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJlNDhjYzM1NDg4YmQ5ZTZmMzEyYjIwZmM3NmExMDI3MmYw Y2RlZGEwHhcNMjUxMjE2MTQwMDUzWhcNMjUxMjE3MTQwMDUzWjAzMTEwLwYDVQQD EygwMzViNDk1ZjliMjI1Y2ExNWQzNzA0MTE0ODVmMWViZjNjNDEyYTQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoifoF1CJcOebehPna+3VQjpzO2h6 p3jqqYckA/GSQmzIkmqiR1oqapE4LqYihE4q1Z12sD6cxaCIhYOAuysunIkGLhQs 4abi56bf2sMZEORFUwlqNpWsSkWzACc7RaRa5To+oI+OuwWWRoR1swdltRdPjiwO Pu9PrznkuQrxoYMVvrmaxXgfkAP3ST/aBqO3+ayU6E4RfRZZ+HRRUXNd6Y038Dds XarIOmmH5EjOnwJpQq6UzSG1PrUsbY79UzRFlmMY6wzYhfIoP3H7+mLBP/0pHwbn 7qXBJtxe7+62VVh8o1fQEZlhbmdVd1Mz43wqM7/r5QETim8h3FD3UtvtewIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFANbSV+bIlyhXTcEEUhfHr88QSpDMB8GA1UdIwQY MBaAFL5IzDVIi9nm8xKyD8dqECcvDN7aMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdmtqTU5VaUwyZWJ6RXJJUHgyb1FKeThNM3RvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy9kMjY5NzEtYjdhOC00ZWRlLThiYjQt NDliYzQzNjYwYzk3LzEvdmtqTU5VaUwyZWJ6RXJJUHgyb1FKeThNM3RvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy9kMjY5NzEtYjdhOC00ZWRlLThiYjQtNDliYzQzNjYwYzk3 LzEvdmtqTU5VaUwyZWJ6RXJJUHgyb1FKeThNM3RvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASH2TuK2z nL64NxM8Y1l/42xmJT7YU2p/AJXR8BUdeCauL/UKwTatlrdNOwT0n7jLvVU8JRpt eIStT056RsQ/F4vPsuVOiQwdpDWcCoIsYIa9R/39cNnLbdUhAx+eMbrS1FjdAWW+ E1ADw+BqRN7/TUGCnQN8dK8eyK8e12jyYzFo3Et8Vl8d3aVgTXlJbqgcpdFjfONB s0rr6ZGvii3bAT9lNqYvpSJ/A1yPenlNyRopxoXQirOkafZo7BEKQmmkFfM5O3O0 WgtjMAiDkasRRFJF8lOIwTpodRsGSC4azWv+SMOBJIzEPZ3bAd7KUrLjOjBbB6ot f8knff3mJ80DRA== -----END CERTIFICATE-----Generated at Tue Dec 16 19:49:05 2025 by rpki-client