This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/08949f-c79a-46ca-b50b-0fc9bfcd74a6/1/VKbEbX2Q_rSnKK8PiuEb-g1PjLE.mft File: VKbEbX2Q_rSnKK8PiuEb-g1PjLE.mft (raw, json) Hash identifier: gwoORW9OvCzKdLcgCpU7r2Dcu6VaxWxa9BO5AM91VA0= Subject key identifier: 07:A7:A4:1E:3E:79:76:3D:0F:A3:12:5B:A0:D9:82:42:FB:08:DF:7C Authority key identifier: 54:A6:C4:6D:7D:90:FE:B4:A7:28:AF:0F:8A:E1:1B:FA:0D:4F:8C:B1 Certificate issuer: /CN=54a6c46d7d90feb4a728af0f8ae11bfa0d4f8cb1 Certificate serial: 019B48831285FAD1DE118D0929FED15FC4F1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VKbEbX2Q_rSnKK8PiuEb-g1PjLE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/08949f-c79a-46ca-b50b-0fc9bfcd74a6/1/VKbEbX2Q_rSnKK8PiuEb-g1PjLE.mft Manifest number: 0ADC Signing time: Tue 23 Dec 2025 00:01:48 +0000 Manifest this update: Tue 23 Dec 2025 00:01:48 +0000 Manifest next update: Wed 24 Dec 2025 00:01:48 +0000 Files and hashes: 1: 7nuD8elhlIUxcTnbEPvLA6ZLn5I.roa (hash: 90o2vgvA2ZcVDu1EqRM6Q9Z2wROKMEItuuXmbaFjrpw=) 2: VKbEbX2Q_rSnKK8PiuEb-g1PjLE.crl (hash: mzjqEucDj1HPdeuFLcNfubZKXXN7gnrYEAVkKbCVHG0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/08949f-c79a-46ca-b50b-0fc9bfcd74a6/1/VKbEbX2Q_rSnKK8PiuEb-g1PjLE.crl rsync://rpki.ripe.net/repository/DEFAULT/ff/08949f-c79a-46ca-b50b-0fc9bfcd74a6/1/VKbEbX2Q_rSnKK8PiuEb-g1PjLE.mft rsync://rpki.ripe.net/repository/DEFAULT/VKbEbX2Q_rSnKK8PiuEb-g1PjLE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 23:03:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:48:83:12:85:fa:d1:de:11:8d:09:29:fe:d1:5f:c4:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=54a6c46d7d90feb4a728af0f8ae11bfa0d4f8cb1 Validity Not Before: Dec 23 00:01:48 2025 GMT Not After : Dec 24 00:01:48 2025 GMT Subject: CN=07a7a41e3e79763d0fa3125ba0d98242fb08df7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:aa:87:da:5e:f2:cb:c3:6d:3b:15:4a:59:2a: fa:7a:df:4c:63:69:55:19:5a:14:c8:12:5f:ec:5f: 50:97:c2:d5:f0:8a:2d:50:a3:83:d3:f9:54:87:fd: 86:0d:7a:4f:b5:31:df:42:fd:36:5c:91:dc:be:b6: 5e:d3:6e:86:98:17:62:43:ef:5d:8a:74:c0:b7:03: 27:8c:ee:31:cc:56:e1:c5:ae:02:25:11:6a:28:42: 0f:9a:53:c9:b6:f8:e6:1e:b7:4d:91:68:0f:92:a5: 33:a7:fc:3e:65:91:0c:c9:48:bd:00:26:4d:43:dd: 27:d8:06:8d:29:e5:15:bd:11:ca:1d:ef:11:f4:a8: 57:d6:d5:43:65:1b:5b:68:c7:26:f8:90:64:88:bc: 86:5f:ba:05:21:5e:48:3d:6d:53:c8:44:67:a2:84: 00:05:ba:bb:8a:16:01:a7:8f:cf:a6:b4:67:ed:3e: 1e:c4:3b:3f:86:f9:22:f5:61:51:46:6d:88:38:f3: 70:4d:dd:d7:b1:3d:f2:5a:91:33:6c:cd:3e:13:61: 76:90:5d:fe:7e:c8:00:06:97:e9:6a:23:b3:a3:43: 72:80:29:20:9b:e4:c3:c9:fb:e5:32:f8:80:d2:b3: d4:b1:9b:08:8f:cd:e5:1b:74:e3:70:cd:c4:40:23: 1e:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:A7:A4:1E:3E:79:76:3D:0F:A3:12:5B:A0:D9:82:42:FB:08:DF:7C X509v3 Authority Key Identifier: keyid:54:A6:C4:6D:7D:90:FE:B4:A7:28:AF:0F:8A:E1:1B:FA:0D:4F:8C:B1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VKbEbX2Q_rSnKK8PiuEb-g1PjLE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/08949f-c79a-46ca-b50b-0fc9bfcd74a6/1/VKbEbX2Q_rSnKK8PiuEb-g1PjLE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/08949f-c79a-46ca-b50b-0fc9bfcd74a6/1/VKbEbX2Q_rSnKK8PiuEb-g1PjLE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1b:9a:30:05:f4:05:94:f8:97:c6:48:cb:66:4b:93:93:23:75: 3a:6f:c7:1f:a1:f6:3b:98:3a:32:cf:4a:d8:92:d5:7d:88:ec: 75:5f:b8:a7:e5:ee:72:80:6c:16:2a:d6:e6:ba:37:4f:b2:68: f1:e5:54:05:d6:08:59:b2:64:f1:e0:cb:aa:fe:6d:ff:b8:ea: ca:2e:29:df:eb:b2:eb:49:39:86:3b:29:2a:c5:79:fa:bc:d4: 75:40:d2:fe:5e:cd:b8:60:62:a9:a0:42:79:1b:3f:45:7e:d3: 81:9d:84:6d:53:34:45:36:6d:14:f4:d9:71:3a:52:84:52:fc: 95:d5:bd:d8:7c:a9:4e:24:cf:ad:c2:a9:81:71:5e:4d:b4:32: 7f:29:61:c7:63:63:4e:4f:eb:10:16:44:86:17:86:84:3f:6f: b6:bc:55:e9:f0:09:f4:17:a8:c7:38:43:83:cf:42:3f:57:dc: 10:57:fc:cd:3c:e8:5c:d6:23:82:17:c1:c4:fc:6b:32:f2:ef: 83:37:1d:80:e0:04:32:c5:66:a3:d1:2c:72:6d:b4:f5:6a:b5: c2:dd:87:f0:58:de:65:66:d5:22:f3:57:ee:08:7b:11:d1:d0: 8d:59:8c:8c:d0:40:2c:23:91:bb:cb:24:59:98:40:11:69:81: 18:76:a9:10 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtIgxKF+tHeEY0JKf7RX8TxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU0YTZjNDZkN2Q5MGZlYjRhNzI4YWYwZjhhZTExYmZhMGQ0 ZjhjYjEwHhcNMjUxMjIzMDAwMTQ4WhcNMjUxMjI0MDAwMTQ4WjAzMTEwLwYDVQQD EygwN2E3YTQxZTNlNzk3NjNkMGZhMzEyNWJhMGQ5ODI0MmZiMDhkZjdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqqqH2l7yy8NtOxVKWSr6et9MY2lV GVoUyBJf7F9Ql8LV8IotUKOD0/lUh/2GDXpPtTHfQv02XJHcvrZe026GmBdiQ+9d inTAtwMnjO4xzFbhxa4CJRFqKEIPmlPJtvjmHrdNkWgPkqUzp/w+ZZEMyUi9ACZN Q90n2AaNKeUVvRHKHe8R9KhX1tVDZRtbaMcm+JBkiLyGX7oFIV5IPW1TyERnooQA Bbq7ihYBp4/PprRn7T4exDs/hvki9WFRRm2IOPNwTd3XsT3yWpEzbM0+E2F2kF3+ fsgABpfpaiOzo0NygCkgm+TDyfvlMviA0rPUsZsIj83lG3TjcM3EQCMe/wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAenpB4+eXY9D6MSW6DZgkL7CN98MB8GA1UdIwQY MBaAFFSmxG19kP60pyivD4rhG/oNT4yxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVktiRWJYMlFfclNuS0s4UGl1RWItZzFQakxFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi8wODk0OWYtYzc5YS00NmNhLWI1MGIt MGZjOWJmY2Q3NGE2LzEvVktiRWJYMlFfclNuS0s4UGl1RWItZzFQakxFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZi8wODk0OWYtYzc5YS00NmNhLWI1MGItMGZjOWJmY2Q3NGE2 LzEvVktiRWJYMlFfclNuS0s4UGl1RWItZzFQakxFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAG5owBfQF lPiXxkjLZkuTkyN1Om/HH6H2O5g6Ms9K2JLVfYjsdV+4p+XucoBsFirW5ro3T7Jo 8eVUBdYIWbJk8eDLqv5t/7jqyi4p3+uy60k5hjspKsV5+rzUdUDS/l7NuGBiqaBC eRs/RX7TgZ2EbVM0RTZtFPTZcTpShFL8ldW92HypTiTPrcKpgXFeTbQyfylhx2Nj Tk/rEBZEhheGhD9vtrxV6fAJ9BeoxzhDg89CP1fcEFf8zTzoXNYjghfBxPxrMvLv gzcdgOAEMsVmo9Escm209Wq1wt2H8FjeZWbVIvNX7gh7EdHQjVmMjNBALCORu8sk WZhAEWmBGHapEA== -----END CERTIFICATE-----Generated at Tue Dec 23 01:40:35 2025 by rpki-client