This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/16fcd2-5de3-4216-a75c-58c32895dcde/1/VmhcNSHqj-av5l1TOjsZno92UFs.mft File: VmhcNSHqj-av5l1TOjsZno92UFs.mft (raw, json) Hash identifier: 4c9gkTZT3735/8acBcVGyOXxiQevCYM7S8uHZWcUVj8= Subject key identifier: A6:5E:92:E4:24:CE:EF:0C:80:12:4C:87:3D:4A:5B:34:13:AD:91:99 Authority key identifier: 56:68:5C:35:21:EA:8F:E6:AF:E6:5D:53:3A:3B:19:9E:8F:76:50:5B Certificate issuer: /CN=56685c3521ea8fe6afe65d533a3b199e8f76505b Certificate serial: 019AF31D6F50A9C41F3A41365C88C842595A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VmhcNSHqj-av5l1TOjsZno92UFs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/16fcd2-5de3-4216-a75c-58c32895dcde/1/VmhcNSHqj-av5l1TOjsZno92UFs.mft Manifest number: 1667 Signing time: Sat 06 Dec 2025 10:03:03 +0000 Manifest this update: Sat 06 Dec 2025 10:03:03 +0000 Manifest next update: Sun 07 Dec 2025 10:03:03 +0000 Files and hashes: 1: VmhcNSHqj-av5l1TOjsZno92UFs.crl (hash: VXKhMaN3Wq0lHC285cQoLf8ni4oPa0GOWA9XII4nfd4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/16fcd2-5de3-4216-a75c-58c32895dcde/1/VmhcNSHqj-av5l1TOjsZno92UFs.crl rsync://rpki.ripe.net/repository/DEFAULT/67/16fcd2-5de3-4216-a75c-58c32895dcde/1/VmhcNSHqj-av5l1TOjsZno92UFs.mft rsync://rpki.ripe.net/repository/DEFAULT/VmhcNSHqj-av5l1TOjsZno92UFs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1d:6f:50:a9:c4:1f:3a:41:36:5c:88:c8:42:59:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=56685c3521ea8fe6afe65d533a3b199e8f76505b Validity Not Before: Dec 6 10:03:03 2025 GMT Not After : Dec 7 10:03:03 2025 GMT Subject: CN=a65e92e424ceef0c80124c873d4a5b3413ad9199 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:ce:ae:70:c6:f1:f0:4e:2c:2a:68:a5:bb:e7: 73:0e:e6:80:07:58:04:c7:24:a4:94:4c:d7:77:bd: da:ae:54:85:b3:94:cb:37:0a:19:ec:0b:65:19:26: 1a:00:23:b8:09:00:c3:e2:53:4b:a4:82:5d:e3:91: 90:af:62:3f:32:ad:4e:45:0f:43:5a:5a:32:bb:fd: 9b:69:ee:32:d7:c1:1a:28:5d:e6:7d:f6:07:06:f3: 78:15:9f:8c:7b:0d:2c:be:32:28:f2:0a:d5:5d:2f: 9d:88:ec:d8:66:08:41:4e:b2:60:62:50:d5:e8:77: c1:12:cd:e4:f1:2d:f9:fb:6b:f9:89:b3:3e:13:9a: 1f:a8:ee:df:5c:92:12:a3:ff:b1:b9:2a:0c:73:03: 91:83:48:a3:e4:9a:26:85:44:3d:86:21:57:a7:26: 45:2f:a0:f3:af:0a:6e:46:8b:df:ab:98:5e:b2:c6: e4:af:91:f2:02:c7:ae:71:c5:0b:c9:a4:6f:8a:fb: 8f:c9:bb:58:e1:f3:65:ac:a2:93:93:98:84:13:ee: f3:8b:65:98:e5:98:4a:09:97:83:28:89:06:dc:98: e6:ac:3b:19:31:b2:7a:d8:e2:a3:ee:e1:66:7d:ed: 02:69:d0:f0:73:d3:47:7e:28:ab:7b:36:f1:da:27: 78:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:5E:92:E4:24:CE:EF:0C:80:12:4C:87:3D:4A:5B:34:13:AD:91:99 X509v3 Authority Key Identifier: keyid:56:68:5C:35:21:EA:8F:E6:AF:E6:5D:53:3A:3B:19:9E:8F:76:50:5B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VmhcNSHqj-av5l1TOjsZno92UFs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/16fcd2-5de3-4216-a75c-58c32895dcde/1/VmhcNSHqj-av5l1TOjsZno92UFs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/67/16fcd2-5de3-4216-a75c-58c32895dcde/1/VmhcNSHqj-av5l1TOjsZno92UFs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c3:f2:52:cf:f5:b0:7e:6a:3a:8a:a3:dc:39:df:66:ce:49:31: da:47:32:89:d7:f7:7c:70:31:b4:4f:a8:e2:84:c5:a2:0d:0f: 3a:0b:e3:b1:4e:3a:d3:e7:61:9e:4d:7c:d5:33:25:b2:f6:ab: a7:0a:59:fc:e6:52:d9:35:bb:43:c5:83:dd:79:05:38:b6:1b: f3:a1:f9:84:3b:42:09:e3:80:72:ae:5a:bc:18:23:d5:74:cf: 63:da:d1:6b:c2:d8:a2:7f:2b:04:c4:e2:81:49:25:3b:19:46: 7c:1a:0a:3d:a9:b3:c9:11:e1:62:ad:21:c5:82:70:59:a6:a2: db:f9:57:1a:c3:28:41:5d:82:ef:33:74:9e:99:10:a5:07:c1: 6b:ad:95:04:21:b7:8f:4b:c0:e1:6c:7a:8d:72:31:7d:92:b6: fa:ab:33:cf:69:17:e0:c5:4f:cc:7f:e4:47:de:76:60:d8:28: f0:be:c8:25:89:5b:6f:fe:42:53:26:ca:a0:90:d3:87:3f:49: d6:a5:b2:d9:3f:91:dd:26:1d:bf:cf:3c:47:27:ad:8e:39:44: 79:28:58:46:fb:41:2e:af:d9:42:c3:b0:f2:3f:4b:ca:13:a4: 24:b3:62:0f:21:bd:59:b2:ec:c1:53:0e:3b:b5:a4:77:5a:f8: 19:c5:86:fb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHW9QqcQfOkE2XIjIQllaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU2Njg1YzM1MjFlYThmZTZhZmU2NWQ1MzNhM2IxOTllOGY3 NjUwNWIwHhcNMjUxMjA2MTAwMzAzWhcNMjUxMjA3MTAwMzAzWjAzMTEwLwYDVQQD EyhhNjVlOTJlNDI0Y2VlZjBjODAxMjRjODczZDRhNWIzNDEzYWQ5MTk5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7s6ucMbx8E4sKmilu+dzDuaAB1gE xySklEzXd73arlSFs5TLNwoZ7AtlGSYaACO4CQDD4lNLpIJd45GQr2I/Mq1ORQ9D Wloyu/2bae4y18EaKF3mffYHBvN4FZ+Mew0svjIo8grVXS+diOzYZghBTrJgYlDV 6HfBEs3k8S35+2v5ibM+E5ofqO7fXJISo/+xuSoMcwORg0ij5JomhUQ9hiFXpyZF L6DzrwpuRovfq5hessbkr5HyAseuccULyaRvivuPybtY4fNlrKKTk5iEE+7zi2WY 5ZhKCZeDKIkG3JjmrDsZMbJ62OKj7uFmfe0CadDwc9NHfiirezbx2id4bwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKZekuQkzu8MgBJMhz1KWzQTrZGZMB8GA1UdIwQY MBaAFFZoXDUh6o/mr+ZdUzo7GZ6PdlBbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVm1oY05TSHFqLWF2NWwxVE9qc1pubzkyVUZzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny8xNmZjZDItNWRlMy00MjE2LWE3NWMt NThjMzI4OTVkY2RlLzEvVm1oY05TSHFqLWF2NWwxVE9qc1pubzkyVUZzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ny8xNmZjZDItNWRlMy00MjE2LWE3NWMtNThjMzI4OTVkY2Rl LzEvVm1oY05TSHFqLWF2NWwxVE9qc1pubzkyVUZzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAw/JSz/Ww fmo6iqPcOd9mzkkx2kcyidf3fHAxtE+o4oTFog0POgvjsU460+dhnk181TMlsvar pwpZ/OZS2TW7Q8WD3XkFOLYb86H5hDtCCeOAcq5avBgj1XTPY9rRa8LYon8rBMTi gUklOxlGfBoKPamzyRHhYq0hxYJwWaai2/lXGsMoQV2C7zN0npkQpQfBa62VBCG3 j0vA4Wx6jXIxfZK2+qszz2kX4MVPzH/kR952YNgo8L7IJYlbb/5CUybKoJDThz9J 1qWy2T+R3SYdv888RyetjjlEeShYRvtBLq/ZQsOw8j9LyhOkJLNiDyG9WbLswVMO O7Wkd1r4GcWG+w== -----END CERTIFICATE-----Generated at Sat Dec 6 13:49:13 2025 by rpki-client