This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/833aa2-af04-4f10-a167-6acd86686e85/1/vyk4WQ4NABlyVmLUtK5Myew6c00.mft File: vyk4WQ4NABlyVmLUtK5Myew6c00.mft (raw, json) Hash identifier: EziufcTUtAJufLrrXrWG/GFP5QxBL/jUK+nKkO4m/3Q= Subject key identifier: 51:45:04:35:4E:B9:C6:4D:A3:25:11:42:A1:21:D8:EA:00:BD:C3:FF Authority key identifier: BF:29:38:59:0E:0D:00:19:72:56:62:D4:B4:AE:4C:C9:EC:3A:73:4D Certificate issuer: /CN=bf2938590e0d0019725662d4b4ae4cc9ec3a734d Certificate serial: 019AF16421FA14E86B727F7ED9DB8CC82177 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vyk4WQ4NABlyVmLUtK5Myew6c00.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/833aa2-af04-4f10-a167-6acd86686e85/1/vyk4WQ4NABlyVmLUtK5Myew6c00.mft Manifest number: 0A00 Signing time: Sat 06 Dec 2025 02:01:02 +0000 Manifest this update: Sat 06 Dec 2025 02:01:02 +0000 Manifest next update: Sun 07 Dec 2025 02:01:02 +0000 Files and hashes: 1: vQtF-L-9ooOZxF-UCZufP97_4Tk.roa (hash: uZu5EdE4zrTNj+JjaQISrCgWGaWpGkfUNjvMVUEKljA=) 2: vyk4WQ4NABlyVmLUtK5Myew6c00.crl (hash: JvfqsjQ+ntdNf4/V85Z/ANgNR8tPjBElXRUBSccdGGs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/833aa2-af04-4f10-a167-6acd86686e85/1/vyk4WQ4NABlyVmLUtK5Myew6c00.crl rsync://rpki.ripe.net/repository/DEFAULT/6c/833aa2-af04-4f10-a167-6acd86686e85/1/vyk4WQ4NABlyVmLUtK5Myew6c00.mft rsync://rpki.ripe.net/repository/DEFAULT/vyk4WQ4NABlyVmLUtK5Myew6c00.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:64:21:fa:14:e8:6b:72:7f:7e:d9:db:8c:c8:21:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bf2938590e0d0019725662d4b4ae4cc9ec3a734d Validity Not Before: Dec 6 02:01:02 2025 GMT Not After : Dec 7 02:01:02 2025 GMT Subject: CN=514504354eb9c64da3251142a121d8ea00bdc3ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:a9:4b:4d:09:dc:5b:a6:a9:ce:6a:c6:fa:b2: 9c:a6:ea:a5:c0:87:8b:81:3f:b6:37:2c:02:f7:80: e7:8c:00:a5:e8:bc:63:78:d7:f7:3c:15:b6:dd:e0: 9d:52:70:19:f8:76:8d:28:ad:4f:6c:47:55:c8:8b: 14:41:ba:16:e5:2d:00:33:75:41:f5:8b:cd:d4:a6: bb:de:34:38:7d:e9:1c:ae:c7:84:d0:69:12:d2:33: ab:49:f0:e8:b1:0f:dc:36:65:b1:32:c1:fe:23:35: 53:cf:c3:cd:02:f4:a9:a3:6f:d7:7d:80:fc:c6:46: 1f:4d:31:c1:93:37:02:d0:5c:c6:bd:ed:de:c4:35: 98:ba:1e:7f:43:6c:8c:8c:51:af:cf:bf:91:56:45: 58:2d:24:6e:aa:f4:15:13:2c:84:a5:93:15:b4:5c: f6:6a:e4:6a:a9:9a:db:a4:a4:49:15:7b:d9:71:7a: ad:af:ce:4a:f8:69:fb:54:0c:31:28:3c:03:f6:ce: 71:78:37:be:d1:b3:23:e1:63:3d:e8:d6:66:8e:c9: 8a:ed:3d:45:79:3e:9d:8a:0d:90:b6:d2:7a:7c:00: ba:16:44:0b:9e:2e:0a:d3:69:3b:8e:f1:fe:6a:da: 5f:d7:41:ad:d5:8d:b5:e6:3f:bc:ec:6e:cf:79:b2: 44:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:45:04:35:4E:B9:C6:4D:A3:25:11:42:A1:21:D8:EA:00:BD:C3:FF X509v3 Authority Key Identifier: keyid:BF:29:38:59:0E:0D:00:19:72:56:62:D4:B4:AE:4C:C9:EC:3A:73:4D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vyk4WQ4NABlyVmLUtK5Myew6c00.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/833aa2-af04-4f10-a167-6acd86686e85/1/vyk4WQ4NABlyVmLUtK5Myew6c00.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/833aa2-af04-4f10-a167-6acd86686e85/1/vyk4WQ4NABlyVmLUtK5Myew6c00.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 72:55:1d:e9:4f:72:9b:9f:55:10:66:31:20:b9:61:b6:4c:84: 77:b6:a2:4d:5c:66:54:89:b4:51:d2:2e:a7:16:ec:83:9d:d6: 6c:b7:d6:80:1b:96:3e:8c:87:2a:82:f9:b8:d3:62:df:65:af: 4b:10:cf:9e:22:79:45:97:c2:ec:20:ba:c2:d5:3b:64:1d:73: e3:61:4d:9c:2e:55:a0:39:e4:55:3a:0d:4c:69:27:5d:07:c2: 5e:2d:86:40:3d:6a:07:78:c1:c9:36:44:d2:4d:a5:31:68:58: 0c:0f:0d:86:9a:ed:8f:1a:bd:24:21:3a:50:9f:94:69:80:17: bc:34:dd:28:65:3c:01:45:c1:6b:85:49:74:89:05:13:22:7f: 01:21:b6:f3:2c:92:b0:09:0d:18:79:b6:ee:4f:ee:59:c3:48: 8c:d9:26:77:dc:1f:25:c3:39:32:56:26:09:e5:ea:65:94:71: 14:d0:53:0d:ad:89:c2:d3:97:92:ea:cc:5d:ca:e2:05:6d:7c: 19:b8:f5:75:31:e3:6c:fd:01:4b:58:fe:5c:fb:25:e1:b7:01: 42:6e:2c:ff:2f:e4:ae:99:15:f8:1b:41:59:3a:32:ae:a5:fe: 80:e1:91:d3:3b:53:42:14:8f:72:60:25:c5:96:f8:e2:92:af: 2f:79:75:5f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxZCH6FOhrcn9+2duMyCF3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJmMjkzODU5MGUwZDAwMTk3MjU2NjJkNGI0YWU0Y2M5ZWMz YTczNGQwHhcNMjUxMjA2MDIwMTAyWhcNMjUxMjA3MDIwMTAyWjAzMTEwLwYDVQQD Eyg1MTQ1MDQzNTRlYjljNjRkYTMyNTExNDJhMTIxZDhlYTAwYmRjM2ZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjKlLTQncW6apzmrG+rKcpuqlwIeL gT+2NywC94DnjACl6LxjeNf3PBW23eCdUnAZ+HaNKK1PbEdVyIsUQboW5S0AM3VB 9YvN1Ka73jQ4fekcrseE0GkS0jOrSfDosQ/cNmWxMsH+IzVTz8PNAvSpo2/XfYD8 xkYfTTHBkzcC0FzGve3exDWYuh5/Q2yMjFGvz7+RVkVYLSRuqvQVEyyEpZMVtFz2 auRqqZrbpKRJFXvZcXqtr85K+Gn7VAwxKDwD9s5xeDe+0bMj4WM96NZmjsmK7T1F eT6dig2QttJ6fAC6FkQLni4K02k7jvH+atpf10Gt1Y215j+87G7PebJEQQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFFFBDVOucZNoyURQqEh2OoAvcP/MB8GA1UdIwQY MBaAFL8pOFkODQAZclZi1LSuTMnsOnNNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdnlrNFdRNE5BQmx5Vm1MVXRLNU15ZXc2YzAwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yy84MzNhYTItYWYwNC00ZjEwLWExNjct NmFjZDg2Njg2ZTg1LzEvdnlrNFdRNE5BQmx5Vm1MVXRLNU15ZXc2YzAwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Yy84MzNhYTItYWYwNC00ZjEwLWExNjctNmFjZDg2Njg2ZTg1 LzEvdnlrNFdRNE5BQmx5Vm1MVXRLNU15ZXc2YzAwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAclUd6U9y m59VEGYxILlhtkyEd7aiTVxmVIm0UdIupxbsg53WbLfWgBuWPoyHKoL5uNNi32Wv SxDPniJ5RZfC7CC6wtU7ZB1z42FNnC5VoDnkVToNTGknXQfCXi2GQD1qB3jByTZE 0k2lMWhYDA8Nhprtjxq9JCE6UJ+UaYAXvDTdKGU8AUXBa4VJdIkFEyJ/ASG28yyS sAkNGHm27k/uWcNIjNkmd9wfJcM5MlYmCeXqZZRxFNBTDa2JwtOXkurMXcriBW18 Gbj1dTHjbP0BS1j+XPsl4bcBQm4s/y/krpkV+BtBWToyrqX+gOGR0ztTQhSPcmAl xZb44pKvL3l1Xw== -----END CERTIFICATE-----Generated at Sat Dec 6 06:57:29 2025 by rpki-client