This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft File: vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft (raw, json) Hash identifier: 5X2Rfuk+QYPe2Le+MYNpw72dYXMQCMP7d/Ty95oNaGA= Subject key identifier: 80:B0:96:46:E0:38:C9:D4:A9:1F:F1:D1:45:51:AC:68:36:61:60:35 Authority key identifier: BE:55:39:AF:E9:25:DB:80:B4:15:EF:B1:4C:63:1B:2D:82:C8:CE:DD Certificate issuer: /CN=be5539afe925db80b415efb14c631b2d82c8cedd Certificate serial: 019AF3C048F90E6A3166F2A11878A7BF70F2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vlU5r-kl24C0Fe-xTGMbLYLIzt0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft Manifest number: 033F Signing time: Sat 06 Dec 2025 13:00:56 +0000 Manifest this update: Sat 06 Dec 2025 13:00:56 +0000 Manifest next update: Sun 07 Dec 2025 13:00:56 +0000 Files and hashes: 1: vlU5r-kl24C0Fe-xTGMbLYLIzt0.crl (hash: Lvm7j98vZIzoYFOK7ANtN5jCpgWRVhTwVfKPaKXQ2h8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.crl rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft rsync://rpki.ripe.net/repository/DEFAULT/vlU5r-kl24C0Fe-xTGMbLYLIzt0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:c0:48:f9:0e:6a:31:66:f2:a1:18:78:a7:bf:70:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=be5539afe925db80b415efb14c631b2d82c8cedd Validity Not Before: Dec 6 13:00:56 2025 GMT Not After : Dec 7 13:00:56 2025 GMT Subject: CN=80b09646e038c9d4a91ff1d14551ac6836616035 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:18:f6:b6:57:27:ce:2d:b6:ce:a4:56:b0:67: fd:15:97:1d:3d:d2:21:57:dd:92:ec:9c:83:73:89: b2:11:97:d4:95:55:68:ba:b1:4e:e0:dd:01:cb:90: ea:6e:61:98:98:02:5e:4a:46:d4:3a:4b:83:d1:3d: b3:2b:d5:ea:c4:06:25:d4:36:ff:51:10:1d:2b:d1: 38:04:59:0b:76:b5:f3:f1:1a:30:b8:16:9b:63:a1: 1f:c3:1e:24:a1:6c:e7:3a:2e:9c:e6:43:5f:e5:bd: 99:08:33:61:a9:e0:99:d8:b8:e0:44:0a:8b:9a:c9: ee:1e:74:34:ad:5d:7a:1f:c5:b3:a0:0a:cf:89:54: 24:d7:b5:0c:6b:3a:4d:32:f9:69:8b:6f:76:03:78: 8d:63:ab:43:66:79:a0:67:d4:9a:2e:f8:3d:e0:47: 1e:65:62:90:95:ae:f4:9e:93:e6:3d:05:f5:5e:b2: 6e:14:b8:f4:1f:ee:e3:9b:55:cc:55:7d:42:f0:53: f8:5a:5d:e2:6f:e0:80:65:c2:b2:9d:54:c1:97:7f: 0b:a6:97:17:bc:5c:da:de:09:d5:5b:6a:91:94:0f: 19:d2:9d:62:f6:82:48:86:9a:8c:8d:3c:b4:c0:e6: c3:1f:c9:25:9f:3c:27:95:4c:f3:f4:4c:ef:50:9c: fa:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:B0:96:46:E0:38:C9:D4:A9:1F:F1:D1:45:51:AC:68:36:61:60:35 X509v3 Authority Key Identifier: keyid:BE:55:39:AF:E9:25:DB:80:B4:15:EF:B1:4C:63:1B:2D:82:C8:CE:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vlU5r-kl24C0Fe-xTGMbLYLIzt0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:fa:4f:d9:e9:ba:43:a2:9b:46:39:5c:f1:12:b9:56:b7:57: 08:1f:10:ce:0d:5b:55:1d:4d:80:84:10:c5:04:d6:8d:ad:fd: ce:67:f4:79:e2:ab:8d:23:ae:1d:e3:5c:5c:d0:4f:6f:4d:60: 90:61:6c:10:b5:22:97:d1:40:f9:6e:99:fa:d8:45:b2:d0:76: 3f:0e:be:38:97:ce:47:84:31:ac:d4:5b:59:07:54:8d:31:a9: b8:32:54:c3:36:10:01:92:f2:05:5d:f0:4d:42:28:a0:a3:24: b2:b4:ec:fa:83:ab:37:18:6c:7b:cb:33:71:bd:1d:31:c8:19: a0:55:0c:a6:78:18:e3:51:8f:a4:af:6d:15:d5:43:46:d3:62: 76:2a:f9:85:94:e2:e4:2d:65:eb:c3:74:e8:bb:ed:aa:1d:51: 3b:25:9a:88:6a:c0:bd:ac:8f:14:1a:df:91:54:28:6d:25:a7: c5:90:83:21:10:2f:9e:ad:e6:79:85:9e:5e:4f:04:9f:54:4a: c5:6a:1c:22:db:11:30:b4:3a:d9:2c:c8:ed:f6:78:70:db:73: 4e:46:73:70:dd:e4:05:2a:80:42:3d:b4:a1:01:c3:78:1d:82: 71:a1:56:6a:f3:db:a7:5c:1f:86:2d:f3:c5:bd:93:6b:e9:96: 76:d4:69:b6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzwEj5DmoxZvKhGHinv3DyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJlNTUzOWFmZTkyNWRiODBiNDE1ZWZiMTRjNjMxYjJkODJj OGNlZGQwHhcNMjUxMjA2MTMwMDU2WhcNMjUxMjA3MTMwMDU2WjAzMTEwLwYDVQQD Eyg4MGIwOTY0NmUwMzhjOWQ0YTkxZmYxZDE0NTUxYWM2ODM2NjE2MDM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmRj2tlcnzi22zqRWsGf9FZcdPdIh V92S7JyDc4myEZfUlVVourFO4N0By5DqbmGYmAJeSkbUOkuD0T2zK9XqxAYl1Db/ URAdK9E4BFkLdrXz8RowuBabY6Efwx4koWznOi6c5kNf5b2ZCDNhqeCZ2LjgRAqL msnuHnQ0rV16H8WzoArPiVQk17UMazpNMvlpi292A3iNY6tDZnmgZ9SaLvg94Ece ZWKQla70npPmPQX1XrJuFLj0H+7jm1XMVX1C8FP4Wl3ib+CAZcKynVTBl38LppcX vFza3gnVW2qRlA8Z0p1i9oJIhpqMjTy0wObDH8klnzwnlUzz9EzvUJz6qwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFICwlkbgOMnUqR/x0UVRrGg2YWA1MB8GA1UdIwQY MBaAFL5VOa/pJduAtBXvsUxjGy2CyM7dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdmxVNXIta2wyNEMwRmUteFRHTWJMWUxJenQwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi83MzNkYWUtMDAyMS00NGU1LTkyZTUt MjUwMGY0ZWZhYjY5LzEvdmxVNXIta2wyNEMwRmUteFRHTWJMWUxJenQwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Zi83MzNkYWUtMDAyMS00NGU1LTkyZTUtMjUwMGY0ZWZhYjY5 LzEvdmxVNXIta2wyNEMwRmUteFRHTWJMWUxJenQwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX/pP2em6 Q6KbRjlc8RK5VrdXCB8Qzg1bVR1NgIQQxQTWja39zmf0eeKrjSOuHeNcXNBPb01g kGFsELUil9FA+W6Z+thFstB2Pw6+OJfOR4QxrNRbWQdUjTGpuDJUwzYQAZLyBV3w TUIooKMksrTs+oOrNxhse8szcb0dMcgZoFUMpngY41GPpK9tFdVDRtNidir5hZTi 5C1l68N06Lvtqh1ROyWaiGrAvayPFBrfkVQobSWnxZCDIRAvnq3meYWeXk8En1RK xWocItsRMLQ62SzI7fZ4cNtzTkZzcN3kBSqAQj20oQHDeB2CcaFWavPbp1wfhi3z xb2Ta+mWdtRptg== -----END CERTIFICATE-----Generated at Sat Dec 6 16:07:07 2025 by rpki-client