This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft File: vYUnKkCAkE914jWkevC0EmbipgM.mft (raw, json) Hash identifier: QifbtNn6Sdf74R8N/35GJAenfr2G3nnHHTF8wQZgRA4= Subject key identifier: C6:7E:EB:1F:21:A0:FF:DC:2C:35:22:F7:A5:5F:72:92:BE:23:A9:73 Authority key identifier: BD:85:27:2A:40:80:90:4F:75:E2:35:A4:7A:F0:B4:12:66:E2:A6:03 Certificate issuer: /CN=bd85272a4080904f75e235a47af0b41266e2a603 Certificate serial: 019AF12CB2C5ECDBB5B38A22BCEF504BC742 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft Manifest number: 0A8B Signing time: Sat 06 Dec 2025 01:00:29 +0000 Manifest this update: Sat 06 Dec 2025 01:00:29 +0000 Manifest next update: Sun 07 Dec 2025 01:00:29 +0000 Files and hashes: 1: qUq_q62qYu3qxVOMe_F0xihpmUw.roa (hash: SovqRJc4ePvthgrrsQXCalBtYnWMU+TdM7o0xgmwIiE=) 2: vYUnKkCAkE914jWkevC0EmbipgM.crl (hash: QArGuw+bK/Vt9sIXsNQiz+Fp55Ykc6KCxXU+40Jastk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.crl rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2c:b2:c5:ec:db:b5:b3:8a:22:bc:ef:50:4b:c7:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bd85272a4080904f75e235a47af0b41266e2a603 Validity Not Before: Dec 6 01:00:29 2025 GMT Not After : Dec 7 01:00:29 2025 GMT Subject: CN=c67eeb1f21a0ffdc2c3522f7a55f7292be23a973 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:f8:22:b4:d4:f3:1d:b0:29:57:9f:bc:b3:c0: f6:f7:66:f1:9e:9a:b8:b5:30:0d:7e:c9:47:dd:08: ce:05:13:ea:53:d9:9d:2d:b8:83:61:74:6a:e4:0e: 93:4d:a8:b4:74:94:b2:b5:c0:6f:c5:63:e8:20:bf: ea:9a:aa:81:1f:ba:67:ef:07:b3:98:91:d1:81:b6: d1:8b:e0:ce:27:c1:74:b7:af:0c:17:8d:ab:b3:f4: 56:0d:16:59:f6:02:4c:b9:f5:1d:2b:8e:65:28:73: b7:42:56:93:97:36:92:96:9f:31:41:42:ea:4b:14: cc:1e:d1:2b:86:9b:c4:b1:6a:fa:a7:5b:02:5d:db: e9:31:77:5d:47:53:c6:63:17:72:ea:9d:92:96:31: f0:0d:8b:ad:98:e3:0d:f1:51:61:b8:82:3b:e2:d2: e5:43:e5:65:b8:e4:ff:91:83:77:23:b8:8a:77:e5: c6:a1:31:76:94:76:9f:9f:31:40:c6:40:32:2d:15: ed:e4:ee:9f:ca:4a:3b:f5:97:8d:02:bf:d0:74:f6: 25:4d:04:67:53:1a:58:17:dc:e6:d1:fc:cc:ae:46: 56:de:2b:2b:e2:51:08:3c:78:ce:da:7c:89:6c:6d: 15:c1:f9:a5:3d:be:84:14:fb:31:13:78:f7:45:e0: e7:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:7E:EB:1F:21:A0:FF:DC:2C:35:22:F7:A5:5F:72:92:BE:23:A9:73 X509v3 Authority Key Identifier: keyid:BD:85:27:2A:40:80:90:4F:75:E2:35:A4:7A:F0:B4:12:66:E2:A6:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3a:21:41:f3:57:f5:85:ad:ef:bd:13:71:bc:99:0d:90:e6:4a: 53:93:8a:0f:89:ed:3f:48:3e:db:63:2d:80:51:9e:eb:8a:3e: 3d:ab:5d:d7:ba:10:15:48:63:3d:e5:fc:48:fd:b8:57:81:24: 7f:06:79:b2:ba:fe:8a:dd:d4:64:cb:b6:38:88:13:e3:a9:df: 3c:ac:08:fd:da:e4:3e:7c:9c:34:d0:a8:d1:04:f6:52:3b:c6: ae:f2:bd:02:59:01:90:f2:11:61:13:4a:04:6a:6f:89:37:6b: 98:75:a7:bf:13:64:f9:d5:2d:76:95:37:59:dd:7a:c0:bd:24: 44:ad:97:3e:2a:8d:dc:d2:0f:2b:c3:26:b7:72:fb:12:0c:dd: f2:89:32:f8:fd:02:25:3b:c6:65:2f:95:eb:74:49:64:63:13: 30:c5:f9:00:1d:fe:03:f5:12:76:ba:0b:07:b8:74:e0:fb:72: 96:c0:51:a1:98:10:8a:64:ce:55:62:b1:2a:ad:ad:4e:80:09: 29:4d:3b:43:5f:fa:69:7b:9f:aa:63:28:9f:76:6e:54:49:11: ba:f9:7b:d7:e2:f8:ef:b9:da:83:92:6a:af:45:34:a8:61:d8: f5:98:0f:71:e6:95:34:e7:7d:fb:93:fa:2f:89:1e:f8:96:25: c6:e4:12:24 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLLLF7Nu1s4oivO9QS8dCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJkODUyNzJhNDA4MDkwNGY3NWUyMzVhNDdhZjBiNDEyNjZl MmE2MDMwHhcNMjUxMjA2MDEwMDI5WhcNMjUxMjA3MDEwMDI5WjAzMTEwLwYDVQQD EyhjNjdlZWIxZjIxYTBmZmRjMmMzNTIyZjdhNTVmNzI5MmJlMjNhOTczMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr/gitNTzHbApV5+8s8D292bxnpq4 tTANfslH3QjOBRPqU9mdLbiDYXRq5A6TTai0dJSytcBvxWPoIL/qmqqBH7pn7wez mJHRgbbRi+DOJ8F0t68MF42rs/RWDRZZ9gJMufUdK45lKHO3QlaTlzaSlp8xQULq SxTMHtErhpvEsWr6p1sCXdvpMXddR1PGYxdy6p2SljHwDYutmOMN8VFhuII74tLl Q+VluOT/kYN3I7iKd+XGoTF2lHafnzFAxkAyLRXt5O6fyko79ZeNAr/QdPYlTQRn UxpYF9zm0fzMrkZW3isr4lEIPHjO2nyJbG0VwfmlPb6EFPsxE3j3ReDnKwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMZ+6x8hoP/cLDUi96VfcpK+I6lzMB8GA1UdIwQY MBaAFL2FJypAgJBPdeI1pHrwtBJm4qYDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdllVbktrQ0FrRTkxNGpXa2V2QzBFbWJpcGdNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC8yODJjYjAtOTFiZS00MjJhLTk1ZDMt MjRmMjBmOTY3NWVjLzEvdllVbktrQ0FrRTkxNGpXa2V2QzBFbWJpcGdNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNC8yODJjYjAtOTFiZS00MjJhLTk1ZDMtMjRmMjBmOTY3NWVj LzEvdllVbktrQ0FrRTkxNGpXa2V2QzBFbWJpcGdNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOiFB81f1 ha3vvRNxvJkNkOZKU5OKD4ntP0g+22MtgFGe64o+Patd17oQFUhjPeX8SP24V4Ek fwZ5srr+it3UZMu2OIgT46nfPKwI/drkPnycNNCo0QT2UjvGrvK9AlkBkPIRYRNK BGpviTdrmHWnvxNk+dUtdpU3Wd16wL0kRK2XPiqN3NIPK8Mmt3L7Egzd8oky+P0C JTvGZS+V63RJZGMTMMX5AB3+A/USdroLB7h04PtylsBRoZgQimTOVWKxKq2tToAJ KU07Q1/6aXufqmMon3ZuVEkRuvl71+L477nag5Jqr0U0qGHY9ZgPceaVNOd9+5P6 L4ke+JYlxuQSJA== -----END CERTIFICATE-----Generated at Sat Dec 6 10:18:36 2025 by rpki-client