This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6bd104-25f6-4826-b234-11d0f20e8cb0/1/vtJXlaaCsRmplIBal2V4U9dUoFw.mft File: vtJXlaaCsRmplIBal2V4U9dUoFw.mft (raw, json) Hash identifier: ObP5L2leTWCc3Qd09CIPCF4y0BgveR9zMPK9kwxejDU= Subject key identifier: 03:38:BE:6C:06:E4:8C:44:9B:F4:CF:07:44:56:82:65:E3:12:8C:56 Authority key identifier: BE:D2:57:95:A6:82:B1:19:A9:94:80:5A:97:65:78:53:D7:54:A0:5C Certificate issuer: /CN=bed25795a682b119a994805a97657853d754a05c Certificate serial: 019B2B8A2F2E114368283B1A5CE4F43FE2B6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vtJXlaaCsRmplIBal2V4U9dUoFw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6bd104-25f6-4826-b234-11d0f20e8cb0/1/vtJXlaaCsRmplIBal2V4U9dUoFw.mft Manifest number: 0C0D Signing time: Wed 17 Dec 2025 09:00:34 +0000 Manifest this update: Wed 17 Dec 2025 09:00:34 +0000 Manifest next update: Thu 18 Dec 2025 09:00:34 +0000 Files and hashes: 1: vtJXlaaCsRmplIBal2V4U9dUoFw.crl (hash: eODGOPzC59qTlETMRXpapGjhud1EWrVBpsaOM2XXcQg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/6bd104-25f6-4826-b234-11d0f20e8cb0/1/vtJXlaaCsRmplIBal2V4U9dUoFw.crl rsync://rpki.ripe.net/repository/DEFAULT/cd/6bd104-25f6-4826-b234-11d0f20e8cb0/1/vtJXlaaCsRmplIBal2V4U9dUoFw.mft rsync://rpki.ripe.net/repository/DEFAULT/vtJXlaaCsRmplIBal2V4U9dUoFw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 09:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2b:8a:2f:2e:11:43:68:28:3b:1a:5c:e4:f4:3f:e2:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bed25795a682b119a994805a97657853d754a05c Validity Not Before: Dec 17 09:00:34 2025 GMT Not After : Dec 18 09:00:34 2025 GMT Subject: CN=0338be6c06e48c449bf4cf0744568265e3128c56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:1e:88:b3:90:16:1b:7c:cc:97:50:50:b7:51: 7b:2a:af:84:84:73:19:a8:1c:6d:27:c5:4c:97:93: bc:49:2f:6d:ec:b9:18:d8:8c:33:76:ee:2f:1c:4f: d3:e1:bf:9c:b9:8f:08:68:aa:bc:35:c3:2c:64:06: ef:13:2d:d8:89:8a:f8:8c:ee:32:57:8f:97:cd:d6: 40:96:80:51:5b:40:19:78:1a:f3:67:74:77:89:e2: d1:e1:b5:e4:5c:ee:d7:7b:00:40:13:d9:64:58:62: 57:ca:83:d7:3e:02:a4:ef:5b:5c:a1:2a:e5:25:30: 44:6b:7d:67:30:66:12:74:e8:c8:62:2b:8b:b0:24: c1:af:cd:6a:91:7c:5e:95:e1:49:e1:42:79:23:97: df:66:b4:64:35:ed:c1:67:b5:38:14:60:2a:6c:07: 98:7d:b4:26:86:0b:85:53:8e:97:96:01:10:e4:ce: 54:36:30:49:c7:e6:9d:59:b8:15:68:e5:c5:17:c9: 96:77:4a:e1:9d:4b:87:01:9a:a4:26:19:17:f5:73: 7a:56:dd:d8:dc:9a:3a:f5:ab:02:71:3f:f4:9d:1b: 55:41:23:cb:df:99:d9:14:f5:64:14:8f:d2:30:a8: 2b:cf:c9:fd:21:29:32:24:95:61:4a:88:0a:fe:cc: b4:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:38:BE:6C:06:E4:8C:44:9B:F4:CF:07:44:56:82:65:E3:12:8C:56 X509v3 Authority Key Identifier: keyid:BE:D2:57:95:A6:82:B1:19:A9:94:80:5A:97:65:78:53:D7:54:A0:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vtJXlaaCsRmplIBal2V4U9dUoFw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6bd104-25f6-4826-b234-11d0f20e8cb0/1/vtJXlaaCsRmplIBal2V4U9dUoFw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6bd104-25f6-4826-b234-11d0f20e8cb0/1/vtJXlaaCsRmplIBal2V4U9dUoFw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:ba:44:1b:b3:22:6d:fe:08:7a:d0:5e:1f:51:18:6f:57:6a: 82:29:22:31:48:fa:e4:0a:e8:6a:06:7b:01:ec:a0:87:76:7e: 7b:d3:ca:74:80:c8:54:7b:90:a6:40:07:fd:6f:69:02:35:4b: 4e:c2:52:1a:2f:57:8d:3a:52:0d:22:e0:7f:7e:63:e0:03:3b: e1:48:e4:51:f9:51:6f:1d:ea:01:35:3f:a3:d1:cb:e7:94:65: 10:08:b2:05:d2:26:29:03:f4:a9:c8:39:64:9d:e8:74:49:9b: 62:87:b5:ae:c2:0c:c2:7a:6f:81:ba:c0:8a:92:b4:d5:3e:13: 5a:ca:d3:7b:c4:85:3b:e0:97:d9:60:ec:08:0a:df:24:45:d4: e2:0b:c6:c5:38:10:cc:01:8c:e0:f9:eb:f1:ea:bb:7f:81:fa: f5:b1:33:b2:4d:00:fc:36:40:5f:42:69:6a:ff:8f:a3:ab:6f: 67:2f:89:9a:a0:ab:c6:09:f5:2f:b4:8d:d2:f9:4a:32:08:23: 2e:67:5b:be:3c:7a:21:22:91:fb:84:45:0e:57:46:a0:68:fd: 20:ef:de:f7:f5:a0:fb:8d:8f:d7:17:03:b2:8d:08:88:e8:81: 28:6c:70:04:b6:d8:65:5f:24:d6:b5:28:86:c3:d9:16:62:98: 0f:39:7b:3c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsrii8uEUNoKDsaXOT0P+K2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJlZDI1Nzk1YTY4MmIxMTlhOTk0ODA1YTk3NjU3ODUzZDc1 NGEwNWMwHhcNMjUxMjE3MDkwMDM0WhcNMjUxMjE4MDkwMDM0WjAzMTEwLwYDVQQD EygwMzM4YmU2YzA2ZTQ4YzQ0OWJmNGNmMDc0NDU2ODI2NWUzMTI4YzU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArh6Is5AWG3zMl1BQt1F7Kq+EhHMZ qBxtJ8VMl5O8SS9t7LkY2Iwzdu4vHE/T4b+cuY8IaKq8NcMsZAbvEy3YiYr4jO4y V4+XzdZAloBRW0AZeBrzZ3R3ieLR4bXkXO7XewBAE9lkWGJXyoPXPgKk71tcoSrl JTBEa31nMGYSdOjIYiuLsCTBr81qkXxeleFJ4UJ5I5ffZrRkNe3BZ7U4FGAqbAeY fbQmhguFU46XlgEQ5M5UNjBJx+adWbgVaOXFF8mWd0rhnUuHAZqkJhkX9XN6Vt3Y 3Jo69asCcT/0nRtVQSPL35nZFPVkFI/SMKgrz8n9ISkyJJVhSogK/sy0OwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAM4vmwG5IxEm/TPB0RWgmXjEoxWMB8GA1UdIwQY MBaAFL7SV5WmgrEZqZSAWpdleFPXVKBcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdnRKWGxhYUNzUm1wbElCYWwyVjRVOWRVb0Z3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC82YmQxMDQtMjVmNi00ODI2LWIyMzQt MTFkMGYyMGU4Y2IwLzEvdnRKWGxhYUNzUm1wbElCYWwyVjRVOWRVb0Z3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZC82YmQxMDQtMjVmNi00ODI2LWIyMzQtMTFkMGYyMGU4Y2Iw LzEvdnRKWGxhYUNzUm1wbElCYWwyVjRVOWRVb0Z3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHbpEG7Mi bf4IetBeH1EYb1dqgikiMUj65AroagZ7Aeygh3Z+e9PKdIDIVHuQpkAH/W9pAjVL TsJSGi9XjTpSDSLgf35j4AM74UjkUflRbx3qATU/o9HL55RlEAiyBdImKQP0qcg5 ZJ3odEmbYoe1rsIMwnpvgbrAipK01T4TWsrTe8SFO+CX2WDsCArfJEXU4gvGxTgQ zAGM4Pnr8eq7f4H69bEzsk0A/DZAX0Jpav+Po6tvZy+JmqCrxgn1L7SN0vlKMggj Lmdbvjx6ISKR+4RFDldGoGj9IO/e9/Wg+42P1xcDso0IiOiBKGxwBLbYZV8k1rUo hsPZFmKYDzl7PA== -----END CERTIFICATE-----Generated at Wed Dec 17 15:25:28 2025 by rpki-client