This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/085013-dd3d-4ca7-ba79-c88283f8f117/1/VGgc0JnIW-caIjUMsT8EglwB-PA.mft File: VGgc0JnIW-caIjUMsT8EglwB-PA.mft (raw, json) Hash identifier: Xs7Ixgb5YlIJ1q7vi+5zJxdC80rKoFVz5BdRr0m6IIw= Subject key identifier: 28:FF:9F:B0:40:12:79:AF:46:36:EF:2B:C8:7B:A7:19:29:66:B3:80 Authority key identifier: 54:68:1C:D0:99:C8:5B:E7:1A:22:35:0C:B1:3F:04:82:5C:01:F8:F0 Certificate issuer: /CN=54681cd099c85be71a22350cb13f04825c01f8f0 Certificate serial: 019AF31C01BD6C435F7FDA8E75DD0E0795BF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGgc0JnIW-caIjUMsT8EglwB-PA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/085013-dd3d-4ca7-ba79-c88283f8f117/1/VGgc0JnIW-caIjUMsT8EglwB-PA.mft Manifest number: 0DBA Signing time: Sat 06 Dec 2025 10:01:30 +0000 Manifest this update: Sat 06 Dec 2025 10:01:30 +0000 Manifest next update: Sun 07 Dec 2025 10:01:30 +0000 Files and hashes: 1: VGgc0JnIW-caIjUMsT8EglwB-PA.crl (hash: 6BbGUGKE+CU5/k6CYuw5yOCsXbHKMec7Jm5GbRcKPhI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/085013-dd3d-4ca7-ba79-c88283f8f117/1/VGgc0JnIW-caIjUMsT8EglwB-PA.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/085013-dd3d-4ca7-ba79-c88283f8f117/1/VGgc0JnIW-caIjUMsT8EglwB-PA.mft rsync://rpki.ripe.net/repository/DEFAULT/VGgc0JnIW-caIjUMsT8EglwB-PA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 10:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1c:01:bd:6c:43:5f:7f:da:8e:75:dd:0e:07:95:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=54681cd099c85be71a22350cb13f04825c01f8f0 Validity Not Before: Dec 6 10:01:30 2025 GMT Not After : Dec 7 10:01:30 2025 GMT Subject: CN=28ff9fb0401279af4636ef2bc87ba7192966b380 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:c0:f5:b3:65:53:47:7e:40:bd:2b:3d:68:5e: dc:12:9e:ad:5c:d3:39:04:fd:7b:78:f6:4c:ab:ab: f9:04:92:84:ce:c8:d6:b8:ea:ad:23:73:0f:fd:06: a8:e8:6d:c2:03:e4:a1:6f:29:ac:49:1a:fb:b3:19: 08:9a:c2:bf:3f:16:5b:c5:5f:89:4c:1b:9e:bd:de: 55:4e:98:a6:3d:6c:69:3d:4b:93:ae:45:5d:58:0d: fb:42:0f:c3:64:9c:11:dc:9e:e5:e7:21:83:12:4c: 31:9a:cb:f8:da:60:4a:3e:cb:4f:cb:d9:75:17:64: 85:c2:54:74:2b:16:a1:0c:75:ca:bd:90:1a:c0:fd: bc:66:ef:9a:34:6f:5e:0c:4a:fa:8c:05:98:56:86: 12:a7:96:0f:42:e3:4e:84:f5:0a:05:e6:1d:27:d8: 50:e3:46:64:d6:ef:fc:8c:6d:e0:4a:cf:02:98:b9: b6:77:38:55:4e:4a:e9:fd:53:d0:d4:4f:76:a9:f1: 6e:7b:05:78:51:1e:f7:8d:3b:b1:e1:1a:c6:99:bf: 27:2e:0b:a3:e4:fd:83:62:8c:07:1d:1b:8b:69:da: b9:3e:8d:e5:c9:90:d1:bd:fd:db:ee:24:87:da:de: 5e:a6:91:60:63:68:18:d1:f4:40:03:6e:b6:0f:8d: 35:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:FF:9F:B0:40:12:79:AF:46:36:EF:2B:C8:7B:A7:19:29:66:B3:80 X509v3 Authority Key Identifier: keyid:54:68:1C:D0:99:C8:5B:E7:1A:22:35:0C:B1:3F:04:82:5C:01:F8:F0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGgc0JnIW-caIjUMsT8EglwB-PA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/085013-dd3d-4ca7-ba79-c88283f8f117/1/VGgc0JnIW-caIjUMsT8EglwB-PA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/085013-dd3d-4ca7-ba79-c88283f8f117/1/VGgc0JnIW-caIjUMsT8EglwB-PA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5d:80:f6:d6:00:17:f5:43:02:65:09:5c:1a:c0:19:a2:81:ca: 1f:cf:33:a5:63:be:7b:90:dd:d1:c0:06:b3:7d:2d:2a:60:f2: ba:10:f0:3a:c0:ac:f7:01:b9:b7:db:c7:ed:26:be:26:15:cd: 0d:1a:b4:f4:f0:29:26:1a:ce:88:ab:b7:90:00:a8:a7:34:89: 05:79:4f:cb:6b:a2:a5:17:0a:f4:d8:21:dd:c9:06:64:46:18: 09:89:40:22:2e:ac:98:c8:fa:b4:8d:fb:8a:7e:db:47:26:0b: ff:63:e0:46:86:3b:55:e3:3a:25:8d:06:c9:63:4a:65:c6:8d: be:b1:3f:4d:bf:7e:61:0b:86:83:e7:cc:f3:29:3e:2c:04:b6: 7e:fd:1a:32:49:03:a1:14:33:22:89:6d:bf:c7:75:73:5d:cb: 12:f7:88:89:5b:b0:da:cc:6c:03:19:c5:82:2a:96:c8:f0:e0: 7a:e9:8d:5a:f4:7d:9f:99:ab:5b:02:be:33:1e:d1:39:9f:c4: 17:76:66:3e:5a:6f:92:8a:7f:02:4b:26:35:63:fb:25:2e:3a: e6:69:75:fc:9f:cb:a5:fd:49:22:f6:5d:d7:43:a5:ed:0b:41: 6e:9f:df:a7:5b:f0:23:c5:38:b1:93:8a:df:75:92:3f:ee:82: 46:38:d6:1c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHAG9bENff9qOdd0OB5W/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU0NjgxY2QwOTljODViZTcxYTIyMzUwY2IxM2YwNDgyNWMw MWY4ZjAwHhcNMjUxMjA2MTAwMTMwWhcNMjUxMjA3MTAwMTMwWjAzMTEwLwYDVQQD EygyOGZmOWZiMDQwMTI3OWFmNDYzNmVmMmJjODdiYTcxOTI5NjZiMzgwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArMD1s2VTR35AvSs9aF7cEp6tXNM5 BP17ePZMq6v5BJKEzsjWuOqtI3MP/Qao6G3CA+ShbymsSRr7sxkImsK/PxZbxV+J TBuevd5VTpimPWxpPUuTrkVdWA37Qg/DZJwR3J7l5yGDEkwxmsv42mBKPstPy9l1 F2SFwlR0KxahDHXKvZAawP28Zu+aNG9eDEr6jAWYVoYSp5YPQuNOhPUKBeYdJ9hQ 40Zk1u/8jG3gSs8CmLm2dzhVTkrp/VPQ1E92qfFuewV4UR73jTux4RrGmb8nLguj 5P2DYowHHRuLadq5Po3lyZDRvf3b7iSH2t5eppFgY2gY0fRAA262D401JwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCj/n7BAEnmvRjbvK8h7pxkpZrOAMB8GA1UdIwQY MBaAFFRoHNCZyFvnGiI1DLE/BIJcAfjwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVkdnYzBKbklXLWNhSWpVTXNUOEVnbHdCLVBBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8wODUwMTMtZGQzZC00Y2E3LWJhNzkt Yzg4MjgzZjhmMTE3LzEvVkdnYzBKbklXLWNhSWpVTXNUOEVnbHdCLVBBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC8wODUwMTMtZGQzZC00Y2E3LWJhNzktYzg4MjgzZjhmMTE3 LzEvVkdnYzBKbklXLWNhSWpVTXNUOEVnbHdCLVBBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXYD21gAX 9UMCZQlcGsAZooHKH88zpWO+e5Dd0cAGs30tKmDyuhDwOsCs9wG5t9vH7Sa+JhXN DRq09PApJhrOiKu3kACopzSJBXlPy2uipRcK9Ngh3ckGZEYYCYlAIi6smMj6tI37 in7bRyYL/2PgRoY7VeM6JY0GyWNKZcaNvrE/Tb9+YQuGg+fM8yk+LAS2fv0aMkkD oRQzIoltv8d1c13LEveIiVuw2sxsAxnFgiqWyPDgeumNWvR9n5mrWwK+Mx7ROZ/E F3ZmPlpvkop/AksmNWP7JS465ml1/J/Lpf1JIvZd10Ol7QtBbp/fp1vwI8U4sZOK 33WSP+6CRjjWHA== -----END CERTIFICATE-----Generated at Sat Dec 6 19:35:39 2025 by rpki-client