This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/bd7780-eb53-4c1d-acce-cfe7e3f9f92d/1/VM4kRaLoh0MYvySbc6ZUyZCRnuA.mft File: VM4kRaLoh0MYvySbc6ZUyZCRnuA.mft (raw, json) Hash identifier: 2fEzaAwvIASOvRw+TozCOjj1df7mUj7YVdhrD81dGaQ= Subject key identifier: D0:C9:DD:DC:49:C2:D2:20:5A:E8:66:47:60:1C:79:14:E9:2F:C5:C9 Authority key identifier: 54:CE:24:45:A2:E8:87:43:18:BF:24:9B:73:A6:54:C9:90:91:9E:E0 Certificate issuer: /CN=54ce2445a2e8874318bf249b73a654c990919ee0 Certificate serial: 019AF12E104DBF2438697D97E99413A61C61 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VM4kRaLoh0MYvySbc6ZUyZCRnuA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7780-eb53-4c1d-acce-cfe7e3f9f92d/1/VM4kRaLoh0MYvySbc6ZUyZCRnuA.mft Manifest number: 0EF4 Signing time: Sat 06 Dec 2025 01:01:59 +0000 Manifest this update: Sat 06 Dec 2025 01:01:59 +0000 Manifest next update: Sun 07 Dec 2025 01:01:59 +0000 Files and hashes: 1: VM4kRaLoh0MYvySbc6ZUyZCRnuA.crl (hash: v2rbZbWY9yXJMXg4hwMMPGNHk9bQzPaudfQy9BrTNtY=) 2: qCD8L1dMgJ9yzf77qP7Yswj5ta4.roa (hash: oyvr0Mb88tpow7HpmKv7H5W0zqdzX3mbbm1lwxbPABw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7780-eb53-4c1d-acce-cfe7e3f9f92d/1/VM4kRaLoh0MYvySbc6ZUyZCRnuA.crl rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7780-eb53-4c1d-acce-cfe7e3f9f92d/1/VM4kRaLoh0MYvySbc6ZUyZCRnuA.mft rsync://rpki.ripe.net/repository/DEFAULT/VM4kRaLoh0MYvySbc6ZUyZCRnuA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:10:4d:bf:24:38:69:7d:97:e9:94:13:a6:1c:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=54ce2445a2e8874318bf249b73a654c990919ee0 Validity Not Before: Dec 6 01:01:59 2025 GMT Not After : Dec 7 01:01:59 2025 GMT Subject: CN=d0c9dddc49c2d2205ae86647601c7914e92fc5c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ba:31:de:a8:6a:a3:5e:31:e7:49:3b:cd:5f: e8:9e:be:f0:08:6c:e7:71:da:14:b7:66:fc:07:0c: 80:6a:e8:60:07:ac:cc:65:3c:aa:96:28:01:d7:01: a9:7a:1c:d5:63:ad:2c:f4:f3:e3:3e:9e:54:7b:f7: 02:f8:0f:fa:e3:4e:7c:31:45:6f:aa:b4:17:08:22: e5:da:e9:b8:79:68:27:ff:de:87:9b:7c:1c:63:f7: 85:e2:b9:1d:f2:f3:9c:f5:ae:ce:0a:35:7a:e8:dc: d4:21:22:80:d3:f4:5c:b1:d8:71:6c:e6:20:5c:0f: 2b:6d:61:ad:d9:ee:9b:d0:98:3f:b9:c9:54:a9:cc: a8:4b:17:ee:65:e6:95:ee:2e:0c:f3:b4:64:16:b3: a6:ca:64:2f:02:98:61:50:d0:ca:2d:18:cc:79:66: 8f:b4:8d:ce:76:cc:87:cc:ef:26:03:c0:f6:d9:8a: e0:21:9e:04:cd:18:fa:d8:bf:f0:ee:ff:56:41:ce: 08:41:3d:60:09:23:db:f7:cb:58:95:5e:f5:6f:83: 77:17:7e:73:fc:36:02:67:8a:54:d8:a3:71:2f:a1: 5b:cc:e2:3d:d8:4c:be:3c:f4:59:73:bd:aa:f0:8e: c6:dd:f4:6b:15:3a:24:37:17:7c:0e:39:05:10:17: fb:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:C9:DD:DC:49:C2:D2:20:5A:E8:66:47:60:1C:79:14:E9:2F:C5:C9 X509v3 Authority Key Identifier: keyid:54:CE:24:45:A2:E8:87:43:18:BF:24:9B:73:A6:54:C9:90:91:9E:E0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VM4kRaLoh0MYvySbc6ZUyZCRnuA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7780-eb53-4c1d-acce-cfe7e3f9f92d/1/VM4kRaLoh0MYvySbc6ZUyZCRnuA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7780-eb53-4c1d-acce-cfe7e3f9f92d/1/VM4kRaLoh0MYvySbc6ZUyZCRnuA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7a:4e:6f:15:ff:ce:1b:72:d2:e1:25:69:72:cc:99:6e:c1:53: 5f:61:20:51:fa:e9:34:73:c0:33:8b:e0:c7:5a:c9:d4:18:c7: b3:9c:56:b6:cb:57:31:bf:87:83:00:f1:6d:86:c4:be:fd:99: 69:fc:11:fd:2d:97:c2:eb:49:06:ec:fb:08:44:25:c7:d7:73: b9:00:d4:45:f0:07:0d:03:b1:47:1a:e8:68:dc:50:41:b2:83: 00:70:e3:15:44:48:23:3e:39:ee:16:d8:46:f9:ab:3b:88:41: fc:43:12:1a:50:fa:ea:7a:0e:71:2b:82:f5:9b:92:9c:01:59: 95:ac:56:76:3a:1e:5e:93:e0:bd:70:e2:c5:88:f0:39:f9:ec: d4:65:5b:f4:70:e8:5b:23:a1:04:94:f2:b6:7e:8a:0d:10:0f: 8b:bd:d0:83:fa:30:56:f1:be:17:47:15:c7:bf:7b:0d:42:c6: b6:ce:94:70:1f:77:76:8c:d2:e8:7f:19:84:99:fd:48:fd:56: 61:d2:2c:98:34:66:c2:40:9f:01:ec:e3:5f:ba:6b:7b:05:d4: ce:a1:ba:69:22:cc:c4:60:f3:c1:05:04:31:5f:74:9e:33:b2: 56:ff:01:57:7d:b9:aa:3c:36:e6:b9:70:1a:21:01:20:25:e2: eb:72:27:ce -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLhBNvyQ4aX2X6ZQTphxhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU0Y2UyNDQ1YTJlODg3NDMxOGJmMjQ5YjczYTY1NGM5OTA5 MTllZTAwHhcNMjUxMjA2MDEwMTU5WhcNMjUxMjA3MDEwMTU5WjAzMTEwLwYDVQQD EyhkMGM5ZGRkYzQ5YzJkMjIwNWFlODY2NDc2MDFjNzkxNGU5MmZjNWM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvbox3qhqo14x50k7zV/onr7wCGzn cdoUt2b8BwyAauhgB6zMZTyqligB1wGpehzVY60s9PPjPp5Ue/cC+A/64058MUVv qrQXCCLl2um4eWgn/96Hm3wcY/eF4rkd8vOc9a7OCjV66NzUISKA0/RcsdhxbOYg XA8rbWGt2e6b0Jg/uclUqcyoSxfuZeaV7i4M87RkFrOmymQvAphhUNDKLRjMeWaP tI3OdsyHzO8mA8D22YrgIZ4EzRj62L/w7v9WQc4IQT1gCSPb98tYlV71b4N3F35z /DYCZ4pU2KNxL6FbzOI92Ey+PPRZc72q8I7G3fRrFTokNxd8DjkFEBf7hwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNDJ3dxJwtIgWuhmR2AceRTpL8XJMB8GA1UdIwQY MBaAFFTOJEWi6IdDGL8km3OmVMmQkZ7gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVk00a1JhTG9oME1ZdnlTYmM2WlV5WkNSbnVBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi9iZDc3ODAtZWI1My00YzFkLWFjY2Ut Y2ZlN2UzZjlmOTJkLzEvVk00a1JhTG9oME1ZdnlTYmM2WlV5WkNSbnVBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMi9iZDc3ODAtZWI1My00YzFkLWFjY2UtY2ZlN2UzZjlmOTJk LzEvVk00a1JhTG9oME1ZdnlTYmM2WlV5WkNSbnVBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAek5vFf/O G3LS4SVpcsyZbsFTX2EgUfrpNHPAM4vgx1rJ1BjHs5xWtstXMb+HgwDxbYbEvv2Z afwR/S2XwutJBuz7CEQlx9dzuQDURfAHDQOxRxroaNxQQbKDAHDjFURIIz457hbY RvmrO4hB/EMSGlD66noOcSuC9ZuSnAFZlaxWdjoeXpPgvXDixYjwOfns1GVb9HDo WyOhBJTytn6KDRAPi73Qg/owVvG+F0cVx797DULGts6UcB93dozS6H8ZhJn9SP1W YdIsmDRmwkCfAezjX7prewXUzqG6aSLMxGDzwQUEMV90njOyVv8BV325qjw25rlw GiEBICXi63Inzg== -----END CERTIFICATE-----Generated at Sat Dec 6 07:24:40 2025 by rpki-client