This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/1bdbf8-395f-4a85-a44a-b51adffc6eec/1/vh89wilTBsx9-HLO7M1olNDg6uY.mft File: vh89wilTBsx9-HLO7M1olNDg6uY.mft (raw, json) Hash identifier: WqE4QeEaUTYY+sqGTZpl0LyL8Z4fjqPhsfHl3bt/AHQ= Subject key identifier: 58:DE:F1:CE:10:1F:A3:1B:1C:4D:D7:84:3F:5B:E7:B5:A2:E0:A0:54 Authority key identifier: BE:1F:3D:C2:29:53:06:CC:7D:F8:72:CE:EC:CD:68:94:D0:E0:EA:E6 Certificate issuer: /CN=be1f3dc2295306cc7df872ceeccd6894d0e0eae6 Certificate serial: 019AF19AAC83D9E35B5C59200A54EFF58D1A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vh89wilTBsx9-HLO7M1olNDg6uY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/1bdbf8-395f-4a85-a44a-b51adffc6eec/1/vh89wilTBsx9-HLO7M1olNDg6uY.mft Manifest number: 087F Signing time: Sat 06 Dec 2025 03:00:36 +0000 Manifest this update: Sat 06 Dec 2025 03:00:36 +0000 Manifest next update: Sun 07 Dec 2025 03:00:36 +0000 Files and hashes: 1: 1DMwz6cy5-zMTggYwJ41QekWZIY.roa (hash: nwmEuQjAVrxnR0Ze+XAFnQ4uH1WM0zEOCcXND1iguH8=) 2: tAG_ogHK36F9dYARrabqMiVm7WI.roa (hash: XyLTR6YvVH7wVie2ZS7kPXzKlWsXCj8THEJuI5lJwIg=) 3: vh89wilTBsx9-HLO7M1olNDg6uY.crl (hash: A9OtVowiHartHd9udotGM0TMWumq/jMl9EfImMrpHss=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/1bdbf8-395f-4a85-a44a-b51adffc6eec/1/vh89wilTBsx9-HLO7M1olNDg6uY.crl rsync://rpki.ripe.net/repository/DEFAULT/08/1bdbf8-395f-4a85-a44a-b51adffc6eec/1/vh89wilTBsx9-HLO7M1olNDg6uY.mft rsync://rpki.ripe.net/repository/DEFAULT/vh89wilTBsx9-HLO7M1olNDg6uY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9a:ac:83:d9:e3:5b:5c:59:20:0a:54:ef:f5:8d:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=be1f3dc2295306cc7df872ceeccd6894d0e0eae6 Validity Not Before: Dec 6 03:00:36 2025 GMT Not After : Dec 7 03:00:36 2025 GMT Subject: CN=58def1ce101fa31b1c4dd7843f5be7b5a2e0a054 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:cf:fa:5b:e7:cf:df:9b:19:a9:9e:69:32:79: ea:6e:eb:99:28:e7:a5:aa:61:72:5f:5e:8f:12:fb: ee:40:8f:9f:ca:b9:35:a3:eb:ce:e4:d9:da:70:0d: 1d:87:27:61:f2:60:09:9d:3e:f3:5b:45:21:fd:20: bd:73:31:49:2b:81:29:73:55:d0:90:1f:fa:8d:38: a2:31:6d:38:7c:8c:57:6c:08:f6:b4:a1:14:f6:50: 16:c2:ea:5d:1f:4b:17:86:a0:bf:c5:ef:a1:b1:de: 05:6a:90:f0:19:57:08:94:bd:78:7e:3e:40:a3:4a: d1:e3:55:9e:14:f2:ef:a0:11:c6:1d:25:be:e3:f4: 06:8e:33:e4:6b:3d:06:2f:b4:c5:73:e3:27:94:bc: 0f:c3:93:17:74:3c:f0:a1:24:c7:80:59:80:b2:56: bf:94:02:de:a2:6f:5e:b6:ac:25:a7:1b:8d:bb:e0: 15:a5:02:82:7e:8b:00:42:2f:53:61:03:09:32:99: b6:3e:e1:74:5d:27:36:50:62:04:6d:6f:fc:f4:91: 1c:93:8a:53:82:b1:4d:e9:44:e8:2a:cd:d2:76:14: eb:65:42:87:91:b9:d8:db:16:a7:b3:1f:b2:41:42: 5e:98:5e:21:77:da:8a:49:d1:c6:1e:2a:4e:3d:f7: ba:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:DE:F1:CE:10:1F:A3:1B:1C:4D:D7:84:3F:5B:E7:B5:A2:E0:A0:54 X509v3 Authority Key Identifier: keyid:BE:1F:3D:C2:29:53:06:CC:7D:F8:72:CE:EC:CD:68:94:D0:E0:EA:E6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vh89wilTBsx9-HLO7M1olNDg6uY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1bdbf8-395f-4a85-a44a-b51adffc6eec/1/vh89wilTBsx9-HLO7M1olNDg6uY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1bdbf8-395f-4a85-a44a-b51adffc6eec/1/vh89wilTBsx9-HLO7M1olNDg6uY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 52:a2:36:a1:04:da:ee:e5:26:2e:57:0b:9b:31:f9:08:9e:37: 0a:96:53:1f:e2:63:7a:9c:71:7b:bb:b1:b6:13:5e:4e:00:9a: 5e:70:0b:79:e0:0b:1b:2f:9a:a3:9d:a7:e4:0f:40:5f:cb:13: b8:11:15:84:9f:bb:03:55:1a:c2:c4:38:75:f0:7e:2c:a7:5c: 2f:00:ec:dd:98:7d:88:7d:b8:1f:f6:f6:68:49:19:f5:a5:e9: 5f:ba:24:93:05:31:df:d6:16:19:fd:ec:4d:00:9f:7d:b5:96: 81:5c:72:4f:4e:0e:d9:d3:9e:50:9a:3c:bc:e8:9e:ed:16:97: 07:69:11:8b:94:30:3e:e8:28:36:d6:5e:2d:45:47:fb:a1:bb: 95:1b:55:73:21:c4:df:46:74:a0:a6:5d:bd:70:9a:a2:da:ad: 1e:8e:6f:50:7e:f7:cd:15:79:02:e7:c4:fd:c1:ae:85:fe:06: af:2d:d4:2c:39:5c:e4:b5:c4:2e:ac:cb:23:26:ee:ec:64:84: 92:ad:97:c7:38:ce:4a:63:a5:a5:4d:99:f0:f4:42:df:41:08: 97:87:4c:b0:cb:1e:cc:ea:4a:cf:2f:0a:5b:5d:1a:9b:40:da: ce:15:60:80:1d:8c:e6:8f:05:62:a8:5a:1e:49:01:8b:ad:23: 9c:b4:d8:ab -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmqyD2eNbXFkgClTv9Y0aMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJlMWYzZGMyMjk1MzA2Y2M3ZGY4NzJjZWVjY2Q2ODk0ZDBl MGVhZTYwHhcNMjUxMjA2MDMwMDM2WhcNMjUxMjA3MDMwMDM2WjAzMTEwLwYDVQQD Eyg1OGRlZjFjZTEwMWZhMzFiMWM0ZGQ3ODQzZjViZTdiNWEyZTBhMDU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl8/6W+fP35sZqZ5pMnnqbuuZKOel qmFyX16PEvvuQI+fyrk1o+vO5NnacA0dhydh8mAJnT7zW0Uh/SC9czFJK4Epc1XQ kB/6jTiiMW04fIxXbAj2tKEU9lAWwupdH0sXhqC/xe+hsd4FapDwGVcIlL14fj5A o0rR41WeFPLvoBHGHSW+4/QGjjPkaz0GL7TFc+MnlLwPw5MXdDzwoSTHgFmAsla/ lALeom9etqwlpxuNu+AVpQKCfosAQi9TYQMJMpm2PuF0XSc2UGIEbW/89JEck4pT grFN6UToKs3SdhTrZUKHkbnY2xansx+yQUJemF4hd9qKSdHGHipOPfe6MwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFje8c4QH6MbHE3XhD9b57Wi4KBUMB8GA1UdIwQY MBaAFL4fPcIpUwbMffhyzuzNaJTQ4OrmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdmg4OXdpbFRCc3g5LUhMTzdNMW9sTkRnNnVZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC8xYmRiZjgtMzk1Zi00YTg1LWE0NGEt YjUxYWRmZmM2ZWVjLzEvdmg4OXdpbFRCc3g5LUhMTzdNMW9sTkRnNnVZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOC8xYmRiZjgtMzk1Zi00YTg1LWE0NGEtYjUxYWRmZmM2ZWVj LzEvdmg4OXdpbFRCc3g5LUhMTzdNMW9sTkRnNnVZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUqI2oQTa 7uUmLlcLmzH5CJ43CpZTH+Jjepxxe7uxthNeTgCaXnALeeALGy+ao52n5A9AX8sT uBEVhJ+7A1UawsQ4dfB+LKdcLwDs3Zh9iH24H/b2aEkZ9aXpX7okkwUx39YWGf3s TQCffbWWgVxyT04O2dOeUJo8vOie7RaXB2kRi5QwPugoNtZeLUVH+6G7lRtVcyHE 30Z0oKZdvXCaotqtHo5vUH73zRV5AufE/cGuhf4Gry3ULDlc5LXELqzLIybu7GSE kq2XxzjOSmOlpU2Z8PRC30EIl4dMsMsezOpKzy8KW10am0DazhVggB2M5o8FYqha HkkBi60jnLTYqw== -----END CERTIFICATE-----Generated at Sat Dec 6 10:03:02 2025 by rpki-client