This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.mft File: vmBP81opyRFWvkvSKbO693yDl70.mft (raw, json) Hash identifier: JYO5jzTVIpUR8KL8Tt/bdHCOjwpfIxcT2b5rZu12Hp8= Subject key identifier: 80:CD:81:9F:C2:3C:FC:09:12:56:8E:CA:F4:B1:B9:E3:F8:10:CD:DD Authority key identifier: BE:60:4F:F3:5A:29:C9:11:56:BE:4B:D2:29:B3:BA:F7:7C:83:97:BD Certificate issuer: /CN=be604ff35a29c91156be4bd229b3baf77c8397bd Certificate serial: 019AF5AF24F22B71EA15939EFB75079641F5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vmBP81opyRFWvkvSKbO693yDl70.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.mft Manifest number: 098D Signing time: Sat 06 Dec 2025 22:01:27 +0000 Manifest this update: Sat 06 Dec 2025 22:01:27 +0000 Manifest next update: Sun 07 Dec 2025 22:01:27 +0000 Files and hashes: 1: vmBP81opyRFWvkvSKbO693yDl70.crl (hash: 14JHgruzZ37LII1FL8uoZyhh1NAIR7xk8aGysFGqJcQ=) 2: xKhlmwkhpDMTNKSIizqisLWT3AQ.roa (hash: wyhLYIBDdO6iFhviIArhJTJRsCWrDx4vYq5+pNBPzEE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.crl rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.mft rsync://rpki.ripe.net/repository/DEFAULT/vmBP81opyRFWvkvSKbO693yDl70.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:af:24:f2:2b:71:ea:15:93:9e:fb:75:07:96:41:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=be604ff35a29c91156be4bd229b3baf77c8397bd Validity Not Before: Dec 6 22:01:27 2025 GMT Not After : Dec 7 22:01:27 2025 GMT Subject: CN=80cd819fc23cfc0912568ecaf4b1b9e3f810cddd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:d4:ce:2d:78:ad:7a:d3:71:42:86:76:6d:94: 11:27:3b:42:7c:e2:7a:65:27:93:87:4f:56:3b:41: 95:8e:0c:8a:a4:e6:63:73:05:3b:da:a9:93:3b:b8: 9e:96:18:a2:a6:98:30:f8:c2:07:68:ad:ab:bb:68: 1a:e2:8f:77:34:ec:68:e4:f7:15:d3:66:5d:c2:fc: ea:38:6d:d0:44:95:b8:a2:a8:79:7e:6a:42:12:73: 06:4a:ba:17:f8:91:47:cc:ed:9a:59:9d:ac:2f:7d: cd:ff:8a:3a:32:85:a5:00:d2:03:fc:32:a9:dd:17: 94:a2:b3:63:b9:9a:4b:4e:3a:80:a7:bf:84:e0:6c: e2:a7:10:df:92:bc:27:73:31:68:36:c4:ec:8c:2f: 40:ea:6f:7d:98:79:6f:71:48:4e:e6:64:9b:a1:22: 13:d8:e6:b9:e3:70:dc:1f:e7:c6:7d:3a:cd:c1:c2: 98:9f:bd:db:4b:a5:b8:97:f0:dd:22:bd:c9:3c:58: 35:c2:cd:ad:12:46:59:63:35:4c:de:36:50:e6:b9: 87:5f:9c:84:50:65:01:6d:cf:91:55:07:ed:ec:7f: 7a:6f:15:ae:b9:b0:01:f7:e4:2a:6b:6e:d4:83:13: 70:0f:55:d3:d9:6f:be:46:9f:4b:2f:24:ba:ca:bb: b2:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:CD:81:9F:C2:3C:FC:09:12:56:8E:CA:F4:B1:B9:E3:F8:10:CD:DD X509v3 Authority Key Identifier: keyid:BE:60:4F:F3:5A:29:C9:11:56:BE:4B:D2:29:B3:BA:F7:7C:83:97:BD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vmBP81opyRFWvkvSKbO693yDl70.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3e:49:39:a2:2c:83:12:51:f5:a7:33:9c:1d:55:80:46:76:95: 01:90:b4:03:c6:9a:13:25:d3:02:34:c6:2e:ba:15:08:1f:2c: fd:32:77:0d:17:64:6b:63:b8:e5:43:b2:8a:62:0f:d1:0d:7e: af:7d:85:32:72:aa:55:e3:ea:29:72:49:35:4f:e6:cc:db:34: 19:b0:24:bf:76:ef:24:d7:d4:ed:47:08:ad:06:3c:14:58:17: 05:3a:21:62:ce:b5:83:ba:23:91:a6:6b:71:ca:50:b3:43:3e: 07:4a:5d:5f:1c:bb:81:f4:62:7f:e0:13:bd:55:4a:97:16:81: e1:20:da:78:14:3b:61:76:48:f3:56:fd:38:3a:cd:df:fb:92: b0:e7:5c:1e:6f:c8:f0:96:a5:da:31:93:e9:4e:fe:9b:85:b2: 07:68:2e:b1:f5:3e:cb:c9:f6:9f:13:f4:b6:cf:9b:0e:5f:d4: 84:e9:95:b1:d5:48:02:10:98:ee:4f:69:44:87:70:3c:54:c5: 79:f5:c8:8b:1b:14:ce:5e:da:8a:10:ed:a8:fa:61:41:9c:9d: d0:7a:2f:fa:b7:cf:ce:c6:27:8b:6b:b7:e9:5e:f8:32:b4:12: 9c:a2:14:57:38:31:c3:c0:b7:ea:4a:8a:95:02:e7:83:02:8b: 66:46:ba:be -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1ryTyK3HqFZOe+3UHlkH1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJlNjA0ZmYzNWEyOWM5MTE1NmJlNGJkMjI5YjNiYWY3N2M4 Mzk3YmQwHhcNMjUxMjA2MjIwMTI3WhcNMjUxMjA3MjIwMTI3WjAzMTEwLwYDVQQD Eyg4MGNkODE5ZmMyM2NmYzA5MTI1NjhlY2FmNGIxYjllM2Y4MTBjZGRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoNTOLXitetNxQoZ2bZQRJztCfOJ6 ZSeTh09WO0GVjgyKpOZjcwU72qmTO7ielhiippgw+MIHaK2ru2ga4o93NOxo5PcV 02ZdwvzqOG3QRJW4oqh5fmpCEnMGSroX+JFHzO2aWZ2sL33N/4o6MoWlANID/DKp 3ReUorNjuZpLTjqAp7+E4GzipxDfkrwnczFoNsTsjC9A6m99mHlvcUhO5mSboSIT 2Oa543DcH+fGfTrNwcKYn73bS6W4l/DdIr3JPFg1ws2tEkZZYzVM3jZQ5rmHX5yE UGUBbc+RVQft7H96bxWuubAB9+Qqa27UgxNwD1XT2W++Rp9LLyS6yruyEwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIDNgZ/CPPwJElaOyvSxueP4EM3dMB8GA1UdIwQY MBaAFL5gT/NaKckRVr5L0imzuvd8g5e9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdm1CUDgxb3B5UkZXdmt2U0tiTzY5M3lEbDcwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9lODQ5YmItMTMwNC00NGVhLTgzOGYt MWEzOWMzZDM0ZjA4LzEvdm1CUDgxb3B5UkZXdmt2U0tiTzY5M3lEbDcwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi9lODQ5YmItMTMwNC00NGVhLTgzOGYtMWEzOWMzZDM0ZjA4 LzEvdm1CUDgxb3B5UkZXdmt2U0tiTzY5M3lEbDcwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPkk5oiyD ElH1pzOcHVWARnaVAZC0A8aaEyXTAjTGLroVCB8s/TJ3DRdka2O45UOyimIP0Q1+ r32FMnKqVePqKXJJNU/mzNs0GbAkv3bvJNfU7UcIrQY8FFgXBTohYs61g7ojkaZr ccpQs0M+B0pdXxy7gfRif+ATvVVKlxaB4SDaeBQ7YXZI81b9ODrN3/uSsOdcHm/I 8Jal2jGT6U7+m4WyB2gusfU+y8n2nxP0ts+bDl/UhOmVsdVIAhCY7k9pRIdwPFTF efXIixsUzl7aihDtqPphQZyd0Hov+rfPzsYni2u36V74MrQSnKIUVzgxw8C36kqK lQLngwKLZka6vg== -----END CERTIFICATE-----Generated at Sun Dec 7 06:20:57 2025 by rpki-client