This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/vSUqdclhrTOP2RFH1GHdiz0gz1E.mft File: vSUqdclhrTOP2RFH1GHdiz0gz1E.mft (raw, json) Hash identifier: K9n+e+RVibbXelqbETk8NZyIzl7p3tipzxVgmVSOBI0= Subject key identifier: 0E:47:22:3A:DF:88:33:9D:8B:EF:13:8A:39:F5:62:43:E0:BD:F9:58 Authority key identifier: BD:25:2A:75:C9:61:AD:33:8F:D9:11:47:D4:61:DD:8B:3D:20:CF:51 Certificate issuer: /CN=bd252a75c961ad338fd91147d461dd8b3d20cf51 Certificate serial: 019AF0F5DE55AC0ED779072BE8FF44A75E63 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vSUqdclhrTOP2RFH1GHdiz0gz1E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/vSUqdclhrTOP2RFH1GHdiz0gz1E.mft Manifest number: 1769 Signing time: Sat 06 Dec 2025 00:00:36 +0000 Manifest this update: Sat 06 Dec 2025 00:00:36 +0000 Manifest next update: Sun 07 Dec 2025 00:00:36 +0000 Files and hashes: 1: 1-CES3FR9UbzoTEzUN5ZiiMYeBq8.roa (hash: Mx7tnLRZogKgAVJUpQmT5FDn0ojfnBYxv7dXF6PkiKk=) 2: fj83OICA2dXkb7sofXdOoGdjzq4.roa (hash: pOA5XIvHm6EKh1V95/EfmbQrXTJ90+bGbqMr2BZtsSk=) 3: pDkCQjQVPegQOP278WmolhHSrkw.roa (hash: VPjogK0/dxD5LybI2fhbuslUMxpJB7AerXcZh/G3cj4=) 4: vSUqdclhrTOP2RFH1GHdiz0gz1E.crl (hash: AJykZMSiio639pUqYZDGPCQmoOalZYibDTvR9wMuWhk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/vSUqdclhrTOP2RFH1GHdiz0gz1E.crl rsync://rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/vSUqdclhrTOP2RFH1GHdiz0gz1E.mft rsync://rpki.ripe.net/repository/DEFAULT/vSUqdclhrTOP2RFH1GHdiz0gz1E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 00:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:f5:de:55:ac:0e:d7:79:07:2b:e8:ff:44:a7:5e:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bd252a75c961ad338fd91147d461dd8b3d20cf51 Validity Not Before: Dec 6 00:00:36 2025 GMT Not After : Dec 7 00:00:36 2025 GMT Subject: CN=0e47223adf88339d8bef138a39f56243e0bdf958 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:83:a6:d7:d8:35:fb:95:85:10:b1:45:e2:54: f0:33:52:5c:13:34:92:e5:64:49:54:95:a4:df:9a: 29:32:e5:0a:b6:6b:4a:98:7e:78:9e:ce:17:b7:5a: 64:39:05:79:9c:17:e8:ed:db:d3:85:b9:8a:56:7d: cd:85:c8:eb:64:aa:65:4d:90:24:4b:7c:fc:cb:63: a9:25:ea:f3:0e:fd:d1:90:91:89:59:2a:d5:9e:e4: d5:4e:ca:db:9b:e9:83:b5:4c:b0:4c:14:6e:84:89: 31:90:ed:01:d3:9a:e5:79:5f:c7:4d:13:a1:37:b7: 4a:59:9b:d8:36:04:cb:fe:d3:d9:60:96:98:e9:fa: 84:b4:54:84:79:21:60:35:92:91:0a:b3:ce:5d:1c: 7f:c9:03:f2:3a:31:ab:6b:5f:dc:f5:a1:c1:a3:1e: 9c:b1:66:1d:98:ab:fe:45:0c:1a:b6:13:26:0d:16: 7b:76:11:3f:b2:e9:85:ff:44:79:33:10:ec:5e:bd: fe:af:18:1a:99:7d:5c:41:87:d6:75:12:c7:97:40: de:f5:6a:35:bd:ca:15:24:d6:ad:53:28:90:c0:3f: 6a:31:4e:e3:3b:d4:c6:9e:67:84:c9:7b:87:c6:6b: fc:c1:ad:da:11:92:d7:9f:e7:b2:95:2a:60:cd:8a: cf:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:47:22:3A:DF:88:33:9D:8B:EF:13:8A:39:F5:62:43:E0:BD:F9:58 X509v3 Authority Key Identifier: keyid:BD:25:2A:75:C9:61:AD:33:8F:D9:11:47:D4:61:DD:8B:3D:20:CF:51 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vSUqdclhrTOP2RFH1GHdiz0gz1E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/vSUqdclhrTOP2RFH1GHdiz0gz1E.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/vSUqdclhrTOP2RFH1GHdiz0gz1E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:6d:9a:85:9c:0f:bf:e7:9e:70:9a:18:c9:2f:34:cc:28:8d: 77:51:a9:5f:68:3d:41:b3:06:d0:e7:56:4f:e9:75:7f:ed:70: 38:2c:42:ed:f8:81:15:06:dd:cf:34:e3:fd:a2:ed:cb:07:d4: 12:85:6e:c2:1e:6e:40:e2:71:35:f0:3b:bb:56:3a:ff:99:5e: 48:74:f0:51:f1:51:97:cc:37:58:30:f5:4a:39:7e:00:b3:eb: 6d:98:88:ae:fe:30:6c:4d:13:4d:7f:30:56:7c:53:2f:d7:78: 03:e5:ed:61:98:b7:38:fe:cd:e4:71:e3:2b:97:e4:f5:e2:46: 35:7d:2a:d0:bf:79:b2:16:6b:7f:cc:11:f7:86:95:59:6b:55: 25:2c:51:58:5a:aa:dd:01:69:c3:81:e7:55:46:a6:37:39:d9: 6f:4b:fc:7f:c7:c6:31:8e:49:24:0f:e0:a1:b0:33:c5:41:a2: ea:23:80:b4:bc:1f:77:9c:e9:9e:c6:60:8f:6c:81:f4:ea:ac: 41:ae:43:10:9e:a9:76:1a:e9:b4:23:44:08:bd:95:20:af:8c: fc:58:f4:2d:9b:92:e0:6b:06:86:52:0a:0a:97:60:eb:b2:02: a8:cd:23:73:60:49:56:68:de:78:8e:7c:32:0b:6f:ff:23:76: 2d:29:05:12 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrw9d5VrA7XeQcr6P9Ep15jMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJkMjUyYTc1Yzk2MWFkMzM4ZmQ5MTE0N2Q0NjFkZDhiM2Qy MGNmNTEwHhcNMjUxMjA2MDAwMDM2WhcNMjUxMjA3MDAwMDM2WjAzMTEwLwYDVQQD EygwZTQ3MjIzYWRmODgzMzlkOGJlZjEzOGEzOWY1NjI0M2UwYmRmOTU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr4Om19g1+5WFELFF4lTwM1JcEzSS 5WRJVJWk35opMuUKtmtKmH54ns4Xt1pkOQV5nBfo7dvThbmKVn3NhcjrZKplTZAk S3z8y2OpJerzDv3RkJGJWSrVnuTVTsrbm+mDtUywTBRuhIkxkO0B05rleV/HTROh N7dKWZvYNgTL/tPZYJaY6fqEtFSEeSFgNZKRCrPOXRx/yQPyOjGra1/c9aHBox6c sWYdmKv+RQwathMmDRZ7dhE/sumF/0R5MxDsXr3+rxgamX1cQYfWdRLHl0De9Wo1 vcoVJNatUyiQwD9qMU7jO9TGnmeEyXuHxmv8wa3aEZLXn+eylSpgzYrPrQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA5HIjrfiDOdi+8Tijn1YkPgvflYMB8GA1UdIwQY MBaAFL0lKnXJYa0zj9kRR9Rh3Ys9IM9RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdlNVcWRjbGhyVE9QMlJGSDFHSGRpejBnejFFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS9kMWM3MGUtMjI2YS00NzgxLWI2NjIt NzQxYWI5Mjk5N2QwLzEvdlNVcWRjbGhyVE9QMlJGSDFHSGRpejBnejFFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MS9kMWM3MGUtMjI2YS00NzgxLWI2NjItNzQxYWI5Mjk5N2Qw LzEvdlNVcWRjbGhyVE9QMlJGSDFHSGRpejBnejFFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcG2ahZwP v+eecJoYyS80zCiNd1GpX2g9QbMG0OdWT+l1f+1wOCxC7fiBFQbdzzTj/aLtywfU EoVuwh5uQOJxNfA7u1Y6/5leSHTwUfFRl8w3WDD1Sjl+ALPrbZiIrv4wbE0TTX8w VnxTL9d4A+XtYZi3OP7N5HHjK5fk9eJGNX0q0L95shZrf8wR94aVWWtVJSxRWFqq 3QFpw4HnVUamNznZb0v8f8fGMY5JJA/gobAzxUGi6iOAtLwfd5zpnsZgj2yB9Oqs Qa5DEJ6pdhrptCNECL2VIK+M/Fj0LZuS4GsGhlIKCpdg67ICqM0jc2BJVmjeeI58 Mgtv/yN2LSkFEg== -----END CERTIFICATE-----Generated at Sat Dec 6 09:15:39 2025 by rpki-client