This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/6645d5-d193-4a63-85e6-2ca0e5c104fd/1/vhji2fUJydO0VREqoojTNhhYAaA.mft File: vhji2fUJydO0VREqoojTNhhYAaA.mft (raw, json) Hash identifier: Em+7+oMfI4kfHb5KTnHBoW7dMfxZQytN+mOtHq8FHzw= Subject key identifier: 8F:84:E1:74:A5:CB:50:67:8C:B2:55:B9:57:A9:70:72:D4:EC:FE:96 Authority key identifier: BE:18:E2:D9:F5:09:C9:D3:B4:55:11:2A:A2:88:D3:36:18:58:01:A0 Certificate issuer: /CN=be18e2d9f509c9d3b455112aa288d336185801a0 Certificate serial: 019AF5E59130AEA6E37FE3C2E278A468A5A1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vhji2fUJydO0VREqoojTNhhYAaA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/6645d5-d193-4a63-85e6-2ca0e5c104fd/1/vhji2fUJydO0VREqoojTNhhYAaA.mft Manifest number: 1146 Signing time: Sat 06 Dec 2025 23:00:54 +0000 Manifest this update: Sat 06 Dec 2025 23:00:54 +0000 Manifest next update: Sun 07 Dec 2025 23:00:54 +0000 Files and hashes: 1: K7bdbq2NQi5Og3pBR0VNiKqzF3o.roa (hash: Y5TCg/QVPxm4ctwH0Vu0TBEdMj0uZUrfAJN0ICvLjOc=) 2: vhji2fUJydO0VREqoojTNhhYAaA.crl (hash: qSFK2WWD1Dfi2CTWzR15tHS9ISdW9SoBxEblrGobzhU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/6645d5-d193-4a63-85e6-2ca0e5c104fd/1/vhji2fUJydO0VREqoojTNhhYAaA.crl rsync://rpki.ripe.net/repository/DEFAULT/ab/6645d5-d193-4a63-85e6-2ca0e5c104fd/1/vhji2fUJydO0VREqoojTNhhYAaA.mft rsync://rpki.ripe.net/repository/DEFAULT/vhji2fUJydO0VREqoojTNhhYAaA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:e5:91:30:ae:a6:e3:7f:e3:c2:e2:78:a4:68:a5:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=be18e2d9f509c9d3b455112aa288d336185801a0 Validity Not Before: Dec 6 23:00:54 2025 GMT Not After : Dec 7 23:00:54 2025 GMT Subject: CN=8f84e174a5cb50678cb255b957a97072d4ecfe96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:3f:3e:b4:e5:fb:8b:38:7f:c9:86:e8:9f:cf: 54:56:20:49:e7:0c:5d:d3:37:35:99:0d:84:9a:46: 0d:56:30:10:12:13:b0:98:8b:5c:77:ad:5c:ca:ed: 90:70:3a:5f:fc:0d:e8:8d:0e:37:e2:99:7c:84:19: 42:dc:1f:56:6f:2f:a9:2e:0d:cf:9c:08:68:f3:cb: 1f:0e:72:22:49:d7:55:19:d4:17:75:94:a4:cf:be: 3a:6f:2d:c3:ee:b0:5c:e1:1a:b1:4e:af:2f:0a:72: 7f:4a:1a:af:4a:f7:5e:68:4d:a2:66:1e:4d:e3:b2: eb:9a:d0:94:11:4e:ce:77:e4:2b:45:12:14:7f:5f: ca:07:19:df:ac:f9:19:c8:03:98:d0:d5:2d:e6:b5: 99:00:2f:5e:36:41:1d:58:a1:17:00:30:25:f7:c9: b4:71:14:28:79:41:91:e4:ce:01:b7:eb:f4:f3:71: e3:bc:63:fe:f9:65:72:7f:e2:e8:e9:cf:04:2d:f2: b0:31:ea:6f:cf:40:e5:32:7a:33:ee:2f:2d:88:25: 86:69:b1:4b:0a:51:77:7f:32:0c:9a:19:42:44:3f: 98:6b:82:5f:1b:a2:6b:86:c0:84:ad:67:6e:80:85: 5f:4a:93:bb:ab:5b:90:60:5c:ff:e7:79:7f:91:f9: 61:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:84:E1:74:A5:CB:50:67:8C:B2:55:B9:57:A9:70:72:D4:EC:FE:96 X509v3 Authority Key Identifier: keyid:BE:18:E2:D9:F5:09:C9:D3:B4:55:11:2A:A2:88:D3:36:18:58:01:A0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vhji2fUJydO0VREqoojTNhhYAaA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/6645d5-d193-4a63-85e6-2ca0e5c104fd/1/vhji2fUJydO0VREqoojTNhhYAaA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/6645d5-d193-4a63-85e6-2ca0e5c104fd/1/vhji2fUJydO0VREqoojTNhhYAaA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 09:b6:e4:d5:de:04:c5:47:ee:4e:8d:81:60:1a:95:0f:0a:73: df:2f:4b:8f:3a:82:4d:90:14:6e:3a:b0:53:a4:0f:22:ef:f5: a3:19:4b:02:ed:31:83:8f:b5:11:63:41:3d:2d:24:d2:5d:e2: 4f:fe:d0:f0:c7:2e:34:dd:b1:32:f0:70:f5:9a:96:db:59:cd: 9c:63:94:53:c9:be:fb:3c:0a:cf:77:e9:cb:f1:0a:bb:90:98: 88:29:69:bc:3f:45:98:33:ff:1f:7f:f2:87:2f:d4:a4:20:ec: 82:91:da:42:d3:2c:2d:65:20:1c:94:87:99:8b:cb:a4:15:fa: 7d:5e:b5:df:99:51:ed:e0:cc:ac:b3:77:9c:63:5b:fe:a0:43: 9f:5d:39:99:36:16:25:e9:f3:55:96:63:66:51:6c:7c:d7:ce: af:16:56:72:d5:d6:6d:1a:b8:25:a8:c5:e0:e2:40:a0:ba:58: f4:9b:5b:ff:06:a3:a0:b6:04:52:2e:a9:25:5a:ef:46:a9:95: 77:f1:02:c6:73:97:ce:29:9e:2a:2a:a8:3b:80:91:86:4a:ec: 5b:6f:79:6c:59:84:7c:c3:8c:e5:f3:60:0a:32:b7:a3:dd:38: c0:ca:e6:e9:c2:47:6a:c7:a2:94:62:06:5b:74:8a:14:be:d1: 8c:9f:ba:e3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr15ZEwrqbjf+PC4nikaKWhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJlMThlMmQ5ZjUwOWM5ZDNiNDU1MTEyYWEyODhkMzM2MTg1 ODAxYTAwHhcNMjUxMjA2MjMwMDU0WhcNMjUxMjA3MjMwMDU0WjAzMTEwLwYDVQQD Eyg4Zjg0ZTE3NGE1Y2I1MDY3OGNiMjU1Yjk1N2E5NzA3MmQ0ZWNmZTk2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwT8+tOX7izh/yYbon89UViBJ5wxd 0zc1mQ2EmkYNVjAQEhOwmItcd61cyu2QcDpf/A3ojQ434pl8hBlC3B9Wby+pLg3P nAho88sfDnIiSddVGdQXdZSkz746by3D7rBc4RqxTq8vCnJ/ShqvSvdeaE2iZh5N 47LrmtCUEU7Od+QrRRIUf1/KBxnfrPkZyAOY0NUt5rWZAC9eNkEdWKEXADAl98m0 cRQoeUGR5M4Bt+v083HjvGP++WVyf+Lo6c8ELfKwMepvz0DlMnoz7i8tiCWGabFL ClF3fzIMmhlCRD+Ya4JfG6JrhsCErWdugIVfSpO7q1uQYFz/53l/kflhXwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI+E4XSly1BnjLJVuVepcHLU7P6WMB8GA1UdIwQY MBaAFL4Y4tn1CcnTtFURKqKI0zYYWAGgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdmhqaTJmVUp5ZE8wVlJFcW9valROaGhZQWFBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi82NjQ1ZDUtZDE5My00YTYzLTg1ZTYt MmNhMGU1YzEwNGZkLzEvdmhqaTJmVUp5ZE8wVlJFcW9valROaGhZQWFBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYi82NjQ1ZDUtZDE5My00YTYzLTg1ZTYtMmNhMGU1YzEwNGZk LzEvdmhqaTJmVUp5ZE8wVlJFcW9valROaGhZQWFBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACbbk1d4E xUfuTo2BYBqVDwpz3y9LjzqCTZAUbjqwU6QPIu/1oxlLAu0xg4+1EWNBPS0k0l3i T/7Q8McuNN2xMvBw9ZqW21nNnGOUU8m++zwKz3fpy/EKu5CYiClpvD9FmDP/H3/y hy/UpCDsgpHaQtMsLWUgHJSHmYvLpBX6fV6135lR7eDMrLN3nGNb/qBDn105mTYW JenzVZZjZlFsfNfOrxZWctXWbRq4JajF4OJAoLpY9Jtb/wajoLYEUi6pJVrvRqmV d/ECxnOXzimeKiqoO4CRhkrsW295bFmEfMOM5fNgCjK3o904wMrm6cJHaseilGIG W3SKFL7RjJ+64w== -----END CERTIFICATE-----Generated at Sun Dec 7 03:57:19 2025 by rpki-client