This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/ba8e58-ed60-4a7c-9891-63f2450befee/1/VHdrhI_CS9SRduL0-cR0MkrycLU.mft File: VHdrhI_CS9SRduL0-cR0MkrycLU.mft (raw, json) Hash identifier: Mz7cJ3dkLkaOiiBqST3xgSAmB7+n3IXoR4mr9jebS9w= Subject key identifier: 0D:C7:61:51:FA:2A:D8:E5:2A:4C:3A:67:61:74:16:0A:F8:F8:89:93 Authority key identifier: 54:77:6B:84:8F:C2:4B:D4:91:76:E2:F4:F9:C4:74:32:4A:F2:70:B5 Certificate issuer: /CN=54776b848fc24bd49176e2f4f9c474324af270b5 Certificate serial: 019AF12E91500EFF21FCE3EB03C3381B5B00 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VHdrhI_CS9SRduL0-cR0MkrycLU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/ba8e58-ed60-4a7c-9891-63f2450befee/1/VHdrhI_CS9SRduL0-cR0MkrycLU.mft Manifest number: 175E Signing time: Sat 06 Dec 2025 01:02:32 +0000 Manifest this update: Sat 06 Dec 2025 01:02:32 +0000 Manifest next update: Sun 07 Dec 2025 01:02:32 +0000 Files and hashes: 1: VHdrhI_CS9SRduL0-cR0MkrycLU.crl (hash: 5ShqOBTVAvF5VbIbE6BUgnAMiJXeRBO+2iOypi9/DwE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/ba8e58-ed60-4a7c-9891-63f2450befee/1/VHdrhI_CS9SRduL0-cR0MkrycLU.crl rsync://rpki.ripe.net/repository/DEFAULT/ae/ba8e58-ed60-4a7c-9891-63f2450befee/1/VHdrhI_CS9SRduL0-cR0MkrycLU.mft rsync://rpki.ripe.net/repository/DEFAULT/VHdrhI_CS9SRduL0-cR0MkrycLU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:91:50:0e:ff:21:fc:e3:eb:03:c3:38:1b:5b:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=54776b848fc24bd49176e2f4f9c474324af270b5 Validity Not Before: Dec 6 01:02:32 2025 GMT Not After : Dec 7 01:02:32 2025 GMT Subject: CN=0dc76151fa2ad8e52a4c3a676174160af8f88993 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:bb:e7:f8:a9:e9:85:ce:25:cf:f1:97:40:f3: 59:6c:e3:1c:6d:99:42:29:6f:13:08:0d:98:93:9c: ec:5a:77:4d:de:d9:44:89:ef:a1:4b:23:7d:d8:17: a3:f7:20:f4:7c:6a:71:e0:75:3f:7e:11:b5:80:78: ca:c9:28:01:11:16:14:1e:e7:a7:3b:9e:34:cb:ab: d6:3a:b9:b6:a9:a8:e2:84:1c:60:f7:e0:89:de:3c: 78:50:79:98:53:34:93:11:e1:6f:2b:75:e3:37:39: 91:2d:90:c9:52:7d:d2:1d:63:be:b2:45:94:6b:b8: aa:b2:e1:45:df:2a:a1:ba:ef:ec:4a:c2:5c:95:f0: 05:f7:12:a1:e3:34:39:59:5e:05:67:b9:6f:c1:a5: e5:b7:d4:53:0d:5d:34:e7:d4:09:60:ac:96:83:50: 3b:55:53:8b:ed:82:38:c1:76:a2:30:e1:c7:eb:25: a2:4b:9b:02:4b:05:81:2a:a1:61:c3:7a:33:30:f2: bb:ee:92:bb:ae:59:bd:53:ac:39:aa:3c:46:2f:79: ad:07:8e:9a:13:db:7f:3c:82:61:f0:d5:52:fc:c0: fe:6e:fd:d2:b5:7a:9b:8a:5e:d4:4f:2f:3f:cb:0b: 9a:ef:8c:b8:58:e6:02:a2:91:44:22:c0:b2:c5:e1: f6:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:C7:61:51:FA:2A:D8:E5:2A:4C:3A:67:61:74:16:0A:F8:F8:89:93 X509v3 Authority Key Identifier: keyid:54:77:6B:84:8F:C2:4B:D4:91:76:E2:F4:F9:C4:74:32:4A:F2:70:B5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VHdrhI_CS9SRduL0-cR0MkrycLU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/ba8e58-ed60-4a7c-9891-63f2450befee/1/VHdrhI_CS9SRduL0-cR0MkrycLU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/ba8e58-ed60-4a7c-9891-63f2450befee/1/VHdrhI_CS9SRduL0-cR0MkrycLU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9d:e9:76:88:5f:95:6e:26:d3:46:a4:06:95:94:c5:77:b6:11: 63:ac:a2:01:f7:d2:65:9e:7e:dc:c5:5c:f3:40:ba:91:5e:bb: 2f:b6:f9:4d:86:f2:63:38:e0:cf:79:e6:20:8d:ba:06:82:dd: 8c:f7:12:f4:7c:a6:24:4c:4b:46:57:08:c5:53:f7:9a:9f:70: 78:d5:f4:92:f1:ed:49:68:1c:54:d9:f0:0d:03:8e:b6:cf:22: c2:2b:c1:2f:c7:33:e9:6b:a0:b0:80:45:68:5e:e6:d1:b1:b8: e1:28:7e:8f:fa:9b:c7:0f:01:dd:b1:9f:88:bb:c5:42:f2:08: d3:3f:79:4b:03:a8:4c:73:95:b1:02:ce:ba:b4:52:41:ec:53: a1:b8:a4:38:08:75:a5:ce:b6:7f:7d:92:e0:74:1b:5f:8f:33: d6:83:95:43:7b:a5:a2:e5:da:ec:f5:d5:cf:c8:29:db:7b:d5: 5d:9e:2e:70:36:11:d6:83:c0:9d:2d:c2:9c:a0:d9:8a:a5:e3: b6:00:76:eb:40:c1:08:a8:1c:fe:a2:95:0b:e5:8a:00:7c:33: c5:93:cb:15:11:e9:fb:1e:7b:d9:5a:99:6e:6c:2b:e5:b2:d8: 5a:90:a9:fb:52:3b:04:f5:4f:54:27:5c:6b:06:24:f3:c7:c2: 18:2e:0b:a1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLpFQDv8h/OPrA8M4G1sAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU0Nzc2Yjg0OGZjMjRiZDQ5MTc2ZTJmNGY5YzQ3NDMyNGFm MjcwYjUwHhcNMjUxMjA2MDEwMjMyWhcNMjUxMjA3MDEwMjMyWjAzMTEwLwYDVQQD EygwZGM3NjE1MWZhMmFkOGU1MmE0YzNhNjc2MTc0MTYwYWY4Zjg4OTkzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAurvn+Knphc4lz/GXQPNZbOMcbZlC KW8TCA2Yk5zsWndN3tlEie+hSyN92Bej9yD0fGpx4HU/fhG1gHjKySgBERYUHuen O540y6vWOrm2qajihBxg9+CJ3jx4UHmYUzSTEeFvK3XjNzmRLZDJUn3SHWO+skWU a7iqsuFF3yqhuu/sSsJclfAF9xKh4zQ5WV4FZ7lvwaXlt9RTDV0059QJYKyWg1A7 VVOL7YI4wXaiMOHH6yWiS5sCSwWBKqFhw3ozMPK77pK7rlm9U6w5qjxGL3mtB46a E9t/PIJh8NVS/MD+bv3StXqbil7UTy8/ywua74y4WOYCopFEIsCyxeH2BQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA3HYVH6KtjlKkw6Z2F0Fgr4+ImTMB8GA1UdIwQY MBaAFFR3a4SPwkvUkXbi9PnEdDJK8nC1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVkhkcmhJX0NTOVNSZHVMMC1jUjBNa3J5Y0xVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS9iYThlNTgtZWQ2MC00YTdjLTk4OTEt NjNmMjQ1MGJlZmVlLzEvVkhkcmhJX0NTOVNSZHVMMC1jUjBNa3J5Y0xVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZS9iYThlNTgtZWQ2MC00YTdjLTk4OTEtNjNmMjQ1MGJlZmVl LzEvVkhkcmhJX0NTOVNSZHVMMC1jUjBNa3J5Y0xVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnel2iF+V bibTRqQGlZTFd7YRY6yiAffSZZ5+3MVc80C6kV67L7b5TYbyYzjgz3nmII26BoLd jPcS9HymJExLRlcIxVP3mp9weNX0kvHtSWgcVNnwDQOOts8iwivBL8cz6WugsIBF aF7m0bG44Sh+j/qbxw8B3bGfiLvFQvII0z95SwOoTHOVsQLOurRSQexTobikOAh1 pc62f32S4HQbX48z1oOVQ3ulouXa7PXVz8gp23vVXZ4ucDYR1oPAnS3CnKDZiqXj tgB260DBCKgc/qKVC+WKAHwzxZPLFRHp+x572VqZbmwr5bLYWpCp+1I7BPVPVCdc awYk88fCGC4LoQ== -----END CERTIFICATE-----Generated at Sat Dec 6 07:20:06 2025 by rpki-client