This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/2e93fb-49b1-4b39-b252-250baf78e30e/1/vayPM9tKSgF12PjqfKdHUH5-geA.mft File: vayPM9tKSgF12PjqfKdHUH5-geA.mft (raw, json) Hash identifier: XYnZFyH724xFfI8iLPmNjST6q5pLuiSlO+KbvqXMu/U= Subject key identifier: D9:4C:C5:8F:88:94:AE:BD:85:F6:58:05:D8:CB:6C:40:7E:EE:5E:80 Authority key identifier: BD:AC:8F:33:DB:4A:4A:01:75:D8:F8:EA:7C:A7:47:50:7E:7E:81:E0 Certificate issuer: /CN=bdac8f33db4a4a0175d8f8ea7ca747507e7e81e0 Certificate serial: 019AF8419E6F155657AF23A7283A0FD83679 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vayPM9tKSgF12PjqfKdHUH5-geA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/2e93fb-49b1-4b39-b252-250baf78e30e/1/vayPM9tKSgF12PjqfKdHUH5-geA.mft Manifest number: 0646 Signing time: Sun 07 Dec 2025 10:00:41 +0000 Manifest this update: Sun 07 Dec 2025 10:00:41 +0000 Manifest next update: Mon 08 Dec 2025 10:00:41 +0000 Files and hashes: 1: 7oEw8EFmquKMrLL8-hfLmIwZUQY.roa (hash: UnWZTOCHUCj50Mpn5ZUqFaqkSFvoIDWjjwDqigNU5NY=) 2: Ck3Jvy5ijt5-_NFGYo-OlYqf3Jo.roa (hash: Ngn9iQ8GLL0NfQbzc69TCLUMH0IFa8vev/CQWXBGYeI=) 3: vayPM9tKSgF12PjqfKdHUH5-geA.crl (hash: oz5dViFaNSXOyfydqrcDo5bAVGiDWaGYZ4H8SLsDxkc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/2e93fb-49b1-4b39-b252-250baf78e30e/1/vayPM9tKSgF12PjqfKdHUH5-geA.crl rsync://rpki.ripe.net/repository/DEFAULT/12/2e93fb-49b1-4b39-b252-250baf78e30e/1/vayPM9tKSgF12PjqfKdHUH5-geA.mft rsync://rpki.ripe.net/repository/DEFAULT/vayPM9tKSgF12PjqfKdHUH5-geA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 08 Dec 2025 08:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f8:41:9e:6f:15:56:57:af:23:a7:28:3a:0f:d8:36:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bdac8f33db4a4a0175d8f8ea7ca747507e7e81e0 Validity Not Before: Dec 7 10:00:41 2025 GMT Not After : Dec 8 10:00:41 2025 GMT Subject: CN=d94cc58f8894aebd85f65805d8cb6c407eee5e80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:4f:73:4d:7d:f8:af:d5:34:5d:c0:83:18:12: 05:71:a2:9f:98:b8:36:1d:f4:6c:b0:a6:5a:e9:c5: 41:d9:08:c6:53:22:cf:1c:14:dd:69:65:19:64:57: 68:5f:0d:bb:ad:95:05:fb:cf:78:cc:af:d5:8b:ed: 25:2a:35:1f:41:99:8c:0f:7c:58:18:31:f1:89:42: 4a:b3:12:8a:22:6b:23:f9:03:d0:da:23:d9:48:77: fd:47:08:5f:77:f7:d5:fe:ae:b0:ae:ea:d9:f0:bb: b9:27:fe:12:b4:df:fa:3f:eb:ef:24:e3:97:ef:94: 6b:53:5c:39:67:4c:03:1a:ee:3a:46:e8:44:50:de: 6d:b5:07:bd:ed:36:d1:2f:06:a6:72:a2:61:28:68: 26:21:4f:c3:5d:d0:5a:95:81:07:10:de:42:f6:3c: 84:62:2a:77:08:19:a3:66:1c:47:81:3d:9f:d4:1b: 39:2c:92:e1:a3:77:c7:b0:39:2e:2d:4e:c4:f1:d6: f2:31:9b:85:cc:48:d8:29:d9:cc:be:86:81:0d:92: 1f:77:aa:ea:e1:f3:42:0e:04:e7:f1:56:e2:f4:8d: dc:b7:99:97:fe:aa:4c:87:b0:11:2b:a5:3c:61:e6: 15:49:b8:86:56:ca:fa:84:ea:c7:e8:59:29:82:5a: 5f:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:4C:C5:8F:88:94:AE:BD:85:F6:58:05:D8:CB:6C:40:7E:EE:5E:80 X509v3 Authority Key Identifier: keyid:BD:AC:8F:33:DB:4A:4A:01:75:D8:F8:EA:7C:A7:47:50:7E:7E:81:E0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vayPM9tKSgF12PjqfKdHUH5-geA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/2e93fb-49b1-4b39-b252-250baf78e30e/1/vayPM9tKSgF12PjqfKdHUH5-geA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/2e93fb-49b1-4b39-b252-250baf78e30e/1/vayPM9tKSgF12PjqfKdHUH5-geA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 72:49:6b:c9:5a:99:51:c2:7a:9f:58:bd:35:9b:ad:89:9b:a4: 54:c4:f6:53:2c:4e:ea:8c:cc:f7:e6:0c:e2:87:a8:a0:80:26: 56:b6:88:f0:f1:e1:76:be:65:00:7f:15:23:92:80:2f:1d:b3: 4b:8b:fe:44:95:99:da:a6:c6:b2:05:58:cf:77:50:38:f3:04: 23:21:ea:aa:34:b9:39:69:24:d0:d7:f8:26:c4:e9:e1:01:f0: 6c:b4:6c:d2:37:b4:61:0d:dc:d0:fe:05:7a:3f:73:ea:1c:aa: 9b:e2:b5:ef:67:7d:4d:01:97:e8:a8:6e:09:8f:a7:1c:22:5a: 73:d9:77:27:0d:e2:55:72:a5:cb:a2:3e:a5:ee:e5:51:1f:90: 67:b2:83:47:2e:8d:4b:ed:0f:76:11:bf:3d:cf:3c:a1:61:80: d4:e7:ff:8f:97:b3:1d:53:14:53:55:11:ef:13:d0:a9:24:5e: 82:db:aa:a9:0b:e6:8a:48:fa:19:0d:5f:07:46:0a:1f:da:37: bc:75:e2:0a:a7:b5:9a:24:68:35:7b:84:1b:57:c5:78:99:bb: 52:28:04:32:17:2b:7e:1f:31:2d:bd:27:46:12:2f:47:2c:67: 7b:99:43:9e:b1:2c:d8:f1:dc:91:e2:30:c1:a4:a5:3b:f1:ca: 47:30:06:f1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr4QZ5vFVZXryOnKDoP2DZ5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJkYWM4ZjMzZGI0YTRhMDE3NWQ4ZjhlYTdjYTc0NzUwN2U3 ZTgxZTAwHhcNMjUxMjA3MTAwMDQxWhcNMjUxMjA4MTAwMDQxWjAzMTEwLwYDVQQD EyhkOTRjYzU4Zjg4OTRhZWJkODVmNjU4MDVkOGNiNmM0MDdlZWU1ZTgwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnk9zTX34r9U0XcCDGBIFcaKfmLg2 HfRssKZa6cVB2QjGUyLPHBTdaWUZZFdoXw27rZUF+894zK/Vi+0lKjUfQZmMD3xY GDHxiUJKsxKKImsj+QPQ2iPZSHf9Rwhfd/fV/q6wrurZ8Lu5J/4StN/6P+vvJOOX 75RrU1w5Z0wDGu46RuhEUN5ttQe97TbRLwamcqJhKGgmIU/DXdBalYEHEN5C9jyE Yip3CBmjZhxHgT2f1Bs5LJLho3fHsDkuLU7E8dbyMZuFzEjYKdnMvoaBDZIfd6rq 4fNCDgTn8Vbi9I3ct5mX/qpMh7ARK6U8YeYVSbiGVsr6hOrH6FkpglpfLwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNlMxY+IlK69hfZYBdjLbEB+7l6AMB8GA1UdIwQY MBaAFL2sjzPbSkoBddj46nynR1B+foHgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdmF5UE05dEtTZ0YxMlBqcWZLZEhVSDUtZ2VBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi8yZTkzZmItNDliMS00YjM5LWIyNTIt MjUwYmFmNzhlMzBlLzEvdmF5UE05dEtTZ0YxMlBqcWZLZEhVSDUtZ2VBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi8yZTkzZmItNDliMS00YjM5LWIyNTItMjUwYmFmNzhlMzBl LzEvdmF5UE05dEtTZ0YxMlBqcWZLZEhVSDUtZ2VBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcklryVqZ UcJ6n1i9NZutiZukVMT2UyxO6ozM9+YM4oeooIAmVraI8PHhdr5lAH8VI5KALx2z S4v+RJWZ2qbGsgVYz3dQOPMEIyHqqjS5OWkk0Nf4JsTp4QHwbLRs0je0YQ3c0P4F ej9z6hyqm+K172d9TQGX6KhuCY+nHCJac9l3Jw3iVXKly6I+pe7lUR+QZ7KDRy6N S+0PdhG/Pc88oWGA1Of/j5ezHVMUU1UR7xPQqSRegtuqqQvmikj6GQ1fB0YKH9o3 vHXiCqe1miRoNXuEG1fFeJm7UigEMhcrfh8xLb0nRhIvRyxne5lDnrEs2PHckeIw waSlO/HKRzAG8Q== -----END CERTIFICATE-----Generated at Sun Dec 7 17:23:53 2025 by rpki-client