This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.mft File: vmBP81opyRFWvkvSKbO693yDl70.mft (raw, json) Hash identifier: +vFJQO+CcYS35IBi9rKdwLwQFRS1qHe7YyBdsCc5blI= Subject key identifier: 59:BE:62:A7:B7:DB:C9:CB:8E:05:B2:52:1F:8D:82:B8:4C:83:E0:C6 Authority key identifier: BE:60:4F:F3:5A:29:C9:11:56:BE:4B:D2:29:B3:BA:F7:7C:83:97:BD Certificate issuer: /CN=be604ff35a29c91156be4bd229b3baf77c8397bd Certificate serial: 019B2BC1C752826185C9B71FB068EA576DF6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vmBP81opyRFWvkvSKbO693yDl70.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.mft Manifest number: 09A9 Signing time: Wed 17 Dec 2025 10:01:18 +0000 Manifest this update: Wed 17 Dec 2025 10:01:18 +0000 Manifest next update: Thu 18 Dec 2025 10:01:18 +0000 Files and hashes: 1: vmBP81opyRFWvkvSKbO693yDl70.crl (hash: Xn70To8LEF/l1EQwIHmvmxAZSI3psALtFe0rcr3Wnus=) 2: xKhlmwkhpDMTNKSIizqisLWT3AQ.roa (hash: wyhLYIBDdO6iFhviIArhJTJRsCWrDx4vYq5+pNBPzEE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.crl rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.mft rsync://rpki.ripe.net/repository/DEFAULT/vmBP81opyRFWvkvSKbO693yDl70.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 10:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2b:c1:c7:52:82:61:85:c9:b7:1f:b0:68:ea:57:6d:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=be604ff35a29c91156be4bd229b3baf77c8397bd Validity Not Before: Dec 17 10:01:18 2025 GMT Not After : Dec 18 10:01:18 2025 GMT Subject: CN=59be62a7b7dbc9cb8e05b2521f8d82b84c83e0c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d7:b7:b4:f0:bf:de:93:65:f8:7e:c9:9d:89: b0:2d:d8:e9:08:2f:ae:cd:64:55:76:1e:af:7b:3a: 23:2d:20:ca:9e:5b:f0:26:c8:47:4e:df:16:28:81: a8:1f:26:d2:1f:d1:34:30:be:96:90:5f:5c:d2:72: 3c:9d:dc:b3:50:06:1f:43:ee:f0:2b:e6:ae:05:07: 02:59:f5:d5:08:a0:da:9d:e8:3a:4f:fd:ad:f5:a7: c2:29:98:cc:f2:c3:e9:f9:a8:0a:6e:a7:dd:f5:73: b5:47:49:7c:48:64:04:ff:73:19:00:04:99:cd:11: eb:52:6d:d2:7f:b6:d3:58:2e:4b:d9:5e:42:b7:06: 2a:90:27:0e:c8:f6:03:c7:ea:08:b1:60:9b:cb:71: 4d:3d:fc:bc:49:d6:ad:3a:98:d5:91:7e:10:cf:d3: 9f:00:6b:14:0a:8a:57:7a:80:dd:77:df:63:5d:64: ad:75:23:64:06:bc:3a:6a:f7:c4:ca:ca:42:d9:6e: 99:81:6e:b0:98:b5:f7:69:3f:28:90:70:0d:2b:dd: 71:10:ee:54:1e:44:6b:05:a3:1b:46:eb:13:7c:86: 8e:b5:87:0c:a8:f7:b2:dd:9a:db:c4:ca:cd:d3:53: a4:0b:29:96:23:22:7c:f2:f5:14:5c:73:e7:11:0e: 4b:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:BE:62:A7:B7:DB:C9:CB:8E:05:B2:52:1F:8D:82:B8:4C:83:E0:C6 X509v3 Authority Key Identifier: keyid:BE:60:4F:F3:5A:29:C9:11:56:BE:4B:D2:29:B3:BA:F7:7C:83:97:BD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vmBP81opyRFWvkvSKbO693yDl70.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ad:89:12:ce:d2:5f:9c:62:4b:4e:34:54:77:ba:62:b5:dd:5e: de:04:5a:f1:62:9e:ac:f3:07:ed:50:71:c2:06:95:da:83:5f: 23:17:a5:80:01:77:b0:c5:fb:18:ad:80:78:88:67:fb:31:8f: f0:fe:e5:f2:03:47:4f:e1:c5:cd:06:62:cf:2e:ed:8a:66:76: ee:a8:a2:2a:6e:2a:3b:60:95:4d:31:43:4f:9c:7e:0b:c1:a0: f3:ad:56:4c:17:16:7f:cf:f7:31:e5:e7:23:06:db:ef:f3:d1: 67:8a:50:04:4a:28:57:11:32:7b:ce:e7:28:c5:42:c4:28:af: 91:da:f4:4e:8e:40:c4:59:74:17:2f:98:dd:a4:0b:e2:8c:7f: 40:c8:e1:65:12:cd:99:1c:a1:e1:d9:d6:99:f6:c3:33:d3:1a: 03:f4:98:42:6b:16:c7:c6:56:17:ca:42:5a:54:e7:91:45:ec: 93:f6:8c:1c:99:e8:4e:27:e4:2e:fe:78:c1:53:b7:a9:9a:f6: e1:e8:fb:8e:3a:ed:f7:fa:f9:74:e9:2c:21:bd:a9:03:52:20: a4:03:d3:6b:c8:87:cf:22:f3:db:71:c6:35:9f:52:20:af:c9: 88:a3:db:71:50:35:55:4b:39:51:29:0d:a8:43:bd:fc:e7:6f: f8:32:bc:6e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsrwcdSgmGFybcfsGjqV232MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJlNjA0ZmYzNWEyOWM5MTE1NmJlNGJkMjI5YjNiYWY3N2M4 Mzk3YmQwHhcNMjUxMjE3MTAwMTE4WhcNMjUxMjE4MTAwMTE4WjAzMTEwLwYDVQQD Eyg1OWJlNjJhN2I3ZGJjOWNiOGUwNWIyNTIxZjhkODJiODRjODNlMGM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxde3tPC/3pNl+H7JnYmwLdjpCC+u zWRVdh6vezojLSDKnlvwJshHTt8WKIGoHybSH9E0ML6WkF9c0nI8ndyzUAYfQ+7w K+auBQcCWfXVCKDaneg6T/2t9afCKZjM8sPp+agKbqfd9XO1R0l8SGQE/3MZAASZ zRHrUm3Sf7bTWC5L2V5CtwYqkCcOyPYDx+oIsWCby3FNPfy8SdatOpjVkX4Qz9Of AGsUCopXeoDdd99jXWStdSNkBrw6avfEyspC2W6ZgW6wmLX3aT8okHANK91xEO5U HkRrBaMbRusTfIaOtYcMqPey3ZrbxMrN01OkCymWIyJ88vUUXHPnEQ5LvQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFm+Yqe328nLjgWyUh+NgrhMg+DGMB8GA1UdIwQY MBaAFL5gT/NaKckRVr5L0imzuvd8g5e9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdm1CUDgxb3B5UkZXdmt2U0tiTzY5M3lEbDcwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9lODQ5YmItMTMwNC00NGVhLTgzOGYt MWEzOWMzZDM0ZjA4LzEvdm1CUDgxb3B5UkZXdmt2U0tiTzY5M3lEbDcwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi9lODQ5YmItMTMwNC00NGVhLTgzOGYtMWEzOWMzZDM0ZjA4 LzEvdm1CUDgxb3B5UkZXdmt2U0tiTzY5M3lEbDcwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArYkSztJf nGJLTjRUd7pitd1e3gRa8WKerPMH7VBxwgaV2oNfIxelgAF3sMX7GK2AeIhn+zGP 8P7l8gNHT+HFzQZizy7timZ27qiiKm4qO2CVTTFDT5x+C8Gg861WTBcWf8/3MeXn Iwbb7/PRZ4pQBEooVxEye87nKMVCxCivkdr0To5AxFl0Fy+Y3aQL4ox/QMjhZRLN mRyh4dnWmfbDM9MaA/SYQmsWx8ZWF8pCWlTnkUXsk/aMHJnoTifkLv54wVO3qZr2 4ej7jjrt9/r5dOksIb2pA1IgpAPTa8iHzyLz23HGNZ9SIK/JiKPbcVA1VUs5USkN qEO9/Odv+DK8bg== -----END CERTIFICATE-----Generated at Wed Dec 17 19:06:29 2025 by rpki-client