This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/BmNp4nBctDPbBlirZm0ItnsVUdw.mft File: BmNp4nBctDPbBlirZm0ItnsVUdw.mft (raw, json) Hash identifier: tsUC4UlNvS98rptgMIW3a/Dr4tDoYYVHYUhaftmsXJU= Subject key identifier: 27:C3:D4:47:CF:1B:68:FC:E5:C8:4E:E8:63:2C:1F:84:65:31:D9:B5 Authority key identifier: 06:63:69:E2:70:5C:B4:33:DB:06:58:AB:66:6D:08:B6:7B:15:51:DC Certificate issuer: /CN=066369e2705cb433db0658ab666d08b67b1551dc Certificate serial: 019AF0BF7315D1DB747DFEAF1780589AB356 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BmNp4nBctDPbBlirZm0ItnsVUdw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/BmNp4nBctDPbBlirZm0ItnsVUdw.mft Manifest number: 1686 Signing time: Fri 05 Dec 2025 23:01:09 +0000 Manifest this update: Fri 05 Dec 2025 23:01:09 +0000 Manifest next update: Sat 06 Dec 2025 23:01:09 +0000 Files and hashes: 1: BmNp4nBctDPbBlirZm0ItnsVUdw.crl (hash: AFAPGDZfo/QCHAjd2E6wXmi/kEZZLgYQ+nR4LekNM38=) 2: jCf5g0MNk7dChvixSvofxX26UqQ.roa (hash: EtFQAu+QfH/I3yhnfzxyM188HrZPVxzTPSpuxFHhJDw=) 3: osJ9_DR-TYLXPhwmG2ma04NJTWc.roa (hash: J9O9DuXjiOjoHZT0sNnMyGnclsGi579GC3bqlBQWEYI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/BmNp4nBctDPbBlirZm0ItnsVUdw.crl rsync://rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/BmNp4nBctDPbBlirZm0ItnsVUdw.mft rsync://rpki.ripe.net/repository/DEFAULT/BmNp4nBctDPbBlirZm0ItnsVUdw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 23:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:bf:73:15:d1:db:74:7d:fe:af:17:80:58:9a:b3:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=066369e2705cb433db0658ab666d08b67b1551dc Validity Not Before: Dec 5 23:01:09 2025 GMT Not After : Dec 6 23:01:09 2025 GMT Subject: CN=27c3d447cf1b68fce5c84ee8632c1f846531d9b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:dc:87:1a:5c:2d:03:d4:c4:07:49:13:b5:dd: dc:66:4b:f8:40:95:e2:ac:2e:23:f7:6f:50:e2:be: 1a:b4:df:87:26:73:57:d7:fb:eb:69:5a:56:d8:a3: d4:f3:fc:fa:6d:37:3d:d8:e4:10:65:98:b1:7e:d6: 9d:76:4c:18:aa:04:6d:57:6e:7c:49:fe:6a:a9:bc: 2b:0a:39:cf:5c:1b:e9:11:fb:d0:fd:19:0d:1b:4b: ed:05:24:a1:84:94:b8:ba:5c:d1:f3:b4:49:62:c5: c8:f6:e7:ae:41:18:3a:ab:15:a2:6b:c5:49:17:87: b8:ed:35:1b:ba:80:07:bd:c0:82:14:ed:8c:d4:c0: b1:09:4d:04:b6:c9:c3:76:8f:6a:69:49:90:c2:bd: 4e:f0:88:d9:b4:bb:41:cc:48:28:7b:2b:49:fa:89: 78:c3:b7:74:8e:42:d4:a6:f3:92:46:43:1e:3e:3c: 79:83:a5:45:55:60:2e:07:15:6d:47:b3:79:47:85: 1e:62:9d:eb:f9:e2:d7:f5:2d:33:6c:b1:8e:01:68: 59:a1:b7:ef:dd:13:2d:8f:c2:cb:fc:e9:ac:0d:d9: 8f:23:cd:d0:5f:00:be:6b:da:6d:85:46:29:1e:10: 81:99:f6:d2:23:9d:81:19:e1:e9:b2:1c:02:a1:6b: d6:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:C3:D4:47:CF:1B:68:FC:E5:C8:4E:E8:63:2C:1F:84:65:31:D9:B5 X509v3 Authority Key Identifier: keyid:06:63:69:E2:70:5C:B4:33:DB:06:58:AB:66:6D:08:B6:7B:15:51:DC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BmNp4nBctDPbBlirZm0ItnsVUdw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/BmNp4nBctDPbBlirZm0ItnsVUdw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/BmNp4nBctDPbBlirZm0ItnsVUdw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:49:b5:26:50:5a:f1:8a:c1:e8:75:9c:71:28:70:1b:5d:be: 20:61:57:a0:94:f2:c1:dd:e1:f2:01:8c:91:28:a0:24:34:d5: b0:c4:22:ee:14:70:52:29:d4:95:cd:76:ab:07:82:cb:c6:96: d7:1d:19:5f:98:2b:36:ed:8a:51:ff:7b:f8:90:40:ae:5a:1b: 6b:5b:32:ff:02:43:f9:64:d3:30:f9:60:5e:7c:e2:6b:f6:e3: 4b:01:06:b0:40:02:9f:52:cf:2c:38:09:19:d3:82:44:d1:7e: ca:fa:a5:c3:70:48:e5:e1:16:a5:3c:60:bb:28:21:ba:38:66: 00:11:e9:46:2c:8f:9e:3b:bd:e3:c0:72:82:b6:26:49:97:b9: a6:7b:a1:bd:0e:ef:37:ec:2e:df:97:5e:7a:77:db:a7:72:2f: cb:5f:ed:30:f8:f0:7c:ba:0a:4d:8d:a0:fd:29:8e:9c:69:8f: 82:5e:61:5d:41:fa:b3:7d:f8:34:18:93:f4:89:cf:65:96:06: 8e:66:60:cc:58:43:9d:cb:62:58:29:93:87:32:a2:bd:a9:32: b6:97:29:61:3b:d8:fc:b5:5e:23:b3:d4:e0:1b:e3:69:9e:34: 87:d8:0d:bd:d0:50:bd:a5:be:9d:d0:f5:36:0b:30:32:2f:08: a0:3f:48:4d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwv3MV0dt0ff6vF4BYmrNWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA2NjM2OWUyNzA1Y2I0MzNkYjA2NThhYjY2NmQwOGI2N2Ix NTUxZGMwHhcNMjUxMjA1MjMwMTA5WhcNMjUxMjA2MjMwMTA5WjAzMTEwLwYDVQQD EygyN2MzZDQ0N2NmMWI2OGZjZTVjODRlZTg2MzJjMWY4NDY1MzFkOWI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0dyHGlwtA9TEB0kTtd3cZkv4QJXi rC4j929Q4r4atN+HJnNX1/vraVpW2KPU8/z6bTc92OQQZZixftaddkwYqgRtV258 Sf5qqbwrCjnPXBvpEfvQ/RkNG0vtBSShhJS4ulzR87RJYsXI9ueuQRg6qxWia8VJ F4e47TUbuoAHvcCCFO2M1MCxCU0EtsnDdo9qaUmQwr1O8IjZtLtBzEgoeytJ+ol4 w7d0jkLUpvOSRkMePjx5g6VFVWAuBxVtR7N5R4UeYp3r+eLX9S0zbLGOAWhZobfv 3RMtj8LL/OmsDdmPI83QXwC+a9pthUYpHhCBmfbSI52BGeHpshwCoWvWRwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCfD1EfPG2j85chO6GMsH4RlMdm1MB8GA1UdIwQY MBaAFAZjaeJwXLQz2wZYq2ZtCLZ7FVHcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQm1OcDRuQmN0RFBiQmxpclptMEl0bnNWVWR3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC82NGU0OWEtNWZlMS00NWMyLTgzMTAt MzRhOWU5OGE1Zjg2LzEvQm1OcDRuQmN0RFBiQmxpclptMEl0bnNWVWR3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC82NGU0OWEtNWZlMS00NWMyLTgzMTAtMzRhOWU5OGE1Zjg2 LzEvQm1OcDRuQmN0RFBiQmxpclptMEl0bnNWVWR3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkUm1JlBa 8YrB6HWccShwG12+IGFXoJTywd3h8gGMkSigJDTVsMQi7hRwUinUlc12qweCy8aW 1x0ZX5grNu2KUf97+JBArloba1sy/wJD+WTTMPlgXnzia/bjSwEGsEACn1LPLDgJ GdOCRNF+yvqlw3BI5eEWpTxguyghujhmABHpRiyPnju948BygrYmSZe5pnuhvQ7v N+wu35deenfbp3Ivy1/tMPjwfLoKTY2g/SmOnGmPgl5hXUH6s334NBiT9InPZZYG jmZgzFhDnctiWCmThzKivakytpcpYTvY/LVeI7PU4BvjaZ40h9gNvdBQvaW+ndD1 NgswMi8IoD9ITQ== -----END CERTIFICATE-----Generated at Sat Dec 6 08:09:01 2025 by rpki-client