This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/c7bf4a-da97-4b5b-8719-37b3e244c063/1/b1frSRlt0uBgbVl3wrdLEBt5vAs.mft File: b1frSRlt0uBgbVl3wrdLEBt5vAs.mft (raw, json) Hash identifier: IUMPpzTbAoxsKTjsJiz8x6pjxcNt8F0iTBviNKmipaE= Subject key identifier: E2:4A:7F:C2:16:DC:AA:C2:F7:13:00:F9:33:65:5D:9A:C8:5F:DB:EB Authority key identifier: 6F:57:EB:49:19:6D:D2:E0:60:6D:59:77:C2:B7:4B:10:1B:79:BC:0B Certificate issuer: /CN=6f57eb49196dd2e0606d5977c2b74b101b79bc0b Certificate serial: 019AF276E80F190409A2728D2F7D74B9CD96 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b1frSRlt0uBgbVl3wrdLEBt5vAs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/c7bf4a-da97-4b5b-8719-37b3e244c063/1/b1frSRlt0uBgbVl3wrdLEBt5vAs.mft Manifest number: 09F1 Signing time: Sat 06 Dec 2025 07:01:10 +0000 Manifest this update: Sat 06 Dec 2025 07:01:10 +0000 Manifest next update: Sun 07 Dec 2025 07:01:10 +0000 Files and hashes: 1: b1frSRlt0uBgbVl3wrdLEBt5vAs.crl (hash: KKarbhhLJR8r4rHpQwthuZVD8LDa2vJm2FHHRg4wfac=) 2: qPQvBbAxayZH2DtXKePm47b3aIg.roa (hash: +EzjnlPCeBdtqBhNoYoGX7VYz3jpTXt4JQidHMxpNYI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/c7bf4a-da97-4b5b-8719-37b3e244c063/1/b1frSRlt0uBgbVl3wrdLEBt5vAs.crl rsync://rpki.ripe.net/repository/DEFAULT/02/c7bf4a-da97-4b5b-8719-37b3e244c063/1/b1frSRlt0uBgbVl3wrdLEBt5vAs.mft rsync://rpki.ripe.net/repository/DEFAULT/b1frSRlt0uBgbVl3wrdLEBt5vAs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:e8:0f:19:04:09:a2:72:8d:2f:7d:74:b9:cd:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f57eb49196dd2e0606d5977c2b74b101b79bc0b Validity Not Before: Dec 6 07:01:10 2025 GMT Not After : Dec 7 07:01:10 2025 GMT Subject: CN=e24a7fc216dcaac2f71300f933655d9ac85fdbeb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:61:7c:f5:20:55:7f:5c:fe:6f:57:31:bf:8d: a6:f7:fe:c9:3f:93:43:b4:07:e1:3b:63:95:45:d9: 2b:be:7f:b6:06:9d:dc:8e:22:a7:bf:1c:9d:4d:e8: a7:aa:1e:f1:2e:57:f7:4c:a0:f5:af:72:c3:db:d9: e3:b9:21:e0:20:97:cd:62:f7:0e:17:82:c0:31:43: 02:62:a4:21:ed:f6:01:20:24:03:67:e2:7f:80:76: f3:10:53:ce:6e:23:8b:6a:f6:e9:1d:09:28:68:9b: 82:f4:81:a6:fc:c7:31:19:5c:3d:84:f7:43:aa:f6: 4f:f5:e7:26:51:12:eb:41:09:07:b7:ce:5f:36:12: 8f:11:9c:69:1e:2d:a1:d4:ab:5b:c4:26:09:b0:1d: 88:44:a5:70:e7:8d:c4:1a:dd:eb:25:4f:bb:88:3a: ef:0e:91:0a:c2:4a:fc:d5:db:39:29:82:62:fe:dd: 90:58:80:8e:c5:61:8c:02:69:1e:33:7e:71:d1:d5: c6:6b:1e:eb:81:1b:95:d4:4b:ac:c0:28:e1:17:98: 29:51:56:15:34:d8:41:f5:61:af:18:3c:c4:03:7c: fc:4c:46:d1:14:f7:83:93:17:ec:25:5d:0f:c8:ff: a7:14:d7:08:da:b2:84:9f:72:37:16:5e:78:78:a9: 24:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:4A:7F:C2:16:DC:AA:C2:F7:13:00:F9:33:65:5D:9A:C8:5F:DB:EB X509v3 Authority Key Identifier: keyid:6F:57:EB:49:19:6D:D2:E0:60:6D:59:77:C2:B7:4B:10:1B:79:BC:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1frSRlt0uBgbVl3wrdLEBt5vAs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/c7bf4a-da97-4b5b-8719-37b3e244c063/1/b1frSRlt0uBgbVl3wrdLEBt5vAs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/c7bf4a-da97-4b5b-8719-37b3e244c063/1/b1frSRlt0uBgbVl3wrdLEBt5vAs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:bb:79:4e:00:76:13:b3:91:a2:fc:1b:21:c2:9e:77:39:5a: 4a:c4:7d:ae:40:77:78:4b:e2:31:a5:9a:1b:01:2d:43:95:5c: 99:b2:bb:09:35:61:de:e8:3a:99:af:b9:02:81:e9:5d:96:a4: 7e:57:68:a3:40:41:71:a3:32:a3:05:4b:0d:eb:7f:7f:bc:a9: ad:b7:31:af:c6:c2:88:b1:1e:ed:b0:84:49:b5:ab:4a:a9:62: 38:45:02:1a:98:ce:fd:33:b5:b0:f4:00:67:54:ae:ce:07:29: ed:c4:46:e1:27:1e:b4:a2:93:46:b3:e7:5d:bb:8a:c6:d2:2b: e9:67:96:fa:0d:7b:86:02:5c:e2:cb:97:65:8c:c1:2b:6f:a1: 0f:f3:80:eb:b6:8c:90:63:ee:55:06:b8:93:38:c3:a2:22:06: 4c:49:88:c6:9f:4f:17:c2:99:7f:b0:ea:74:58:87:d5:bf:63: 51:2e:78:0c:c9:11:a1:dc:39:da:d2:de:58:c9:1b:d7:0e:db: 13:d1:c4:3a:96:93:f3:c5:e9:91:08:4e:cc:8e:fa:47:6f:b9: d6:70:0f:da:87:e5:e3:5d:64:9d:6e:20:29:5d:93:12:06:0f: 02:de:c1:5c:b0:15:d6:02:af:ad:9b:a3:f2:bb:56:4f:8d:83: 02:32:74:4b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydugPGQQJonKNL310uc2WMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmNTdlYjQ5MTk2ZGQyZTA2MDZkNTk3N2MyYjc0YjEwMWI3 OWJjMGIwHhcNMjUxMjA2MDcwMTEwWhcNMjUxMjA3MDcwMTEwWjAzMTEwLwYDVQQD EyhlMjRhN2ZjMjE2ZGNhYWMyZjcxMzAwZjkzMzY1NWQ5YWM4NWZkYmViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyWF89SBVf1z+b1cxv42m9/7JP5ND tAfhO2OVRdkrvn+2Bp3cjiKnvxydTeinqh7xLlf3TKD1r3LD29njuSHgIJfNYvcO F4LAMUMCYqQh7fYBICQDZ+J/gHbzEFPObiOLavbpHQkoaJuC9IGm/McxGVw9hPdD qvZP9ecmURLrQQkHt85fNhKPEZxpHi2h1KtbxCYJsB2IRKVw543EGt3rJU+7iDrv DpEKwkr81ds5KYJi/t2QWICOxWGMAmkeM35x0dXGax7rgRuV1EuswCjhF5gpUVYV NNhB9WGvGDzEA3z8TEbRFPeDkxfsJV0PyP+nFNcI2rKEn3I3Fl54eKkkXQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOJKf8IW3KrC9xMA+TNlXZrIX9vrMB8GA1UdIwQY MBaAFG9X60kZbdLgYG1Zd8K3SxAbebwLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYjFmclNSbHQwdUJnYlZsM3dyZExFQnQ1dkFzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9jN2JmNGEtZGE5Ny00YjViLTg3MTkt MzdiM2UyNDRjMDYzLzEvYjFmclNSbHQwdUJnYlZsM3dyZExFQnQ1dkFzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi9jN2JmNGEtZGE5Ny00YjViLTg3MTktMzdiM2UyNDRjMDYz LzEvYjFmclNSbHQwdUJnYlZsM3dyZExFQnQ1dkFzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVrt5TgB2 E7ORovwbIcKedzlaSsR9rkB3eEviMaWaGwEtQ5VcmbK7CTVh3ug6ma+5AoHpXZak fldoo0BBcaMyowVLDet/f7yprbcxr8bCiLEe7bCESbWrSqliOEUCGpjO/TO1sPQA Z1Suzgcp7cRG4ScetKKTRrPnXbuKxtIr6WeW+g17hgJc4suXZYzBK2+hD/OA67aM kGPuVQa4kzjDoiIGTEmIxp9PF8KZf7DqdFiH1b9jUS54DMkRodw52tLeWMkb1w7b E9HEOpaT88XpkQhOzI76R2+51nAP2ofl411knW4gKV2TEgYPAt7BXLAV1gKvrZuj 8rtWT42DAjJ0Sw== -----END CERTIFICATE-----Generated at Sat Dec 6 08:22:23 2025 by rpki-client