This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft File: bdLO01LwH3613HYZ7XFMa2pceR4.mft (raw, json) Hash identifier: q2qp77tQWgvt8MGdBLbRD2AclOhWBMWfEwQq+BKP4sw= Subject key identifier: 53:FE:FC:F7:CF:3E:94:04:6A:29:82:CC:66:BB:0D:E4:EE:AD:6A:17 Authority key identifier: 6D:D2:CE:D3:52:F0:1F:7E:B5:DC:76:19:ED:71:4C:6B:6A:5C:79:1E Certificate issuer: /CN=6dd2ced352f01f7eb5dc7619ed714c6b6a5c791e Certificate serial: 019AF31D9726A91C70E4B5EEC9289490A858 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft Manifest number: 035F Signing time: Sat 06 Dec 2025 10:03:13 +0000 Manifest this update: Sat 06 Dec 2025 10:03:13 +0000 Manifest next update: Sun 07 Dec 2025 10:03:13 +0000 Files and hashes: 1: bdLO01LwH3613HYZ7XFMa2pceR4.crl (hash: 1sRe51n+1o3mDQo7CzCFpKkIcfyj8UqgTvVlsnJ1fF0=) 2: ldaG2ZtwFXa0D8MT2zJfF9j3gsg.roa (hash: Iho31engw2p2ICkoCri0OTvpMAFdFfQ9ZJ+brUIBG2M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.crl rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1d:97:26:a9:1c:70:e4:b5:ee:c9:28:94:90:a8:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6dd2ced352f01f7eb5dc7619ed714c6b6a5c791e Validity Not Before: Dec 6 10:03:13 2025 GMT Not After : Dec 7 10:03:13 2025 GMT Subject: CN=53fefcf7cf3e94046a2982cc66bb0de4eead6a17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:08:f7:a5:96:0a:2a:3d:dc:9b:0e:28:a6:56: 82:6c:73:11:1c:85:ed:5a:ad:37:6f:38:be:6c:01: 80:88:ee:f2:7a:85:08:73:0d:9e:e7:54:c0:08:37: ca:be:c4:5d:bb:c4:c5:9b:54:16:29:00:58:d7:52: 47:97:ea:c1:d4:e7:be:a7:fc:b8:6d:a6:47:1b:5e: 05:51:3d:90:64:4d:06:5c:68:d5:9d:85:7a:09:28: 4c:f3:df:e7:cf:a0:bf:bf:c1:93:cf:4a:7f:7f:71: de:1d:84:96:c8:a0:fd:8b:c7:da:03:f8:79:cc:cc: 17:b5:88:79:bb:69:df:08:56:41:16:c9:fb:19:a1: 2d:66:a2:97:3e:9e:ba:a1:a1:33:60:7f:b6:18:f7: cb:85:9f:34:b5:42:e4:50:bb:7d:72:c5:2b:d0:f7: 1c:ad:99:23:24:56:79:d2:4a:d3:47:19:18:72:f5: 24:6a:b8:18:dc:8a:f4:a6:b8:04:87:a8:f7:87:47: c7:11:ca:ee:9c:57:33:2a:1c:13:0a:e2:ad:c6:4a: cc:45:7d:53:fe:73:5e:fa:4c:69:8e:1c:7b:94:fb: be:85:7a:ad:7d:62:85:10:e7:2b:68:ea:c2:9d:61: 73:d3:69:41:1d:e9:6c:8c:bc:a5:60:21:eb:3a:dd: ff:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:FE:FC:F7:CF:3E:94:04:6A:29:82:CC:66:BB:0D:E4:EE:AD:6A:17 X509v3 Authority Key Identifier: keyid:6D:D2:CE:D3:52:F0:1F:7E:B5:DC:76:19:ED:71:4C:6B:6A:5C:79:1E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:5c:11:43:79:68:e7:af:1d:29:0b:6b:71:10:06:52:b0:3e: 37:ac:95:45:7c:97:dd:3e:dd:a1:4d:1e:f5:f7:1f:3f:c7:90: e5:59:a8:f9:d3:f2:c5:e8:96:97:d7:a2:c5:6d:ad:01:e0:ff: 32:09:d0:b1:8d:64:ae:22:8d:34:f3:6d:e5:e2:98:e7:c9:46: 3f:48:89:82:e9:41:83:2d:ac:0f:38:bb:e8:dd:c3:3a:6d:ea: ad:a1:1f:7a:cf:df:7c:5f:77:e0:c7:c7:56:fc:0f:65:f0:1c: 53:e8:13:99:53:d1:d3:68:96:4f:ed:7f:02:4a:41:b8:48:0f: 22:67:b2:a4:81:c0:c9:41:30:54:fe:7c:e1:1f:5b:8e:2e:22: 8d:be:41:b3:ba:6e:69:59:cb:8b:f0:be:f3:7f:c4:6e:bc:a1: 41:6f:7f:94:c1:3a:29:13:0f:da:67:e6:57:c0:e4:85:88:b7: 32:4b:79:4e:71:fb:ae:cd:03:ca:cc:9e:10:00:cf:8f:a8:a9: 69:9c:fb:6a:aa:49:5e:bf:71:44:26:a1:d9:15:a8:bd:94:38: 53:d9:a1:15:65:fb:db:a6:76:2f:96:65:ff:c5:05:a0:b3:a9: ef:29:3d:ad:d8:e3:80:45:0d:a7:52:37:46:2a:cf:a4:32:dd: 3d:3c:47:84 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHZcmqRxw5LXuySiUkKhYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkZDJjZWQzNTJmMDFmN2ViNWRjNzYxOWVkNzE0YzZiNmE1 Yzc5MWUwHhcNMjUxMjA2MTAwMzEzWhcNMjUxMjA3MTAwMzEzWjAzMTEwLwYDVQQD Eyg1M2ZlZmNmN2NmM2U5NDA0NmEyOTgyY2M2NmJiMGRlNGVlYWQ2YTE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjgj3pZYKKj3cmw4oplaCbHMRHIXt Wq03bzi+bAGAiO7yeoUIcw2e51TACDfKvsRdu8TFm1QWKQBY11JHl+rB1Oe+p/y4 baZHG14FUT2QZE0GXGjVnYV6CShM89/nz6C/v8GTz0p/f3HeHYSWyKD9i8faA/h5 zMwXtYh5u2nfCFZBFsn7GaEtZqKXPp66oaEzYH+2GPfLhZ80tULkULt9csUr0Pcc rZkjJFZ50krTRxkYcvUkargY3Ir0prgEh6j3h0fHEcrunFczKhwTCuKtxkrMRX1T /nNe+kxpjhx7lPu+hXqtfWKFEOcraOrCnWFz02lBHelsjLylYCHrOt3/HwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFP+/PfPPpQEaimCzGa7DeTurWoXMB8GA1UdIwQY MBaAFG3SztNS8B9+tdx2Ge1xTGtqXHkeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYmRMTzAxTHdIMzYxM0hZWjdYRk1hMnBjZVI0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi8yNDVlMWEtMDYxMi00NTk2LWE5NWEt OWRmNzI1MzBiNjY5LzEvYmRMTzAxTHdIMzYxM0hZWjdYRk1hMnBjZVI0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNi8yNDVlMWEtMDYxMi00NTk2LWE5NWEtOWRmNzI1MzBiNjY5 LzEvYmRMTzAxTHdIMzYxM0hZWjdYRk1hMnBjZVI0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMlwRQ3lo 568dKQtrcRAGUrA+N6yVRXyX3T7doU0e9fcfP8eQ5Vmo+dPyxeiWl9eixW2tAeD/ MgnQsY1kriKNNPNt5eKY58lGP0iJgulBgy2sDzi76N3DOm3qraEfes/ffF934MfH VvwPZfAcU+gTmVPR02iWT+1/AkpBuEgPImeypIHAyUEwVP584R9bji4ijb5Bs7pu aVnLi/C+83/EbryhQW9/lME6KRMP2mfmV8DkhYi3Mkt5TnH7rs0DysyeEADPj6ip aZz7aqpJXr9xRCah2RWovZQ4U9mhFWX726Z2L5Zl/8UFoLOp7yk9rdjjgEUNp1I3 RirPpDLdPTxHhA== -----END CERTIFICATE-----Generated at Sat Dec 6 13:50:38 2025 by rpki-client