This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/9dfcd5-07d6-4ad8-ad1d-b60fd67997bb/1/B-pSPsf5N3oanl1vqGgX7T1sCoI.mft File: B-pSPsf5N3oanl1vqGgX7T1sCoI.mft (raw, json) Hash identifier: mPD7EKl0kxl2fEQiWcTzyM6P9fgBpVkq4R8g80YPvew= Subject key identifier: 1A:9A:C0:BB:CB:76:E9:38:98:AA:87:E9:82:72:F5:5C:FB:8F:4F:EE Authority key identifier: 07:EA:52:3E:C7:F9:37:7A:1A:9E:5D:6F:A8:68:17:ED:3D:6C:0A:82 Certificate issuer: /CN=07ea523ec7f9377a1a9e5d6fa86817ed3d6c0a82 Certificate serial: 019AF1642BC2D1914CA38FFB4D31EA74FCEA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B-pSPsf5N3oanl1vqGgX7T1sCoI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/9dfcd5-07d6-4ad8-ad1d-b60fd67997bb/1/B-pSPsf5N3oanl1vqGgX7T1sCoI.mft Manifest number: 175F Signing time: Sat 06 Dec 2025 02:01:05 +0000 Manifest this update: Sat 06 Dec 2025 02:01:05 +0000 Manifest next update: Sun 07 Dec 2025 02:01:05 +0000 Files and hashes: 1: B-pSPsf5N3oanl1vqGgX7T1sCoI.crl (hash: Ts8ewW/JFrYFrWFlmiavMEJj3JjRUBmES1S3sFkZe3I=) 2: npXHmGXZGuLcOHTCUM12CgHnXyg.roa (hash: 1gC/eDL6k6iHyWBQvbxBWaVuZWHOyh/0XMWrseRbP5Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/9dfcd5-07d6-4ad8-ad1d-b60fd67997bb/1/B-pSPsf5N3oanl1vqGgX7T1sCoI.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/9dfcd5-07d6-4ad8-ad1d-b60fd67997bb/1/B-pSPsf5N3oanl1vqGgX7T1sCoI.mft rsync://rpki.ripe.net/repository/DEFAULT/B-pSPsf5N3oanl1vqGgX7T1sCoI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:64:2b:c2:d1:91:4c:a3:8f:fb:4d:31:ea:74:fc:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=07ea523ec7f9377a1a9e5d6fa86817ed3d6c0a82 Validity Not Before: Dec 6 02:01:05 2025 GMT Not After : Dec 7 02:01:05 2025 GMT Subject: CN=1a9ac0bbcb76e93898aa87e98272f55cfb8f4fee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:20:20:af:b6:af:86:e1:01:04:19:11:da:3d: 3a:c8:98:b5:d5:98:42:4d:65:cf:48:92:49:34:8a: 5e:19:2a:70:90:1a:39:74:d6:82:5a:67:bd:93:56: f2:41:ba:27:c6:57:04:ad:1e:c4:6f:de:1f:f6:cd: ce:be:d8:62:e6:c6:24:6a:f8:90:ca:25:6d:7b:08: 95:d9:d9:1a:a0:09:80:ed:12:af:b5:ca:e2:d2:3a: 2d:ae:87:ae:b0:22:2a:13:f0:f2:58:9b:c9:d0:35: 79:70:fa:0d:06:93:1f:bf:c1:53:df:0d:a0:29:b3: 5a:b6:c4:2c:dd:e5:a5:65:2e:8c:84:dd:8c:89:a4: b3:51:79:fd:eb:eb:44:ec:f2:6e:ab:d8:84:18:9e: 09:c6:f7:23:0e:c2:61:3a:fd:1c:10:d4:a0:f2:9d: 6b:d1:4c:82:7e:41:d9:a9:e0:dc:a2:f9:48:b2:c3: 63:c8:58:3d:15:9b:49:42:58:86:84:32:f8:34:88: ee:b1:e9:56:02:f5:f6:3a:1e:ef:83:2d:c2:be:6e: 1c:7f:10:50:0d:10:f9:53:5d:26:e3:e6:3e:9e:4a: 96:c9:dd:07:42:4a:8a:f8:ab:86:6f:65:18:8b:ca: 2c:8e:d1:93:7c:21:b7:bd:e9:87:f3:a0:ca:c1:45: 52:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:9A:C0:BB:CB:76:E9:38:98:AA:87:E9:82:72:F5:5C:FB:8F:4F:EE X509v3 Authority Key Identifier: keyid:07:EA:52:3E:C7:F9:37:7A:1A:9E:5D:6F:A8:68:17:ED:3D:6C:0A:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B-pSPsf5N3oanl1vqGgX7T1sCoI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/9dfcd5-07d6-4ad8-ad1d-b60fd67997bb/1/B-pSPsf5N3oanl1vqGgX7T1sCoI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/9dfcd5-07d6-4ad8-ad1d-b60fd67997bb/1/B-pSPsf5N3oanl1vqGgX7T1sCoI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2e:b7:05:a4:18:9b:3c:30:f4:dc:c9:9d:84:65:37:32:46:4f: 4e:6e:c3:35:6d:8f:5f:bd:93:f1:6a:25:c2:bd:40:09:28:b3: 21:dc:d5:03:4e:95:a4:57:d7:e3:4b:18:9a:4b:f1:f1:a7:5a: 7c:46:04:ca:2b:53:4e:24:20:78:d4:c3:27:1c:a7:ba:32:18: 92:2c:37:5f:8d:7e:aa:24:cd:22:10:0b:dd:22:b1:05:72:1c: a5:1c:ef:3d:2a:bf:57:41:04:a7:e3:50:5c:c1:29:c1:7f:3b: e9:5e:22:2f:0f:39:74:35:92:55:95:fd:8d:a6:c0:64:7b:6e: aa:cc:ce:68:6a:27:74:15:2d:aa:d7:d1:37:39:5c:a3:ae:c3: 0b:a4:52:e3:ab:11:b5:f4:76:8a:9c:c8:54:fd:a9:a6:6c:6b: 6d:2a:c2:48:87:0f:be:87:de:63:20:c2:67:df:cf:d9:bc:e3: 2d:09:7a:27:e2:c8:88:65:6b:30:7c:01:db:d4:bf:b5:0c:cd: d5:69:1f:41:0c:60:f7:18:c8:3a:62:6b:f5:ab:69:32:f6:b5: db:3a:05:fd:11:72:39:c0:ac:97:50:b8:2a:e6:30:14:a1:c3: b1:9d:e4:49:51:47:48:b7:01:66:fe:23:c6:3f:79:02:71:c2: 26:75:45:42 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxZCvC0ZFMo4/7TTHqdPzqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA3ZWE1MjNlYzdmOTM3N2ExYTllNWQ2ZmE4NjgxN2VkM2Q2 YzBhODIwHhcNMjUxMjA2MDIwMTA1WhcNMjUxMjA3MDIwMTA1WjAzMTEwLwYDVQQD EygxYTlhYzBiYmNiNzZlOTM4OThhYTg3ZTk4MjcyZjU1Y2ZiOGY0ZmVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtCAgr7avhuEBBBkR2j06yJi11ZhC TWXPSJJJNIpeGSpwkBo5dNaCWme9k1byQbonxlcErR7Eb94f9s3Ovthi5sYkaviQ yiVtewiV2dkaoAmA7RKvtcri0jotroeusCIqE/DyWJvJ0DV5cPoNBpMfv8FT3w2g KbNatsQs3eWlZS6MhN2MiaSzUXn96+tE7PJuq9iEGJ4JxvcjDsJhOv0cENSg8p1r 0UyCfkHZqeDcovlIssNjyFg9FZtJQliGhDL4NIjuselWAvX2Oh7vgy3Cvm4cfxBQ DRD5U10m4+Y+nkqWyd0HQkqK+KuGb2UYi8osjtGTfCG3vemH86DKwUVSpwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBqawLvLduk4mKqH6YJy9Vz7j0/uMB8GA1UdIwQY MBaAFAfqUj7H+Td6Gp5db6hoF+09bAqCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQi1wU1BzZjVOM29hbmwxdnFHZ1g3VDFzQ29JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS85ZGZjZDUtMDdkNi00YWQ4LWFkMWQt YjYwZmQ2Nzk5N2JiLzEvQi1wU1BzZjVOM29hbmwxdnFHZ1g3VDFzQ29JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS85ZGZjZDUtMDdkNi00YWQ4LWFkMWQtYjYwZmQ2Nzk5N2Ji LzEvQi1wU1BzZjVOM29hbmwxdnFHZ1g3VDFzQ29JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALrcFpBib PDD03MmdhGU3MkZPTm7DNW2PX72T8Wolwr1ACSizIdzVA06VpFfX40sYmkvx8ada fEYEyitTTiQgeNTDJxynujIYkiw3X41+qiTNIhAL3SKxBXIcpRzvPSq/V0EEp+NQ XMEpwX876V4iLw85dDWSVZX9jabAZHtuqszOaGondBUtqtfRNzlco67DC6RS46sR tfR2ipzIVP2ppmxrbSrCSIcPvofeYyDCZ9/P2bzjLQl6J+LIiGVrMHwB29S/tQzN 1WkfQQxg9xjIOmJr9atpMva12zoF/RFyOcCsl1C4KuYwFKHDsZ3kSVFHSLcBZv4j xj95AnHCJnVFQg== -----END CERTIFICATE-----Generated at Sat Dec 6 06:57:42 2025 by rpki-client