This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/e243d0-19fe-4da3-a20a-e6effd3cef32/1/BsO4tfN-IQaCUFcfTbg7RxRGiiw.mft File: BsO4tfN-IQaCUFcfTbg7RxRGiiw.mft (raw, json) Hash identifier: fFJnQ7mysLYcArTR5YLlFcrsXXBGmu8nOMG1IV+Dm24= Subject key identifier: B5:29:0F:0C:8B:D9:66:CC:C1:F7:76:2C:EB:33:B9:07:18:6A:ED:B2 Authority key identifier: 06:C3:B8:B5:F3:7E:21:06:82:50:57:1F:4D:B8:3B:47:14:46:8A:2C Certificate issuer: /CN=06c3b8b5f37e21068250571f4db83b4714468a2c Certificate serial: 019B28897ED320D397FEE6B11C215AD45770 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BsO4tfN-IQaCUFcfTbg7RxRGiiw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/e243d0-19fe-4da3-a20a-e6effd3cef32/1/BsO4tfN-IQaCUFcfTbg7RxRGiiw.mft Manifest number: 177E Signing time: Tue 16 Dec 2025 19:00:58 +0000 Manifest this update: Tue 16 Dec 2025 19:00:58 +0000 Manifest next update: Wed 17 Dec 2025 19:00:58 +0000 Files and hashes: 1: BsO4tfN-IQaCUFcfTbg7RxRGiiw.crl (hash: vS3hGajrV8b9n3jF11zq1nYNAkuDj6QFcaCdq6rXMfc=) 2: pa3jfF65O1LeusJmZP9_Hq2CHUA.roa (hash: DB5zR9clFk0B3PVw7uwrAY7t9bq1MxHbsRq/+LHkr9E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/e243d0-19fe-4da3-a20a-e6effd3cef32/1/BsO4tfN-IQaCUFcfTbg7RxRGiiw.crl rsync://rpki.ripe.net/repository/DEFAULT/13/e243d0-19fe-4da3-a20a-e6effd3cef32/1/BsO4tfN-IQaCUFcfTbg7RxRGiiw.mft rsync://rpki.ripe.net/repository/DEFAULT/BsO4tfN-IQaCUFcfTbg7RxRGiiw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 14:45:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:28:89:7e:d3:20:d3:97:fe:e6:b1:1c:21:5a:d4:57:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=06c3b8b5f37e21068250571f4db83b4714468a2c Validity Not Before: Dec 16 19:00:58 2025 GMT Not After : Dec 17 19:00:58 2025 GMT Subject: CN=b5290f0c8bd966ccc1f7762ceb33b907186aedb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:de:94:f6:05:be:e3:3c:8a:b3:d0:06:3b:ff: 13:1d:36:c7:cb:a0:ca:7a:f9:53:b9:f1:10:40:b4: 89:b2:cd:37:89:d4:39:48:a3:65:bd:4c:88:40:f4: da:8e:39:26:11:ca:27:2e:63:49:52:c0:0a:78:60: 32:bf:66:e8:9b:ae:27:08:dd:ba:42:ef:58:6e:d2: 52:d7:df:75:1f:ff:fb:c9:39:bf:ca:ee:22:f4:f1: 0e:83:04:bf:f4:ed:04:25:d8:05:4f:7c:7e:4e:7f: 59:de:32:a6:82:99:19:7a:53:26:aa:e7:89:0f:fb: b9:58:d1:de:2f:4a:a9:31:32:08:81:05:d7:8d:61: c3:a7:e2:f1:36:e0:db:7c:4a:1d:02:b6:07:32:28: db:7e:e8:ba:61:aa:48:84:be:48:d1:68:4b:42:d4: bd:75:6a:d5:04:bd:ad:ab:05:5e:22:cf:97:f3:de: d6:69:aa:8f:ce:39:56:b6:91:e3:03:56:c8:56:41: b6:2c:49:37:b1:f9:f9:00:8c:de:2f:b9:4c:17:c2: 25:29:80:18:27:7c:ec:35:55:a3:fc:10:ad:31:47: 9e:88:55:cd:d2:57:e4:8e:5f:09:b8:3f:22:08:a6: 93:5e:87:c6:7c:78:ee:b6:f1:f1:1a:a5:26:3d:c2: 2d:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:29:0F:0C:8B:D9:66:CC:C1:F7:76:2C:EB:33:B9:07:18:6A:ED:B2 X509v3 Authority Key Identifier: keyid:06:C3:B8:B5:F3:7E:21:06:82:50:57:1F:4D:B8:3B:47:14:46:8A:2C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BsO4tfN-IQaCUFcfTbg7RxRGiiw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/e243d0-19fe-4da3-a20a-e6effd3cef32/1/BsO4tfN-IQaCUFcfTbg7RxRGiiw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/e243d0-19fe-4da3-a20a-e6effd3cef32/1/BsO4tfN-IQaCUFcfTbg7RxRGiiw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0b:4e:10:dd:57:e2:f2:70:0a:f4:24:b1:4c:4c:5b:26:e2:d7: d9:4a:a6:f0:02:ac:a6:dd:9d:39:b7:57:b3:2c:67:ad:ec:ec: 60:20:89:d8:94:ac:4f:5c:0f:9e:00:4b:fb:97:46:d7:ba:17: fb:2b:72:56:60:ce:c0:f7:0c:f1:fc:34:80:cb:fc:e9:77:e8: c8:c0:d1:bc:a9:c3:d7:4b:6d:ef:3b:79:61:7d:ae:8e:b3:88: 72:88:96:2d:94:4b:ed:05:15:20:dc:5f:6a:99:3b:bc:e2:1b: 99:5d:b7:92:fb:9f:19:d3:fc:fa:af:88:84:cb:ba:dc:2f:9b: 33:09:b2:1a:10:fe:5e:48:16:8a:88:c2:07:da:fb:ae:e1:ef: 68:d3:5a:00:e3:7e:4c:0b:bc:3f:7b:64:c3:ce:38:8c:b9:00: d0:a1:43:8f:d4:47:39:c4:f4:cf:a1:29:14:02:b2:d5:de:49: 40:01:8e:1d:29:f6:ae:39:a0:d5:37:df:61:fa:bc:c1:f8:ee: f5:34:54:90:67:06:e7:f4:3e:75:1a:7a:d5:a4:10:e1:60:2d: 4f:4f:71:f4:71:ef:50:f1:a9:1d:fc:38:66:8d:e7:dc:73:07: a4:2c:58:60:b3:78:9e:76:69:55:f7:38:50:19:bd:a4:d4:2f: ea:14:e5:7f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsoiX7TINOX/uaxHCFa1FdwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA2YzNiOGI1ZjM3ZTIxMDY4MjUwNTcxZjRkYjgzYjQ3MTQ0 NjhhMmMwHhcNMjUxMjE2MTkwMDU4WhcNMjUxMjE3MTkwMDU4WjAzMTEwLwYDVQQD EyhiNTI5MGYwYzhiZDk2NmNjYzFmNzc2MmNlYjMzYjkwNzE4NmFlZGIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsd6U9gW+4zyKs9AGO/8THTbHy6DK evlTufEQQLSJss03idQ5SKNlvUyIQPTajjkmEconLmNJUsAKeGAyv2bom64nCN26 Qu9YbtJS1991H//7yTm/yu4i9PEOgwS/9O0EJdgFT3x+Tn9Z3jKmgpkZelMmqueJ D/u5WNHeL0qpMTIIgQXXjWHDp+LxNuDbfEodArYHMijbfui6YapIhL5I0WhLQtS9 dWrVBL2tqwVeIs+X897WaaqPzjlWtpHjA1bIVkG2LEk3sfn5AIzeL7lMF8IlKYAY J3zsNVWj/BCtMUeeiFXN0lfkjl8JuD8iCKaTXofGfHjutvHxGqUmPcItrQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLUpDwyL2WbMwfd2LOszuQcYau2yMB8GA1UdIwQY MBaAFAbDuLXzfiEGglBXH024O0cURoosMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQnNPNHRmTi1JUWFDVUZjZlRiZzdSeFJHaWl3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9lMjQzZDAtMTlmZS00ZGEzLWEyMGEt ZTZlZmZkM2NlZjMyLzEvQnNPNHRmTi1JUWFDVUZjZlRiZzdSeFJHaWl3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy9lMjQzZDAtMTlmZS00ZGEzLWEyMGEtZTZlZmZkM2NlZjMy LzEvQnNPNHRmTi1JUWFDVUZjZlRiZzdSeFJHaWl3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAC04Q3Vfi 8nAK9CSxTExbJuLX2Uqm8AKspt2dObdXsyxnrezsYCCJ2JSsT1wPngBL+5dG17oX +ytyVmDOwPcM8fw0gMv86XfoyMDRvKnD10tt7zt5YX2ujrOIcoiWLZRL7QUVINxf apk7vOIbmV23kvufGdP8+q+IhMu63C+bMwmyGhD+XkgWiojCB9r7ruHvaNNaAON+ TAu8P3tkw844jLkA0KFDj9RHOcT0z6EpFAKy1d5JQAGOHSn2rjmg1TffYfq8wfju 9TRUkGcG5/Q+dRp61aQQ4WAtT09x9HHvUPGpHfw4Zo3n3HMHpCxYYLN4nnZpVfc4 UBm9pNQv6hTlfw== -----END CERTIFICATE-----Generated at Tue Dec 16 23:40:30 2025 by rpki-client