This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/3b104a-c039-42c2-9ff1-85cbd2068e8f/1/BDqcNdnhovTTSnVPom0gNleEchg.mft File: BDqcNdnhovTTSnVPom0gNleEchg.mft (raw, json) Hash identifier: dfl4ZUAcUy4d2LTWSS8u7Arpc5NVDeHTqOwT95FZHAA= Subject key identifier: 12:70:43:07:94:A1:BF:9C:C1:61:08:58:BC:E7:E7:A5:23:CC:FB:54 Authority key identifier: 04:3A:9C:35:D9:E1:A2:F4:D3:4A:75:4F:A2:6D:20:36:57:84:72:18 Certificate issuer: /CN=043a9c35d9e1a2f4d34a754fa26d203657847218 Certificate serial: 019AF20996D84959AE995B905A6ED81B1D63 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BDqcNdnhovTTSnVPom0gNleEchg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/3b104a-c039-42c2-9ff1-85cbd2068e8f/1/BDqcNdnhovTTSnVPom0gNleEchg.mft Manifest number: 159A Signing time: Sat 06 Dec 2025 05:01:45 +0000 Manifest this update: Sat 06 Dec 2025 05:01:45 +0000 Manifest next update: Sun 07 Dec 2025 05:01:45 +0000 Files and hashes: 1: BDqcNdnhovTTSnVPom0gNleEchg.crl (hash: eILf2UtPVeYHzwqy6Ft6pNVYS3/oa+5fLSyYa2jCISY=) 2: dXeaBJl10vB-B0zSVkLwNY_iIs4.roa (hash: F86Ia5myX5pjFnoQkxccwMDKgx5XnQXJd15fpxB0f8o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/3b104a-c039-42c2-9ff1-85cbd2068e8f/1/BDqcNdnhovTTSnVPom0gNleEchg.crl rsync://rpki.ripe.net/repository/DEFAULT/24/3b104a-c039-42c2-9ff1-85cbd2068e8f/1/BDqcNdnhovTTSnVPom0gNleEchg.mft rsync://rpki.ripe.net/repository/DEFAULT/BDqcNdnhovTTSnVPom0gNleEchg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:96:d8:49:59:ae:99:5b:90:5a:6e:d8:1b:1d:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=043a9c35d9e1a2f4d34a754fa26d203657847218 Validity Not Before: Dec 6 05:01:45 2025 GMT Not After : Dec 7 05:01:45 2025 GMT Subject: CN=1270430794a1bf9cc1610858bce7e7a523ccfb54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:dc:d0:35:ce:03:c2:0a:d0:59:31:69:9b:96: a2:52:23:83:73:38:03:f0:8f:0d:0a:a0:5a:d5:62: 39:96:84:9b:06:7e:78:af:4e:43:5e:21:7c:89:85: 85:87:0b:d3:2d:1a:47:fe:93:bf:5e:74:b0:35:de: 95:fc:43:fb:78:23:96:3e:ac:eb:a5:38:1a:4e:25: d4:c1:f4:8a:b3:5c:e5:5f:5d:42:17:49:00:ef:26: 64:f1:d9:0e:a5:08:ed:9c:e1:8d:df:df:45:a8:17: d8:35:b0:6c:d0:ec:88:89:7d:7b:b1:86:08:3a:4c: 01:00:3b:a9:48:11:22:2b:6f:1d:de:35:0f:78:f0: df:ab:7d:a4:b8:66:67:eb:f3:02:95:97:b3:cb:98: 78:14:f4:c3:20:c7:2e:54:5e:f2:e9:9d:92:1e:23: ca:8d:ae:a8:ee:4e:2a:97:7d:24:2d:84:bb:3e:1a: 98:97:a3:d8:82:aa:c0:f0:6d:6f:65:13:7e:bc:67: c3:a5:b7:f2:d2:02:b6:bd:ea:7d:3c:77:fe:3b:a9: 68:84:5f:3c:96:8f:8a:0d:b9:75:65:ea:1e:94:b8: f9:bd:62:98:ab:b5:7b:ad:1b:93:49:b8:47:50:9e: 8c:66:cf:4c:ef:87:06:66:c4:65:44:3a:98:f7:0b: 3d:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:70:43:07:94:A1:BF:9C:C1:61:08:58:BC:E7:E7:A5:23:CC:FB:54 X509v3 Authority Key Identifier: keyid:04:3A:9C:35:D9:E1:A2:F4:D3:4A:75:4F:A2:6D:20:36:57:84:72:18 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BDqcNdnhovTTSnVPom0gNleEchg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/3b104a-c039-42c2-9ff1-85cbd2068e8f/1/BDqcNdnhovTTSnVPom0gNleEchg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/24/3b104a-c039-42c2-9ff1-85cbd2068e8f/1/BDqcNdnhovTTSnVPom0gNleEchg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 54:62:cc:13:30:2c:45:4c:68:7b:0a:30:55:27:3e:cd:81:2b: c7:0b:9a:dc:16:67:bc:f3:e8:5f:5f:48:07:d7:2c:e8:cf:1f: 41:f5:38:56:ce:93:a3:e0:31:3c:44:9c:09:1f:cf:dd:cc:23: 14:a6:b8:3d:11:9c:41:30:41:29:cc:ba:8d:8f:70:3e:61:f6: 7d:b0:1b:98:e8:05:6a:52:42:3f:e4:ac:5d:db:b6:10:bc:d4: 96:28:a5:9d:13:a3:1a:47:33:21:7e:c1:87:82:6d:76:e7:1f: 0e:5e:ec:6d:07:25:21:8e:2a:66:41:66:f1:1d:bd:3a:e6:51: 52:49:37:61:70:27:d7:cf:2a:b9:be:dd:a9:92:21:75:cb:41: 3a:df:2a:55:3d:be:9c:ed:57:19:1d:39:7d:38:85:6e:0c:28: 55:8f:a8:3e:50:fb:4a:81:e2:98:80:75:78:8c:85:3c:c5:3e: 97:d6:22:52:e3:95:dc:f5:b2:52:d0:5c:77:9a:2e:52:8c:77: f8:0e:5b:2f:60:0a:b1:f9:00:85:3b:c0:c2:a7:d9:37:1e:c7: 78:0b:7b:db:8c:20:93:87:0f:32:f4:6d:bc:57:c9:bc:20:bd: 78:29:8b:2b:30:18:4f:5e:b6:d0:38:88:66:20:a1:fb:f2:57: 30:29:43:74 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCZbYSVmumVuQWm7YGx1jMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA0M2E5YzM1ZDllMWEyZjRkMzRhNzU0ZmEyNmQyMDM2NTc4 NDcyMTgwHhcNMjUxMjA2MDUwMTQ1WhcNMjUxMjA3MDUwMTQ1WjAzMTEwLwYDVQQD EygxMjcwNDMwNzk0YTFiZjljYzE2MTA4NThiY2U3ZTdhNTIzY2NmYjU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo9zQNc4DwgrQWTFpm5aiUiODczgD 8I8NCqBa1WI5loSbBn54r05DXiF8iYWFhwvTLRpH/pO/XnSwNd6V/EP7eCOWPqzr pTgaTiXUwfSKs1zlX11CF0kA7yZk8dkOpQjtnOGN399FqBfYNbBs0OyIiX17sYYI OkwBADupSBEiK28d3jUPePDfq32kuGZn6/MClZezy5h4FPTDIMcuVF7y6Z2SHiPK ja6o7k4ql30kLYS7PhqYl6PYgqrA8G1vZRN+vGfDpbfy0gK2vep9PHf+O6lohF88 lo+KDbl1ZeoelLj5vWKYq7V7rRuTSbhHUJ6MZs9M74cGZsRlRDqY9ws9dQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBJwQweUob+cwWEIWLzn56UjzPtUMB8GA1UdIwQY MBaAFAQ6nDXZ4aL000p1T6JtIDZXhHIYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQkRxY05kbmhvdlRUU25WUG9tMGdObGVFY2hnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC8zYjEwNGEtYzAzOS00MmMyLTlmZjEt ODVjYmQyMDY4ZThmLzEvQkRxY05kbmhvdlRUU25WUG9tMGdObGVFY2hnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNC8zYjEwNGEtYzAzOS00MmMyLTlmZjEtODVjYmQyMDY4ZThm LzEvQkRxY05kbmhvdlRUU25WUG9tMGdObGVFY2hnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVGLMEzAs RUxoewowVSc+zYErxwua3BZnvPPoX19IB9cs6M8fQfU4Vs6To+AxPEScCR/P3cwj FKa4PRGcQTBBKcy6jY9wPmH2fbAbmOgFalJCP+SsXdu2ELzUliilnROjGkczIX7B h4JtducfDl7sbQclIY4qZkFm8R29OuZRUkk3YXAn188qub7dqZIhdctBOt8qVT2+ nO1XGR05fTiFbgwoVY+oPlD7SoHimIB1eIyFPMU+l9YiUuOV3PWyUtBcd5ouUox3 +A5bL2AKsfkAhTvAwqfZNx7HeAt724wgk4cPMvRtvFfJvCC9eCmLKzAYT1620DiI ZiCh+/JXMClDdA== -----END CERTIFICATE-----Generated at Sat Dec 6 08:20:37 2025 by rpki-client