This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.mft File: bkQo9_F7GcFQaMq5OdN3lA6NTHA.mft (raw, json) Hash identifier: HptJQacSe7w8+4u9iRsOrFvL3UbiYjqAzyr0bPGKg0g= Subject key identifier: 5B:9E:E3:B9:B5:A6:1F:55:07:F5:DD:4B:B0:6A:50:DA:EA:4A:C3:27 Authority key identifier: 6E:44:28:F7:F1:7B:19:C1:50:68:CA:B9:39:D3:77:94:0E:8D:4C:70 Certificate issuer: /CN=6e4428f7f17b19c15068cab939d377940e8d4c70 Certificate serial: 019B2BF870B5E78AB03D656F6B781DC766E0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bkQo9_F7GcFQaMq5OdN3lA6NTHA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.mft Manifest number: 0530 Signing time: Wed 17 Dec 2025 11:01:00 +0000 Manifest this update: Wed 17 Dec 2025 11:01:00 +0000 Manifest next update: Thu 18 Dec 2025 11:01:00 +0000 Files and hashes: 1: bkQo9_F7GcFQaMq5OdN3lA6NTHA.crl (hash: CKpyC/QwFcuGQX0id/Uxymg+3U3s/QI5hCF+Py7koZY=) 2: r5LfqFNzBSvkVNYj6vVDPex2eII.roa (hash: zD3Y+yhvhdTCP2LNWWBpR2SBF00RvRC4BFmgCTYqEsc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.crl rsync://rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.mft rsync://rpki.ripe.net/repository/DEFAULT/bkQo9_F7GcFQaMq5OdN3lA6NTHA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 10:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2b:f8:70:b5:e7:8a:b0:3d:65:6f:6b:78:1d:c7:66:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6e4428f7f17b19c15068cab939d377940e8d4c70 Validity Not Before: Dec 17 11:01:00 2025 GMT Not After : Dec 18 11:01:00 2025 GMT Subject: CN=5b9ee3b9b5a61f5507f5dd4bb06a50daea4ac327 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:3f:d6:5a:3f:1d:fc:34:01:2e:85:bb:72:e1: 0e:98:e1:1d:00:1e:c2:b8:b2:4a:72:6b:e8:27:e0: 77:b8:2e:30:fc:38:c4:22:15:e0:25:1a:3e:be:48: ac:dc:aa:e3:17:eb:49:71:71:2b:0a:d7:d8:9a:9f: 1a:1f:27:08:66:51:9f:6f:c8:31:86:46:7c:bb:50: ab:aa:61:75:03:32:53:3d:16:ec:85:a5:13:2e:fb: 61:9d:f8:d2:70:a3:88:8c:0f:7f:ea:2c:a4:28:8a: f2:fd:20:04:3e:e2:d9:da:8e:43:45:07:71:d6:22: e2:3d:e4:e2:e9:68:61:1d:c1:da:6c:1b:44:8f:08: 29:f8:fc:b8:e7:87:9a:f3:34:85:5a:3f:25:bd:b8: 9f:8f:ff:8b:00:63:67:cd:9d:6c:26:ad:a3:dd:b1: b8:06:35:df:ca:47:69:8a:f9:9a:58:34:0c:74:a5: 74:d1:96:f3:56:f7:69:a9:88:c4:5d:e6:dc:f8:01: 46:fc:1e:80:b4:98:3d:fd:f5:72:7c:d1:27:2f:f4: 76:65:30:81:8c:2f:4d:80:ef:e6:1d:89:38:7b:2d: 48:32:1d:1f:ba:ca:0a:26:ad:48:83:3c:c9:a1:aa: 3b:06:98:59:20:42:ab:d0:1d:6a:f7:ac:8f:05:7a: 12:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:9E:E3:B9:B5:A6:1F:55:07:F5:DD:4B:B0:6A:50:DA:EA:4A:C3:27 X509v3 Authority Key Identifier: keyid:6E:44:28:F7:F1:7B:19:C1:50:68:CA:B9:39:D3:77:94:0E:8D:4C:70 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bkQo9_F7GcFQaMq5OdN3lA6NTHA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:e8:07:fd:31:8a:ae:fe:9e:8d:74:ae:55:82:16:bc:07:5c: d8:9e:33:50:4f:67:13:32:72:d8:67:ed:a4:3f:dc:bc:23:83: 19:96:1c:80:2b:06:e3:a5:54:a4:75:0d:ea:a4:e6:20:f9:27: 8a:25:2e:29:d1:94:14:2a:09:ff:26:e0:4b:2b:de:1e:87:ac: a4:36:70:99:80:8a:3f:4a:5a:3f:66:25:69:97:87:5f:1e:17: 2c:79:91:60:6f:dd:8b:13:00:11:e1:1b:fd:8e:88:78:70:dd: cf:65:e0:da:05:d8:b6:df:0f:90:fb:7a:15:f2:d7:6f:2d:24: 83:c2:3a:43:58:e6:9e:61:86:18:7d:58:ce:a1:17:65:00:4f: 6e:66:e9:db:85:ab:97:79:45:92:43:fa:14:bd:ac:00:01:c6: 3e:9d:48:bb:8c:db:e8:10:e6:06:cd:4e:d8:d4:45:1b:7e:d4: b2:4b:99:1b:a4:a5:8e:fe:2e:7f:85:df:d8:74:ca:24:e1:ac: 26:9a:0e:b9:33:6b:2c:25:a7:5d:22:9d:a8:d2:ff:8e:60:4b: 37:f8:0d:c7:25:cb:54:0a:36:94:4a:e7:f0:39:3e:2a:23:a0: 99:42:4e:f2:2c:93:c6:35:4a:c1:0a:da:30:7e:f6:4c:63:b5: e0:51:c4:51 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsr+HC154qwPWVva3gdx2bgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZlNDQyOGY3ZjE3YjE5YzE1MDY4Y2FiOTM5ZDM3Nzk0MGU4 ZDRjNzAwHhcNMjUxMjE3MTEwMTAwWhcNMjUxMjE4MTEwMTAwWjAzMTEwLwYDVQQD Eyg1YjllZTNiOWI1YTYxZjU1MDdmNWRkNGJiMDZhNTBkYWVhNGFjMzI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuz/WWj8d/DQBLoW7cuEOmOEdAB7C uLJKcmvoJ+B3uC4w/DjEIhXgJRo+vkis3KrjF+tJcXErCtfYmp8aHycIZlGfb8gx hkZ8u1CrqmF1AzJTPRbshaUTLvthnfjScKOIjA9/6iykKIry/SAEPuLZ2o5DRQdx 1iLiPeTi6WhhHcHabBtEjwgp+Py454ea8zSFWj8lvbifj/+LAGNnzZ1sJq2j3bG4 BjXfykdpivmaWDQMdKV00ZbzVvdpqYjEXebc+AFG/B6AtJg9/fVyfNEnL/R2ZTCB jC9NgO/mHYk4ey1IMh0fusoKJq1IgzzJoao7BphZIEKr0B1q96yPBXoSyQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFue47m1ph9VB/XdS7BqUNrqSsMnMB8GA1UdIwQY MBaAFG5EKPfxexnBUGjKuTnTd5QOjUxwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYmtRbzlfRjdHY0ZRYU1xNU9kTjNsQTZOVEhBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS82Y2Y1ZjQtM2Q2MC00MWQ3LWFlMWEt Y2JjMzMxYmZjZGIyLzEvYmtRbzlfRjdHY0ZRYU1xNU9kTjNsQTZOVEhBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNS82Y2Y1ZjQtM2Q2MC00MWQ3LWFlMWEtY2JjMzMxYmZjZGIy LzEvYmtRbzlfRjdHY0ZRYU1xNU9kTjNsQTZOVEhBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQegH/TGK rv6ejXSuVYIWvAdc2J4zUE9nEzJy2GftpD/cvCODGZYcgCsG46VUpHUN6qTmIPkn iiUuKdGUFCoJ/ybgSyveHoespDZwmYCKP0paP2YlaZeHXx4XLHmRYG/dixMAEeEb /Y6IeHDdz2Xg2gXYtt8PkPt6FfLXby0kg8I6Q1jmnmGGGH1YzqEXZQBPbmbp24Wr l3lFkkP6FL2sAAHGPp1Iu4zb6BDmBs1O2NRFG37UskuZG6Sljv4uf4Xf2HTKJOGs JpoOuTNrLCWnXSKdqNL/jmBLN/gNxyXLVAo2lErn8Dk+KiOgmUJO8iyTxjVKwQra MH72TGO14FHEUQ== -----END CERTIFICATE-----Generated at Wed Dec 17 18:35:13 2025 by rpki-client