This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/f01a02-5a9e-4441-9b3d-d5c18862d026/1/bJX9yjZ7zhni8lO3jzYI_zQUKMk.mft File: bJX9yjZ7zhni8lO3jzYI_zQUKMk.mft (raw, json) Hash identifier: GK4LaIzUfVjhm2Ywr4BAUkDcS4EE+JpmbYzJjn6d/y0= Subject key identifier: 00:15:A1:B9:88:21:A9:D7:CA:9A:87:F5:26:E1:D4:24:2D:CD:3B:E1 Authority key identifier: 6C:95:FD:CA:36:7B:CE:19:E2:F2:53:B7:8F:36:08:FF:34:14:28:C9 Certificate issuer: /CN=6c95fdca367bce19e2f253b78f3608ff341428c9 Certificate serial: 019AF5E5D176A23DEEC30F968CACBFDBC7C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bJX9yjZ7zhni8lO3jzYI_zQUKMk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/f01a02-5a9e-4441-9b3d-d5c18862d026/1/bJX9yjZ7zhni8lO3jzYI_zQUKMk.mft Manifest number: 032E Signing time: Sat 06 Dec 2025 23:01:10 +0000 Manifest this update: Sat 06 Dec 2025 23:01:10 +0000 Manifest next update: Sun 07 Dec 2025 23:01:10 +0000 Files and hashes: 1: Lf1xzTXAc6SiNDJtIVl8iWMf5b4.roa (hash: Mlu5t33KkThbOioHblpilqA5fDGAJvYvW4onNzjvD5s=) 2: bJX9yjZ7zhni8lO3jzYI_zQUKMk.crl (hash: NXlIz3f2X4rJk0pIb3vbjIaJpFRMRNScgjvSUY4FyTk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/f01a02-5a9e-4441-9b3d-d5c18862d026/1/bJX9yjZ7zhni8lO3jzYI_zQUKMk.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/f01a02-5a9e-4441-9b3d-d5c18862d026/1/bJX9yjZ7zhni8lO3jzYI_zQUKMk.mft rsync://rpki.ripe.net/repository/DEFAULT/bJX9yjZ7zhni8lO3jzYI_zQUKMk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:e5:d1:76:a2:3d:ee:c3:0f:96:8c:ac:bf:db:c7:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6c95fdca367bce19e2f253b78f3608ff341428c9 Validity Not Before: Dec 6 23:01:10 2025 GMT Not After : Dec 7 23:01:10 2025 GMT Subject: CN=0015a1b98821a9d7ca9a87f526e1d4242dcd3be1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:36:f1:e0:c4:5c:3d:b6:2d:c8:71:e6:bc:ff: 4e:37:0d:61:db:fb:d7:18:21:9d:c4:60:99:64:af: d6:28:e9:b2:ea:e5:fb:66:a3:71:4a:ce:d4:5a:fc: 58:01:34:62:4e:46:1d:75:c6:97:e3:8b:3d:b1:9b: 57:92:96:3c:28:35:2c:a6:d7:71:a7:94:33:80:20: 6b:c2:1c:d2:c0:c7:26:ba:5f:0a:ea:18:bc:8a:67: 9d:f5:39:a9:45:f7:23:13:a6:b1:13:c3:b6:ec:67: d0:ec:ed:ad:72:5f:25:bf:33:7b:a4:9f:3c:30:de: c1:e6:95:89:10:2a:08:5f:b3:a0:88:d0:81:a5:98: 15:4f:39:42:00:0f:b7:eb:55:bd:7c:cf:a9:33:27: 39:75:ca:dd:58:89:05:66:d6:fb:fb:65:0f:69:e3: 5f:92:db:e6:b5:3c:77:08:0b:ff:be:4a:ee:2b:e4: af:7b:eb:77:dc:c3:71:a0:b1:ac:ab:fb:98:ea:36: fe:c1:38:6f:da:c8:10:7d:f7:8e:a8:f1:43:29:0d: 43:68:11:b7:c3:62:7c:ec:94:13:d7:1e:83:61:68: ea:cf:5c:70:2a:84:75:50:50:8f:58:57:03:d5:4d: 82:a8:8f:b7:61:ab:cf:a2:71:e3:61:c0:53:d1:65: 97:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:15:A1:B9:88:21:A9:D7:CA:9A:87:F5:26:E1:D4:24:2D:CD:3B:E1 X509v3 Authority Key Identifier: keyid:6C:95:FD:CA:36:7B:CE:19:E2:F2:53:B7:8F:36:08:FF:34:14:28:C9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bJX9yjZ7zhni8lO3jzYI_zQUKMk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/f01a02-5a9e-4441-9b3d-d5c18862d026/1/bJX9yjZ7zhni8lO3jzYI_zQUKMk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/f01a02-5a9e-4441-9b3d-d5c18862d026/1/bJX9yjZ7zhni8lO3jzYI_zQUKMk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 29:69:98:79:62:fb:0b:ed:f7:b4:f3:4e:06:f1:ae:4d:ea:0b: ad:b1:21:f4:ac:05:4f:c3:e7:60:4e:3c:8a:f8:c7:93:ff:22: 7b:c8:c7:21:dd:f0:dc:54:3b:5d:09:70:ca:47:04:67:6c:e0: 98:1b:b1:db:23:3b:8e:1c:0e:0f:a2:27:43:f7:8d:77:11:a3: c2:40:d8:2e:63:00:5a:5e:dc:ca:1b:f6:ae:40:fd:01:7b:06: b2:4a:4b:20:cf:30:ae:03:a2:39:75:67:8a:75:bc:c8:ec:dd: b7:09:f6:84:3f:ff:b1:68:d0:ef:d4:2c:95:0b:cf:e3:b6:f9: 90:7e:b5:85:f6:35:de:43:9c:f1:43:92:5a:72:19:f1:01:16: fd:48:cc:bb:4e:d3:22:c2:05:c6:54:f5:1d:43:84:8e:ff:3f: eb:c3:8c:07:9e:38:30:e6:9e:cb:54:e0:32:b5:22:f4:96:1d: 72:fa:de:65:d1:ea:16:74:ce:5c:d9:01:7b:42:d5:9c:45:b4: 34:14:6e:f8:88:6b:22:d0:bd:ba:2a:f7:57:9b:b4:62:0c:4b: 5f:8a:18:6a:3d:63:71:05:ad:56:d7:5c:c8:e9:6a:ad:60:0e: 34:d0:e9:2e:fc:65:13:2e:f4:ac:c9:8c:cd:bd:f8:25:76:76: 18:80:cd:d0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr15dF2oj3uww+WjKy/28fAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZjOTVmZGNhMzY3YmNlMTllMmYyNTNiNzhmMzYwOGZmMzQx NDI4YzkwHhcNMjUxMjA2MjMwMTEwWhcNMjUxMjA3MjMwMTEwWjAzMTEwLwYDVQQD EygwMDE1YTFiOTg4MjFhOWQ3Y2E5YTg3ZjUyNmUxZDQyNDJkY2QzYmUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoDbx4MRcPbYtyHHmvP9ONw1h2/vX GCGdxGCZZK/WKOmy6uX7ZqNxSs7UWvxYATRiTkYddcaX44s9sZtXkpY8KDUsptdx p5QzgCBrwhzSwMcmul8K6hi8imed9TmpRfcjE6axE8O27GfQ7O2tcl8lvzN7pJ88 MN7B5pWJECoIX7OgiNCBpZgVTzlCAA+361W9fM+pMyc5dcrdWIkFZtb7+2UPaeNf ktvmtTx3CAv/vkruK+Sve+t33MNxoLGsq/uY6jb+wThv2sgQffeOqPFDKQ1DaBG3 w2J87JQT1x6DYWjqz1xwKoR1UFCPWFcD1U2CqI+3YavPonHjYcBT0WWXZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAAVobmIIanXypqH9Sbh1CQtzTvhMB8GA1UdIwQY MBaAFGyV/co2e84Z4vJTt482CP80FCjJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYkpYOXlqWjd6aG5pOGxPM2p6WUlfelFVS01rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS9mMDFhMDItNWE5ZS00NDQxLTliM2Qt ZDVjMTg4NjJkMDI2LzEvYkpYOXlqWjd6aG5pOGxPM2p6WUlfelFVS01rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS9mMDFhMDItNWE5ZS00NDQxLTliM2QtZDVjMTg4NjJkMDI2 LzEvYkpYOXlqWjd6aG5pOGxPM2p6WUlfelFVS01rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKWmYeWL7 C+33tPNOBvGuTeoLrbEh9KwFT8PnYE48ivjHk/8ie8jHId3w3FQ7XQlwykcEZ2zg mBux2yM7jhwOD6InQ/eNdxGjwkDYLmMAWl7cyhv2rkD9AXsGskpLIM8wrgOiOXVn inW8yOzdtwn2hD//sWjQ79QslQvP47b5kH61hfY13kOc8UOSWnIZ8QEW/UjMu07T IsIFxlT1HUOEjv8/68OMB544MOaey1TgMrUi9JYdcvreZdHqFnTOXNkBe0LVnEW0 NBRu+IhrItC9uir3V5u0YgxLX4oYaj1jcQWtVtdcyOlqrWAONNDpLvxlEy70rMmM zb34JXZ2GIDN0A== -----END CERTIFICATE-----Generated at Sun Dec 7 03:57:21 2025 by rpki-client