This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/4a8cfa-542b-40b2-8a08-42ea47b12537/1/BHGIF3ih4S9tl8Uojv1MuVY9HUk.mft File: BHGIF3ih4S9tl8Uojv1MuVY9HUk.mft (raw, json) Hash identifier: BrfgSVAFJCZHKIFKKVCHODj/wXvII0zFMEcalodQDUE= Subject key identifier: 87:96:3D:9C:B5:0B:96:EE:12:2D:6B:2F:B9:EC:7C:5D:41:3A:2B:7A Authority key identifier: 04:71:88:17:78:A1:E1:2F:6D:97:C5:28:8E:FD:4C:B9:56:3D:1D:49 Certificate issuer: /CN=0471881778a1e12f6d97c5288efd4cb9563d1d49 Certificate serial: 019AF2AD5DF7668B926174B317FEDB111435 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BHGIF3ih4S9tl8Uojv1MuVY9HUk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/4a8cfa-542b-40b2-8a08-42ea47b12537/1/BHGIF3ih4S9tl8Uojv1MuVY9HUk.mft Manifest number: 0136 Signing time: Sat 06 Dec 2025 08:00:39 +0000 Manifest this update: Sat 06 Dec 2025 08:00:39 +0000 Manifest next update: Sun 07 Dec 2025 08:00:39 +0000 Files and hashes: 1: BHGIF3ih4S9tl8Uojv1MuVY9HUk.crl (hash: dGknwjVet0mXdrZf/nFfgDifD0d3t9mTdOSVgx8xuLA=) 2: SKma3lJH_nMIY0Jk_dGXIETBqnk.roa (hash: UvrsRqXxi0T7Fu2Z9LEfglN30LChbDf1sZ63pwOaTP8=) 3: YDrJUaM078njYLujsFOLBuJi-Ak.roa (hash: ynnnM4zonEkcKprGHH1eGlvVH9BFKbrOufYcESLz12A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/4a8cfa-542b-40b2-8a08-42ea47b12537/1/BHGIF3ih4S9tl8Uojv1MuVY9HUk.crl rsync://rpki.ripe.net/repository/DEFAULT/2c/4a8cfa-542b-40b2-8a08-42ea47b12537/1/BHGIF3ih4S9tl8Uojv1MuVY9HUk.mft rsync://rpki.ripe.net/repository/DEFAULT/BHGIF3ih4S9tl8Uojv1MuVY9HUk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:5d:f7:66:8b:92:61:74:b3:17:fe:db:11:14:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0471881778a1e12f6d97c5288efd4cb9563d1d49 Validity Not Before: Dec 6 08:00:39 2025 GMT Not After : Dec 7 08:00:39 2025 GMT Subject: CN=87963d9cb50b96ee122d6b2fb9ec7c5d413a2b7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:76:5a:15:0b:57:63:32:5e:e4:45:4e:d9:be: e2:3b:b1:b8:7b:e3:9e:62:14:cd:94:58:c1:bc:7c: b7:f3:6f:ce:19:53:f8:4d:82:85:fb:a5:5b:8d:1d: 8d:76:23:e3:e3:f8:c1:1e:56:c3:e0:2b:0e:95:d1: c7:e2:b5:27:df:e3:5b:d4:d8:78:39:13:7d:cb:3a: c0:f8:b6:67:b6:08:dc:85:b8:67:3a:f3:2f:3e:05: e5:93:58:b1:58:ac:5b:29:ef:d8:4b:4c:09:8d:5f: b4:51:c3:5f:6a:0a:83:ad:df:d7:88:77:b9:53:5c: 34:3b:66:8e:70:7f:66:86:0b:87:7d:f8:41:45:06: c1:84:db:dc:69:a8:72:bc:e9:66:bd:8f:d1:52:ad: 43:43:c0:46:a4:d7:d8:3c:f8:be:b7:13:7d:4e:f9: 5e:8e:0e:95:cc:81:9c:a0:be:0d:02:a4:de:5a:be: 2e:fb:8b:8c:77:60:92:2b:e6:7f:f6:2e:d1:63:92: 73:5a:68:2c:51:b5:80:59:c8:80:f9:a7:c8:29:40: 2f:76:cb:44:a0:b1:45:68:d0:bc:b2:9a:55:e1:ab: 47:5b:3c:27:fb:11:eb:c3:fb:87:71:7b:93:7f:3a: 2f:c8:74:85:a5:bc:f8:6a:18:79:24:7f:d4:7a:f4: 80:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:96:3D:9C:B5:0B:96:EE:12:2D:6B:2F:B9:EC:7C:5D:41:3A:2B:7A X509v3 Authority Key Identifier: keyid:04:71:88:17:78:A1:E1:2F:6D:97:C5:28:8E:FD:4C:B9:56:3D:1D:49 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BHGIF3ih4S9tl8Uojv1MuVY9HUk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/4a8cfa-542b-40b2-8a08-42ea47b12537/1/BHGIF3ih4S9tl8Uojv1MuVY9HUk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/4a8cfa-542b-40b2-8a08-42ea47b12537/1/BHGIF3ih4S9tl8Uojv1MuVY9HUk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ab:ab:75:e5:db:00:60:d9:1b:48:03:4b:7b:b9:ea:d6:a5:54: 16:87:cc:d9:b0:2c:58:57:eb:3f:85:70:dc:dd:ee:63:9e:49: 48:fb:de:c5:71:ac:00:ec:34:c5:46:73:e8:a8:24:66:7b:8e: 5d:70:d6:29:12:13:b5:b7:95:ea:a6:1c:f6:86:6a:8e:9b:d3: ec:04:0d:c5:83:c4:05:a6:9f:0b:61:59:9a:35:e1:37:24:e5: 1c:39:5c:8d:ae:73:de:ae:f2:72:2e:7e:b1:d3:d0:23:4a:5d: 8d:b1:3b:9f:fd:ae:99:88:e4:be:c2:0e:cd:4d:40:ee:46:50: fc:3f:39:5a:82:d7:46:47:0e:6a:a9:e1:23:6b:71:7f:bf:14: 49:b0:ae:83:7b:94:7d:a9:52:ce:92:be:38:20:5e:2e:63:ad: 97:b5:bf:ff:f7:a1:f5:70:a9:d6:c1:ce:a9:24:df:2f:4e:a5: ae:b9:80:78:75:ae:f3:a2:4d:e6:b5:b6:c2:54:72:b5:5f:e3: 17:69:e9:71:6d:bc:c3:65:bd:d9:c0:c5:bf:36:db:6d:ca:3d: 6b:cf:0a:1e:69:6f:05:72:63:06:63:43:23:6d:a9:60:96:14: 15:3a:a2:d6:1d:8d:54:ff:9d:14:6d:da:d2:0c:dd:ca:88:55: 82:4a:d3:89 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryrV33ZouSYXSzF/7bERQ1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA0NzE4ODE3NzhhMWUxMmY2ZDk3YzUyODhlZmQ0Y2I5NTYz ZDFkNDkwHhcNMjUxMjA2MDgwMDM5WhcNMjUxMjA3MDgwMDM5WjAzMTEwLwYDVQQD Eyg4Nzk2M2Q5Y2I1MGI5NmVlMTIyZDZiMmZiOWVjN2M1ZDQxM2EyYjdhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsHZaFQtXYzJe5EVO2b7iO7G4e+Oe YhTNlFjBvHy382/OGVP4TYKF+6VbjR2NdiPj4/jBHlbD4CsOldHH4rUn3+Nb1Nh4 ORN9yzrA+LZntgjchbhnOvMvPgXlk1ixWKxbKe/YS0wJjV+0UcNfagqDrd/XiHe5 U1w0O2aOcH9mhguHffhBRQbBhNvcaahyvOlmvY/RUq1DQ8BGpNfYPPi+txN9Tvle jg6VzIGcoL4NAqTeWr4u+4uMd2CSK+Z/9i7RY5JzWmgsUbWAWciA+afIKUAvdstE oLFFaNC8sppV4atHWzwn+xHrw/uHcXuTfzovyHSFpbz4ahh5JH/UevSAKwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIeWPZy1C5buEi1rL7nsfF1BOit6MB8GA1UdIwQY MBaAFARxiBd4oeEvbZfFKI79TLlWPR1JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQkhHSUYzaWg0Uzl0bDhVb2p2MU11Vlk5SFVrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYy80YThjZmEtNTQyYi00MGIyLThhMDgt NDJlYTQ3YjEyNTM3LzEvQkhHSUYzaWg0Uzl0bDhVb2p2MU11Vlk5SFVrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYy80YThjZmEtNTQyYi00MGIyLThhMDgtNDJlYTQ3YjEyNTM3 LzEvQkhHSUYzaWg0Uzl0bDhVb2p2MU11Vlk5SFVrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAq6t15dsA YNkbSANLe7nq1qVUFofM2bAsWFfrP4Vw3N3uY55JSPvexXGsAOw0xUZz6KgkZnuO XXDWKRITtbeV6qYc9oZqjpvT7AQNxYPEBaafC2FZmjXhNyTlHDlcja5z3q7yci5+ sdPQI0pdjbE7n/2umYjkvsIOzU1A7kZQ/D85WoLXRkcOaqnhI2txf78USbCug3uU falSzpK+OCBeLmOtl7W///eh9XCp1sHOqSTfL06lrrmAeHWu86JN5rW2wlRytV/j F2npcW28w2W92cDFvzbbbco9a88KHmlvBXJjBmNDI22pYJYUFTqi1h2NVP+dFG3a 0gzdyohVgkrTiQ== -----END CERTIFICATE-----Generated at Sat Dec 6 12:48:56 2025 by rpki-client