This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.mft
File:                     BVFgW2dezk4PznF1rjGpP6gnK6Y.mft (raw, json)
Hash identifier:          mW13LovUoRRHPcp2R26ndtHo+rhRbJETbu/EXSQNoyg=
Subject key identifier:   1B:0D:C8:6F:9F:1A:7A:58:DC:0F:85:2C:F7:18:9C:96:E4:55:80:0A
Authority key identifier: 05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6
Certificate issuer:       /CN=0551605b675ece4e0fce7175ae31a93fa8272ba6
Certificate serial:       019AF2091DBEE349B9BF19E487DEB33B0FC6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.mft
Manifest number:          1797
Signing time:             Sat 06 Dec 2025 05:01:14 +0000
Manifest this update:     Sat 06 Dec 2025 05:01:14 +0000
Manifest next update:     Sun 07 Dec 2025 05:01:14 +0000
Files and hashes:         1: 0AYdj6RPn1eQ4OgEy6QCr1f5k2Q.roa (hash: L6DU942Jz6/lvfUIe3D2o0HomEkBYzu27lFzdIVqGEc=)
                          2: 5t_gEPyzONNwmcX_6ew0Ih3Mk2Q.roa (hash: vkkst1UDRXFHGnw3oCIz/VahP4EJhU4cLye1AO0QLS0=)
                          3: 9wsdpuMjZ1XS6bK3aGRYfsYZqMY.roa (hash: /bubvvyyCfe3wByISey49bBzc5BKqpBJ33FyIFj7ql0=)
                          4: B-VB7mD6d3yYH8PU8AgFih1fMDc.roa (hash: T5HGrFxvsUPySvUxTWFtkDKWgc+DSV2mLNavrR7oxEo=)
                          5: BVFgW2dezk4PznF1rjGpP6gnK6Y.crl (hash: 1u49yQoX4uVYdSsrqcv3TLPVSpyEAIOeIbcxRM5aFqs=)
                          6: FQTXSvb27ypAWeWR6u4PUk-NFzc.roa (hash: oVmw4Wr4zacFRrwMuuDV+itYXymrywavxqZKYRr/zHc=)
                          7: GIdtnYTfB_OfNmkj58C5zvwyoiY.roa (hash: mrolhVBCf9ezcIiNdke1ILuseOXCo3lGnZtCw7CJdqk=)
                          8: JIWScFv9Kksz3-WjVTMxXPLjiWo.roa (hash: 9Ejcda+LEF9Prza7a6M4k8Cqx+Jsocz8uwzratsGHfs=)
                          9: T2zf4MlLIMSvzzuDsJMAjIOyKkY.roa (hash: ueRz8nTweEwyQ4f6p4yvV8towA7SPGMkaN88JD99IhM=)
                          10: WTBCbSxb7h1w4Up4KNg9SZTnE6c.roa (hash: zGDl99MvN6NddN0ACg6xKrKwSNupTCXGaQXZUdGsWZY=)
                          11: Wgn-Z3i6lXU4mVGYn9zEOu2Y5uo.roa (hash: KDlQZdCuo/nIV3/PuDzNC2v7AGRYnk63vIIL7+xFyqo=)
                          12: ZNVBvSaI1BNlFT5y4meV0Zbgnzw.roa (hash: bWlw2kG0F8Yo+irCKVO4en+85QCKnglxRBdSlkv67r0=)
                          13: ZmV3RrHyNbdlPpXWHxyJNKlqz_0.roa (hash: duiYNAfkU9vNSfSeoTIVT6MoGsXF5yCoHKwjI4a3RZo=)
                          14: bLACyeWnCQUwWZqE5WZ_BrmQU6Y.roa (hash: uwoE5/d36cX/Ks6beQm+PxMT5NEUJYwmYJZfciGwpzU=)
                          15: lSQaQo1pT929AIuNEO-jfbBj_uI.roa (hash: aky/WPIxzMhPYRkj4RXOkjGc0PhL0aXcIKo/I7TPgXM=)
                          16: lmjGoIkmtRARzMHJ3Iv6xZvWT5U.roa (hash: D1V3yIkbb8Fb2YGAP6nceG/MedRCxNzvPEgyVbvAN7Q=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 07 Dec 2025 02:00:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9a:f2:09:1d:be:e3:49:b9:bf:19:e4:87:de:b3:3b:0f:c6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0551605b675ece4e0fce7175ae31a93fa8272ba6
        Validity
            Not Before: Dec  6 05:01:14 2025 GMT
            Not After : Dec  7 05:01:14 2025 GMT
        Subject: CN=1b0dc86f9f1a7a58dc0f852cf7189c96e455800a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d3:37:97:63:3e:eb:95:cf:99:db:2f:3d:70:91:
                    25:92:49:f1:a2:66:8a:55:fe:ad:03:10:4b:b7:3a:
                    73:f7:0b:b0:11:3e:c9:d3:4f:fa:9e:de:e6:4b:a7:
                    4e:8e:41:40:17:ec:3b:55:0d:f2:c6:5b:5a:f6:8d:
                    38:b8:54:35:b7:66:fe:d6:e7:99:8e:de:60:7d:e3:
                    71:2a:85:6a:c4:90:12:4e:4a:ee:bf:e9:ac:aa:ce:
                    c4:6a:80:20:61:d6:87:1b:18:66:bb:82:06:ba:c8:
                    b0:bb:20:69:17:80:ae:d7:e2:f5:0a:24:45:bf:be:
                    ab:f5:4b:d6:be:c7:32:7c:4f:97:5c:23:39:da:61:
                    aa:e6:3f:c6:97:d5:29:14:a5:0b:91:17:a8:8c:e8:
                    5b:20:6b:03:b7:63:67:8b:3a:8a:e0:be:09:70:a9:
                    01:4d:01:29:27:1b:80:58:6e:d5:ad:57:df:5b:ee:
                    09:3d:4a:ec:76:c4:06:8e:fa:0c:80:db:91:c5:03:
                    87:dd:b8:85:7c:4f:75:98:fb:8d:af:7c:0c:1d:98:
                    e9:22:57:09:5d:ba:1a:4c:3c:c9:ad:b1:57:08:64:
                    a9:2b:44:7d:bf:01:97:15:45:20:e7:25:c0:97:ab:
                    b1:a4:c6:b9:c1:b8:d9:1e:e3:69:5c:1e:89:99:d1:
                    30:2b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1B:0D:C8:6F:9F:1A:7A:58:DC:0F:85:2C:F7:18:9C:96:E4:55:80:0A
            X509v3 Authority Key Identifier:
                keyid:05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         19:68:32:62:bf:d1:0a:ee:c2:5f:5f:73:c2:a9:56:1c:e4:44:
         a5:db:b1:2e:eb:78:f6:18:61:1f:f8:bb:24:55:a4:85:17:52:
         76:ef:57:40:66:c5:b5:69:ee:b5:f3:0d:20:43:eb:4e:3e:ba:
         bf:52:0f:2d:d1:03:c3:f4:f7:bb:1b:87:db:89:80:dc:ac:40:
         ea:79:9b:fa:90:ee:bc:6e:40:43:62:55:9c:af:f9:15:57:ae:
         78:d1:21:c2:70:09:a7:b1:f2:9d:8a:d1:23:fb:9d:e6:0c:67:
         dd:19:b0:d9:b8:39:8f:9d:27:68:6a:f2:98:4c:dc:38:0d:f7:
         d8:55:74:75:56:33:8c:db:91:7e:e7:42:cd:8a:45:27:cc:22:
         53:db:f5:33:ce:4f:fe:2b:08:9f:cc:e9:61:5b:5b:65:0b:2b:
         af:2d:ac:2c:3a:36:5d:94:ee:03:0a:59:24:2d:b5:ac:44:bc:
         89:41:31:2c:f5:67:d9:0d:21:c9:7e:a2:56:db:66:ad:89:af:
         83:63:a4:69:5f:8e:05:04:22:95:6f:e6:35:f8:b3:98:a6:58:
         a2:d1:ef:f2:80:4f:f7:66:f8:e5:b9:51:9d:c8:6e:92:43:25:
         09:5a:00:25:7f:51:45:b1:c7:ac:dc:2a:f4:ec:b3:b8:10:49:
         e3:d0:e1:fb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZryCR2+40m5vxnkh96zOw/GMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1NTE2MDViNjc1ZWNlNGUwZmNlNzE3NWFlMzFhOTNmYTgy
NzJiYTYwHhcNMjUxMjA2MDUwMTE0WhcNMjUxMjA3MDUwMTE0WjAzMTEwLwYDVQQD
EygxYjBkYzg2ZjlmMWE3YTU4ZGMwZjg1MmNmNzE4OWM5NmU0NTU4MDBhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0zeXYz7rlc+Z2y89cJElkknxomaK
Vf6tAxBLtzpz9wuwET7J00/6nt7mS6dOjkFAF+w7VQ3yxlta9o04uFQ1t2b+1ueZ
jt5gfeNxKoVqxJASTkruv+msqs7EaoAgYdaHGxhmu4IGusiwuyBpF4Cu1+L1CiRF
v76r9UvWvscyfE+XXCM52mGq5j/Gl9UpFKULkReojOhbIGsDt2NnizqK4L4JcKkB
TQEpJxuAWG7VrVffW+4JPUrsdsQGjvoMgNuRxQOH3biFfE91mPuNr3wMHZjpIlcJ
XboaTDzJrbFXCGSpK0R9vwGXFUUg5yXAl6uxpMa5wbjZHuNpXB6JmdEwKwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBsNyG+fGnpY3A+FLPcYnJbkVYAKMB8GA1UdIwQY
MBaAFAVRYFtnXs5OD85xda4xqT+oJyumMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlZGZ1cyZGV6azRQem5GMXJqR3BQNmduSzZZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC8yOGVhNDUtN2QzMC00NmRmLThmMmEt
MDc3OWY0OGVjZWEwLzEvQlZGZ1cyZGV6azRQem5GMXJqR3BQNmduSzZZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMC8yOGVhNDUtN2QzMC00NmRmLThmMmEtMDc3OWY0OGVjZWEw
LzEvQlZGZ1cyZGV6azRQem5GMXJqR3BQNmduSzZZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGWgyYr/R
Cu7CX19zwqlWHOREpduxLut49hhhH/i7JFWkhRdSdu9XQGbFtWnutfMNIEPrTj66
v1IPLdEDw/T3uxuH24mA3KxA6nmb+pDuvG5AQ2JVnK/5FVeueNEhwnAJp7HynYrR
I/ud5gxn3Rmw2bg5j50naGrymEzcOA332FV0dVYzjNuRfudCzYpFJ8wiU9v1M85P
/isIn8zpYVtbZQsrry2sLDo2XZTuAwpZJC21rES8iUExLPVn2Q0hyX6iVttmrYmv
g2OkaV+OBQQilW/mNfizmKZYotHv8oBP92b45blRnchukkMlCVoAJX9RRbHHrNwq
9OyzuBBJ49Dh+w==
-----END CERTIFICATE-----