This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/3173e2-6c6e-427f-9cad-3c87088734f6/1/BL7bYVSoeV3Ezu-mehj-38ZSFZQ.mft File: BL7bYVSoeV3Ezu-mehj-38ZSFZQ.mft (raw, json) Hash identifier: ZB80mwDZJriHba9tr/YhTbg9CDrXXo2J9p4dr+pa2n8= Subject key identifier: E6:01:2B:A8:03:05:0F:24:E1:A1:3D:F9:3C:30:0C:8E:72:E9:0F:65 Authority key identifier: 04:BE:DB:61:54:A8:79:5D:C4:CE:EF:A6:7A:18:FE:DF:C6:52:15:94 Certificate issuer: /CN=04bedb6154a8795dc4ceefa67a18fedfc6521594 Certificate serial: 019AF4652C03AB6F4A9C5F53482B567BAAAE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BL7bYVSoeV3Ezu-mehj-38ZSFZQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/3173e2-6c6e-427f-9cad-3c87088734f6/1/BL7bYVSoeV3Ezu-mehj-38ZSFZQ.mft Manifest number: 05F3 Signing time: Sat 06 Dec 2025 16:01:02 +0000 Manifest this update: Sat 06 Dec 2025 16:01:02 +0000 Manifest next update: Sun 07 Dec 2025 16:01:02 +0000 Files and hashes: 1: BL7bYVSoeV3Ezu-mehj-38ZSFZQ.crl (hash: fBT3D5ZOmdK/UBuC8wxLbtv68NifBpdqhlR0fzMz7WU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/3173e2-6c6e-427f-9cad-3c87088734f6/1/BL7bYVSoeV3Ezu-mehj-38ZSFZQ.crl rsync://rpki.ripe.net/repository/DEFAULT/39/3173e2-6c6e-427f-9cad-3c87088734f6/1/BL7bYVSoeV3Ezu-mehj-38ZSFZQ.mft rsync://rpki.ripe.net/repository/DEFAULT/BL7bYVSoeV3Ezu-mehj-38ZSFZQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:65:2c:03:ab:6f:4a:9c:5f:53:48:2b:56:7b:aa:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04bedb6154a8795dc4ceefa67a18fedfc6521594 Validity Not Before: Dec 6 16:01:02 2025 GMT Not After : Dec 7 16:01:02 2025 GMT Subject: CN=e6012ba803050f24e1a13df93c300c8e72e90f65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:a3:2b:f4:10:81:1c:6c:b7:d4:b4:ec:6c:ee: 9b:0e:3b:44:1f:1b:d5:97:31:91:96:7e:c2:14:4f: fc:7b:bc:ce:89:20:cf:90:51:f6:39:4f:55:50:ef: 95:6e:21:13:72:79:38:fc:be:e1:eb:3e:90:c6:7f: 40:c8:13:21:34:ad:58:38:95:c6:2c:e5:cf:a7:3e: 7a:96:57:8a:c7:fb:53:34:2c:d1:e7:f5:40:23:a7: 18:b0:b0:3d:bc:36:a8:7a:8c:46:91:f5:30:8b:6c: 36:e4:2c:42:ed:3a:63:0d:74:ad:89:59:9b:c8:9d: 12:49:50:01:b0:49:fa:0b:a6:40:4e:aa:57:ec:14: 61:62:e5:78:1b:37:8c:5a:6c:09:4d:0e:00:ec:cf: de:ff:18:19:56:a3:76:e3:b0:e6:04:2f:90:4e:4e: ca:35:84:eb:fd:43:60:7b:aa:a1:2e:70:d3:d5:b4: 24:39:4c:05:3e:e4:8b:41:a1:cb:d0:ce:04:93:50: e0:6b:83:d5:14:20:99:09:c3:f8:ab:e5:2c:24:ec: f0:55:6d:4e:2e:e9:54:a5:d6:a7:13:bd:75:46:80: dc:96:c5:5d:d6:ef:c9:03:eb:d2:8e:1f:20:a7:08: 1a:9b:df:31:46:ff:7c:18:5b:51:e0:eb:6d:7c:55: 61:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:01:2B:A8:03:05:0F:24:E1:A1:3D:F9:3C:30:0C:8E:72:E9:0F:65 X509v3 Authority Key Identifier: keyid:04:BE:DB:61:54:A8:79:5D:C4:CE:EF:A6:7A:18:FE:DF:C6:52:15:94 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BL7bYVSoeV3Ezu-mehj-38ZSFZQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/3173e2-6c6e-427f-9cad-3c87088734f6/1/BL7bYVSoeV3Ezu-mehj-38ZSFZQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/39/3173e2-6c6e-427f-9cad-3c87088734f6/1/BL7bYVSoeV3Ezu-mehj-38ZSFZQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:93:b5:e7:15:f5:82:3a:94:e8:00:05:b4:3e:b4:82:a3:f8: 9b:af:db:b1:d3:d5:66:ec:61:32:fd:cb:f1:c3:84:58:7e:03: 4a:d3:03:51:3c:50:a0:13:f3:c9:9c:09:68:cb:72:ba:a7:61: c8:34:21:48:7a:b3:c8:17:ae:3f:43:a3:bb:ec:53:39:6e:e9: 1d:ff:f6:18:25:c0:df:3a:ee:89:8d:f0:5b:bd:d2:a7:0b:60: bd:75:f2:5d:5b:1b:01:f2:5b:4f:ca:cf:6f:bf:98:2c:99:8d: 80:33:31:bf:bd:2c:88:67:c5:b6:25:67:5b:4e:6f:cf:23:d1: f0:d9:2e:b3:c0:3b:76:dc:67:bb:4c:f4:e9:99:85:02:06:4c: df:38:f9:cb:1c:f5:36:b2:81:96:75:03:54:b8:21:35:fb:17: 88:18:ba:5e:43:f9:c3:f8:46:0c:94:3b:9a:64:72:33:6a:8c: d9:40:b1:23:df:0b:1f:b3:96:8f:60:70:70:c5:a1:f9:e3:d5: 14:5d:fc:26:23:e2:14:dd:af:1b:c0:36:b4:5e:a4:a5:03:63: 4f:0d:8d:f2:64:91:0b:f7:29:62:3c:c5:2c:e5:e3:0f:e4:3a: 16:57:55:6e:5b:c5:92:98:b9:47:33:53:81:0d:a2:f6:9a:0b: 1b:09:3d:35 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0ZSwDq29KnF9TSCtWe6quMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA0YmVkYjYxNTRhODc5NWRjNGNlZWZhNjdhMThmZWRmYzY1 MjE1OTQwHhcNMjUxMjA2MTYwMTAyWhcNMjUxMjA3MTYwMTAyWjAzMTEwLwYDVQQD EyhlNjAxMmJhODAzMDUwZjI0ZTFhMTNkZjkzYzMwMGM4ZTcyZTkwZjY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1KMr9BCBHGy31LTsbO6bDjtEHxvV lzGRln7CFE/8e7zOiSDPkFH2OU9VUO+VbiETcnk4/L7h6z6Qxn9AyBMhNK1YOJXG LOXPpz56lleKx/tTNCzR5/VAI6cYsLA9vDaoeoxGkfUwi2w25CxC7TpjDXStiVmb yJ0SSVABsEn6C6ZATqpX7BRhYuV4GzeMWmwJTQ4A7M/e/xgZVqN247DmBC+QTk7K NYTr/UNge6qhLnDT1bQkOUwFPuSLQaHL0M4Ek1Dga4PVFCCZCcP4q+UsJOzwVW1O LulUpdanE711RoDclsVd1u/JA+vSjh8gpwgam98xRv98GFtR4OttfFVhGwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOYBK6gDBQ8k4aE9+TwwDI5y6Q9lMB8GA1UdIwQY MBaAFAS+22FUqHldxM7vpnoY/t/GUhWUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQkw3YllWU29lVjNFenUtbWVoai0zOFpTRlpRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS8zMTczZTItNmM2ZS00MjdmLTljYWQt M2M4NzA4ODczNGY2LzEvQkw3YllWU29lVjNFenUtbWVoai0zOFpTRlpRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOS8zMTczZTItNmM2ZS00MjdmLTljYWQtM2M4NzA4ODczNGY2 LzEvQkw3YllWU29lVjNFenUtbWVoai0zOFpTRlpRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfZO15xX1 gjqU6AAFtD60gqP4m6/bsdPVZuxhMv3L8cOEWH4DStMDUTxQoBPzyZwJaMtyuqdh yDQhSHqzyBeuP0Oju+xTOW7pHf/2GCXA3zruiY3wW73SpwtgvXXyXVsbAfJbT8rP b7+YLJmNgDMxv70siGfFtiVnW05vzyPR8Nkus8A7dtxnu0z06ZmFAgZM3zj5yxz1 NrKBlnUDVLghNfsXiBi6XkP5w/hGDJQ7mmRyM2qM2UCxI98LH7OWj2BwcMWh+ePV FF38JiPiFN2vG8A2tF6kpQNjTw2N8mSRC/cpYjzFLOXjD+Q6FldVblvFkpi5RzNT gQ2i9poLGwk9NQ== -----END CERTIFICATE-----Generated at Sat Dec 6 21:17:49 2025 by rpki-client