This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft File: bSID7B5abCZsyjm5rxq-LLILGVo.mft (raw, json) Hash identifier: KFZpO8ZdSu2n+L6zsxv6Tq0hKGmPo8cklZFHD/QAH0Q= Subject key identifier: 13:65:08:1B:5B:B8:37:AD:50:4C:1B:A6:11:98:31:FE:FD:AE:B8:46 Authority key identifier: 6D:22:03:EC:1E:5A:6C:26:6C:CA:39:B9:AF:1A:BE:2C:B2:0B:19:5A Certificate issuer: /CN=6d2203ec1e5a6c266cca39b9af1abe2cb20b195a Certificate serial: 019AF12E5E9288FE4E1D79514D6E4576340C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSID7B5abCZsyjm5rxq-LLILGVo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft Manifest number: 1760 Signing time: Sat 06 Dec 2025 01:02:19 +0000 Manifest this update: Sat 06 Dec 2025 01:02:19 +0000 Manifest next update: Sun 07 Dec 2025 01:02:19 +0000 Files and hashes: 1: bSID7B5abCZsyjm5rxq-LLILGVo.crl (hash: u4uyMmE/w3z5i2SuYr1ev7zGdzdZYfwj4zmaf4btIN4=) 2: h9zvvPI2dBY4jNWQKpPxUoE047A.roa (hash: PkWglafHXDxF9KIzM61BgLg1omYPGots3ZThAKgjHP4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft rsync://rpki.ripe.net/repository/DEFAULT/bSID7B5abCZsyjm5rxq-LLILGVo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:5e:92:88:fe:4e:1d:79:51:4d:6e:45:76:34:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6d2203ec1e5a6c266cca39b9af1abe2cb20b195a Validity Not Before: Dec 6 01:02:19 2025 GMT Not After : Dec 7 01:02:19 2025 GMT Subject: CN=1365081b5bb837ad504c1ba6119831fefdaeb846 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:13:93:81:7d:cd:8d:bc:5d:1f:34:39:d0:97: 39:ac:24:5d:f6:fb:e6:01:c1:d3:98:00:49:b1:69: ae:f9:c0:d1:69:fd:fc:b4:67:9a:91:61:4e:1d:7b: 1b:d2:2f:fe:5c:52:86:c7:9c:a5:a2:74:a0:e1:ab: 49:5f:27:e3:69:05:96:ff:d3:d3:65:e4:22:06:54: 77:70:b6:41:0c:4a:49:d0:ce:fe:bd:2b:c2:ec:8d: d0:59:f4:9f:02:3b:2d:2a:14:2b:6e:13:b9:22:61: 9a:b4:f4:45:f6:43:7e:8f:f5:44:4f:81:bb:31:d8: 48:61:25:02:01:c1:89:71:82:d0:c6:78:99:c7:d1: 98:f1:d6:77:73:e5:56:2a:96:c6:15:a9:8b:4a:b7: 7e:06:d9:de:42:85:1b:69:1d:e6:fc:b3:38:df:06: d7:15:71:57:2d:4f:65:a1:e6:b0:69:d5:d1:56:c1: 14:4a:22:4b:e2:62:a2:19:9f:87:4d:b8:6e:9b:1d: 97:d5:ff:f8:35:34:20:0d:3c:fb:23:6b:7f:85:6f: 44:ec:25:4a:8f:fb:a7:02:d2:e7:45:14:f3:7c:7f: ca:32:39:f0:29:95:e3:95:6e:f1:0c:14:a0:2a:7f: 98:2b:ff:73:d0:0c:f8:86:48:20:66:77:8a:bc:ec: 26:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:65:08:1B:5B:B8:37:AD:50:4C:1B:A6:11:98:31:FE:FD:AE:B8:46 X509v3 Authority Key Identifier: keyid:6D:22:03:EC:1E:5A:6C:26:6C:CA:39:B9:AF:1A:BE:2C:B2:0B:19:5A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSID7B5abCZsyjm5rxq-LLILGVo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ab:96:6b:1b:b3:57:f6:a3:0e:2c:9d:c1:46:43:9b:e6:e0:6f: 9f:a3:f5:29:7b:75:80:be:59:59:46:49:09:fe:26:9b:f5:a3: 57:3e:e7:50:81:f6:c4:c3:b1:e5:87:af:55:36:80:83:e8:dc: 32:d3:fd:e4:2c:4f:e1:22:f6:d7:90:a6:ff:ed:fb:5c:a6:2a: 93:4e:b1:14:65:e6:21:4b:8a:bc:43:f6:58:20:c4:35:f9:14: 91:2a:ba:e8:de:36:70:bb:33:c8:74:b6:cf:a8:d5:b8:a0:4d: c2:cf:07:36:18:a9:11:ad:ce:7e:c1:5e:93:6d:a5:5f:a2:e9: db:44:c8:ec:9d:2b:39:7e:15:dc:e1:66:3f:8c:b6:b6:cd:05: e7:11:75:82:6c:b0:a8:a5:61:7c:84:35:fb:c5:c7:71:80:54: ba:8b:fa:91:cb:c5:3f:d8:6c:06:df:42:10:53:11:48:dd:ac: ce:24:45:55:29:04:9b:32:3f:f8:69:14:e3:c8:74:8d:c9:1e: d8:08:c7:60:fd:14:e5:aa:cc:2f:56:7a:0f:ab:78:0b:dd:e8: fe:73:6e:8a:31:87:82:c2:31:2c:cb:ec:b2:be:39:1d:b9:ed: f0:27:13:d4:23:43:87:d6:22:9b:70:10:f2:3a:68:99:62:68: 02:40:53:9b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLl6SiP5OHXlRTW5FdjQMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkMjIwM2VjMWU1YTZjMjY2Y2NhMzliOWFmMWFiZTJjYjIw YjE5NWEwHhcNMjUxMjA2MDEwMjE5WhcNMjUxMjA3MDEwMjE5WjAzMTEwLwYDVQQD EygxMzY1MDgxYjViYjgzN2FkNTA0YzFiYTYxMTk4MzFmZWZkYWViODQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuBOTgX3NjbxdHzQ50Jc5rCRd9vvm AcHTmABJsWmu+cDRaf38tGeakWFOHXsb0i/+XFKGx5ylonSg4atJXyfjaQWW/9PT ZeQiBlR3cLZBDEpJ0M7+vSvC7I3QWfSfAjstKhQrbhO5ImGatPRF9kN+j/VET4G7 MdhIYSUCAcGJcYLQxniZx9GY8dZ3c+VWKpbGFamLSrd+BtneQoUbaR3m/LM43wbX FXFXLU9loeawadXRVsEUSiJL4mKiGZ+HTbhumx2X1f/4NTQgDTz7I2t/hW9E7CVK j/unAtLnRRTzfH/KMjnwKZXjlW7xDBSgKn+YK/9z0Az4hkggZneKvOwmCwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBNlCBtbuDetUEwbphGYMf79rrhGMB8GA1UdIwQY MBaAFG0iA+weWmwmbMo5ua8aviyyCxlaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYlNJRDdCNWFiQ1pzeWptNXJ4cS1MTElMR1ZvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS9mYzUyMmYtYjIwZi00N2FmLTgwYzYt MWE5Nzk0NGM5MWNhLzEvYlNJRDdCNWFiQ1pzeWptNXJ4cS1MTElMR1ZvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS9mYzUyMmYtYjIwZi00N2FmLTgwYzYtMWE5Nzk0NGM5MWNh LzEvYlNJRDdCNWFiQ1pzeWptNXJ4cS1MTElMR1ZvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAq5ZrG7NX 9qMOLJ3BRkOb5uBvn6P1KXt1gL5ZWUZJCf4mm/WjVz7nUIH2xMOx5YevVTaAg+jc MtP95CxP4SL215Cm/+37XKYqk06xFGXmIUuKvEP2WCDENfkUkSq66N42cLszyHS2 z6jVuKBNws8HNhipEa3OfsFek22lX6Lp20TI7J0rOX4V3OFmP4y2ts0F5xF1gmyw qKVhfIQ1+8XHcYBUuov6kcvFP9hsBt9CEFMRSN2sziRFVSkEmzI/+GkU48h0jcke 2AjHYP0U5arML1Z6D6t4C93o/nNuijGHgsIxLMvssr45Hbnt8CcT1CNDh9Yim3AQ 8jpomWJoAkBTmw== -----END CERTIFICATE-----Generated at Sat Dec 6 08:09:18 2025 by rpki-client