This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.mft File: BGelYhGyHprHzcj7Y58xCpLCEEw.mft (raw, json) Hash identifier: Nob1h/N7xK8EaWEZ5e69I8Sef/J573823zKplWflNbM= Subject key identifier: 0A:86:2A:E6:77:A3:91:57:6B:6E:46:F9:AA:3B:69:FB:B5:16:8D:C5 Authority key identifier: 04:67:A5:62:11:B2:1E:9A:C7:CD:C8:FB:63:9F:31:0A:92:C2:10:4C Certificate issuer: /CN=0467a56211b21e9ac7cdc8fb639f310a92c2104c Certificate serial: 019AF352705BD5767BD2FD140DE3CE214CE6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BGelYhGyHprHzcj7Y58xCpLCEEw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.mft Manifest number: 0E43 Signing time: Sat 06 Dec 2025 11:00:57 +0000 Manifest this update: Sat 06 Dec 2025 11:00:57 +0000 Manifest next update: Sun 07 Dec 2025 11:00:57 +0000 Files and hashes: 1: BGelYhGyHprHzcj7Y58xCpLCEEw.crl (hash: e0Ell/WAxPeCiVsVhyT2Q8jHnz43OWgqljhEYm7MM88=) 2: vBbw-4MxcReP3ao6MqHjBCu3GcI.roa (hash: W28uSnDMlGVkrCQsXwIvXwkvC/TrS+441MfK9XqL5Zo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.crl rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.mft rsync://rpki.ripe.net/repository/DEFAULT/BGelYhGyHprHzcj7Y58xCpLCEEw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 11:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:52:70:5b:d5:76:7b:d2:fd:14:0d:e3:ce:21:4c:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0467a56211b21e9ac7cdc8fb639f310a92c2104c Validity Not Before: Dec 6 11:00:57 2025 GMT Not After : Dec 7 11:00:57 2025 GMT Subject: CN=0a862ae677a391576b6e46f9aa3b69fbb5168dc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:11:37:c6:58:a5:44:99:25:a3:d0:78:a6:8a: d6:6f:56:81:7c:01:b4:b1:11:8a:5a:ca:6f:0e:4e: 5b:58:b4:ae:84:78:50:f0:90:d4:0c:d6:76:bc:bf: 42:49:ec:50:48:50:d7:98:99:d1:c9:dd:d1:a0:67: 5d:46:34:e3:c8:44:31:d8:bd:ef:ad:df:fc:ed:12: 28:53:2e:5c:12:71:93:bb:90:41:b3:b3:c3:e4:85: 75:02:55:1f:fc:02:8e:3f:3b:e5:1d:6d:55:38:29: 16:5f:9e:3d:c0:5b:83:02:70:63:a4:f3:63:f8:03: 6a:28:20:2c:c4:40:3c:dd:d5:05:96:4c:47:55:5f: a4:75:16:7c:0a:8c:ad:32:30:aa:b0:97:3d:72:bf: 28:33:e5:79:86:af:cc:37:a2:fa:86:74:3e:26:50: 3f:29:49:e4:82:22:07:f0:e7:45:ae:e3:2b:1f:b7: be:eb:f0:34:aa:fe:16:91:5d:a4:ec:f6:d3:ef:ad: 14:5e:40:d7:c6:98:0b:28:36:7e:1e:e9:e4:db:76: d0:80:4c:a6:d8:af:0a:d4:13:20:95:a8:d1:fb:c3: 73:ec:e1:45:81:31:4b:fd:a2:58:09:ff:c6:ef:5a: fc:9c:03:e4:17:c6:b9:80:92:8f:69:3c:8d:c2:c2: e3:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:86:2A:E6:77:A3:91:57:6B:6E:46:F9:AA:3B:69:FB:B5:16:8D:C5 X509v3 Authority Key Identifier: keyid:04:67:A5:62:11:B2:1E:9A:C7:CD:C8:FB:63:9F:31:0A:92:C2:10:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BGelYhGyHprHzcj7Y58xCpLCEEw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:01:06:1d:ec:22:8d:74:53:85:2a:37:c2:1f:f3:90:80:cf: 60:1e:1c:b3:13:81:ba:fd:5f:14:f0:d1:54:bc:81:e3:c3:36: b8:bb:25:04:e3:3a:9e:fa:55:4c:b1:79:5a:3c:74:fb:94:81: 52:8a:7e:63:df:a8:dc:2f:54:8a:d6:95:93:29:d1:9d:29:5c: 43:c5:b2:01:2d:6d:2b:86:1d:aa:6a:51:3b:52:76:a4:a4:b8: 21:13:ea:52:32:aa:2d:7b:9b:60:0f:36:44:bf:d3:13:31:3f: 1c:42:de:f6:5d:96:cf:a7:70:54:7a:1c:c7:63:27:d4:f9:41: 04:c2:a8:86:e0:f6:1e:bd:78:95:fb:4c:84:b2:f5:09:e1:4c: e2:e2:2c:8b:ac:91:b9:62:e8:68:fd:43:d2:b0:37:7f:2d:39: 34:4f:0d:1c:1e:30:1f:67:33:b1:b4:e6:5a:5a:10:bc:92:ae: 35:21:70:03:94:b8:af:26:55:54:e5:0c:a8:88:3c:7b:d7:b6: 6b:e5:c6:50:cb:e6:69:ef:47:f6:77:a6:69:12:22:8e:5e:6d: ca:3a:35:74:b4:46:ec:f5:cb:fc:4e:0b:55:a0:f6:ba:bf:38: d5:63:3a:e7:c7:09:f6:a9:87:e3:19:a3:bc:54:ff:92:86:62: 53:9d:74:aa -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzUnBb1XZ70v0UDePOIUzmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA0NjdhNTYyMTFiMjFlOWFjN2NkYzhmYjYzOWYzMTBhOTJj MjEwNGMwHhcNMjUxMjA2MTEwMDU3WhcNMjUxMjA3MTEwMDU3WjAzMTEwLwYDVQQD EygwYTg2MmFlNjc3YTM5MTU3NmI2ZTQ2ZjlhYTNiNjlmYmI1MTY4ZGM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyhE3xlilRJklo9B4porWb1aBfAG0 sRGKWspvDk5bWLSuhHhQ8JDUDNZ2vL9CSexQSFDXmJnRyd3RoGddRjTjyEQx2L3v rd/87RIoUy5cEnGTu5BBs7PD5IV1AlUf/AKOPzvlHW1VOCkWX549wFuDAnBjpPNj +ANqKCAsxEA83dUFlkxHVV+kdRZ8CoytMjCqsJc9cr8oM+V5hq/MN6L6hnQ+JlA/ KUnkgiIH8OdFruMrH7e+6/A0qv4WkV2k7PbT760UXkDXxpgLKDZ+Hunk23bQgEym 2K8K1BMglajR+8Nz7OFFgTFL/aJYCf/G71r8nAPkF8a5gJKPaTyNwsLj3QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAqGKuZ3o5FXa25G+ao7afu1Fo3FMB8GA1UdIwQY MBaAFARnpWIRsh6ax83I+2OfMQqSwhBMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQkdlbFloR3lIcHJIemNqN1k1OHhDcExDRUV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC8wNDVjNGItYzBkNy00Nzc4LTlmNDQt ODIzYWQyYzJmNWYxLzEvQkdlbFloR3lIcHJIemNqN1k1OHhDcExDRUV3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZC8wNDVjNGItYzBkNy00Nzc4LTlmNDQtODIzYWQyYzJmNWYx LzEvQkdlbFloR3lIcHJIemNqN1k1OHhDcExDRUV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPQEGHewi jXRThSo3wh/zkIDPYB4csxOBuv1fFPDRVLyB48M2uLslBOM6nvpVTLF5Wjx0+5SB Uop+Y9+o3C9UitaVkynRnSlcQ8WyAS1tK4YdqmpRO1J2pKS4IRPqUjKqLXubYA82 RL/TEzE/HELe9l2Wz6dwVHocx2Mn1PlBBMKohuD2Hr14lftMhLL1CeFM4uIsi6yR uWLoaP1D0rA3fy05NE8NHB4wH2czsbTmWloQvJKuNSFwA5S4ryZVVOUMqIg8e9e2 a+XGUMvmae9H9nemaRIijl5tyjo1dLRG7PXL/E4LVaD2ur841WM658cJ9qmH4xmj vFT/koZiU510qg== -----END CERTIFICATE-----Generated at Sat Dec 6 19:56:01 2025 by rpki-client