This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.mft File: BGelYhGyHprHzcj7Y58xCpLCEEw.mft (raw, json) Hash identifier: U++sB2InICYnsl2XJqxKElWmAsKywt8pQROiSN0+i/E= Subject key identifier: A1:F5:40:6C:6E:61:FB:08:61:17:62:1E:95:80:C0:88:49:1F:7B:85 Authority key identifier: 04:67:A5:62:11:B2:1E:9A:C7:CD:C8:FB:63:9F:31:0A:92:C2:10:4C Certificate issuer: /CN=0467a56211b21e9ac7cdc8fb639f310a92c2104c Certificate serial: 019B330D21BFAAD2AA03A7790CD2FE03F587 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BGelYhGyHprHzcj7Y58xCpLCEEw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.mft Manifest number: 0E64 Signing time: Thu 18 Dec 2025 20:00:57 +0000 Manifest this update: Thu 18 Dec 2025 20:00:57 +0000 Manifest next update: Fri 19 Dec 2025 20:00:57 +0000 Files and hashes: 1: BGelYhGyHprHzcj7Y58xCpLCEEw.crl (hash: T9ibcBVi5BPZnYaUAl6VV9eCUTR6h77jB/QU701ZP8w=) 2: vBbw-4MxcReP3ao6MqHjBCu3GcI.roa (hash: W28uSnDMlGVkrCQsXwIvXwkvC/TrS+441MfK9XqL5Zo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.crl rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.mft rsync://rpki.ripe.net/repository/DEFAULT/BGelYhGyHprHzcj7Y58xCpLCEEw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 13:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:33:0d:21:bf:aa:d2:aa:03:a7:79:0c:d2:fe:03:f5:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0467a56211b21e9ac7cdc8fb639f310a92c2104c Validity Not Before: Dec 18 20:00:57 2025 GMT Not After : Dec 19 20:00:57 2025 GMT Subject: CN=a1f5406c6e61fb086117621e9580c088491f7b85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:8a:08:20:30:3f:ed:e6:ed:57:9a:80:fe:58: 19:4c:39:f5:cd:b3:c6:61:8c:cc:1f:84:4b:59:ef: a0:ed:88:68:d9:24:1f:89:ff:fc:16:68:c8:7c:1c: 8c:4d:73:d4:dd:d6:a0:19:0c:97:5b:9f:b2:25:fb: 38:ef:f9:1f:73:20:a1:18:e0:dc:44:40:92:81:2a: dc:7b:2c:55:1f:5b:bc:a4:d0:6d:26:54:70:a2:db: 7c:bd:61:4f:7d:60:29:21:ea:64:a7:c6:c1:4b:3c: 4e:6b:4f:77:fd:f4:6a:70:75:cc:b5:a9:72:5c:e2: 2e:9c:16:90:a7:8d:3b:59:ca:c1:54:ba:a2:c2:4e: 24:19:2c:45:99:b3:ed:71:b2:90:a2:b1:5b:b9:b6: 77:bf:05:20:c0:e1:23:3f:6c:ee:d3:4d:e7:ff:97: 22:ff:68:cd:d8:13:5e:5f:76:b3:7a:f7:f2:57:c2: 35:79:37:b0:b8:6a:76:7d:52:32:f0:d5:a1:f4:22: d7:d0:0f:a6:97:3f:eb:61:64:b3:4e:93:9f:92:fc: a3:cd:05:f8:cf:63:90:fc:16:00:fb:2a:0a:ec:34: c7:0d:3e:47:ae:1a:0d:28:59:ab:03:c1:2d:d7:0d: 1c:d9:22:5e:39:95:b2:77:29:53:7b:87:83:68:13: a7:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:F5:40:6C:6E:61:FB:08:61:17:62:1E:95:80:C0:88:49:1F:7B:85 X509v3 Authority Key Identifier: keyid:04:67:A5:62:11:B2:1E:9A:C7:CD:C8:FB:63:9F:31:0A:92:C2:10:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BGelYhGyHprHzcj7Y58xCpLCEEw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 88:0d:91:bd:1d:c9:48:4e:e5:f6:56:c4:d6:05:0f:95:8b:37: a4:d7:74:a6:a3:0e:55:d9:d8:5b:3f:b0:cc:ed:21:4d:41:eb: d0:7e:a7:ce:19:44:c9:3b:26:c4:8a:e2:68:49:64:72:8e:c3: ae:c9:da:41:9d:7a:48:1d:f7:5b:e3:aa:84:1d:5b:56:a2:b8: f4:6a:9d:ff:64:47:c3:69:d1:55:5f:5e:33:79:e0:19:08:f9: 19:49:96:de:16:0e:e3:0e:cd:84:32:2b:ed:16:2f:5e:29:d5: 59:68:b6:03:6b:78:07:11:e7:32:e2:d4:d4:12:9a:6b:71:f1: 65:4b:c8:e5:cc:79:c7:17:7c:57:c6:79:fd:8c:4d:84:ca:2f: ee:90:d3:91:6c:11:ae:92:15:6c:2b:53:be:94:6d:0d:90:4b: 46:12:bf:c1:79:bf:ca:a9:0c:2c:1a:22:0a:5e:9b:bc:a0:33: c7:e7:5a:ee:81:38:f3:e7:55:ab:9f:b4:b9:51:fe:58:8d:b2: bd:73:53:9e:28:22:5a:31:ec:59:df:02:fe:fc:84:a2:e8:c8: 54:d0:f7:e6:cf:52:5b:b6:1e:38:77:95:4b:90:f3:f0:62:04: 7b:88:7c:1a:d9:5a:d9:45:44:13:24:61:d3:dc:b5:e8:da:de: 24:47:a4:3e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZszDSG/qtKqA6d5DNL+A/WHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA0NjdhNTYyMTFiMjFlOWFjN2NkYzhmYjYzOWYzMTBhOTJj MjEwNGMwHhcNMjUxMjE4MjAwMDU3WhcNMjUxMjE5MjAwMDU3WjAzMTEwLwYDVQQD EyhhMWY1NDA2YzZlNjFmYjA4NjExNzYyMWU5NTgwYzA4ODQ5MWY3Yjg1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqYoIIDA/7ebtV5qA/lgZTDn1zbPG YYzMH4RLWe+g7Yho2SQfif/8FmjIfByMTXPU3dagGQyXW5+yJfs47/kfcyChGODc RECSgSrceyxVH1u8pNBtJlRwott8vWFPfWApIepkp8bBSzxOa093/fRqcHXMtaly XOIunBaQp407WcrBVLqiwk4kGSxFmbPtcbKQorFbubZ3vwUgwOEjP2zu003n/5ci /2jN2BNeX3azevfyV8I1eTewuGp2fVIy8NWh9CLX0A+mlz/rYWSzTpOfkvyjzQX4 z2OQ/BYA+yoK7DTHDT5HrhoNKFmrA8Et1w0c2SJeOZWydylTe4eDaBOnkQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKH1QGxuYfsIYRdiHpWAwIhJH3uFMB8GA1UdIwQY MBaAFARnpWIRsh6ax83I+2OfMQqSwhBMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQkdlbFloR3lIcHJIemNqN1k1OHhDcExDRUV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC8wNDVjNGItYzBkNy00Nzc4LTlmNDQt ODIzYWQyYzJmNWYxLzEvQkdlbFloR3lIcHJIemNqN1k1OHhDcExDRUV3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZC8wNDVjNGItYzBkNy00Nzc4LTlmNDQtODIzYWQyYzJmNWYx LzEvQkdlbFloR3lIcHJIemNqN1k1OHhDcExDRUV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiA2RvR3J SE7l9lbE1gUPlYs3pNd0pqMOVdnYWz+wzO0hTUHr0H6nzhlEyTsmxIriaElkco7D rsnaQZ16SB33W+OqhB1bVqK49Gqd/2RHw2nRVV9eM3ngGQj5GUmW3hYO4w7NhDIr 7RYvXinVWWi2A2t4BxHnMuLU1BKaa3HxZUvI5cx5xxd8V8Z5/YxNhMov7pDTkWwR rpIVbCtTvpRtDZBLRhK/wXm/yqkMLBoiCl6bvKAzx+da7oE48+dVq5+0uVH+WI2y vXNTnigiWjHsWd8C/vyEoujIVND35s9SW7YeOHeVS5Dz8GIEe4h8Gtla2UVEEyRh 09y16NreJEekPg== -----END CERTIFICATE-----Generated at Thu Dec 18 23:07:58 2025 by rpki-client