This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/975f3c-af4a-437b-89b1-284e5123e29f/1/bQBRmLdFcqFWq2PyMIWJe9PM1Bs.mft File: bQBRmLdFcqFWq2PyMIWJe9PM1Bs.mft (raw, json) Hash identifier: 1I0EcY7+Vufunv0qgJ+uBkkqll2w4n1Nq7gDHjxrGRg= Subject key identifier: C6:CF:5B:24:9D:66:4C:C3:51:E9:6C:CB:02:7E:C9:B4:9B:FC:18:08 Authority key identifier: 6D:00:51:98:B7:45:72:A1:56:AB:63:F2:30:85:89:7B:D3:CC:D4:1B Certificate issuer: /CN=6d005198b74572a156ab63f23085897bd3ccd41b Certificate serial: 019B269B415451B8DF1416FD16EEAD23BEDF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bQBRmLdFcqFWq2PyMIWJe9PM1Bs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/975f3c-af4a-437b-89b1-284e5123e29f/1/bQBRmLdFcqFWq2PyMIWJe9PM1Bs.mft Manifest number: 03A1 Signing time: Tue 16 Dec 2025 10:01:07 +0000 Manifest this update: Tue 16 Dec 2025 10:01:07 +0000 Manifest next update: Wed 17 Dec 2025 10:01:07 +0000 Files and hashes: 1: bQBRmLdFcqFWq2PyMIWJe9PM1Bs.crl (hash: D7QZsWNN0IbE3jMaO68Phl1uq18HEZzUmF/K0B/K6xo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/975f3c-af4a-437b-89b1-284e5123e29f/1/bQBRmLdFcqFWq2PyMIWJe9PM1Bs.crl rsync://rpki.ripe.net/repository/DEFAULT/3d/975f3c-af4a-437b-89b1-284e5123e29f/1/bQBRmLdFcqFWq2PyMIWJe9PM1Bs.mft rsync://rpki.ripe.net/repository/DEFAULT/bQBRmLdFcqFWq2PyMIWJe9PM1Bs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 10:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:26:9b:41:54:51:b8:df:14:16:fd:16:ee:ad:23:be:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6d005198b74572a156ab63f23085897bd3ccd41b Validity Not Before: Dec 16 10:01:07 2025 GMT Not After : Dec 17 10:01:07 2025 GMT Subject: CN=c6cf5b249d664cc351e96ccb027ec9b49bfc1808 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:2c:2f:24:21:47:2d:de:74:01:85:38:78:60: 36:1b:8d:da:9c:79:c9:e3:e3:15:dc:6e:50:9c:fa: 88:c7:74:39:b4:0e:3c:80:11:9d:ed:74:7b:b1:75: 89:99:06:ff:87:a3:8b:69:ea:bd:38:cb:b2:bd:9a: 3e:5a:bb:14:88:b4:1d:1f:3d:06:10:73:7c:20:12: 85:1e:99:50:f6:23:e7:e2:47:85:af:9f:92:34:b0: 4b:de:8b:b9:62:92:72:fe:ee:71:0b:bb:55:ca:81: 93:72:d1:67:99:cc:10:36:ec:4b:75:09:e7:b0:52: 64:7e:70:12:38:f0:6f:53:9d:de:7c:e5:a0:6e:a0: 41:e9:a4:91:81:0d:36:c4:e4:3b:df:1b:58:5d:0e: ce:f5:f9:b0:15:2a:0d:6c:6d:92:fe:b2:f7:89:b7: 0c:d1:2f:c4:1d:36:8d:95:0c:9c:8f:b2:fe:d0:a8: 44:d8:72:c9:05:bf:6f:17:05:63:2d:19:07:ef:0d: c9:fa:57:36:99:4d:dd:6f:c5:73:fc:80:72:9c:64: 02:d9:61:cd:61:03:c6:00:29:e2:75:61:5e:ba:28: 09:90:ed:8d:bb:ee:04:87:5c:2b:a8:39:99:c7:b7: b2:a5:6c:b6:3a:80:c0:3c:09:ed:e3:ef:31:5c:e6: 7e:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:CF:5B:24:9D:66:4C:C3:51:E9:6C:CB:02:7E:C9:B4:9B:FC:18:08 X509v3 Authority Key Identifier: keyid:6D:00:51:98:B7:45:72:A1:56:AB:63:F2:30:85:89:7B:D3:CC:D4:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bQBRmLdFcqFWq2PyMIWJe9PM1Bs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/975f3c-af4a-437b-89b1-284e5123e29f/1/bQBRmLdFcqFWq2PyMIWJe9PM1Bs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/975f3c-af4a-437b-89b1-284e5123e29f/1/bQBRmLdFcqFWq2PyMIWJe9PM1Bs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 90:65:c3:65:93:31:fa:a0:8c:76:4e:78:df:e0:96:9a:fb:9a: 70:89:d7:6b:10:62:92:3e:4b:2f:ab:e7:8e:de:8c:6a:4a:62: b5:2d:4e:3d:33:3a:7c:60:24:94:85:c6:0e:4a:c0:c7:99:42: c2:0d:14:38:cd:50:79:61:c9:e3:2a:fe:63:c2:51:ca:8f:90: 9b:f1:bb:79:a2:00:12:fa:cf:e9:b5:76:fd:1f:b3:88:ca:96: 0b:13:b9:97:74:8b:53:e9:cf:cb:35:5c:8c:ca:10:c1:57:07: 74:e3:e8:b7:6b:7b:e7:93:b2:95:53:e2:04:a9:75:68:6a:2c: 0c:8b:33:24:71:bd:d4:00:91:e8:8f:5f:19:13:f1:01:b0:f1: 46:93:67:8a:26:8f:4f:1f:a5:73:b9:5f:9f:91:e4:96:e8:e8: b3:b1:25:d6:69:67:ab:be:5f:53:00:e2:64:56:49:07:af:95: fb:57:e4:01:d0:78:ae:83:9e:68:cc:45:23:73:37:8f:ae:9c: 71:d7:16:58:9b:6c:c3:a2:73:ee:41:38:10:ed:2d:81:1d:b4: a4:35:7f:fa:8a:c7:84:4d:9c:fd:80:97:21:74:36:84:08:b5: 89:a3:a3:69:3f:97:ac:98:33:c0:82:bd:ef:aa:d1:f3:da:9f: b5:fb:23:d9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsmm0FUUbjfFBb9Fu6tI77fMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkMDA1MTk4Yjc0NTcyYTE1NmFiNjNmMjMwODU4OTdiZDNj Y2Q0MWIwHhcNMjUxMjE2MTAwMTA3WhcNMjUxMjE3MTAwMTA3WjAzMTEwLwYDVQQD EyhjNmNmNWIyNDlkNjY0Y2MzNTFlOTZjY2IwMjdlYzliNDliZmMxODA4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4CwvJCFHLd50AYU4eGA2G43anHnJ 4+MV3G5QnPqIx3Q5tA48gBGd7XR7sXWJmQb/h6OLaeq9OMuyvZo+WrsUiLQdHz0G EHN8IBKFHplQ9iPn4keFr5+SNLBL3ou5YpJy/u5xC7tVyoGTctFnmcwQNuxLdQnn sFJkfnASOPBvU53efOWgbqBB6aSRgQ02xOQ73xtYXQ7O9fmwFSoNbG2S/rL3ibcM 0S/EHTaNlQycj7L+0KhE2HLJBb9vFwVjLRkH7w3J+lc2mU3db8Vz/IBynGQC2WHN YQPGACnidWFeuigJkO2Nu+4Eh1wrqDmZx7eypWy2OoDAPAnt4+8xXOZ+xwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMbPWySdZkzDUelsywJ+ybSb/BgIMB8GA1UdIwQY MBaAFG0AUZi3RXKhVqtj8jCFiXvTzNQbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYlFCUm1MZEZjcUZXcTJQeU1JV0plOVBNMUJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC85NzVmM2MtYWY0YS00MzdiLTg5YjEt Mjg0ZTUxMjNlMjlmLzEvYlFCUm1MZEZjcUZXcTJQeU1JV0plOVBNMUJzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZC85NzVmM2MtYWY0YS00MzdiLTg5YjEtMjg0ZTUxMjNlMjlm LzEvYlFCUm1MZEZjcUZXcTJQeU1JV0plOVBNMUJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkGXDZZMx +qCMdk543+CWmvuacInXaxBikj5LL6vnjt6MakpitS1OPTM6fGAklIXGDkrAx5lC wg0UOM1QeWHJ4yr+Y8JRyo+Qm/G7eaIAEvrP6bV2/R+ziMqWCxO5l3SLU+nPyzVc jMoQwVcHdOPot2t755OylVPiBKl1aGosDIszJHG91ACR6I9fGRPxAbDxRpNniiaP Tx+lc7lfn5Hklujos7El1mlnq75fUwDiZFZJB6+V+1fkAdB4roOeaMxFI3M3j66c cdcWWJtsw6Jz7kE4EO0tgR20pDV/+orHhE2c/YCXIXQ2hAi1iaOjaT+XrJgzwIK9 76rR89qftfsj2Q== -----END CERTIFICATE-----Generated at Tue Dec 16 20:59:57 2025 by rpki-client