This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.mft File: BXEVMhUM58l6fqSMDXekLm8NX8M.mft (raw, json) Hash identifier: OzihwXMkw+ReGBu9zZAgG+6Zw6GshQ2MqFP1xmQK1Hc= Subject key identifier: B9:3D:1C:11:C1:55:33:BA:DC:00:F8:53:83:FC:21:5E:B1:5D:31:59 Authority key identifier: 05:71:15:32:15:0C:E7:C9:7A:7E:A4:8C:0D:77:A4:2E:6F:0D:5F:C3 Certificate issuer: /CN=05711532150ce7c97a7ea48c0d77a42e6f0d5fc3 Certificate serial: 019AF2AD9FB19321E4B69F3480FF3ED2FCAE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BXEVMhUM58l6fqSMDXekLm8NX8M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.mft Manifest number: 07E9 Signing time: Sat 06 Dec 2025 08:00:56 +0000 Manifest this update: Sat 06 Dec 2025 08:00:56 +0000 Manifest next update: Sun 07 Dec 2025 08:00:56 +0000 Files and hashes: 1: BXEVMhUM58l6fqSMDXekLm8NX8M.crl (hash: iWnuWHFMePV8AafL0OT/ZT5j+BPKBBGW+l31lIVtn5k=) 2: WQBZ-f5dGsC1cL_jEBOvsIELp80.roa (hash: R9ehHlzYxXlTfaqJUkztXePFQ64EbowiDEZr/EhM2e4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.crl rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.mft rsync://rpki.ripe.net/repository/DEFAULT/BXEVMhUM58l6fqSMDXekLm8NX8M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:9f:b1:93:21:e4:b6:9f:34:80:ff:3e:d2:fc:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05711532150ce7c97a7ea48c0d77a42e6f0d5fc3 Validity Not Before: Dec 6 08:00:56 2025 GMT Not After : Dec 7 08:00:56 2025 GMT Subject: CN=b93d1c11c15533badc00f85383fc215eb15d3159 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:69:4c:9a:a6:e3:ad:e3:4f:3f:50:35:8c:ec: 19:11:4a:f9:c6:a4:ad:d2:da:42:d5:1a:22:43:83: ea:4f:a1:2d:cc:94:d1:cc:6b:bb:f4:e4:8f:1a:95: 88:50:ea:6f:90:55:16:55:8f:cb:af:76:ce:28:65: db:32:ff:30:35:f2:d6:2b:95:f2:2a:b8:a3:5a:d5: a5:14:2a:22:1d:35:b2:81:b1:bd:90:25:b6:4b:30: d3:6a:be:fc:09:4f:34:63:74:75:3f:4a:e9:25:55: 63:09:a0:72:34:8e:af:3a:e3:9e:92:af:ad:b3:c6: e0:14:f6:c6:5b:ba:79:cb:cf:6d:85:f3:9d:bf:90: e7:13:8c:67:ca:17:d1:b9:3c:83:78:f9:36:c8:89: c4:bc:84:6a:5d:7e:bb:c3:7c:cf:a8:58:22:ab:f8: fe:1a:e7:7d:9b:fe:b9:71:62:f2:1b:1e:ff:89:cb: 61:d1:fc:53:78:b8:37:2b:3e:92:f3:ff:18:17:39: 6e:fc:7e:94:1c:98:15:ba:65:4e:61:78:b0:83:65: 83:9c:a1:31:03:25:0e:00:9c:91:49:29:be:47:87: fb:21:21:6d:8f:cc:9e:37:a3:64:e8:32:91:de:b5: 25:d5:c7:c7:f5:3f:93:08:4a:cc:8d:78:31:52:5e: 77:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:3D:1C:11:C1:55:33:BA:DC:00:F8:53:83:FC:21:5E:B1:5D:31:59 X509v3 Authority Key Identifier: keyid:05:71:15:32:15:0C:E7:C9:7A:7E:A4:8C:0D:77:A4:2E:6F:0D:5F:C3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BXEVMhUM58l6fqSMDXekLm8NX8M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/41/4d89d6-4465-4321-9282-7bcfd64e0288/1/BXEVMhUM58l6fqSMDXekLm8NX8M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:fc:8d:07:37:fb:3b:78:71:ff:93:4f:4a:b3:a8:35:dd:e4: ba:fc:9e:6e:5b:a2:63:cd:57:d4:3f:27:39:01:d6:f8:5a:c8: 4d:4a:17:a1:7b:9b:89:03:2e:0e:68:24:08:8c:dc:1b:a4:7e: bb:c4:6b:3d:e2:56:77:42:23:2c:a4:0c:07:de:d1:23:59:72: 9a:42:41:a8:8b:ae:cb:cf:56:63:e1:9f:b1:9c:79:eb:79:4d: f8:22:0e:91:af:ca:f4:ce:46:0a:17:df:50:9e:0f:03:65:16: 50:79:4c:24:b8:6f:a2:7d:59:6b:6a:a7:66:8b:5e:ab:71:40: b6:2a:62:8d:48:c5:3b:87:7b:17:e5:65:0c:78:95:de:4a:a1: 86:84:93:19:68:0c:06:44:c9:00:5f:de:57:e9:73:e6:8c:b7: 09:5a:b6:06:b8:d3:6f:46:c9:0d:34:ef:8d:31:80:7e:e1:e9: 3f:66:49:07:78:d6:11:96:c2:f4:d6:8d:59:b8:2a:fd:bc:90: c3:bc:d6:26:ec:e7:90:f3:09:33:3b:00:cf:fd:d3:86:86:b4: 11:ef:de:e6:54:5f:f0:64:07:22:60:c3:7b:12:e1:52:ce:d7: db:50:59:fd:fd:21:c2:16:3b:0f:e1:2f:11:32:33:98:ab:1e: 46:d0:e1:d0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryrZ+xkyHktp80gP8+0vyuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1NzExNTMyMTUwY2U3Yzk3YTdlYTQ4YzBkNzdhNDJlNmYw ZDVmYzMwHhcNMjUxMjA2MDgwMDU2WhcNMjUxMjA3MDgwMDU2WjAzMTEwLwYDVQQD EyhiOTNkMWMxMWMxNTUzM2JhZGMwMGY4NTM4M2ZjMjE1ZWIxNWQzMTU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyGlMmqbjreNPP1A1jOwZEUr5xqSt 0tpC1RoiQ4PqT6EtzJTRzGu79OSPGpWIUOpvkFUWVY/Lr3bOKGXbMv8wNfLWK5Xy KrijWtWlFCoiHTWygbG9kCW2SzDTar78CU80Y3R1P0rpJVVjCaByNI6vOuOekq+t s8bgFPbGW7p5y89thfOdv5DnE4xnyhfRuTyDePk2yInEvIRqXX67w3zPqFgiq/j+ Gud9m/65cWLyGx7/icth0fxTeLg3Kz6S8/8YFzlu/H6UHJgVumVOYXiwg2WDnKEx AyUOAJyRSSm+R4f7ISFtj8yeN6Nk6DKR3rUl1cfH9T+TCErMjXgxUl53DQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLk9HBHBVTO63AD4U4P8IV6xXTFZMB8GA1UdIwQY MBaAFAVxFTIVDOfJen6kjA13pC5vDV/DMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlhFVk1oVU01OGw2ZnFTTURYZWtMbThOWDhNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS80ZDg5ZDYtNDQ2NS00MzIxLTkyODIt N2JjZmQ2NGUwMjg4LzEvQlhFVk1oVU01OGw2ZnFTTURYZWtMbThOWDhNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MS80ZDg5ZDYtNDQ2NS00MzIxLTkyODItN2JjZmQ2NGUwMjg4 LzEvQlhFVk1oVU01OGw2ZnFTTURYZWtMbThOWDhNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATfyNBzf7 O3hx/5NPSrOoNd3kuvyebluiY81X1D8nOQHW+FrITUoXoXubiQMuDmgkCIzcG6R+ u8RrPeJWd0IjLKQMB97RI1lymkJBqIuuy89WY+GfsZx563lN+CIOka/K9M5GChff UJ4PA2UWUHlMJLhvon1Za2qnZoteq3FAtipijUjFO4d7F+VlDHiV3kqhhoSTGWgM BkTJAF/eV+lz5oy3CVq2BrjTb0bJDTTvjTGAfuHpP2ZJB3jWEZbC9NaNWbgq/byQ w7zWJuznkPMJMzsAz/3Thoa0Ee/e5lRf8GQHImDDexLhUs7X21BZ/f0hwhY7D+Ev ETIzmKseRtDh0A== -----END CERTIFICATE-----Generated at Sat Dec 6 10:38:18 2025 by rpki-client