This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.mft File: bZYBl_5YkhTCJZ9q6olsThAH6YY.mft (raw, json) Hash identifier: z+XMnuZ3mKhq1zvNjKwbzT1pq2MlXtVJXiZwvJgoutM= Subject key identifier: 26:29:1E:9F:CB:6C:B0:8A:7C:EA:30:C4:05:94:D9:5D:1A:B8:E2:8C Authority key identifier: 6D:96:01:97:FE:58:92:14:C2:25:9F:6A:EA:89:6C:4E:10:07:E9:86 Certificate issuer: /CN=6d960197fe589214c2259f6aea896c4e1007e986 Certificate serial: 019AF12E059E4C8152FAACEF708931C7DFE6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bZYBl_5YkhTCJZ9q6olsThAH6YY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.mft Manifest number: 09FE Signing time: Sat 06 Dec 2025 01:01:56 +0000 Manifest this update: Sat 06 Dec 2025 01:01:56 +0000 Manifest next update: Sun 07 Dec 2025 01:01:56 +0000 Files and hashes: 1: bZYBl_5YkhTCJZ9q6olsThAH6YY.crl (hash: od89DMzbXY6VUDZpSwlsc0YwbCMqasW+IA/qggDi/Dw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.crl rsync://rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.mft rsync://rpki.ripe.net/repository/DEFAULT/bZYBl_5YkhTCJZ9q6olsThAH6YY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:05:9e:4c:81:52:fa:ac:ef:70:89:31:c7:df:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6d960197fe589214c2259f6aea896c4e1007e986 Validity Not Before: Dec 6 01:01:56 2025 GMT Not After : Dec 7 01:01:56 2025 GMT Subject: CN=26291e9fcb6cb08a7cea30c40594d95d1ab8e28c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:21:de:e9:7a:0c:f0:ee:c7:23:62:d2:e8:d1: ba:ee:60:ae:9a:eb:a9:0b:80:0a:64:75:54:df:ce: 5a:06:8e:65:0c:4e:56:ed:f7:dd:fc:69:11:d2:98: 23:c1:72:f1:aa:73:66:8f:22:ca:fd:14:09:b8:fa: 4b:5e:9a:3e:9a:42:9e:b2:44:da:37:10:4d:f3:ef: 69:07:eb:13:22:af:d4:69:ce:f4:dd:4c:d9:98:89: 42:7a:e8:82:5a:01:2f:2f:da:28:62:ea:ab:d3:6a: 57:32:3c:4d:0a:e4:58:e5:f2:3e:2e:a4:5d:ea:5f: c3:96:d9:b5:b7:f3:5b:ff:57:f8:5a:69:38:81:35: c3:7c:cb:e8:38:16:36:e3:c6:f4:33:d0:d5:b3:8c: 28:53:37:e0:68:8b:95:2c:70:2a:eb:f1:c5:ea:b2: 5e:e8:8b:a9:00:c7:7d:8e:60:a9:f9:da:04:fd:73: 51:6c:b6:66:61:9a:7c:53:d1:eb:7d:2f:59:d9:0f: 6d:8d:70:4c:22:68:fc:3f:f1:25:1e:07:55:37:c4: ee:8a:01:80:6e:7a:a7:1b:e3:e4:25:92:cc:30:ca: 21:3b:7a:c5:cb:42:88:13:01:ed:44:b7:6d:8d:8e: 16:c6:6c:70:f7:33:d0:f2:0e:90:38:83:85:44:6e: 74:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:29:1E:9F:CB:6C:B0:8A:7C:EA:30:C4:05:94:D9:5D:1A:B8:E2:8C X509v3 Authority Key Identifier: keyid:6D:96:01:97:FE:58:92:14:C2:25:9F:6A:EA:89:6C:4E:10:07:E9:86 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bZYBl_5YkhTCJZ9q6olsThAH6YY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9b:c6:9f:93:de:d6:4e:08:f6:27:09:7d:27:77:38:1a:a8:e7: 44:54:84:0b:02:c0:61:e1:4f:c7:b1:e7:c7:14:70:75:e1:5f: 74:0a:05:04:e1:8f:5d:3d:0a:00:53:a2:cb:8c:60:ab:9d:cc: 13:11:75:05:c5:e4:d2:24:7d:fe:68:a9:63:b6:a0:e3:b6:02: c7:0d:d6:69:e1:0f:34:e6:55:a0:56:fd:f1:44:bb:d3:c5:1b: 57:1e:e3:c7:ff:e1:f3:9e:81:75:3a:cc:d7:db:53:cd:4f:73: 0d:ab:87:d9:ac:cd:93:18:f5:08:a4:1e:54:01:a1:9c:92:46: 14:f7:6c:b6:60:6e:27:01:47:74:be:ec:d6:86:f5:4f:50:28: 61:41:95:f4:d7:10:b4:05:60:e9:9b:3a:c2:06:48:92:7c:4f: df:02:20:8e:c3:e8:0c:8a:83:53:04:d6:bc:28:d8:f5:da:f3: a5:8f:24:b0:4a:72:06:df:f5:99:ee:30:9c:37:07:3c:b4:00: 51:1d:f4:b9:c5:3b:bd:c7:c2:e2:28:04:d3:2c:76:55:d7:83: b4:c6:96:90:e6:f9:b7:51:51:9d:8f:2b:ad:07:de:25:95:a4: e5:39:3b:52:42:20:b7:e1:b9:3f:dd:99:8b:d1:7f:37:d6:a8: 3f:7c:ba:8a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLgWeTIFS+qzvcIkxx9/mMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkOTYwMTk3ZmU1ODkyMTRjMjI1OWY2YWVhODk2YzRlMTAw N2U5ODYwHhcNMjUxMjA2MDEwMTU2WhcNMjUxMjA3MDEwMTU2WjAzMTEwLwYDVQQD EygyNjI5MWU5ZmNiNmNiMDhhN2NlYTMwYzQwNTk0ZDk1ZDFhYjhlMjhjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiiHe6XoM8O7HI2LS6NG67mCumuup C4AKZHVU385aBo5lDE5W7ffd/GkR0pgjwXLxqnNmjyLK/RQJuPpLXpo+mkKeskTa NxBN8+9pB+sTIq/Uac703UzZmIlCeuiCWgEvL9ooYuqr02pXMjxNCuRY5fI+LqRd 6l/Dltm1t/Nb/1f4Wmk4gTXDfMvoOBY248b0M9DVs4woUzfgaIuVLHAq6/HF6rJe 6IupAMd9jmCp+doE/XNRbLZmYZp8U9HrfS9Z2Q9tjXBMImj8P/ElHgdVN8TuigGA bnqnG+PkJZLMMMohO3rFy0KIEwHtRLdtjY4Wxmxw9zPQ8g6QOIOFRG503QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCYpHp/LbLCKfOowxAWU2V0auOKMMB8GA1UdIwQY MBaAFG2WAZf+WJIUwiWfauqJbE4QB+mGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYlpZQmxfNVlraFRDSlo5cTZvbHNUaEFINllZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi84NzljMDItZGJmNC00ZTQwLWE0ZWQt MzEzNzU0ZTY0ZTEzLzEvYlpZQmxfNVlraFRDSlo5cTZvbHNUaEFINllZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi84NzljMDItZGJmNC00ZTQwLWE0ZWQtMzEzNzU0ZTY0ZTEz LzEvYlpZQmxfNVlraFRDSlo5cTZvbHNUaEFINllZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAm8afk97W Tgj2Jwl9J3c4GqjnRFSECwLAYeFPx7HnxxRwdeFfdAoFBOGPXT0KAFOiy4xgq53M ExF1BcXk0iR9/mipY7ag47YCxw3WaeEPNOZVoFb98US708UbVx7jx//h856BdTrM 19tTzU9zDauH2azNkxj1CKQeVAGhnJJGFPdstmBuJwFHdL7s1ob1T1AoYUGV9NcQ tAVg6Zs6wgZIknxP3wIgjsPoDIqDUwTWvCjY9drzpY8ksEpyBt/1me4wnDcHPLQA UR30ucU7vcfC4igE0yx2VdeDtMaWkOb5t1FRnY8rrQfeJZWk5Tk7UkIgt+G5P92Z i9F/N9aoP3y6ig== -----END CERTIFICATE-----Generated at Sat Dec 6 08:26:08 2025 by rpki-client