This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/95602e-9eb3-418b-bc00-167831613145/1/BaQevhJyohyuDqGzXcCD-taKXX0.mft File: BaQevhJyohyuDqGzXcCD-taKXX0.mft (raw, json) Hash identifier: swVYWhYz3VLM/Q2xk711Lml4Whl0TIB7/2PeXmMR/Ow= Subject key identifier: 2D:89:2A:71:27:3F:7B:F1:73:57:70:B2:B9:11:04:E4:69:27:2A:1A Authority key identifier: 05:A4:1E:BE:12:72:A2:1C:AE:0E:A1:B3:5D:C0:83:FA:D6:8A:5D:7D Certificate issuer: /CN=05a41ebe1272a21cae0ea1b35dc083fad68a5d7d Certificate serial: 019AF12D2029AE8C37908B26953365FB280B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BaQevhJyohyuDqGzXcCD-taKXX0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/95602e-9eb3-418b-bc00-167831613145/1/BaQevhJyohyuDqGzXcCD-taKXX0.mft Manifest number: 175E Signing time: Sat 06 Dec 2025 01:00:57 +0000 Manifest this update: Sat 06 Dec 2025 01:00:57 +0000 Manifest next update: Sun 07 Dec 2025 01:00:57 +0000 Files and hashes: 1: BaQevhJyohyuDqGzXcCD-taKXX0.crl (hash: kJhFiROs7vAv0DWWM5v71RdTXsZ23L6Ifgciye22egQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/95602e-9eb3-418b-bc00-167831613145/1/BaQevhJyohyuDqGzXcCD-taKXX0.crl rsync://rpki.ripe.net/repository/DEFAULT/4b/95602e-9eb3-418b-bc00-167831613145/1/BaQevhJyohyuDqGzXcCD-taKXX0.mft rsync://rpki.ripe.net/repository/DEFAULT/BaQevhJyohyuDqGzXcCD-taKXX0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:20:29:ae:8c:37:90:8b:26:95:33:65:fb:28:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05a41ebe1272a21cae0ea1b35dc083fad68a5d7d Validity Not Before: Dec 6 01:00:57 2025 GMT Not After : Dec 7 01:00:57 2025 GMT Subject: CN=2d892a71273f7bf1735770b2b91104e469272a1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:24:7b:db:8e:91:9d:64:f5:93:d7:3d:05:26: 20:ca:a7:38:55:28:f4:f1:4b:03:c1:d7:6f:72:33: f0:2a:28:d6:2d:e3:0a:49:7d:5b:1f:f2:f1:0f:1d: e5:19:3d:13:6d:66:c7:ef:15:12:a3:ec:fb:8c:b7: a2:9c:3e:8f:d6:f1:f2:84:62:b6:97:bf:32:6f:f9: d1:31:fd:1f:31:76:94:ba:f9:94:5c:6b:17:28:1c: 20:94:a0:84:db:18:03:ce:4a:3c:fc:28:c5:5d:84: 35:f8:e5:e2:a3:76:ed:1c:f0:5f:5a:f8:03:f5:2b: 97:24:1b:e6:cb:8f:ae:60:26:7f:48:ee:a7:90:91: 12:ab:c2:fb:91:f8:8a:df:bf:c8:aa:3f:d7:5e:78: 77:ff:a3:93:05:45:61:53:06:b2:8e:03:c9:36:c0: 6b:16:9f:ef:46:06:1b:5f:96:b6:84:66:c2:10:72: 7e:01:67:6f:5a:cb:c6:ef:56:61:d9:a9:28:18:6c: 36:8d:9e:b9:1b:13:72:4c:68:4c:f0:3a:67:ee:ab: 20:af:7b:e1:27:0f:d4:ac:24:67:4b:f8:19:5c:73: 5b:c5:20:3e:d3:3b:9d:24:5f:37:e9:b5:3f:4f:35: cd:39:ee:90:29:a0:92:8a:fd:38:97:fb:1a:7f:a4: 9e:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:89:2A:71:27:3F:7B:F1:73:57:70:B2:B9:11:04:E4:69:27:2A:1A X509v3 Authority Key Identifier: keyid:05:A4:1E:BE:12:72:A2:1C:AE:0E:A1:B3:5D:C0:83:FA:D6:8A:5D:7D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BaQevhJyohyuDqGzXcCD-taKXX0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/95602e-9eb3-418b-bc00-167831613145/1/BaQevhJyohyuDqGzXcCD-taKXX0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/95602e-9eb3-418b-bc00-167831613145/1/BaQevhJyohyuDqGzXcCD-taKXX0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 16:c0:48:da:2f:a8:ca:0f:92:e9:f2:b0:a8:78:fb:61:95:01: bc:c9:a2:69:a2:3f:85:70:1d:94:2f:b2:ee:43:00:da:24:1e: cf:7f:01:1f:12:10:0f:85:8a:a6:b8:3d:e2:63:58:56:ae:d5: 5f:14:61:2f:bd:06:4f:26:2a:8a:c7:3f:9b:8e:33:91:f6:53: 49:22:c5:1d:8e:53:82:cd:cd:36:19:f3:be:53:2d:34:d0:b5: 82:75:29:8b:02:f4:ef:47:7d:94:1c:27:87:05:d2:56:6d:93: 15:72:e2:50:c7:48:6e:ca:29:74:f1:f3:ef:2f:58:34:76:2a: b4:6f:68:58:ed:49:93:2c:06:0b:90:56:65:7d:e6:62:b8:c2: 17:de:0a:ad:51:4f:d8:3f:9d:50:ad:43:c1:88:79:71:36:c9: bb:57:06:f7:6c:f0:7c:ca:fe:5e:b3:05:66:4b:5a:e4:a1:0f: 15:07:bb:39:2e:e6:60:10:a0:e8:20:f5:80:78:6d:29:01:c3: 57:0b:84:d7:45:71:4f:6f:8f:5d:db:54:02:85:d8:a6:0b:a3: c8:08:dd:1e:84:07:18:58:59:02:f2:31:a6:ba:7c:1e:96:71: ff:6a:53:23:5c:66:60:a7:bf:2f:a8:ba:50:02:89:69:05:a6: 5b:eb:da:69 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLSAprow3kIsmlTNl+ygLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1YTQxZWJlMTI3MmEyMWNhZTBlYTFiMzVkYzA4M2ZhZDY4 YTVkN2QwHhcNMjUxMjA2MDEwMDU3WhcNMjUxMjA3MDEwMDU3WjAzMTEwLwYDVQQD EygyZDg5MmE3MTI3M2Y3YmYxNzM1NzcwYjJiOTExMDRlNDY5MjcyYTFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsiR7246RnWT1k9c9BSYgyqc4VSj0 8UsDwddvcjPwKijWLeMKSX1bH/LxDx3lGT0TbWbH7xUSo+z7jLeinD6P1vHyhGK2 l78yb/nRMf0fMXaUuvmUXGsXKBwglKCE2xgDzko8/CjFXYQ1+OXio3btHPBfWvgD 9SuXJBvmy4+uYCZ/SO6nkJESq8L7kfiK37/Iqj/XXnh3/6OTBUVhUwayjgPJNsBr Fp/vRgYbX5a2hGbCEHJ+AWdvWsvG71Zh2akoGGw2jZ65GxNyTGhM8Dpn7qsgr3vh Jw/UrCRnS/gZXHNbxSA+0zudJF836bU/TzXNOe6QKaCSiv04l/saf6SetQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC2JKnEnP3vxc1dwsrkRBORpJyoaMB8GA1UdIwQY MBaAFAWkHr4ScqIcrg6hs13Ag/rWil19MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQmFRZXZoSnlvaHl1RHFHelhjQ0QtdGFLWFgwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi85NTYwMmUtOWViMy00MThiLWJjMDAt MTY3ODMxNjEzMTQ1LzEvQmFRZXZoSnlvaHl1RHFHelhjQ0QtdGFLWFgwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yi85NTYwMmUtOWViMy00MThiLWJjMDAtMTY3ODMxNjEzMTQ1 LzEvQmFRZXZoSnlvaHl1RHFHelhjQ0QtdGFLWFgwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFsBI2i+o yg+S6fKwqHj7YZUBvMmiaaI/hXAdlC+y7kMA2iQez38BHxIQD4WKprg94mNYVq7V XxRhL70GTyYqisc/m44zkfZTSSLFHY5Tgs3NNhnzvlMtNNC1gnUpiwL070d9lBwn hwXSVm2TFXLiUMdIbsopdPHz7y9YNHYqtG9oWO1JkywGC5BWZX3mYrjCF94KrVFP 2D+dUK1DwYh5cTbJu1cG92zwfMr+XrMFZkta5KEPFQe7OS7mYBCg6CD1gHhtKQHD VwuE10VxT2+PXdtUAoXYpgujyAjdHoQHGFhZAvIxprp8HpZx/2pTI1xmYKe/L6i6 UAKJaQWmW+vaaQ== -----END CERTIFICATE-----Generated at Sat Dec 6 10:43:14 2025 by rpki-client