This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft File: bfHIcky70DS6t6Da3wq0uZ_2b_8.mft (raw, json) Hash identifier: LUGanUiyAwigB12QPXh7bfWrdDP8ew7HAZhyPHabAYM= Subject key identifier: 50:E8:65:BF:75:BA:47:65:54:32:A5:DB:72:8E:A5:56:93:2A:0C:23 Authority key identifier: 6D:F1:C8:72:4C:BB:D0:34:BA:B7:A0:DA:DF:0A:B4:B9:9F:F6:6F:FF Certificate issuer: /CN=6df1c8724cbbd034bab7a0dadf0ab4b99ff66fff Certificate serial: 019AF2772D60084A09CC235B2F501883E63B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft Manifest number: 1763 Signing time: Sat 06 Dec 2025 07:01:27 +0000 Manifest this update: Sat 06 Dec 2025 07:01:27 +0000 Manifest next update: Sun 07 Dec 2025 07:01:27 +0000 Files and hashes: 1: 3gASlQlN9UdPtrWqrdLITdzt5Ew.roa (hash: ramhN8+V67WDz+dJge66wgSFRzcM7UnMyKgsybDZiQA=) 2: bfHIcky70DS6t6Da3wq0uZ_2b_8.crl (hash: CCkna2X1le8Lqz2O8RmsHvspkXKIv2ayDiwW5xwAw5I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.crl rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:77:2d:60:08:4a:09:cc:23:5b:2f:50:18:83:e6:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6df1c8724cbbd034bab7a0dadf0ab4b99ff66fff Validity Not Before: Dec 6 07:01:27 2025 GMT Not After : Dec 7 07:01:27 2025 GMT Subject: CN=50e865bf75ba47655432a5db728ea556932a0c23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:68:7f:67:e9:bc:a0:40:1c:27:1c:15:d9:aa: a2:ef:b4:31:22:40:d7:5e:a0:f5:50:85:20:98:37: fc:bd:c5:93:0a:9b:5b:b2:f8:9f:2f:e0:52:c3:8d: 18:a6:31:c6:9a:2d:2f:2c:1e:12:90:c1:31:6e:d5: 96:72:4a:de:98:02:7a:bb:6e:85:0f:7f:c0:04:a6: a4:2c:f8:99:ea:11:a9:ee:1f:3d:04:66:ee:0e:d4: 23:ba:1f:69:c6:19:58:79:f5:4e:7e:01:06:d5:46: 77:c0:dd:5b:60:d5:36:37:4f:99:ea:83:05:d9:b3: 94:e8:2f:9e:63:c5:e5:ac:c6:b2:c2:0b:64:b0:89: dd:5c:ef:f9:b5:d3:e8:31:88:a9:93:bd:42:63:c0: 18:88:54:c6:95:a7:78:bc:e5:45:a1:50:fa:21:25: 58:68:e3:00:6f:75:0a:c6:90:90:75:b5:2d:51:15: 80:2d:38:81:a5:dd:ab:75:f8:8c:3b:93:c9:7d:23: 2e:6b:69:71:53:ad:50:0d:63:2a:cd:cd:20:4d:51: 0f:37:f8:e3:c5:2c:18:61:bd:29:1f:11:19:fd:e1: f1:38:0e:23:7d:b8:83:5d:4e:28:5a:e8:56:dc:00: c3:f5:f3:b4:5d:9a:41:f2:11:f9:81:5b:de:0c:d2: cd:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:E8:65:BF:75:BA:47:65:54:32:A5:DB:72:8E:A5:56:93:2A:0C:23 X509v3 Authority Key Identifier: keyid:6D:F1:C8:72:4C:BB:D0:34:BA:B7:A0:DA:DF:0A:B4:B9:9F:F6:6F:FF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0a:24:75:b4:1e:58:bb:7b:ea:74:d1:cd:d2:1e:86:fd:49:57: 24:62:6d:ea:4c:19:92:9a:39:c0:53:38:8d:80:69:2c:0a:3d: b8:0c:e0:22:e2:2f:14:49:9e:4f:a2:74:6d:79:8d:f3:77:a9: 54:a7:7f:7a:c2:bb:8d:f4:c1:02:d0:b9:8c:3a:dc:7a:2c:9f: b9:2a:91:28:a3:61:25:f6:e2:be:a4:d4:e3:5c:12:62:fd:95: a8:ae:22:9c:75:fe:9f:7a:55:02:52:e0:8a:5f:c1:57:12:df: a2:e5:bc:49:ba:5f:3e:0a:b8:9f:da:43:42:e1:db:7b:ee:0b: 44:e9:8b:eb:a5:40:74:37:d7:f8:49:e2:40:f6:58:8c:ab:d7: c9:15:0a:21:2a:ff:5c:ec:b0:77:4c:bc:e6:8f:9f:0a:5b:81: 3e:3f:72:05:c5:7e:c1:e4:bf:5d:36:83:02:c1:fd:47:f3:5d: 25:14:4b:93:f3:75:29:75:e9:a5:cc:3f:73:68:50:5e:5c:95: c9:52:35:91:0a:af:7c:d4:87:ac:9a:c3:82:d7:53:da:07:aa: 44:d2:2e:42:fd:f0:f5:00:e4:63:c6:4b:1d:32:5b:4c:86:b4: 79:7d:4f:6d:a1:ef:03:b5:62:b1:a1:a3:51:8b:10:f6:cb:5e: 61:5c:12:4b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydy1gCEoJzCNbL1AYg+Y7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkZjFjODcyNGNiYmQwMzRiYWI3YTBkYWRmMGFiNGI5OWZm NjZmZmYwHhcNMjUxMjA2MDcwMTI3WhcNMjUxMjA3MDcwMTI3WjAzMTEwLwYDVQQD Eyg1MGU4NjViZjc1YmE0NzY1NTQzMmE1ZGI3MjhlYTU1NjkzMmEwYzIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwWh/Z+m8oEAcJxwV2aqi77QxIkDX XqD1UIUgmDf8vcWTCptbsvifL+BSw40YpjHGmi0vLB4SkMExbtWWckremAJ6u26F D3/ABKakLPiZ6hGp7h89BGbuDtQjuh9pxhlYefVOfgEG1UZ3wN1bYNU2N0+Z6oMF 2bOU6C+eY8XlrMaywgtksIndXO/5tdPoMYipk71CY8AYiFTGlad4vOVFoVD6ISVY aOMAb3UKxpCQdbUtURWALTiBpd2rdfiMO5PJfSMua2lxU61QDWMqzc0gTVEPN/jj xSwYYb0pHxEZ/eHxOA4jfbiDXU4oWuhW3ADD9fO0XZpB8hH5gVveDNLNNwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFDoZb91ukdlVDKl23KOpVaTKgwjMB8GA1UdIwQY MBaAFG3xyHJMu9A0ureg2t8KtLmf9m//MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYmZISWNreTcwRFM2dDZEYTN3cTB1Wl8yYl84LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi9lMDc4MWYtNmU2NC00NmFhLThhZjAt ZjkyNGQ2ZjZhNTk1LzEvYmZISWNreTcwRFM2dDZEYTN3cTB1Wl8yYl84Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Mi9lMDc4MWYtNmU2NC00NmFhLThhZjAtZjkyNGQ2ZjZhNTk1 LzEvYmZISWNreTcwRFM2dDZEYTN3cTB1Wl8yYl84LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACiR1tB5Y u3vqdNHN0h6G/UlXJGJt6kwZkpo5wFM4jYBpLAo9uAzgIuIvFEmeT6J0bXmN83ep VKd/esK7jfTBAtC5jDrceiyfuSqRKKNhJfbivqTU41wSYv2VqK4inHX+n3pVAlLg il/BVxLfouW8SbpfPgq4n9pDQuHbe+4LROmL66VAdDfX+EniQPZYjKvXyRUKISr/ XOywd0y85o+fCluBPj9yBcV+weS/XTaDAsH9R/NdJRRLk/N1KXXppcw/c2hQXlyV yVI1kQqvfNSHrJrDgtdT2geqRNIuQv3w9QDkY8ZLHTJbTIa0eX1PbaHvA7VisaGj UYsQ9steYVwSSw== -----END CERTIFICATE-----Generated at Sat Dec 6 09:04:18 2025 by rpki-client