This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/5eda7c-7c92-4386-8d82-66915139d89a/1/BwM6kQ_PLBsVl3oYrOfYV7pYuao.mft File: BwM6kQ_PLBsVl3oYrOfYV7pYuao.mft (raw, json) Hash identifier: weR+ZMkqf4CCDThJScPabbo3jqZexIKIFNPKbRIQ1Ks= Subject key identifier: 47:C3:0F:B1:4C:B1:E3:27:0D:0A:2B:B0:CD:E0:B8:AF:BE:6C:DD:00 Authority key identifier: 07:03:3A:91:0F:CF:2C:1B:15:97:7A:18:AC:E7:D8:57:BA:58:B9:AA Certificate issuer: /CN=07033a910fcf2c1b15977a18ace7d857ba58b9aa Certificate serial: 019AF49C2DDCEB1AC476CAC0D136C7353012 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BwM6kQ_PLBsVl3oYrOfYV7pYuao.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/5eda7c-7c92-4386-8d82-66915139d89a/1/BwM6kQ_PLBsVl3oYrOfYV7pYuao.mft Manifest number: 0BF2 Signing time: Sat 06 Dec 2025 17:01:07 +0000 Manifest this update: Sat 06 Dec 2025 17:01:07 +0000 Manifest next update: Sun 07 Dec 2025 17:01:07 +0000 Files and hashes: 1: 68akK538AgBQpzV9ol21s3i1l5E.roa (hash: FVtdNzWjJOk17abGuskk0fG+irWuLqKU8WFk4kXyjGs=) 2: BwM6kQ_PLBsVl3oYrOfYV7pYuao.crl (hash: yJIZT9mH54Td0miMqdruGRDiDheX7vRYJLAHDJPUbSc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/5eda7c-7c92-4386-8d82-66915139d89a/1/BwM6kQ_PLBsVl3oYrOfYV7pYuao.crl rsync://rpki.ripe.net/repository/DEFAULT/56/5eda7c-7c92-4386-8d82-66915139d89a/1/BwM6kQ_PLBsVl3oYrOfYV7pYuao.mft rsync://rpki.ripe.net/repository/DEFAULT/BwM6kQ_PLBsVl3oYrOfYV7pYuao.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:9c:2d:dc:eb:1a:c4:76:ca:c0:d1:36:c7:35:30:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=07033a910fcf2c1b15977a18ace7d857ba58b9aa Validity Not Before: Dec 6 17:01:07 2025 GMT Not After : Dec 7 17:01:07 2025 GMT Subject: CN=47c30fb14cb1e3270d0a2bb0cde0b8afbe6cdd00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:4a:8b:6f:bf:15:5c:3e:d1:55:cb:89:bb:ae: 65:bb:32:82:34:5e:30:0a:04:e3:22:b9:1c:dd:cf: 61:81:94:4b:e6:70:f5:2d:39:9d:b1:3f:bd:bc:0e: 19:b3:4a:07:3e:bb:a4:8c:0e:63:2a:b2:fe:da:f3: be:b1:86:d8:2f:d4:62:96:61:03:66:9b:ef:68:78: 73:e8:18:68:f4:85:f5:10:51:ea:fb:98:08:cc:bd: 29:c0:ea:c9:d2:07:e8:8d:2d:5b:cf:da:e9:8c:fd: c4:ba:de:aa:92:4d:68:f4:1a:eb:83:e0:98:f3:52: d9:e6:8d:36:ca:34:c9:04:d4:c4:50:b4:e8:30:63: b3:b3:35:d2:02:e3:93:57:14:1a:bf:3d:2e:f1:09: 0f:47:88:97:67:1e:15:ca:55:e8:53:f9:4d:c0:26: 3f:dd:2a:23:05:d0:88:ed:81:cc:3e:51:28:66:49: 47:d5:d1:4a:dd:f3:c3:30:0b:7f:fa:99:c7:16:b8: 6a:09:a5:f8:ba:2a:6e:54:d7:49:a4:82:e5:e4:96: f6:c1:e5:ad:6b:41:7d:c6:4a:e7:a0:4a:17:15:73: 45:13:64:82:a2:d9:2d:69:5c:f8:a4:b5:2f:fc:99: 0d:39:ff:64:4e:2b:8d:e5:f8:8d:e0:d0:85:21:51: 3c:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:C3:0F:B1:4C:B1:E3:27:0D:0A:2B:B0:CD:E0:B8:AF:BE:6C:DD:00 X509v3 Authority Key Identifier: keyid:07:03:3A:91:0F:CF:2C:1B:15:97:7A:18:AC:E7:D8:57:BA:58:B9:AA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BwM6kQ_PLBsVl3oYrOfYV7pYuao.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/5eda7c-7c92-4386-8d82-66915139d89a/1/BwM6kQ_PLBsVl3oYrOfYV7pYuao.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/56/5eda7c-7c92-4386-8d82-66915139d89a/1/BwM6kQ_PLBsVl3oYrOfYV7pYuao.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 87:d7:1c:e7:ee:a6:6b:06:50:9e:97:b3:44:1d:6d:d7:d1:e5: 3c:ff:1b:44:64:1d:14:60:2e:ff:04:3f:df:11:d0:47:85:05: 7a:5f:0d:31:57:3c:80:c2:0e:0c:d0:08:73:43:e9:73:b9:81: 2a:62:19:02:fa:5c:28:25:3d:83:61:b4:40:9b:53:21:42:5c: 48:ed:a9:f2:97:3b:62:87:76:fa:62:bf:38:ab:8a:ae:c6:68: 92:bb:3e:57:6f:35:d9:ff:d0:0d:5f:06:35:13:2a:93:6c:67: 7e:55:c5:da:83:f1:2c:3d:9b:e3:ac:b0:c9:38:de:f8:f6:24: 60:2f:fe:ff:45:95:f7:dc:41:ea:6d:40:25:63:cc:47:6f:77: 89:ff:c7:c0:bd:4c:1a:b3:ef:a8:39:a9:bf:ab:6f:72:27:9a: 6f:00:db:14:25:50:27:28:1e:84:01:2c:12:d5:16:87:c3:48: 11:98:a9:8b:79:76:a6:40:5e:f8:ab:d3:dd:d9:7d:ad:95:4d: 04:55:a1:42:88:ea:52:a0:79:d8:1d:a6:98:ea:72:46:e8:65: 0f:0c:fa:1d:19:c0:db:c0:55:22:32:7f:5c:5f:8f:bc:72:e9: 0d:c9:7c:9a:9b:d1:b1:97:51:e1:86:a0:41:ce:36:a8:6d:1d: a1:5f:63:fd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0nC3c6xrEdsrA0TbHNTASMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA3MDMzYTkxMGZjZjJjMWIxNTk3N2ExOGFjZTdkODU3YmE1 OGI5YWEwHhcNMjUxMjA2MTcwMTA3WhcNMjUxMjA3MTcwMTA3WjAzMTEwLwYDVQQD Eyg0N2MzMGZiMTRjYjFlMzI3MGQwYTJiYjBjZGUwYjhhZmJlNmNkZDAwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArUqLb78VXD7RVcuJu65luzKCNF4w CgTjIrkc3c9hgZRL5nD1LTmdsT+9vA4Zs0oHPrukjA5jKrL+2vO+sYbYL9RilmED ZpvvaHhz6Bho9IX1EFHq+5gIzL0pwOrJ0gfojS1bz9rpjP3Eut6qkk1o9Brrg+CY 81LZ5o02yjTJBNTEULToMGOzszXSAuOTVxQavz0u8QkPR4iXZx4VylXoU/lNwCY/ 3SojBdCI7YHMPlEoZklH1dFK3fPDMAt/+pnHFrhqCaX4uipuVNdJpILl5Jb2weWt a0F9xkrnoEoXFXNFE2SCotktaVz4pLUv/JkNOf9kTiuN5fiN4NCFIVE8dQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEfDD7FMseMnDQorsM3guK++bN0AMB8GA1UdIwQY MBaAFAcDOpEPzywbFZd6GKzn2Fe6WLmqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQndNNmtRX1BMQnNWbDNvWXJPZllWN3BZdWFvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni81ZWRhN2MtN2M5Mi00Mzg2LThkODIt NjY5MTUxMzlkODlhLzEvQndNNmtRX1BMQnNWbDNvWXJPZllWN3BZdWFvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ni81ZWRhN2MtN2M5Mi00Mzg2LThkODItNjY5MTUxMzlkODlh LzEvQndNNmtRX1BMQnNWbDNvWXJPZllWN3BZdWFvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh9cc5+6m awZQnpezRB1t19HlPP8bRGQdFGAu/wQ/3xHQR4UFel8NMVc8gMIODNAIc0Ppc7mB KmIZAvpcKCU9g2G0QJtTIUJcSO2p8pc7Yod2+mK/OKuKrsZokrs+V2812f/QDV8G NRMqk2xnflXF2oPxLD2b46ywyTje+PYkYC/+/0WV99xB6m1AJWPMR293if/HwL1M GrPvqDmpv6tvcieabwDbFCVQJygehAEsEtUWh8NIEZipi3l2pkBe+KvT3dl9rZVN BFWhQojqUqB52B2mmOpyRuhlDwz6HRnA28BVIjJ/XF+PvHLpDcl8mpvRsZdR4Yag Qc42qG0doV9j/Q== -----END CERTIFICATE-----Generated at Sat Dec 6 19:38:25 2025 by rpki-client