This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/bd19fd-f369-42bf-926f-2a4dd23a2f9a/1/boMQZuqP4gsGehNgBrevkGYzhDs.mft File: boMQZuqP4gsGehNgBrevkGYzhDs.mft (raw, json) Hash identifier: ovyexvJ7BlP/2ad9DnHm9ud9n060SUYRZ932dbGblUo= Subject key identifier: AF:C9:97:EA:BF:A6:06:5C:F8:47:28:DB:27:6A:7A:28:1E:C4:20:08 Authority key identifier: 6E:83:10:66:EA:8F:E2:0B:06:7A:13:60:06:B7:AF:90:66:33:84:3B Certificate issuer: /CN=6e831066ea8fe20b067a136006b7af906633843b Certificate serial: 019B3D22F3E2EBF6D284D133AC3DCFE19B5C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/boMQZuqP4gsGehNgBrevkGYzhDs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/bd19fd-f369-42bf-926f-2a4dd23a2f9a/1/boMQZuqP4gsGehNgBrevkGYzhDs.mft Manifest number: 178B Signing time: Sat 20 Dec 2025 19:00:59 +0000 Manifest this update: Sat 20 Dec 2025 19:00:59 +0000 Manifest next update: Sun 21 Dec 2025 19:00:59 +0000 Files and hashes: 1: K0elnSjthwyDpqUrzqz0WWkS5i4.roa (hash: gy/lZpvudI4NuVtj5Cr7txBBixWEIa8xyvy8FV7O+jc=) 2: boMQZuqP4gsGehNgBrevkGYzhDs.crl (hash: pkVJjqzf/0kWGP06UqkYL2ZF0g5VDuNQoRhRKPuY4P0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/bd19fd-f369-42bf-926f-2a4dd23a2f9a/1/boMQZuqP4gsGehNgBrevkGYzhDs.crl rsync://rpki.ripe.net/repository/DEFAULT/61/bd19fd-f369-42bf-926f-2a4dd23a2f9a/1/boMQZuqP4gsGehNgBrevkGYzhDs.mft rsync://rpki.ripe.net/repository/DEFAULT/boMQZuqP4gsGehNgBrevkGYzhDs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 15:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3d:22:f3:e2:eb:f6:d2:84:d1:33:ac:3d:cf:e1:9b:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6e831066ea8fe20b067a136006b7af906633843b Validity Not Before: Dec 20 19:00:59 2025 GMT Not After : Dec 21 19:00:59 2025 GMT Subject: CN=afc997eabfa6065cf84728db276a7a281ec42008 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:ce:13:de:a5:02:08:60:38:4a:4a:eb:24:0c: e9:24:a7:61:92:e4:d6:15:2b:85:c1:52:e7:7d:43: 72:d9:90:c0:7c:a1:dc:0f:a0:10:9e:f2:e1:c9:e3: 6d:94:46:ac:7b:16:49:28:66:fe:aa:14:9b:36:23: 82:88:03:2e:c9:16:8a:d0:53:f0:b6:ad:2a:29:47: 5e:7c:2f:1c:f7:77:b6:2d:19:a8:4b:48:47:04:c5: 09:86:70:09:4c:97:b8:3a:b5:e1:9a:97:e0:d3:7e: 72:a9:5b:d6:fb:1e:92:14:ba:bf:b7:a9:b0:16:04: c2:c6:53:ce:65:49:87:7d:3c:0c:1e:07:9a:95:16: b6:9b:74:ad:be:80:09:e1:38:98:27:a2:47:bf:2f: 06:29:a2:b4:d6:eb:d2:15:64:ab:ce:d0:5f:0f:90: e1:2a:15:c9:93:35:97:f4:71:bf:a4:27:3e:2a:fe: fd:95:b6:b4:4e:4d:20:eb:01:4e:06:46:ca:1e:23: b6:79:d7:7f:03:ff:5e:63:52:ee:73:01:b9:57:d5: 1e:c7:19:a3:a7:d8:8c:86:fb:43:7a:6b:e4:ff:d8: d1:84:8c:87:ea:3e:bf:88:78:eb:9d:7e:d8:d7:4f: 38:41:dc:47:7a:98:e8:9b:9c:d6:18:5a:56:24:1c: 7a:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:C9:97:EA:BF:A6:06:5C:F8:47:28:DB:27:6A:7A:28:1E:C4:20:08 X509v3 Authority Key Identifier: keyid:6E:83:10:66:EA:8F:E2:0B:06:7A:13:60:06:B7:AF:90:66:33:84:3B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/boMQZuqP4gsGehNgBrevkGYzhDs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/bd19fd-f369-42bf-926f-2a4dd23a2f9a/1/boMQZuqP4gsGehNgBrevkGYzhDs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/61/bd19fd-f369-42bf-926f-2a4dd23a2f9a/1/boMQZuqP4gsGehNgBrevkGYzhDs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 83:e9:8d:06:b9:31:8e:4c:23:9a:49:1e:30:7b:3b:d9:23:87: 44:f3:dd:89:b0:bc:9d:ac:d8:43:b8:d1:91:15:cc:1c:15:68: 5d:d2:5e:34:a1:f1:4e:f7:0a:79:1b:93:02:e6:e4:53:8f:d8: 2c:5c:6f:ac:e4:fc:5f:55:e5:46:5a:cf:da:10:08:f8:e8:e8: 54:6f:04:7a:15:6b:46:d2:d1:cb:21:77:0c:a7:40:73:4e:1d: 73:c8:6f:6c:39:08:c8:43:cf:d6:7f:80:12:4b:06:d7:9e:41: a6:22:1a:0d:0d:1b:66:e0:02:ae:16:5e:59:7b:cb:13:f0:43: dd:29:24:f7:8e:05:84:63:14:06:d0:6f:33:46:36:de:a2:d7: ba:85:9f:27:e7:de:43:e4:89:26:05:d0:57:bc:28:20:3e:0e: ae:72:41:8b:a8:4a:84:5e:67:2e:9c:d6:1e:b9:07:e5:4d:a6: 0e:cf:31:4b:50:3b:23:39:e9:f8:5c:de:b5:0d:c1:c6:55:49: c5:a6:9a:c4:9b:d0:85:4b:10:14:cf:98:55:bb:6f:86:38:f4: a0:56:2a:66:4b:05:d8:c2:34:00:85:09:5d:bc:c0:43:4a:ea: 21:04:06:95:d1:fa:f8:a8:0b:f3:71:a4:b1:2e:87:1d:07:22: 06:8a:1b:55 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs9IvPi6/bShNEzrD3P4ZtcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZlODMxMDY2ZWE4ZmUyMGIwNjdhMTM2MDA2YjdhZjkwNjYz Mzg0M2IwHhcNMjUxMjIwMTkwMDU5WhcNMjUxMjIxMTkwMDU5WjAzMTEwLwYDVQQD EyhhZmM5OTdlYWJmYTYwNjVjZjg0NzI4ZGIyNzZhN2EyODFlYzQyMDA4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjc4T3qUCCGA4SkrrJAzpJKdhkuTW FSuFwVLnfUNy2ZDAfKHcD6AQnvLhyeNtlEasexZJKGb+qhSbNiOCiAMuyRaK0FPw tq0qKUdefC8c93e2LRmoS0hHBMUJhnAJTJe4OrXhmpfg035yqVvW+x6SFLq/t6mw FgTCxlPOZUmHfTwMHgealRa2m3StvoAJ4TiYJ6JHvy8GKaK01uvSFWSrztBfD5Dh KhXJkzWX9HG/pCc+Kv79lba0Tk0g6wFOBkbKHiO2edd/A/9eY1LucwG5V9Uexxmj p9iMhvtDemvk/9jRhIyH6j6/iHjrnX7Y1084QdxHepjom5zWGFpWJBx6DQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK/Jl+q/pgZc+Eco2ydqeigexCAIMB8GA1UdIwQY MBaAFG6DEGbqj+ILBnoTYAa3r5BmM4Q7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYm9NUVp1cVA0Z3NHZWhOZ0JyZXZrR1l6aERzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS9iZDE5ZmQtZjM2OS00MmJmLTkyNmYt MmE0ZGQyM2EyZjlhLzEvYm9NUVp1cVA0Z3NHZWhOZ0JyZXZrR1l6aERzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MS9iZDE5ZmQtZjM2OS00MmJmLTkyNmYtMmE0ZGQyM2EyZjlh LzEvYm9NUVp1cVA0Z3NHZWhOZ0JyZXZrR1l6aERzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAg+mNBrkx jkwjmkkeMHs72SOHRPPdibC8nazYQ7jRkRXMHBVoXdJeNKHxTvcKeRuTAubkU4/Y LFxvrOT8X1XlRlrP2hAI+OjoVG8EehVrRtLRyyF3DKdAc04dc8hvbDkIyEPP1n+A EksG155BpiIaDQ0bZuACrhZeWXvLE/BD3Skk944FhGMUBtBvM0Y23qLXuoWfJ+fe Q+SJJgXQV7woID4OrnJBi6hKhF5nLpzWHrkH5U2mDs8xS1A7Iznp+FzetQ3BxlVJ xaaaxJvQhUsQFM+YVbtvhjj0oFYqZksF2MI0AIUJXbzAQ0rqIQQGldH6+KgL83Gk sS6HHQciBoobVQ== -----END CERTIFICATE-----Generated at Sat Dec 20 22:27:06 2025 by rpki-client