This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/bd19fd-f369-42bf-926f-2a4dd23a2f9a/1/boMQZuqP4gsGehNgBrevkGYzhDs.mft File: boMQZuqP4gsGehNgBrevkGYzhDs.mft (raw, json) Hash identifier: a1uZK1zLZQsGtVgXYbF1nPCpVTSSoL3BHXlupyxaoBg= Subject key identifier: 0D:A9:BD:63:BC:54:68:49:93:A7:E6:BD:D2:A9:A5:6C:00:A5:67:AE Authority key identifier: 6E:83:10:66:EA:8F:E2:0B:06:7A:13:60:06:B7:AF:90:66:33:84:3B Certificate issuer: /CN=6e831066ea8fe20b067a136006b7af906633843b Certificate serial: 019AF5AE49247047189612F0A9F930E4EBD9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/boMQZuqP4gsGehNgBrevkGYzhDs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/bd19fd-f369-42bf-926f-2a4dd23a2f9a/1/boMQZuqP4gsGehNgBrevkGYzhDs.mft Manifest number: 1766 Signing time: Sat 06 Dec 2025 22:00:31 +0000 Manifest this update: Sat 06 Dec 2025 22:00:31 +0000 Manifest next update: Sun 07 Dec 2025 22:00:31 +0000 Files and hashes: 1: K0elnSjthwyDpqUrzqz0WWkS5i4.roa (hash: gy/lZpvudI4NuVtj5Cr7txBBixWEIa8xyvy8FV7O+jc=) 2: boMQZuqP4gsGehNgBrevkGYzhDs.crl (hash: GA9dUgGtnPbXHUmXui+xwl3VfJrcy3D4MkXwyUNyH88=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/bd19fd-f369-42bf-926f-2a4dd23a2f9a/1/boMQZuqP4gsGehNgBrevkGYzhDs.crl rsync://rpki.ripe.net/repository/DEFAULT/61/bd19fd-f369-42bf-926f-2a4dd23a2f9a/1/boMQZuqP4gsGehNgBrevkGYzhDs.mft rsync://rpki.ripe.net/repository/DEFAULT/boMQZuqP4gsGehNgBrevkGYzhDs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 14:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:ae:49:24:70:47:18:96:12:f0:a9:f9:30:e4:eb:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6e831066ea8fe20b067a136006b7af906633843b Validity Not Before: Dec 6 22:00:31 2025 GMT Not After : Dec 7 22:00:31 2025 GMT Subject: CN=0da9bd63bc54684993a7e6bdd2a9a56c00a567ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:c0:74:ba:45:e4:ce:91:63:f5:5a:d1:b4:47: 36:01:2c:c3:4e:44:80:90:e6:36:0e:8a:69:b3:3d: 27:74:b2:5b:c3:3f:af:8b:0c:56:21:28:2b:58:1b: 32:cc:ed:64:65:eb:89:c3:71:5a:e7:ef:e2:8a:64: 8f:71:18:24:bb:a6:bb:c4:8a:0c:10:53:60:db:ed: 96:d5:d7:49:b9:2d:71:28:3c:f0:2b:48:45:0b:e4: 6b:eb:c2:a5:66:b1:c4:90:a9:ff:b6:ac:ea:4f:9d: d6:af:4c:4c:c0:12:89:04:eb:3c:2e:c4:2c:2c:3a: 60:77:17:c2:af:b9:c5:2d:2c:2a:8e:4a:77:62:ed: 0e:d1:82:d7:05:f2:2f:4b:92:21:f5:68:60:d2:6c: 1e:ed:22:dc:09:b8:26:0a:63:5b:6e:a3:78:fb:d4: 64:89:77:00:5e:4f:55:c8:1d:a6:ff:83:23:ae:ad: ac:88:ef:40:cf:cd:57:a3:5e:73:3d:3f:6f:09:5f: 96:b4:3a:ef:e2:a6:ae:52:90:19:84:99:c3:73:a0: 12:c7:1e:d4:c2:f4:21:8a:f7:f0:ca:3b:92:28:6c: 84:5e:a6:db:ed:81:00:17:bb:0b:0c:94:81:b7:96: 39:89:a5:bf:a0:98:55:f0:86:8d:98:f5:66:cf:3c: e6:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:A9:BD:63:BC:54:68:49:93:A7:E6:BD:D2:A9:A5:6C:00:A5:67:AE X509v3 Authority Key Identifier: keyid:6E:83:10:66:EA:8F:E2:0B:06:7A:13:60:06:B7:AF:90:66:33:84:3B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/boMQZuqP4gsGehNgBrevkGYzhDs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/bd19fd-f369-42bf-926f-2a4dd23a2f9a/1/boMQZuqP4gsGehNgBrevkGYzhDs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/61/bd19fd-f369-42bf-926f-2a4dd23a2f9a/1/boMQZuqP4gsGehNgBrevkGYzhDs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ac:ba:33:e0:a3:62:98:c8:04:df:83:da:13:9f:96:13:33:ff: 87:75:75:fd:be:7e:d2:aa:97:7f:97:93:bc:9a:13:6c:b9:7c: 55:59:d9:e3:6e:a5:01:7a:ae:c7:d6:01:85:43:63:e4:9a:0e: d6:2e:88:41:f7:f1:24:60:a1:a2:17:fa:1b:41:f1:b6:c4:20: 7f:79:46:70:42:a4:d8:fc:5d:76:88:38:46:39:5f:a7:c1:db: c0:c3:b5:5a:b1:e5:43:78:63:40:e1:2a:3e:aa:5a:6b:99:c8: f1:48:fd:8d:0c:98:a5:dd:96:36:fa:67:d2:de:14:01:c3:08: 10:cf:32:60:33:2e:cf:28:92:e6:2c:93:fe:6c:03:78:22:d8: 3a:1f:39:50:93:d3:a5:07:ef:de:6a:e3:8d:fb:02:3e:c7:56: a8:bc:cb:38:04:83:98:e9:17:51:7f:f3:73:a4:0f:71:7f:d9: 2f:79:d0:df:c4:25:2a:9d:35:9f:1e:30:09:99:7c:a6:e9:5f: aa:32:22:c9:b7:1f:32:45:71:38:11:d2:9d:5f:3f:6c:65:60: 66:a5:ff:87:b1:8b:e6:7c:6d:b7:16:e9:ed:3f:9e:7f:83:7f: e9:3f:51:f8:e2:68:59:c0:43:db:f4:6a:d2:7c:21:3c:9d:1c: 1d:16:48:5e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1rkkkcEcYlhLwqfkw5OvZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZlODMxMDY2ZWE4ZmUyMGIwNjdhMTM2MDA2YjdhZjkwNjYz Mzg0M2IwHhcNMjUxMjA2MjIwMDMxWhcNMjUxMjA3MjIwMDMxWjAzMTEwLwYDVQQD EygwZGE5YmQ2M2JjNTQ2ODQ5OTNhN2U2YmRkMmE5YTU2YzAwYTU2N2FlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3MB0ukXkzpFj9VrRtEc2ASzDTkSA kOY2Doppsz0ndLJbwz+viwxWISgrWBsyzO1kZeuJw3Fa5+/iimSPcRgku6a7xIoM EFNg2+2W1ddJuS1xKDzwK0hFC+Rr68KlZrHEkKn/tqzqT53Wr0xMwBKJBOs8LsQs LDpgdxfCr7nFLSwqjkp3Yu0O0YLXBfIvS5Ih9Whg0mwe7SLcCbgmCmNbbqN4+9Rk iXcAXk9VyB2m/4Mjrq2siO9Az81Xo15zPT9vCV+WtDrv4qauUpAZhJnDc6ASxx7U wvQhivfwyjuSKGyEXqbb7YEAF7sLDJSBt5Y5iaW/oJhV8IaNmPVmzzzm3QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA2pvWO8VGhJk6fmvdKppWwApWeuMB8GA1UdIwQY MBaAFG6DEGbqj+ILBnoTYAa3r5BmM4Q7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYm9NUVp1cVA0Z3NHZWhOZ0JyZXZrR1l6aERzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS9iZDE5ZmQtZjM2OS00MmJmLTkyNmYt MmE0ZGQyM2EyZjlhLzEvYm9NUVp1cVA0Z3NHZWhOZ0JyZXZrR1l6aERzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MS9iZDE5ZmQtZjM2OS00MmJmLTkyNmYtMmE0ZGQyM2EyZjlh LzEvYm9NUVp1cVA0Z3NHZWhOZ0JyZXZrR1l6aERzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArLoz4KNi mMgE34PaE5+WEzP/h3V1/b5+0qqXf5eTvJoTbLl8VVnZ426lAXqux9YBhUNj5JoO 1i6IQffxJGChohf6G0HxtsQgf3lGcEKk2Pxddog4Rjlfp8HbwMO1WrHlQ3hjQOEq Pqpaa5nI8Uj9jQyYpd2WNvpn0t4UAcMIEM8yYDMuzyiS5iyT/mwDeCLYOh85UJPT pQfv3mrjjfsCPsdWqLzLOASDmOkXUX/zc6QPcX/ZL3nQ38QlKp01nx4wCZl8pulf qjIiybcfMkVxOBHSnV8/bGVgZqX/h7GL5nxttxbp7T+ef4N/6T9R+OJoWcBD2/Rq 0nwhPJ0cHRZIXg== -----END CERTIFICATE-----Generated at Sat Dec 6 23:16:32 2025 by rpki-client