This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/056235-df36-4870-8746-ae5f4c12de79/1/bY4OfoZ3W0FdPVeAzkz-wMhZGJw.mft File: bY4OfoZ3W0FdPVeAzkz-wMhZGJw.mft (raw, json) Hash identifier: nVIRPSoy1Xmyy+y4aeVX2cpH4W2k2F4pQ3VLcWF/CX4= Subject key identifier: 0B:BE:98:5F:94:C0:07:2B:5B:FB:17:1D:4B:52:81:84:28:F5:9B:E3 Authority key identifier: 6D:8E:0E:7E:86:77:5B:41:5D:3D:57:80:CE:4C:FE:C0:C8:59:18:9C Certificate issuer: /CN=6d8e0e7e86775b415d3d5780ce4cfec0c859189c Certificate serial: 019AF276DA871CCDD4CA7C0402B6FDA33074 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bY4OfoZ3W0FdPVeAzkz-wMhZGJw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/056235-df36-4870-8746-ae5f4c12de79/1/bY4OfoZ3W0FdPVeAzkz-wMhZGJw.mft Manifest number: 14F0 Signing time: Sat 06 Dec 2025 07:01:06 +0000 Manifest this update: Sat 06 Dec 2025 07:01:06 +0000 Manifest next update: Sun 07 Dec 2025 07:01:06 +0000 Files and hashes: 1: bY4OfoZ3W0FdPVeAzkz-wMhZGJw.crl (hash: Zg79DJctz8XwknelQvapDj1yDFu61iuVqA+cxMyZdu4=) 2: qgSgsUNmjGc3XOuValdIkwwl07g.roa (hash: K6iu6N/DtzSRuE8h4cXXnk/shnPgBX6kLrlWrpVPx3E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/056235-df36-4870-8746-ae5f4c12de79/1/bY4OfoZ3W0FdPVeAzkz-wMhZGJw.crl rsync://rpki.ripe.net/repository/DEFAULT/62/056235-df36-4870-8746-ae5f4c12de79/1/bY4OfoZ3W0FdPVeAzkz-wMhZGJw.mft rsync://rpki.ripe.net/repository/DEFAULT/bY4OfoZ3W0FdPVeAzkz-wMhZGJw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:da:87:1c:cd:d4:ca:7c:04:02:b6:fd:a3:30:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6d8e0e7e86775b415d3d5780ce4cfec0c859189c Validity Not Before: Dec 6 07:01:06 2025 GMT Not After : Dec 7 07:01:06 2025 GMT Subject: CN=0bbe985f94c0072b5bfb171d4b52818428f59be3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:b9:31:9e:54:59:d8:09:13:22:46:ba:49:d5: 2c:0c:92:18:4e:08:93:90:2b:0e:63:bc:98:f7:a4: 3b:b2:51:cb:0d:6a:9e:b0:37:f7:e7:7d:59:1c:94: f5:14:b7:51:5a:d1:85:cc:1c:ba:c1:9f:b8:24:8a: fb:16:8d:12:ef:73:79:9a:e2:ab:a3:d2:04:6e:57: c0:60:ea:07:31:4c:3d:ff:3d:0d:37:d4:6c:d6:c9: 0f:9b:09:e6:fe:fd:9e:07:85:4d:55:70:2d:1b:ac: b0:20:ef:23:07:89:93:61:45:f2:cf:db:17:d4:fa: f4:0a:93:6f:f7:ef:6f:c8:39:1c:28:70:bd:fa:c4: b6:4d:5a:b4:f9:81:e7:d3:54:94:05:73:2a:f9:4a: 55:38:15:fc:86:8e:d9:52:57:c2:5f:49:c8:89:a2: 39:76:2e:be:98:68:ec:ff:33:08:95:16:d8:73:f4: 84:84:3f:39:36:df:49:4a:d3:12:30:af:6a:cf:09: ca:56:77:45:58:5a:1a:fe:5d:da:35:64:cc:50:56: 66:89:96:2e:01:49:4e:25:57:42:df:6b:78:35:c7: 07:1d:fb:9f:cd:49:82:49:41:7a:84:1d:0c:1b:d2: 92:5f:b5:85:5e:82:1a:cb:d2:77:7d:46:a0:8b:d1: ee:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:BE:98:5F:94:C0:07:2B:5B:FB:17:1D:4B:52:81:84:28:F5:9B:E3 X509v3 Authority Key Identifier: keyid:6D:8E:0E:7E:86:77:5B:41:5D:3D:57:80:CE:4C:FE:C0:C8:59:18:9C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bY4OfoZ3W0FdPVeAzkz-wMhZGJw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/056235-df36-4870-8746-ae5f4c12de79/1/bY4OfoZ3W0FdPVeAzkz-wMhZGJw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/62/056235-df36-4870-8746-ae5f4c12de79/1/bY4OfoZ3W0FdPVeAzkz-wMhZGJw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 82:d0:3e:9f:17:06:65:33:0f:dd:2a:ec:fb:4d:6b:9e:39:02: 15:bc:5e:d6:84:29:15:d4:ac:91:85:7c:f5:69:50:8c:e8:58: be:fe:6b:61:5e:21:03:cb:a7:f3:b1:7c:02:0b:e5:ce:db:d2: f1:70:dd:60:35:9c:a0:71:d2:5c:f9:ad:6b:ff:64:08:35:9b: e8:ca:e8:05:5a:9b:9e:8b:bf:09:64:af:66:e3:7e:60:9d:73: 05:62:2a:00:b6:67:9c:d0:fb:c6:e7:4f:b7:54:65:6c:78:f0: e7:20:21:a0:7c:4a:1f:7f:96:51:b7:f5:a1:ee:fb:59:0b:3d: 6b:3f:27:b0:63:60:7a:a6:a9:fc:d6:1e:7b:fa:61:3a:b1:d5: 36:45:07:50:bb:39:db:c5:d7:4a:48:56:61:79:3d:d9:59:c5: 30:46:7d:38:aa:06:cd:85:e0:4b:0d:07:ba:7b:6d:9f:03:75: 36:44:d5:81:ba:08:a0:aa:e6:ea:0e:b3:c4:b9:66:6c:85:80: 45:e2:7d:bc:7c:c1:ab:1b:3b:77:fc:42:4a:61:58:07:f0:ce: 69:74:bf:75:c6:df:7a:25:12:ab:5c:62:90:3d:42:70:87:d5: 3b:3f:9c:14:91:e6:76:ab:b0:51:c4:32:b6:68:5e:5d:a0:9b: c7:49:05:b9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydtqHHM3UynwEArb9ozB0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkOGUwZTdlODY3NzViNDE1ZDNkNTc4MGNlNGNmZWMwYzg1 OTE4OWMwHhcNMjUxMjA2MDcwMTA2WhcNMjUxMjA3MDcwMTA2WjAzMTEwLwYDVQQD EygwYmJlOTg1Zjk0YzAwNzJiNWJmYjE3MWQ0YjUyODE4NDI4ZjU5YmUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1LkxnlRZ2AkTIka6SdUsDJIYTgiT kCsOY7yY96Q7slHLDWqesDf3531ZHJT1FLdRWtGFzBy6wZ+4JIr7Fo0S73N5muKr o9IEblfAYOoHMUw9/z0NN9Rs1skPmwnm/v2eB4VNVXAtG6ywIO8jB4mTYUXyz9sX 1Pr0CpNv9+9vyDkcKHC9+sS2TVq0+YHn01SUBXMq+UpVOBX8ho7ZUlfCX0nIiaI5 di6+mGjs/zMIlRbYc/SEhD85Nt9JStMSMK9qzwnKVndFWFoa/l3aNWTMUFZmiZYu AUlOJVdC32t4NccHHfufzUmCSUF6hB0MG9KSX7WFXoIay9J3fUagi9HuewIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAu+mF+UwAcrW/sXHUtSgYQo9ZvjMB8GA1UdIwQY MBaAFG2ODn6Gd1tBXT1XgM5M/sDIWRicMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYlk0T2ZvWjNXMEZkUFZlQXprei13TWhaR0p3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi8wNTYyMzUtZGYzNi00ODcwLTg3NDYt YWU1ZjRjMTJkZTc5LzEvYlk0T2ZvWjNXMEZkUFZlQXprei13TWhaR0p3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Mi8wNTYyMzUtZGYzNi00ODcwLTg3NDYtYWU1ZjRjMTJkZTc5 LzEvYlk0T2ZvWjNXMEZkUFZlQXprei13TWhaR0p3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgtA+nxcG ZTMP3Srs+01rnjkCFbxe1oQpFdSskYV89WlQjOhYvv5rYV4hA8un87F8AgvlztvS 8XDdYDWcoHHSXPmta/9kCDWb6MroBVqbnou/CWSvZuN+YJ1zBWIqALZnnND7xudP t1RlbHjw5yAhoHxKH3+WUbf1oe77WQs9az8nsGNgeqap/NYee/phOrHVNkUHULs5 28XXSkhWYXk92VnFMEZ9OKoGzYXgSw0HunttnwN1NkTVgboIoKrm6g6zxLlmbIWA ReJ9vHzBqxs7d/xCSmFYB/DOaXS/dcbfeiUSq1xikD1CcIfVOz+cFJHmdquwUcQy tmheXaCbx0kFuQ== -----END CERTIFICATE-----Generated at Sat Dec 6 15:10:49 2025 by rpki-client