This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft File: BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft (raw, json) Hash identifier: lpDs8MBHUdU1b3fC2o7Xu+gHnZCplf746ajGsP8EkNE= Subject key identifier: 32:1C:87:72:99:48:44:68:4F:68:A7:BB:76:6D:3A:12:FE:15:2D:04 Authority key identifier: 04:E3:2C:43:F9:69:BA:41:7B:A3:6D:07:21:B1:D9:D5:06:24:C4:0F Certificate issuer: /CN=04e32c43f969ba417ba36d0721b1d9d50624c40f Certificate serial: 019AF24000784619B94A4B565E5952CBDBFB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft Manifest number: 090C Signing time: Sat 06 Dec 2025 06:01:11 +0000 Manifest this update: Sat 06 Dec 2025 06:01:11 +0000 Manifest next update: Sun 07 Dec 2025 06:01:11 +0000 Files and hashes: 1: BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl (hash: 7NTpYt6QBkSZYTl+ugpIvAGTHrE35f3xjx7O0TDxhZs=) 2: nHuVyjc3KMoSX7dk6oCcJzZC7yI.roa (hash: 8kNlY4DAN29iBV2YoNVORKEQ7cx+NbbKiFTFq2jo6ec=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:40:00:78:46:19:b9:4a:4b:56:5e:59:52:cb:db:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04e32c43f969ba417ba36d0721b1d9d50624c40f Validity Not Before: Dec 6 06:01:11 2025 GMT Not After : Dec 7 06:01:11 2025 GMT Subject: CN=321c8772994844684f68a7bb766d3a12fe152d04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:0b:f7:28:57:49:a9:75:5c:a9:ee:87:3f:f0: 50:86:0c:29:60:c4:ab:71:51:52:ee:50:3f:8d:df: 91:a4:39:20:9b:1b:b7:6f:52:f0:95:6c:fe:5b:da: bf:92:d4:29:e0:79:ac:e0:ad:95:f9:c6:f3:7c:00: 4c:57:7d:e2:19:61:82:59:75:62:1e:f6:a7:9e:14: 4b:81:35:4e:d3:a1:3f:90:81:4b:08:3d:18:36:ac: 41:f8:61:91:2c:91:41:6c:5e:ed:3c:63:21:c0:fb: eb:9e:80:1b:78:9d:8b:ab:87:2d:63:c2:82:1c:bb: 63:36:46:c9:83:d6:d8:09:9c:0f:ca:89:6e:d4:f4: 15:88:1b:5e:84:8e:d3:23:d9:0f:3b:f6:70:02:2f: 00:01:b4:06:9a:74:0d:30:04:5d:a9:9a:37:be:84: 91:97:8e:9b:ff:5b:71:2f:80:b2:d7:7a:d8:92:a2: 99:df:86:97:ae:01:0a:f5:ae:00:d9:bc:6b:65:ef: b3:50:9d:37:c3:e6:d9:39:2f:69:bc:1e:0b:f6:b5: 6a:35:7f:71:b1:45:fb:9b:cf:ac:4b:92:00:47:63: 83:c6:b0:57:27:19:4c:30:95:16:4f:56:4d:2a:c3: 50:71:e2:d9:ff:73:f9:09:cb:6c:87:b7:04:26:4a: 20:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:1C:87:72:99:48:44:68:4F:68:A7:BB:76:6D:3A:12:FE:15:2D:04 X509v3 Authority Key Identifier: keyid:04:E3:2C:43:F9:69:BA:41:7B:A3:6D:07:21:B1:D9:D5:06:24:C4:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d5:50:3c:3a:a4:eb:93:74:16:19:7e:c3:84:53:08:fa:93:d9: 78:2d:63:d2:8c:18:ef:f4:08:73:5a:1c:00:5e:de:a0:86:78: 16:92:80:ca:b4:cb:12:a5:25:35:f7:20:45:55:06:1d:b1:2d: 50:77:ab:44:60:a0:8d:22:84:41:56:a5:4c:c1:32:78:8f:d0: 45:b6:29:32:e8:e9:78:da:d0:82:4d:93:e8:f2:ff:37:e5:99: e1:35:27:2b:5d:63:a8:0f:20:c1:da:53:00:8d:16:f7:8c:10: 9f:7a:8a:5f:da:4d:1b:96:92:f4:f1:a3:66:32:57:93:0c:06: d2:6a:d6:21:4a:f3:4d:c0:a9:64:d1:42:2c:f5:22:a7:57:0e: 38:b4:81:5d:58:d9:28:e9:cf:44:e1:8f:5b:29:ab:2a:de:bc: ba:50:9d:aa:9a:7c:c6:9d:d0:8b:0e:16:c9:2a:46:c9:bd:61: 05:aa:80:1c:67:ee:44:f3:79:dd:96:03:17:53:0b:3a:ff:6b: 91:2e:ad:c9:75:83:26:03:1f:1c:45:21:87:41:5a:05:16:13: e3:55:37:7c:4b:98:12:22:e2:41:01:5b:72:9d:16:f7:48:93: 56:a2:07:15:db:8d:c7:15:dd:35:56:08:e9:6e:47:9b:af:da: bc:be:83:7c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryQAB4Rhm5SktWXllSy9v7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA0ZTMyYzQzZjk2OWJhNDE3YmEzNmQwNzIxYjFkOWQ1MDYy NGM0MGYwHhcNMjUxMjA2MDYwMTExWhcNMjUxMjA3MDYwMTExWjAzMTEwLwYDVQQD EygzMjFjODc3Mjk5NDg0NDY4NGY2OGE3YmI3NjZkM2ExMmZlMTUyZDA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Av3KFdJqXVcqe6HP/BQhgwpYMSr cVFS7lA/jd+RpDkgmxu3b1LwlWz+W9q/ktQp4Hms4K2V+cbzfABMV33iGWGCWXVi HvannhRLgTVO06E/kIFLCD0YNqxB+GGRLJFBbF7tPGMhwPvrnoAbeJ2Lq4ctY8KC HLtjNkbJg9bYCZwPyolu1PQViBtehI7TI9kPO/ZwAi8AAbQGmnQNMARdqZo3voSR l46b/1txL4Cy13rYkqKZ34aXrgEK9a4A2bxrZe+zUJ03w+bZOS9pvB4L9rVqNX9x sUX7m8+sS5IAR2ODxrBXJxlMMJUWT1ZNKsNQceLZ/3P5Cctsh7cEJkog2QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDIch3KZSERoT2inu3ZtOhL+FS0EMB8GA1UdIwQY MBaAFATjLEP5abpBe6NtByGx2dUGJMQPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQk9Nc1FfbHB1a0Y3bzIwSEliSFoxUVlreEE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi8zMTZmMTUtYmNiNS00MjJjLTkyYTAt ODI2YTQ4ZWVmZDk2LzEvQk9Nc1FfbHB1a0Y3bzIwSEliSFoxUVlreEE4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Mi8zMTZmMTUtYmNiNS00MjJjLTkyYTAtODI2YTQ4ZWVmZDk2 LzEvQk9Nc1FfbHB1a0Y3bzIwSEliSFoxUVlreEE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA1VA8OqTr k3QWGX7DhFMI+pPZeC1j0owY7/QIc1ocAF7eoIZ4FpKAyrTLEqUlNfcgRVUGHbEt UHerRGCgjSKEQValTMEyeI/QRbYpMujpeNrQgk2T6PL/N+WZ4TUnK11jqA8gwdpT AI0W94wQn3qKX9pNG5aS9PGjZjJXkwwG0mrWIUrzTcCpZNFCLPUip1cOOLSBXVjZ KOnPROGPWymrKt68ulCdqpp8xp3Qiw4WySpGyb1hBaqAHGfuRPN53ZYDF1MLOv9r kS6tyXWDJgMfHEUhh0FaBRYT41U3fEuYEiLiQQFbcp0W90iTVqIHFduNxxXdNVYI 6W5Hm6/avL6DfA== -----END CERTIFICATE-----Generated at Sat Dec 6 11:25:39 2025 by rpki-client