This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft File: BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft (raw, json) Hash identifier: spF/qFCcmFepAE2ejIWKgphFkM21A33DO1qmpKo33H4= Subject key identifier: B0:BC:4D:7D:F7:43:B7:15:9B:35:61:BE:C2:32:55:E4:E6:7D:C1:47 Authority key identifier: 04:D2:92:11:F9:2E:56:0F:0B:78:34:BB:29:32:AC:63:CA:BF:A1:4A Certificate issuer: /CN=04d29211f92e560f0b7834bb2932ac63cabfa14a Certificate serial: 019AF23FED4F093CAD5E0997BF1F33883192 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BNKSEfkuVg8LeDS7KTKsY8q_oUo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft Manifest number: 0C46 Signing time: Sat 06 Dec 2025 06:01:07 +0000 Manifest this update: Sat 06 Dec 2025 06:01:07 +0000 Manifest next update: Sun 07 Dec 2025 06:01:07 +0000 Files and hashes: 1: BNKSEfkuVg8LeDS7KTKsY8q_oUo.crl (hash: H9ly/qZeN6mXc5R5oKBeZnJ5416HDlgWUlRqLTrG5js=) 2: dShe1ipT6-Y_-edVr4eNtxtPKAo.roa (hash: 34QucPlafnV+iMZk3j4FDiUJFtGuS1f17YL6xBvVoIo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.crl rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft rsync://rpki.ripe.net/repository/DEFAULT/BNKSEfkuVg8LeDS7KTKsY8q_oUo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:ed:4f:09:3c:ad:5e:09:97:bf:1f:33:88:31:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04d29211f92e560f0b7834bb2932ac63cabfa14a Validity Not Before: Dec 6 06:01:07 2025 GMT Not After : Dec 7 06:01:07 2025 GMT Subject: CN=b0bc4d7df743b7159b3561bec23255e4e67dc147 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ef:d8:19:d3:9a:76:9a:f2:d2:8a:f6:22:55: fc:c8:58:ac:10:6e:1a:e4:d1:af:e4:bc:ce:38:11: 98:5f:ad:17:ff:8c:2e:e4:a9:c2:40:49:0b:2c:38: 5a:ca:68:2e:07:3f:3b:16:d6:6f:44:36:c3:8e:53: 40:62:f5:cf:8f:70:1e:9c:a6:73:3d:26:80:2b:fb: e1:5a:56:1b:37:95:31:ca:e7:b7:1d:20:13:64:4b: 7c:a8:46:5b:7e:8d:9e:93:3d:e5:dc:42:c3:ba:42: 78:78:0c:55:8d:16:7a:87:dd:e3:08:d4:0e:1f:b6: e8:ad:4c:16:41:2d:50:d0:1d:af:da:3c:13:d7:48: 2a:52:57:b1:21:c5:de:52:2f:44:7e:06:66:74:66: fe:fa:b2:f3:90:05:11:dc:37:aa:64:83:b8:86:94: a6:a1:aa:5a:78:4d:01:d2:48:fe:46:8c:88:1e:18: 83:20:04:e3:d7:83:c5:49:40:10:ca:73:51:da:14: a1:40:bd:d8:0c:38:fd:96:f9:a2:01:8e:84:8f:20: 40:cb:cd:bb:7b:8f:2a:be:bb:30:87:ee:0e:c8:26: 07:b1:b2:25:24:7e:07:5e:4a:a9:de:e4:2c:87:1f: ba:4b:22:63:ea:4e:1f:1d:d6:b6:c8:53:0d:27:26: 92:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:BC:4D:7D:F7:43:B7:15:9B:35:61:BE:C2:32:55:E4:E6:7D:C1:47 X509v3 Authority Key Identifier: keyid:04:D2:92:11:F9:2E:56:0F:0B:78:34:BB:29:32:AC:63:CA:BF:A1:4A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BNKSEfkuVg8LeDS7KTKsY8q_oUo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:1e:b7:2e:ec:c9:8b:17:52:a3:0b:34:94:5c:99:27:d4:38: 6d:53:bd:4b:df:97:4d:fe:5a:05:47:9d:83:4a:52:9f:4e:66: 27:29:30:78:f8:6a:22:49:04:b5:e5:80:06:a5:a1:f7:de:a1: 65:a6:55:1a:14:7e:91:8e:cd:6f:ce:fb:44:08:a9:4d:e0:96: 91:f7:16:00:de:f7:d0:45:23:12:4a:cc:05:91:64:2c:2d:62: bc:6b:f7:db:b7:bc:39:d0:c3:cb:c6:b5:27:bc:3a:d6:91:61: 92:fc:df:f0:91:b8:b0:aa:11:76:8b:1c:c7:23:ea:86:b8:6f: 13:f3:48:a2:05:1b:a2:9e:bb:0e:c7:0d:e4:4d:3b:2d:5c:b4: 42:e6:f0:b0:19:11:6b:1b:f4:51:92:fa:a8:ec:4a:8a:db:42: 0b:dd:46:75:56:f5:85:3e:83:f3:8f:fc:ca:9b:5f:06:f0:2a: 29:35:7f:5c:0c:88:5e:7e:cb:ed:d8:be:29:d5:ca:86:e4:33: 3c:d2:18:cd:ae:47:0b:4d:d4:3e:41:2a:bd:66:d3:d9:b9:7d: 75:35:f2:cf:9f:a1:f5:30:0b:26:58:23:50:5d:77:85:78:21: 1d:16:df:ce:9f:33:5a:be:6e:8a:17:6a:b4:8b:75:05:4a:34: 6f:35:e7:7f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP+1PCTytXgmXvx8ziDGSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA0ZDI5MjExZjkyZTU2MGYwYjc4MzRiYjI5MzJhYzYzY2Fi ZmExNGEwHhcNMjUxMjA2MDYwMTA3WhcNMjUxMjA3MDYwMTA3WjAzMTEwLwYDVQQD EyhiMGJjNGQ3ZGY3NDNiNzE1OWIzNTYxYmVjMjMyNTVlNGU2N2RjMTQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApe/YGdOadpry0or2IlX8yFisEG4a 5NGv5LzOOBGYX60X/4wu5KnCQEkLLDhaymguBz87FtZvRDbDjlNAYvXPj3AenKZz PSaAK/vhWlYbN5Uxyue3HSATZEt8qEZbfo2ekz3l3ELDukJ4eAxVjRZ6h93jCNQO H7borUwWQS1Q0B2v2jwT10gqUlexIcXeUi9EfgZmdGb++rLzkAUR3DeqZIO4hpSm oapaeE0B0kj+RoyIHhiDIATj14PFSUAQynNR2hShQL3YDDj9lvmiAY6EjyBAy827 e48qvrswh+4OyCYHsbIlJH4HXkqp3uQshx+6SyJj6k4fHda2yFMNJyaS6wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLC8TX33Q7cVmzVhvsIyVeTmfcFHMB8GA1UdIwQY MBaAFATSkhH5LlYPC3g0uykyrGPKv6FKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQk5LU0Vma3VWZzhMZURTN0tUS3NZOHFfb1VvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9mNmFjMzQtNmJjMy00MTdiLTgxNGQt ZThkMTkyOTYzOTVjLzEvQk5LU0Vma3VWZzhMZURTN0tUS3NZOHFfb1VvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni9mNmFjMzQtNmJjMy00MTdiLTgxNGQtZThkMTkyOTYzOTVj LzEvQk5LU0Vma3VWZzhMZURTN0tUS3NZOHFfb1VvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfx63LuzJ ixdSows0lFyZJ9Q4bVO9S9+XTf5aBUedg0pSn05mJykwePhqIkkEteWABqWh996h ZaZVGhR+kY7Nb877RAipTeCWkfcWAN730EUjEkrMBZFkLC1ivGv327e8OdDDy8a1 J7w61pFhkvzf8JG4sKoRdoscxyPqhrhvE/NIogUbop67DscN5E07LVy0QubwsBkR axv0UZL6qOxKittCC91GdVb1hT6D84/8yptfBvAqKTV/XAyIXn7L7di+KdXKhuQz PNIYza5HC03UPkEqvWbT2bl9dTXyz5+h9TALJlgjUF13hXghHRbfzp8zWr5uihdq tIt1BUo0bzXnfw== -----END CERTIFICATE-----Generated at Sat Dec 6 13:44:28 2025 by rpki-client