This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/2590fb-b05e-4441-add1-f8355b78db24/1/biw-HNO4VNZu9GxWd-9y0sWjZpc.mft File: biw-HNO4VNZu9GxWd-9y0sWjZpc.mft (raw, json) Hash identifier: b/z4b0+eMHc3ZsGVMktXtxyU7013im486lDNXWXd4Mo= Subject key identifier: BA:48:C7:45:70:16:7F:06:14:7F:64:83:3F:97:8E:CA:15:1F:68:46 Authority key identifier: 6E:2C:3E:1C:D3:B8:54:D6:6E:F4:6C:56:77:EF:72:D2:C5:A3:66:97 Certificate issuer: /CN=6e2c3e1cd3b854d66ef46c5677ef72d2c5a36697 Certificate serial: 019AF23F790DCFE10DE53B50244F45ABF830 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/biw-HNO4VNZu9GxWd-9y0sWjZpc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/2590fb-b05e-4441-add1-f8355b78db24/1/biw-HNO4VNZu9GxWd-9y0sWjZpc.mft Manifest number: 091B Signing time: Sat 06 Dec 2025 06:00:37 +0000 Manifest this update: Sat 06 Dec 2025 06:00:37 +0000 Manifest next update: Sun 07 Dec 2025 06:00:37 +0000 Files and hashes: 1: biw-HNO4VNZu9GxWd-9y0sWjZpc.crl (hash: 3h9l9PfjqbVzl0s0SW6zJCtBCxhHIjcSPl2wQ23gIEM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/2590fb-b05e-4441-add1-f8355b78db24/1/biw-HNO4VNZu9GxWd-9y0sWjZpc.crl rsync://rpki.ripe.net/repository/DEFAULT/68/2590fb-b05e-4441-add1-f8355b78db24/1/biw-HNO4VNZu9GxWd-9y0sWjZpc.mft rsync://rpki.ripe.net/repository/DEFAULT/biw-HNO4VNZu9GxWd-9y0sWjZpc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:79:0d:cf:e1:0d:e5:3b:50:24:4f:45:ab:f8:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6e2c3e1cd3b854d66ef46c5677ef72d2c5a36697 Validity Not Before: Dec 6 06:00:37 2025 GMT Not After : Dec 7 06:00:37 2025 GMT Subject: CN=ba48c74570167f06147f64833f978eca151f6846 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:31:b4:ca:4b:b8:e8:1b:e3:a1:ae:3d:f4:07: 6e:76:9a:aa:8a:60:95:c9:20:d3:f4:d0:ba:a8:39: 7b:be:76:d4:b0:9d:89:d3:c9:68:b6:2d:d0:77:88: 4a:7d:a1:9b:e3:4e:f7:c9:37:4d:59:57:71:d2:8b: 26:71:65:4e:69:db:dc:41:a7:57:57:b4:d5:69:ee: 25:3b:4e:60:6d:34:84:1c:63:a2:54:f4:03:53:72: 94:f0:84:b5:67:18:ee:22:90:1b:72:3b:69:bc:ed: 15:94:66:19:74:97:05:5d:2a:d1:4b:c5:5f:8c:db: a8:2c:5e:7e:4b:a7:5b:78:20:28:17:f9:b4:b9:22: 12:98:46:35:fa:0c:89:09:a6:a1:14:f6:ae:74:1a: 67:88:f8:e4:3b:b2:0c:1c:68:91:69:90:f5:d3:97: 3b:d9:cc:d9:5c:87:1f:2a:10:c2:52:64:02:1f:6b: e6:70:00:ae:5e:62:cf:a2:5a:51:74:87:c3:f8:4f: 81:e2:db:b2:49:f1:80:ac:76:78:32:89:1f:b1:32: 97:a9:30:db:75:9c:00:0a:a5:fe:4f:fa:03:11:e5: 94:da:69:93:19:79:3c:33:37:62:47:5f:ad:3b:cd: ac:c6:fb:0b:e7:2f:67:34:3d:03:63:6c:92:24:22: 60:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:48:C7:45:70:16:7F:06:14:7F:64:83:3F:97:8E:CA:15:1F:68:46 X509v3 Authority Key Identifier: keyid:6E:2C:3E:1C:D3:B8:54:D6:6E:F4:6C:56:77:EF:72:D2:C5:A3:66:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/biw-HNO4VNZu9GxWd-9y0sWjZpc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2590fb-b05e-4441-add1-f8355b78db24/1/biw-HNO4VNZu9GxWd-9y0sWjZpc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2590fb-b05e-4441-add1-f8355b78db24/1/biw-HNO4VNZu9GxWd-9y0sWjZpc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 09:97:00:c3:cd:81:5d:47:f2:16:f0:6b:e6:17:07:3b:f3:29: 9a:57:be:0e:2c:36:18:07:a1:e8:ce:d5:24:5b:4b:11:47:58: 90:c7:37:db:f5:a1:3d:d8:b6:69:91:85:ac:b4:88:c5:e8:94: a4:b7:5b:a0:d5:4d:f9:aa:55:a9:53:ee:61:05:bb:cb:f6:ff: d2:03:78:ab:cf:c6:07:01:b7:6e:1d:5b:01:e0:31:37:d5:e2: ba:22:9a:20:a2:33:62:a3:48:0a:19:aa:38:8e:4c:d3:da:a3: c2:14:21:da:32:af:93:1c:91:7e:9d:1c:30:e3:1f:ff:ef:44: 61:70:d9:2a:07:a8:ea:1c:33:78:13:9d:54:ad:73:1c:2d:14: 01:89:f4:53:c0:09:38:89:7b:79:7e:37:d0:3d:18:2b:78:50: 42:48:4e:6b:4f:f4:70:78:78:c6:8b:07:0d:1b:d5:6d:10:4c: bf:20:d0:b0:a0:31:99:55:61:14:3b:36:dc:c9:19:d9:bc:b3: a8:72:f8:96:59:77:17:c7:17:72:43:d0:a7:43:2d:f9:89:0e: c5:ec:64:5c:44:06:10:71:32:12:88:15:ba:4d:05:6e:0c:33: a7:18:57:48:22:b4:4b:24:d4:52:1f:0c:d5:c3:c0:12:df:6e: 41:66:70:74 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP3kNz+EN5TtQJE9Fq/gwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZlMmMzZTFjZDNiODU0ZDY2ZWY0NmM1Njc3ZWY3MmQyYzVh MzY2OTcwHhcNMjUxMjA2MDYwMDM3WhcNMjUxMjA3MDYwMDM3WjAzMTEwLwYDVQQD EyhiYTQ4Yzc0NTcwMTY3ZjA2MTQ3ZjY0ODMzZjk3OGVjYTE1MWY2ODQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxDG0yku46Bvjoa499AdudpqqimCV ySDT9NC6qDl7vnbUsJ2J08loti3Qd4hKfaGb4073yTdNWVdx0osmcWVOadvcQadX V7TVae4lO05gbTSEHGOiVPQDU3KU8IS1ZxjuIpAbcjtpvO0VlGYZdJcFXSrRS8Vf jNuoLF5+S6dbeCAoF/m0uSISmEY1+gyJCaahFPaudBpniPjkO7IMHGiRaZD105c7 2czZXIcfKhDCUmQCH2vmcACuXmLPolpRdIfD+E+B4tuySfGArHZ4MokfsTKXqTDb dZwACqX+T/oDEeWU2mmTGXk8MzdiR1+tO82sxvsL5y9nND0DY2ySJCJg4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLpIx0VwFn8GFH9kgz+XjsoVH2hGMB8GA1UdIwQY MBaAFG4sPhzTuFTWbvRsVnfvctLFo2aXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYml3LUhOTzRWTlp1OUd4V2QtOXkwc1dqWnBjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC8yNTkwZmItYjA1ZS00NDQxLWFkZDEt ZjgzNTViNzhkYjI0LzEvYml3LUhOTzRWTlp1OUd4V2QtOXkwc1dqWnBjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OC8yNTkwZmItYjA1ZS00NDQxLWFkZDEtZjgzNTViNzhkYjI0 LzEvYml3LUhOTzRWTlp1OUd4V2QtOXkwc1dqWnBjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACZcAw82B XUfyFvBr5hcHO/Mpmle+Diw2GAeh6M7VJFtLEUdYkMc32/WhPdi2aZGFrLSIxeiU pLdboNVN+apVqVPuYQW7y/b/0gN4q8/GBwG3bh1bAeAxN9XiuiKaIKIzYqNIChmq OI5M09qjwhQh2jKvkxyRfp0cMOMf/+9EYXDZKgeo6hwzeBOdVK1zHC0UAYn0U8AJ OIl7eX430D0YK3hQQkhOa0/0cHh4xosHDRvVbRBMvyDQsKAxmVVhFDs23MkZ2byz qHL4lll3F8cXckPQp0Mt+YkOxexkXEQGEHEyEogVuk0FbgwzpxhXSCK0SyTUUh8M 1cPAEt9uQWZwdA== -----END CERTIFICATE-----Generated at Sat Dec 6 07:25:05 2025 by rpki-client