This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft File: bG9jkROWOM74MYEUEyzPJuFn06Q.mft (raw, json) Hash identifier: qTrCK3JdPGv9fD7KRKrqcgQ7bmSRV7QjgKaDJppPFNk= Subject key identifier: F8:22:64:30:07:02:D7:3C:3D:AB:E1:DB:B2:BD:AF:BD:3A:25:0D:85 Authority key identifier: 6C:6F:63:91:13:96:38:CE:F8:31:81:14:13:2C:CF:26:E1:67:D3:A4 Certificate issuer: /CN=6c6f6391139638cef8318114132ccf26e167d3a4 Certificate serial: 019AF31C7BF95A8F6D8C305B75553C325AC0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bG9jkROWOM74MYEUEyzPJuFn06Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft Manifest number: 143B Signing time: Sat 06 Dec 2025 10:02:01 +0000 Manifest this update: Sat 06 Dec 2025 10:02:01 +0000 Manifest next update: Sun 07 Dec 2025 10:02:01 +0000 Files and hashes: 1: _HGowDUCSG2pcAysO4ogxA6yosc.roa (hash: UPTC6ZbpFxK2iqUZ6z67RcYvcbR0/gldSq3kNUHLLJI=) 2: bG9jkROWOM74MYEUEyzPJuFn06Q.crl (hash: xWRU6AaDMlw0LKtRBzc3ZVhUOQqSzV1cMdhSYciOkG4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.crl rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft rsync://rpki.ripe.net/repository/DEFAULT/bG9jkROWOM74MYEUEyzPJuFn06Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 10:02:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1c:7b:f9:5a:8f:6d:8c:30:5b:75:55:3c:32:5a:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6c6f6391139638cef8318114132ccf26e167d3a4 Validity Not Before: Dec 6 10:02:01 2025 GMT Not After : Dec 7 10:02:01 2025 GMT Subject: CN=f82264300702d73c3dabe1dbb2bdafbd3a250d85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:6f:26:b6:77:b9:6a:ee:f5:d7:a5:a6:20:8d: 90:4d:5d:fe:3a:c1:63:ff:78:0c:75:3e:99:fa:ba: c7:53:6a:d2:9c:88:fd:c9:f9:30:42:79:49:11:96: 32:7d:06:86:1d:ce:01:51:fc:19:7d:be:7a:e1:13: fe:bc:fb:63:fe:2e:b3:3a:6b:56:f2:74:91:b5:c2: 50:26:ae:56:60:7b:d0:c6:ed:b1:dc:db:8a:01:ef: a4:0f:72:49:d4:5c:1d:2e:12:38:8a:d9:dd:ab:93: 63:ac:d7:aa:47:56:a4:a2:ff:d5:b0:f9:44:80:98: 56:c2:cb:34:89:62:be:ed:29:8b:55:d3:ed:a7:01: f0:af:8b:62:9d:63:7c:f2:6e:2a:0b:84:9f:d9:ee: dc:e4:dd:f7:fe:7a:24:36:2d:bf:33:56:e3:17:ab: 70:38:88:96:40:2d:f7:bf:ba:18:ed:0f:2a:e6:c2: 5e:c9:b7:8d:76:38:c9:b6:e1:67:6a:3d:26:0a:bd: ef:98:76:af:de:1c:26:e7:95:7c:10:ea:79:0d:2c: 23:ac:06:13:e0:78:9f:4c:29:9d:75:77:77:3e:05: ed:f5:2f:f7:5c:63:41:c6:a8:12:96:f9:33:bd:e7: 3c:2a:ea:62:16:d6:a3:66:84:58:c1:e9:3b:52:99: a2:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:22:64:30:07:02:D7:3C:3D:AB:E1:DB:B2:BD:AF:BD:3A:25:0D:85 X509v3 Authority Key Identifier: keyid:6C:6F:63:91:13:96:38:CE:F8:31:81:14:13:2C:CF:26:E1:67:D3:A4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bG9jkROWOM74MYEUEyzPJuFn06Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8b:b2:51:58:57:dd:1c:35:07:ff:17:f5:0a:d3:62:fd:47:a8: cf:df:07:96:6b:cd:1e:36:6f:6b:10:eb:fd:cb:21:72:98:7d: 81:c9:08:5b:26:c7:7b:44:9b:7f:e6:5f:b0:7d:b2:e9:78:59: 82:51:2d:a9:dd:ae:e5:58:6b:65:0a:2e:3e:d0:21:d0:06:fc: a8:05:f2:00:ba:4d:b4:ba:f1:a4:e9:9b:87:0b:c7:fa:39:8d: 27:da:44:18:30:06:9b:67:ed:2d:27:73:fb:3c:97:f7:dc:8e: 5a:55:d4:49:d8:a0:70:49:10:a3:16:d9:6b:3a:5d:e8:0f:78: b2:84:3c:9c:07:3b:bd:94:18:a0:35:b2:5c:0c:2c:55:cf:78: 7a:f2:88:14:a4:32:ea:bd:ca:9a:b9:61:ba:15:26:4a:bf:24: e7:5f:ef:28:84:b6:16:99:3a:2e:bc:5c:9e:51:73:37:66:96: 11:a5:01:20:1f:45:d1:7e:3f:30:fe:fb:ff:c5:18:b9:b1:85: 0f:f5:56:d0:fb:f3:f5:01:c8:e3:54:23:1f:55:2e:fe:27:a2: f7:9e:fa:fb:6b:92:33:17:8f:d8:12:f0:bd:8a:58:9a:05:ba: a1:78:f0:aa:a1:6d:a1:dc:c3:2c:4c:91:da:9c:dc:9f:dd:97: 2d:35:c2:aa -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHHv5Wo9tjDBbdVU8MlrAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZjNmY2MzkxMTM5NjM4Y2VmODMxODExNDEzMmNjZjI2ZTE2 N2QzYTQwHhcNMjUxMjA2MTAwMjAxWhcNMjUxMjA3MTAwMjAxWjAzMTEwLwYDVQQD EyhmODIyNjQzMDA3MDJkNzNjM2RhYmUxZGJiMmJkYWZiZDNhMjUwZDg1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA128mtne5au7116WmII2QTV3+OsFj /3gMdT6Z+rrHU2rSnIj9yfkwQnlJEZYyfQaGHc4BUfwZfb564RP+vPtj/i6zOmtW 8nSRtcJQJq5WYHvQxu2x3NuKAe+kD3JJ1FwdLhI4itndq5NjrNeqR1akov/VsPlE gJhWwss0iWK+7SmLVdPtpwHwr4tinWN88m4qC4Sf2e7c5N33/nokNi2/M1bjF6tw OIiWQC33v7oY7Q8q5sJeybeNdjjJtuFnaj0mCr3vmHav3hwm55V8EOp5DSwjrAYT 4HifTCmddXd3PgXt9S/3XGNBxqgSlvkzvec8KupiFtajZoRYwek7UpmiWQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPgiZDAHAtc8Pavh27K9r706JQ2FMB8GA1UdIwQY MBaAFGxvY5ETljjO+DGBFBMszybhZ9OkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYkc5amtST1dPTTc0TVlFVUV5elBKdUZuMDZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS85NWE2ZjQtODIyMC00NmRjLWIyMzgt MzRhZDFjODUzNTk5LzEvYkc5amtST1dPTTc0TVlFVUV5elBKdUZuMDZRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OS85NWE2ZjQtODIyMC00NmRjLWIyMzgtMzRhZDFjODUzNTk5 LzEvYkc5amtST1dPTTc0TVlFVUV5elBKdUZuMDZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAi7JRWFfd HDUH/xf1CtNi/Ueoz98HlmvNHjZvaxDr/cshcph9gckIWybHe0Sbf+ZfsH2y6XhZ glEtqd2u5VhrZQouPtAh0Ab8qAXyALpNtLrxpOmbhwvH+jmNJ9pEGDAGm2ftLSdz +zyX99yOWlXUSdigcEkQoxbZazpd6A94soQ8nAc7vZQYoDWyXAwsVc94evKIFKQy 6r3KmrlhuhUmSr8k51/vKIS2Fpk6LrxcnlFzN2aWEaUBIB9F0X4/MP77/8UYubGF D/VW0Pvz9QHI41QjH1Uu/iei9576+2uSMxeP2BLwvYpYmgW6oXjwqqFtodzDLEyR 2pzcn92XLTXCqg== -----END CERTIFICATE-----Generated at Sat Dec 6 17:46:33 2025 by rpki-client