This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/cf0254-2b88-4b3f-8d30-1949d6b80491/1/BjnEhGuIwtcOMc5MD8y0z03qVDY.mft File: BjnEhGuIwtcOMc5MD8y0z03qVDY.mft (raw, json) Hash identifier: 9hTq+teJRTDtTlNWnBWr+aFKPnw/7rRB8bZys/2WrRo= Subject key identifier: 30:96:B8:62:90:EB:94:25:F6:C1:CF:C0:2C:35:5C:B5:9B:3B:8A:E4 Authority key identifier: 06:39:C4:84:6B:88:C2:D7:0E:31:CE:4C:0F:CC:B4:CF:4D:EA:54:36 Certificate issuer: /CN=0639c4846b88c2d70e31ce4c0fccb4cf4dea5436 Certificate serial: 019AF208FDEFDF4A2815936AB9E33767C942 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BjnEhGuIwtcOMc5MD8y0z03qVDY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/cf0254-2b88-4b3f-8d30-1949d6b80491/1/BjnEhGuIwtcOMc5MD8y0z03qVDY.mft Manifest number: 175F Signing time: Sat 06 Dec 2025 05:01:06 +0000 Manifest this update: Sat 06 Dec 2025 05:01:06 +0000 Manifest next update: Sun 07 Dec 2025 05:01:06 +0000 Files and hashes: 1: BjnEhGuIwtcOMc5MD8y0z03qVDY.crl (hash: 9mKRAm7LY4/4R5dZDl0d28RizhiINuR5RrQwqptft18=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/cf0254-2b88-4b3f-8d30-1949d6b80491/1/BjnEhGuIwtcOMc5MD8y0z03qVDY.crl rsync://rpki.ripe.net/repository/DEFAULT/73/cf0254-2b88-4b3f-8d30-1949d6b80491/1/BjnEhGuIwtcOMc5MD8y0z03qVDY.mft rsync://rpki.ripe.net/repository/DEFAULT/BjnEhGuIwtcOMc5MD8y0z03qVDY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:08:fd:ef:df:4a:28:15:93:6a:b9:e3:37:67:c9:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0639c4846b88c2d70e31ce4c0fccb4cf4dea5436 Validity Not Before: Dec 6 05:01:06 2025 GMT Not After : Dec 7 05:01:06 2025 GMT Subject: CN=3096b86290eb9425f6c1cfc02c355cb59b3b8ae4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:a6:cd:2d:b6:d1:08:4b:d8:68:40:92:d8:d7: 96:00:88:d8:69:59:12:a3:77:28:eb:18:37:85:c2: 23:73:28:ad:ff:e2:86:8f:bd:36:55:27:76:e1:d5: 2a:9b:74:93:86:86:5b:67:12:cd:e5:65:b5:41:46: e5:04:81:88:20:4a:59:6a:0b:c5:7e:e3:09:c3:8b: 94:a7:cc:f9:6b:95:fc:84:4f:ff:71:41:df:f4:de: 56:81:05:36:74:ea:ea:c2:57:1a:5b:a8:6c:30:45: fc:4f:f8:25:78:e6:51:c4:ee:a5:71:4a:4f:4c:bc: e4:88:06:9e:ed:21:f3:fc:e5:ae:41:98:60:b6:b2: 0a:d3:f0:e2:03:46:6b:05:34:3f:41:88:54:67:39: 1a:65:c4:5c:36:c8:7d:c4:04:a4:49:db:3c:5c:48: 74:dc:21:5d:cb:1a:fd:2b:da:fc:66:ec:6e:d8:a1: 4d:27:18:0d:ac:e8:b2:cb:55:98:d0:83:20:c9:9f: 4f:ba:0f:d6:1f:1f:02:69:00:15:64:65:77:d5:94: 71:a3:e2:56:eb:1d:ac:64:43:cb:9f:a7:88:51:7b: ef:14:51:01:46:83:e5:19:4b:3b:12:db:11:ca:b0: 97:d8:df:f3:53:7e:28:cb:a0:4c:e6:d6:c4:84:4d: aa:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:96:B8:62:90:EB:94:25:F6:C1:CF:C0:2C:35:5C:B5:9B:3B:8A:E4 X509v3 Authority Key Identifier: keyid:06:39:C4:84:6B:88:C2:D7:0E:31:CE:4C:0F:CC:B4:CF:4D:EA:54:36 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BjnEhGuIwtcOMc5MD8y0z03qVDY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/cf0254-2b88-4b3f-8d30-1949d6b80491/1/BjnEhGuIwtcOMc5MD8y0z03qVDY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/73/cf0254-2b88-4b3f-8d30-1949d6b80491/1/BjnEhGuIwtcOMc5MD8y0z03qVDY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 54:3e:5a:c9:13:89:6a:d3:d5:fc:78:68:2a:a1:9d:02:d7:a5: 6f:82:c3:ca:98:1f:54:92:bf:e9:86:57:0d:1e:b5:aa:97:e4: 76:10:b6:5d:cb:a8:4d:51:59:ff:34:12:50:32:51:16:e5:2d: b9:53:62:97:79:ad:68:d0:73:c2:17:fb:98:bc:96:fa:66:c3: b2:88:71:d4:cf:5a:59:ec:91:d5:74:11:e2:17:49:4a:77:6f: 09:e6:7d:c1:e5:fa:59:06:8e:11:ed:77:91:17:03:6c:b6:2f: d0:e3:58:93:ce:a6:36:13:6d:c7:25:fe:3d:76:60:fe:53:cf: bf:85:e7:9e:e3:18:7b:97:ef:8d:e4:53:c1:54:66:29:4c:9c: 98:49:85:e0:27:55:1b:81:d1:c5:ba:d3:76:3a:2f:82:37:91: 59:c2:1b:4d:7c:26:b4:0a:bc:d0:a1:c1:a2:ad:9b:13:ce:b5: 3a:5f:fc:c7:e2:27:2f:41:e7:b9:f8:53:d8:89:d3:f3:b0:d8: 74:fa:46:d0:66:f1:3a:53:fc:cd:0e:d1:05:e0:cf:48:44:67: 20:5b:76:a4:43:ee:0e:89:c9:12:c8:92:1f:d1:e5:05:6e:b8: 51:e1:21:77:11:1c:cc:41:c2:31:21:af:ea:bc:4b:d7:45:b2: 51:6b:e4:05 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCP3v30ooFZNqueM3Z8lCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA2MzljNDg0NmI4OGMyZDcwZTMxY2U0YzBmY2NiNGNmNGRl YTU0MzYwHhcNMjUxMjA2MDUwMTA2WhcNMjUxMjA3MDUwMTA2WjAzMTEwLwYDVQQD EygzMDk2Yjg2MjkwZWI5NDI1ZjZjMWNmYzAyYzM1NWNiNTliM2I4YWU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjabNLbbRCEvYaECS2NeWAIjYaVkS o3co6xg3hcIjcyit/+KGj702VSd24dUqm3SThoZbZxLN5WW1QUblBIGIIEpZagvF fuMJw4uUp8z5a5X8hE//cUHf9N5WgQU2dOrqwlcaW6hsMEX8T/gleOZRxO6lcUpP TLzkiAae7SHz/OWuQZhgtrIK0/DiA0ZrBTQ/QYhUZzkaZcRcNsh9xASkSds8XEh0 3CFdyxr9K9r8Zuxu2KFNJxgNrOiyy1WY0IMgyZ9Pug/WHx8CaQAVZGV31ZRxo+JW 6x2sZEPLn6eIUXvvFFEBRoPlGUs7EtsRyrCX2N/zU34oy6BM5tbEhE2q6QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDCWuGKQ65Ql9sHPwCw1XLWbO4rkMB8GA1UdIwQY MBaAFAY5xIRriMLXDjHOTA/MtM9N6lQ2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQmpuRWhHdUl3dGNPTWM1TUQ4eTB6MDNxVkRZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My9jZjAyNTQtMmI4OC00YjNmLThkMzAt MTk0OWQ2YjgwNDkxLzEvQmpuRWhHdUl3dGNPTWM1TUQ4eTB6MDNxVkRZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83My9jZjAyNTQtMmI4OC00YjNmLThkMzAtMTk0OWQ2YjgwNDkx LzEvQmpuRWhHdUl3dGNPTWM1TUQ4eTB6MDNxVkRZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVD5ayROJ atPV/HhoKqGdAtelb4LDypgfVJK/6YZXDR61qpfkdhC2XcuoTVFZ/zQSUDJRFuUt uVNil3mtaNBzwhf7mLyW+mbDsohx1M9aWeyR1XQR4hdJSndvCeZ9weX6WQaOEe13 kRcDbLYv0ONYk86mNhNtxyX+PXZg/lPPv4XnnuMYe5fvjeRTwVRmKUycmEmF4CdV G4HRxbrTdjovgjeRWcIbTXwmtAq80KHBoq2bE861Ol/8x+InL0HnufhT2InT87DY dPpG0GbxOlP8zQ7RBeDPSERnIFt2pEPuDonJEsiSH9HlBW64UeEhdxEczEHCMSGv 6rxL10WyUWvkBQ== -----END CERTIFICATE-----Generated at Sat Dec 6 13:33:03 2025 by rpki-client