This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/485fb4-3027-46cc-bd67-809a4b7ab4b5/1/BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.mft File: BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.mft (raw, json) Hash identifier: r+nucHNdAD1s1sqCPc0YfZmlsrnfWVQN6R7Q6kEh04E= Subject key identifier: 61:A5:AE:9B:C7:1E:60:A7:DF:9F:11:FA:0A:B3:F8:51:D2:75:9F:25 Authority key identifier: 05:F2:74:8C:B4:38:62:A1:04:B5:6F:8C:62:04:B6:20:97:06:55:8C Certificate issuer: /CN=05f2748cb43862a104b56f8c6204b6209706558c Certificate serial: 019AF0513FCB37C3ED55F9A5C98A5BBE3B1A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/485fb4-3027-46cc-bd67-809a4b7ab4b5/1/BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.mft Manifest number: 0E4B Signing time: Fri 05 Dec 2025 21:00:47 +0000 Manifest this update: Fri 05 Dec 2025 21:00:47 +0000 Manifest next update: Sat 06 Dec 2025 21:00:47 +0000 Files and hashes: 1: BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.crl (hash: y1R4NrQ3zzFp6ovyhasBD2CAqDutnZo2LnbNJppvtCA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/485fb4-3027-46cc-bd67-809a4b7ab4b5/1/BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.crl rsync://rpki.ripe.net/repository/DEFAULT/74/485fb4-3027-46cc-bd67-809a4b7ab4b5/1/BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.mft rsync://rpki.ripe.net/repository/DEFAULT/BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 21:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:51:3f:cb:37:c3:ed:55:f9:a5:c9:8a:5b:be:3b:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05f2748cb43862a104b56f8c6204b6209706558c Validity Not Before: Dec 5 21:00:47 2025 GMT Not After : Dec 6 21:00:47 2025 GMT Subject: CN=61a5ae9bc71e60a7df9f11fa0ab3f851d2759f25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:34:ef:dd:e3:f5:2d:7b:41:8d:be:21:91:00: f9:9e:8c:07:62:e8:8e:a7:1f:bf:2f:63:17:d6:a1: 00:0a:02:6e:8d:07:61:b8:ba:72:ae:81:36:1d:5a: 7a:88:bb:51:9a:93:b2:c8:67:c9:5d:2b:a4:c1:df: 0d:f5:76:a2:48:4d:ad:22:41:01:cd:66:93:8b:b7: f3:03:00:44:cd:8b:6a:b1:a0:a7:03:b1:9f:34:15: d4:b5:21:70:c9:98:20:59:69:8e:01:5a:fb:63:b8: c5:43:63:0f:e3:79:ba:95:8c:0a:dc:3a:ca:fe:5d: 24:72:8d:e8:10:44:34:7c:81:a3:02:a2:28:0b:bd: 26:c6:0e:b0:8c:dd:36:a0:bd:bd:bd:0b:20:09:72: 94:8a:bc:c5:0f:cb:be:da:bf:02:07:d6:38:e7:fb: 5e:a5:f0:57:19:04:64:4c:a1:52:72:aa:17:f9:1d: f6:e2:d5:c8:db:29:27:72:ce:c7:ba:40:e8:d6:82: a7:e4:60:d4:9a:8f:40:fc:65:d4:e3:19:a8:34:29: 1b:ab:b7:a3:65:8a:c5:76:5e:b0:0d:43:f8:98:19: ee:8f:eb:5f:c6:08:3b:6b:02:36:48:51:c8:b1:e9: d0:b4:0e:ad:ec:c2:ef:09:16:da:82:57:85:64:9c: 67:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:A5:AE:9B:C7:1E:60:A7:DF:9F:11:FA:0A:B3:F8:51:D2:75:9F:25 X509v3 Authority Key Identifier: keyid:05:F2:74:8C:B4:38:62:A1:04:B5:6F:8C:62:04:B6:20:97:06:55:8C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/485fb4-3027-46cc-bd67-809a4b7ab4b5/1/BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/74/485fb4-3027-46cc-bd67-809a4b7ab4b5/1/BfJ0jLQ4YqEEtW-MYgS2IJcGVYw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 95:f0:fd:3c:78:f8:f3:05:63:e4:56:ee:8e:2c:7b:72:f7:43: 2a:d9:e6:dd:d1:da:ac:f0:36:f3:5a:d9:14:0d:b2:6e:9c:4e: 72:de:71:b2:87:9e:dc:d9:cf:70:f5:5f:e7:03:ec:3a:54:41: d1:ef:43:f7:c6:eb:ed:1d:71:54:32:19:ce:ec:f1:c4:8b:b7: c3:06:51:31:ae:fa:b1:6c:d6:e1:1c:b6:64:d3:e5:63:c8:bb: 55:32:3a:32:c8:57:9e:04:2d:c6:8d:82:07:65:07:e9:38:cc: a1:3a:ae:3d:e7:9b:62:97:ee:99:33:f5:77:c5:c8:25:16:f9: 82:3b:d0:bf:bd:d5:72:5d:e6:af:9c:51:f7:8c:61:c7:b8:43: 00:4c:3a:ba:32:ae:0c:43:7b:fd:39:e4:63:e8:c8:74:02:77: db:cf:64:ce:4a:2e:38:f2:32:e1:9d:c4:38:aa:19:8b:26:d6: de:5d:99:83:d7:6e:a8:9c:6e:36:a1:c6:b7:94:6a:80:23:b6: 16:2e:90:ee:94:d0:79:cc:20:27:a7:bc:3d:79:48:5c:e9:be: 8b:c9:70:0b:9d:d9:e8:8c:aa:66:89:c8:e9:6f:ec:c0:f3:59: d1:59:28:23:8d:8a:cb:39:6b:02:2c:5c:b0:0b:b2:01:c7:9c: a3:1d:40:5a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwUT/LN8PtVfmlyYpbvjsaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1ZjI3NDhjYjQzODYyYTEwNGI1NmY4YzYyMDRiNjIwOTcw NjU1OGMwHhcNMjUxMjA1MjEwMDQ3WhcNMjUxMjA2MjEwMDQ3WjAzMTEwLwYDVQQD Eyg2MWE1YWU5YmM3MWU2MGE3ZGY5ZjExZmEwYWIzZjg1MWQyNzU5ZjI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4jTv3eP1LXtBjb4hkQD5nowHYuiO px+/L2MX1qEACgJujQdhuLpyroE2HVp6iLtRmpOyyGfJXSukwd8N9XaiSE2tIkEB zWaTi7fzAwBEzYtqsaCnA7GfNBXUtSFwyZggWWmOAVr7Y7jFQ2MP43m6lYwK3DrK /l0kco3oEEQ0fIGjAqIoC70mxg6wjN02oL29vQsgCXKUirzFD8u+2r8CB9Y45/te pfBXGQRkTKFScqoX+R324tXI2ykncs7HukDo1oKn5GDUmo9A/GXU4xmoNCkbq7ej ZYrFdl6wDUP4mBnuj+tfxgg7awI2SFHIsenQtA6t7MLvCRbagleFZJxnVwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGGlrpvHHmCn358R+gqz+FHSdZ8lMB8GA1UdIwQY MBaAFAXydIy0OGKhBLVvjGIEtiCXBlWMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQmZKMGpMUTRZcUVFdFctTVlnUzJJSmNHVll3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC80ODVmYjQtMzAyNy00NmNjLWJkNjct ODA5YTRiN2FiNGI1LzEvQmZKMGpMUTRZcUVFdFctTVlnUzJJSmNHVll3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NC80ODVmYjQtMzAyNy00NmNjLWJkNjctODA5YTRiN2FiNGI1 LzEvQmZKMGpMUTRZcUVFdFctTVlnUzJJSmNHVll3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlfD9PHj4 8wVj5Fbujix7cvdDKtnm3dHarPA281rZFA2ybpxOct5xsoee3NnPcPVf5wPsOlRB 0e9D98br7R1xVDIZzuzxxIu3wwZRMa76sWzW4Ry2ZNPlY8i7VTI6MshXngQtxo2C B2UH6TjMoTquPeebYpfumTP1d8XIJRb5gjvQv73Vcl3mr5xR94xhx7hDAEw6ujKu DEN7/TnkY+jIdAJ3289kzkouOPIy4Z3EOKoZiybW3l2Zg9duqJxuNqHGt5RqgCO2 Fi6Q7pTQecwgJ6e8PXlIXOm+i8lwC53Z6IyqZonI6W/swPNZ0VkoI42KyzlrAixc sAuyAcecox1AWg== -----END CERTIFICATE-----Generated at Sat Dec 6 07:04:03 2025 by rpki-client