This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/BPD3XK7T8miFrGVjD_qu53pw69k.mft File: BPD3XK7T8miFrGVjD_qu53pw69k.mft (raw, json) Hash identifier: wK30kt1pcrmPzsN63CjXcJMzIS69WW7fXvk4ES5ZIxc= Subject key identifier: 55:96:7D:2E:FF:FC:BE:03:9C:E0:9B:59:57:B7:12:4B:90:D8:9D:50 Authority key identifier: 04:F0:F7:5C:AE:D3:F2:68:85:AC:65:63:0F:FA:AE:E7:7A:70:EB:D9 Certificate issuer: /CN=04f0f75caed3f26885ac65630ffaaee77a70ebd9 Certificate serial: 019AF2AD8AEA9C5DBAC05DFFEAA7ECD34E34 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BPD3XK7T8miFrGVjD_qu53pw69k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/BPD3XK7T8miFrGVjD_qu53pw69k.mft Manifest number: 1501 Signing time: Sat 06 Dec 2025 08:00:50 +0000 Manifest this update: Sat 06 Dec 2025 08:00:50 +0000 Manifest next update: Sun 07 Dec 2025 08:00:50 +0000 Files and hashes: 1: BPD3XK7T8miFrGVjD_qu53pw69k.crl (hash: RoUMNpP7tNzCNYFZ1Vm82s/+E/QdoCHSpdhrpbiTynA=) 2: ilRpOqqhCRrukRL5kvILbezdwjw.roa (hash: 09XWT+P0AZf+EnMM2PlCmZMY0UVdVh5S35frUm5Llew=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/BPD3XK7T8miFrGVjD_qu53pw69k.crl rsync://rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/BPD3XK7T8miFrGVjD_qu53pw69k.mft rsync://rpki.ripe.net/repository/DEFAULT/BPD3XK7T8miFrGVjD_qu53pw69k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 08:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:8a:ea:9c:5d:ba:c0:5d:ff:ea:a7:ec:d3:4e:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04f0f75caed3f26885ac65630ffaaee77a70ebd9 Validity Not Before: Dec 6 08:00:50 2025 GMT Not After : Dec 7 08:00:50 2025 GMT Subject: CN=55967d2efffcbe039ce09b5957b7124b90d89d50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:fe:80:89:b1:d2:6a:95:86:35:2e:8f:56:c5: 1a:f1:43:dd:45:c2:a4:dd:6f:a7:53:45:b4:f8:16: 42:25:d1:1a:85:9a:8f:80:32:70:09:6c:b7:10:67: ab:4f:b2:c8:d1:02:fa:31:53:95:77:3c:e1:e4:ef: 57:b2:d5:46:b9:89:49:50:bb:c0:48:c4:ee:85:04: ef:99:47:57:fe:41:63:b9:8c:47:ca:a3:a5:d4:07: 5d:84:e5:5b:4f:b2:cc:84:14:4c:bc:ac:79:a0:d2: e4:0a:a3:cc:23:27:66:97:bf:0a:3d:f3:81:ce:f6: cf:a0:90:6b:a8:a4:9a:d1:18:82:9e:00:2c:e6:f8: 1d:32:f5:0e:a8:f5:27:09:86:a2:a3:d9:0d:16:e1: 5a:0b:e4:92:6a:69:17:87:17:b9:df:1a:86:10:d7: 1d:69:7f:05:76:90:06:f2:90:eb:b4:27:6b:ae:d3: ff:cd:28:3c:89:ec:c4:6b:e8:f4:c2:c8:00:7e:92: b5:f6:72:42:ad:3d:a6:69:c8:ba:99:42:c0:d0:15: 35:ab:e2:7e:8b:19:df:e8:e9:58:08:d2:eb:02:e1: 23:e5:d4:2b:13:0d:6c:94:04:3a:38:72:d3:71:ee: 4b:2b:eb:b9:8b:5d:e8:fc:fb:42:6f:95:f6:96:de: 27:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:96:7D:2E:FF:FC:BE:03:9C:E0:9B:59:57:B7:12:4B:90:D8:9D:50 X509v3 Authority Key Identifier: keyid:04:F0:F7:5C:AE:D3:F2:68:85:AC:65:63:0F:FA:AE:E7:7A:70:EB:D9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BPD3XK7T8miFrGVjD_qu53pw69k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/BPD3XK7T8miFrGVjD_qu53pw69k.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/BPD3XK7T8miFrGVjD_qu53pw69k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:20:f0:d5:26:9f:3f:f2:27:1d:6e:df:9b:a0:42:ac:7e:51: ce:64:65:49:57:22:73:e9:2c:63:6b:cd:97:06:2b:8a:dc:26: a9:81:92:15:02:28:40:c9:08:e2:9c:f4:d7:aa:a9:e7:05:a1: e3:7a:b8:1e:4a:c7:95:25:f2:41:6d:0e:f9:47:c9:15:d3:07: 99:53:c4:ee:a5:b1:5f:50:84:03:93:1e:37:61:79:51:1a:1d: 51:74:f7:04:9c:ae:82:05:5d:57:ff:1f:34:01:76:be:86:9c: dc:44:6a:32:12:9d:15:bf:e0:40:e3:ce:5f:45:19:3a:0f:3f: 7f:85:bc:4f:06:89:75:58:61:43:a5:90:57:7a:b8:77:50:74: 0b:a9:b0:9f:54:fa:29:a5:d4:6c:bf:ab:71:ee:8c:6b:e7:05: c1:1e:fb:41:43:0a:14:86:81:a0:45:9c:d7:d5:d1:0f:ab:2b: 11:d4:6b:d0:c6:a6:70:13:34:d6:48:df:68:9a:e7:23:9b:65: cb:c1:76:35:a7:29:04:34:e9:b8:d7:bf:e6:de:da:2e:51:f9: 80:23:ef:d8:00:f7:2a:5e:c5:21:10:96:d7:de:a8:5d:1c:86: 97:46:d3:9e:aa:88:2c:ab:ac:55:5a:d0:e1:16:ea:6e:3e:87: 0c:94:7d:64 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryrYrqnF26wF3/6qfs0040MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA0ZjBmNzVjYWVkM2YyNjg4NWFjNjU2MzBmZmFhZWU3N2E3 MGViZDkwHhcNMjUxMjA2MDgwMDUwWhcNMjUxMjA3MDgwMDUwWjAzMTEwLwYDVQQD Eyg1NTk2N2QyZWZmZmNiZTAzOWNlMDliNTk1N2I3MTI0YjkwZDg5ZDUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0P6AibHSapWGNS6PVsUa8UPdRcKk 3W+nU0W0+BZCJdEahZqPgDJwCWy3EGerT7LI0QL6MVOVdzzh5O9XstVGuYlJULvA SMTuhQTvmUdX/kFjuYxHyqOl1AddhOVbT7LMhBRMvKx5oNLkCqPMIydml78KPfOB zvbPoJBrqKSa0RiCngAs5vgdMvUOqPUnCYaio9kNFuFaC+SSamkXhxe53xqGENcd aX8FdpAG8pDrtCdrrtP/zSg8iezEa+j0wsgAfpK19nJCrT2maci6mULA0BU1q+J+ ixnf6OlYCNLrAuEj5dQrEw1slAQ6OHLTce5LK+u5i13o/PtCb5X2lt4nTwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFWWfS7//L4DnOCbWVe3EkuQ2J1QMB8GA1UdIwQY MBaAFATw91yu0/JohaxlYw/6rud6cOvZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlBEM1hLN1Q4bWlGckdWakRfcXU1M3B3NjlrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC9hYzg1ODctZGIwZC00ZmUxLWEzOWQt NDUyZWY2YWJlMDBmLzEvQlBEM1hLN1Q4bWlGckdWakRfcXU1M3B3NjlrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NC9hYzg1ODctZGIwZC00ZmUxLWEzOWQtNDUyZWY2YWJlMDBm LzEvQlBEM1hLN1Q4bWlGckdWakRfcXU1M3B3NjlrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFyDw1Saf P/InHW7fm6BCrH5RzmRlSVcic+ksY2vNlwYritwmqYGSFQIoQMkI4pz016qp5wWh 43q4HkrHlSXyQW0O+UfJFdMHmVPE7qWxX1CEA5MeN2F5URodUXT3BJyuggVdV/8f NAF2voac3ERqMhKdFb/gQOPOX0UZOg8/f4W8TwaJdVhhQ6WQV3q4d1B0C6mwn1T6 KaXUbL+rce6Ma+cFwR77QUMKFIaBoEWc19XRD6srEdRr0MamcBM01kjfaJrnI5tl y8F2NacpBDTpuNe/5t7aLlH5gCPv2AD3Kl7FIRCW196oXRyGl0bTnqqILKusVVrQ 4Rbqbj6HDJR9ZA== -----END CERTIFICATE-----Generated at Sat Dec 6 17:36:10 2025 by rpki-client