This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/23b835-53b3-4037-863c-b6b74ad7522a/1/bdxuUU9PYurbPicQ6snJ8vBkX3g.mft File: bdxuUU9PYurbPicQ6snJ8vBkX3g.mft (raw, json) Hash identifier: rI8LlFnmW+t49NLj7Wpjss6Ci2aujPGt4yPax9QLaWU= Subject key identifier: 42:A8:30:64:6A:85:E0:9D:02:6D:C5:62:A4:D4:D3:2A:D1:C1:75:C8 Authority key identifier: 6D:DC:6E:51:4F:4F:62:EA:DB:3E:27:10:EA:C9:C9:F2:F0:64:5F:78 Certificate issuer: /CN=6ddc6e514f4f62eadb3e2710eac9c9f2f0645f78 Certificate serial: 019AF1D24642850BB06ACBD14A0B5A6C89B0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bdxuUU9PYurbPicQ6snJ8vBkX3g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/23b835-53b3-4037-863c-b6b74ad7522a/1/bdxuUU9PYurbPicQ6snJ8vBkX3g.mft Manifest number: 0D Signing time: Sat 06 Dec 2025 04:01:20 +0000 Manifest this update: Sat 06 Dec 2025 04:01:20 +0000 Manifest next update: Sun 07 Dec 2025 04:01:20 +0000 Files and hashes: 1: bdxuUU9PYurbPicQ6snJ8vBkX3g.crl (hash: +/74XxcPnHLs9nAdwIkZHJnZuB9mlPSTOoQlzdG8S+E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/23b835-53b3-4037-863c-b6b74ad7522a/1/bdxuUU9PYurbPicQ6snJ8vBkX3g.crl rsync://rpki.ripe.net/repository/DEFAULT/77/23b835-53b3-4037-863c-b6b74ad7522a/1/bdxuUU9PYurbPicQ6snJ8vBkX3g.mft rsync://rpki.ripe.net/repository/DEFAULT/bdxuUU9PYurbPicQ6snJ8vBkX3g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d2:46:42:85:0b:b0:6a:cb:d1:4a:0b:5a:6c:89:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ddc6e514f4f62eadb3e2710eac9c9f2f0645f78 Validity Not Before: Dec 6 04:01:20 2025 GMT Not After : Dec 7 04:01:20 2025 GMT Subject: CN=42a830646a85e09d026dc562a4d4d32ad1c175c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:3b:1d:43:06:84:08:7d:f9:42:d3:a8:57:18: 04:41:3e:53:fb:e2:41:e7:37:d5:73:e3:8d:32:6f: 84:a1:cf:08:c6:d7:ea:e4:3f:84:86:3d:7e:3d:3e: 65:cb:4c:db:7b:57:a0:f0:ba:20:19:7c:27:45:2e: 6e:ce:35:7b:be:00:0e:b2:bf:6b:27:2b:2d:3c:33: 1b:07:6d:c6:55:54:0b:fe:e2:fd:86:6e:b3:aa:f8: 22:2a:ef:ee:c0:de:bc:cc:64:89:79:82:f9:92:b9: 50:7b:f2:c0:f4:5a:ea:b2:fc:50:32:b5:9a:8b:bf: 41:73:85:e7:1e:e7:d8:7d:f4:db:78:80:64:43:8a: 41:86:9d:47:35:e5:94:4c:fa:52:91:55:fc:1c:0c: d0:a0:09:a5:65:7e:c2:ed:b3:e3:84:ff:10:5f:9f: 4c:e4:3a:56:d8:84:92:7c:58:2a:7d:43:c2:fe:72: d1:e0:0a:1e:ae:2f:e3:17:2f:6c:ba:02:15:d1:b8: af:29:41:7b:26:05:91:6d:d7:d3:88:15:fd:65:96: e1:28:9d:bd:c7:d9:14:23:93:b3:e7:09:7d:9f:b7: 35:b6:c2:8f:b6:0e:f5:1a:f3:89:7f:f8:c2:1c:09: 72:70:7c:f5:c3:af:ad:0e:2c:6f:e2:5a:ae:6f:66: 71:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:A8:30:64:6A:85:E0:9D:02:6D:C5:62:A4:D4:D3:2A:D1:C1:75:C8 X509v3 Authority Key Identifier: keyid:6D:DC:6E:51:4F:4F:62:EA:DB:3E:27:10:EA:C9:C9:F2:F0:64:5F:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bdxuUU9PYurbPicQ6snJ8vBkX3g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/23b835-53b3-4037-863c-b6b74ad7522a/1/bdxuUU9PYurbPicQ6snJ8vBkX3g.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/77/23b835-53b3-4037-863c-b6b74ad7522a/1/bdxuUU9PYurbPicQ6snJ8vBkX3g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0f:74:e7:bd:b4:75:45:5c:75:e5:aa:ca:52:44:8d:31:74:19: e7:a1:c9:4e:2c:dd:fa:b3:09:de:02:87:27:82:a2:18:ec:f3: 97:ce:a1:8e:e2:54:42:af:38:45:c4:9c:33:0b:50:44:86:a5: a8:ef:73:6d:38:d1:00:c5:ac:7a:33:c9:d4:ae:81:8d:9d:f8: 3f:17:29:f6:7a:a1:26:8f:7e:67:b9:67:b0:86:11:12:30:bf: 4a:23:b8:21:70:08:77:fc:91:d6:69:9d:72:0c:c7:36:66:00: 09:3b:77:71:18:c6:f8:78:2b:bc:09:63:4e:91:16:18:23:39: 19:cc:ce:6c:37:80:d9:42:c0:a9:1e:42:c6:b3:c4:d3:0b:da: ad:c1:65:a1:40:1a:4e:66:42:5e:3c:c7:e7:ce:38:27:b1:d5: a4:d7:3b:8a:39:f7:6c:88:64:ad:9d:89:f5:57:b0:e3:85:6c: ad:1e:83:05:ee:57:39:ce:76:a0:0c:5e:62:11:00:5b:ca:86: 0d:e0:5b:85:68:0a:9d:02:6a:0f:e6:66:d3:45:58:c3:b9:9d: 1c:74:1f:43:ad:cb:5c:ef:82:39:d0:72:cd:26:d8:b5:a5:0e: 39:c9:dc:4c:37:90:41:e8:ee:c6:c9:ec:65:f5:c0:75:e8:0b: 45:7a:12:af -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0kZChQuwasvRSgtabImwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkZGM2ZTUxNGY0ZjYyZWFkYjNlMjcxMGVhYzljOWYyZjA2 NDVmNzgwHhcNMjUxMjA2MDQwMTIwWhcNMjUxMjA3MDQwMTIwWjAzMTEwLwYDVQQD Eyg0MmE4MzA2NDZhODVlMDlkMDI2ZGM1NjJhNGQ0ZDMyYWQxYzE3NWM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAozsdQwaECH35QtOoVxgEQT5T++JB 5zfVc+ONMm+Eoc8Ixtfq5D+Ehj1+PT5ly0zbe1eg8LogGXwnRS5uzjV7vgAOsr9r JystPDMbB23GVVQL/uL9hm6zqvgiKu/uwN68zGSJeYL5krlQe/LA9FrqsvxQMrWa i79Bc4XnHufYffTbeIBkQ4pBhp1HNeWUTPpSkVX8HAzQoAmlZX7C7bPjhP8QX59M 5DpW2ISSfFgqfUPC/nLR4Aoeri/jFy9sugIV0bivKUF7JgWRbdfTiBX9ZZbhKJ29 x9kUI5Oz5wl9n7c1tsKPtg71GvOJf/jCHAlycHz1w6+tDixv4lqub2Zx3QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEKoMGRqheCdAm3FYqTU0yrRwXXIMB8GA1UdIwQY MBaAFG3cblFPT2Lq2z4nEOrJyfLwZF94MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYmR4dVVVOVBZdXJiUGljUTZzbko4dkJrWDNnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny8yM2I4MzUtNTNiMy00MDM3LTg2M2Mt YjZiNzRhZDc1MjJhLzEvYmR4dVVVOVBZdXJiUGljUTZzbko4dkJrWDNnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ny8yM2I4MzUtNTNiMy00MDM3LTg2M2MtYjZiNzRhZDc1MjJh LzEvYmR4dVVVOVBZdXJiUGljUTZzbko4dkJrWDNnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD3TnvbR1 RVx15arKUkSNMXQZ56HJTizd+rMJ3gKHJ4KiGOzzl86hjuJUQq84RcScMwtQRIal qO9zbTjRAMWsejPJ1K6BjZ34Pxcp9nqhJo9+Z7lnsIYREjC/SiO4IXAId/yR1mmd cgzHNmYACTt3cRjG+HgrvAljTpEWGCM5GczObDeA2ULAqR5CxrPE0wvarcFloUAa TmZCXjzH5844J7HVpNc7ijn3bIhkrZ2J9Vew44VsrR6DBe5XOc52oAxeYhEAW8qG DeBbhWgKnQJqD+Zm00VYw7mdHHQfQ63LXO+COdByzSbYtaUOOcncTDeQQejuxsns ZfXAdegLRXoSrw== -----END CERTIFICATE-----Generated at Sat Dec 6 07:41:41 2025 by rpki-client