This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.mft File: brmgpz47pWk4Hd2m1kcNx8hzyVk.mft (raw, json) Hash identifier: CK8N4xConoUL1zjTarbgMVd27nFL1v2gDDrltuO6FtM= Subject key identifier: 57:C1:F2:99:10:F0:11:77:8B:8D:6A:57:5B:77:49:54:89:3A:C4:54 Authority key identifier: 6E:B9:A0:A7:3E:3B:A5:69:38:1D:DD:A6:D6:47:0D:C7:C8:73:C9:59 Certificate issuer: /CN=6eb9a0a73e3ba569381ddda6d6470dc7c873c959 Certificate serial: 019AF0883CB82474C647C4A1C8AC51923512 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/brmgpz47pWk4Hd2m1kcNx8hzyVk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.mft Manifest number: 175F Signing time: Fri 05 Dec 2025 22:00:51 +0000 Manifest this update: Fri 05 Dec 2025 22:00:51 +0000 Manifest next update: Sat 06 Dec 2025 22:00:51 +0000 Files and hashes: 1: brmgpz47pWk4Hd2m1kcNx8hzyVk.crl (hash: cVcAfTJTdAyb+6T6CqsKhUV19UdOde8LvOlZRxYHVQU=) 2: mhs3Nz7QjciOX4d86VYjGkjh0E4.roa (hash: 996gZhmkk+3+kH+oeNkCYFvze5tTj0kdaq8k/9bdW1Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.crl rsync://rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.mft rsync://rpki.ripe.net/repository/DEFAULT/brmgpz47pWk4Hd2m1kcNx8hzyVk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 22:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:88:3c:b8:24:74:c6:47:c4:a1:c8:ac:51:92:35:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6eb9a0a73e3ba569381ddda6d6470dc7c873c959 Validity Not Before: Dec 5 22:00:51 2025 GMT Not After : Dec 6 22:00:51 2025 GMT Subject: CN=57c1f29910f011778b8d6a575b774954893ac454 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:b9:87:55:58:95:5d:9c:ac:e2:64:6d:a7:9a: 8f:6d:99:4e:95:b1:ca:cf:f1:c2:f2:65:ab:72:81: 48:40:96:15:fc:ee:de:70:e7:aa:b1:4f:d2:88:aa: 23:4d:dc:50:6a:bc:24:11:b0:22:13:97:1d:85:66: b6:49:58:d9:ea:72:f5:2a:a1:3c:fc:b8:54:45:eb: 13:55:48:6e:d6:5c:58:e0:9e:b2:27:d7:b8:b8:1e: 00:7b:a6:53:b3:ef:f1:5e:33:17:5d:90:48:e8:0a: a1:34:4f:64:0d:7b:c6:e6:6f:6d:78:84:fc:30:1a: 64:78:e3:3a:94:80:be:02:8c:96:03:30:61:7b:3a: 01:c4:40:40:a4:3a:03:c0:76:f7:1a:d9:07:40:de: 5e:c1:42:ca:3e:79:d9:0a:48:9c:35:43:4d:1b:ae: 04:00:9b:2f:9e:88:ce:33:aa:9a:66:05:e1:f4:a1: b2:03:e6:a3:44:16:2f:43:6a:42:b2:fb:56:eb:11: 2a:7d:11:44:eb:c8:33:78:87:df:01:cc:f1:9e:9d: 49:04:72:d1:e2:5d:89:14:f9:af:2c:58:e9:79:05: 67:b9:f3:1a:84:7c:c6:69:be:bf:b4:5c:73:81:f7: 82:17:7a:b5:2c:d8:4e:69:36:9d:f8:4a:f5:3a:31: f6:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:C1:F2:99:10:F0:11:77:8B:8D:6A:57:5B:77:49:54:89:3A:C4:54 X509v3 Authority Key Identifier: keyid:6E:B9:A0:A7:3E:3B:A5:69:38:1D:DD:A6:D6:47:0D:C7:C8:73:C9:59 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/brmgpz47pWk4Hd2m1kcNx8hzyVk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c3:bb:8b:db:8e:47:0f:95:ea:9e:44:e0:89:61:9e:39:f2:d1: 17:32:59:cc:12:76:1d:55:09:b0:c0:44:30:90:a5:25:3c:d5: 0a:c3:ec:71:4a:ee:8d:b8:d2:ef:a3:d1:36:b8:a2:18:73:ab: 23:b9:53:80:33:a0:f4:8b:fb:88:80:93:6c:50:f1:da:52:4b: 6a:db:1a:9e:a7:8e:3f:b4:2f:f0:46:2c:0f:98:fd:fa:d7:b5: 3b:ed:05:b5:0c:8d:d8:3d:65:31:98:eb:3b:bd:25:a7:bf:b9: 87:af:90:72:cf:05:fa:da:5a:45:e8:4b:8a:18:98:8c:1d:94: 9e:12:56:5f:69:28:2e:40:a0:8c:f2:c5:81:99:0d:2c:e9:29: 63:7f:a0:78:47:98:f4:57:90:fd:d7:73:03:9c:10:4b:13:44: d7:fc:f2:f7:2e:2d:8d:a0:9f:23:81:23:f7:c0:45:9a:4b:61: ed:2a:93:15:1b:c4:8e:95:3e:b4:b7:2d:ed:5c:d3:f5:76:91: a7:45:41:5b:50:e1:db:01:9c:f9:4c:01:0e:7e:64:92:05:32: d3:6f:69:0a:e6:93:1a:55:71:c1:06:04:8f:7a:63:aa:ee:f0: 0a:71:44:3c:47:06:4a:7b:50:4a:39:91:b1:95:54:60:3a:5b: 31:fa:c5:3d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwiDy4JHTGR8ShyKxRkjUSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZlYjlhMGE3M2UzYmE1NjkzODFkZGRhNmQ2NDcwZGM3Yzg3 M2M5NTkwHhcNMjUxMjA1MjIwMDUxWhcNMjUxMjA2MjIwMDUxWjAzMTEwLwYDVQQD Eyg1N2MxZjI5OTEwZjAxMTc3OGI4ZDZhNTc1Yjc3NDk1NDg5M2FjNDU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1bmHVViVXZys4mRtp5qPbZlOlbHK z/HC8mWrcoFIQJYV/O7ecOeqsU/SiKojTdxQarwkEbAiE5cdhWa2SVjZ6nL1KqE8 /LhUResTVUhu1lxY4J6yJ9e4uB4Ae6ZTs+/xXjMXXZBI6AqhNE9kDXvG5m9teIT8 MBpkeOM6lIC+AoyWAzBhezoBxEBApDoDwHb3GtkHQN5ewULKPnnZCkicNUNNG64E AJsvnojOM6qaZgXh9KGyA+ajRBYvQ2pCsvtW6xEqfRFE68gzeIffAczxnp1JBHLR 4l2JFPmvLFjpeQVnufMahHzGab6/tFxzgfeCF3q1LNhOaTad+Er1OjH26QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFfB8pkQ8BF3i41qV1t3SVSJOsRUMB8GA1UdIwQY MBaAFG65oKc+O6VpOB3dptZHDcfIc8lZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYnJtZ3B6NDdwV2s0SGQybTFrY054OGh6eVZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny9jYWE2OGUtN2E5ZS00Y2FlLThkMmEt ZTkwMjE5YmM4ZmYxLzEvYnJtZ3B6NDdwV2s0SGQybTFrY054OGh6eVZrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ny9jYWE2OGUtN2E5ZS00Y2FlLThkMmEtZTkwMjE5YmM4ZmYx LzEvYnJtZ3B6NDdwV2s0SGQybTFrY054OGh6eVZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAw7uL245H D5XqnkTgiWGeOfLRFzJZzBJ2HVUJsMBEMJClJTzVCsPscUrujbjS76PRNriiGHOr I7lTgDOg9Iv7iICTbFDx2lJLatsanqeOP7Qv8EYsD5j9+te1O+0FtQyN2D1lMZjr O70lp7+5h6+Qcs8F+tpaRehLihiYjB2UnhJWX2koLkCgjPLFgZkNLOkpY3+geEeY 9FeQ/ddzA5wQSxNE1/zy9y4tjaCfI4Ej98BFmkth7SqTFRvEjpU+tLct7VzT9XaR p0VBW1Dh2wGc+UwBDn5kkgUy029pCuaTGlVxwQYEj3pjqu7wCnFEPEcGSntQSjmR sZVUYDpbMfrFPQ== -----END CERTIFICATE-----Generated at Sat Dec 6 08:06:22 2025 by rpki-client