This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.mft File: bAlGwIGzK-hIywDY2TLowfcXlmg.mft (raw, json) Hash identifier: Y/ullbZiOZTnhMkbwTC03U9BcC7j0RRjXo91Q00ew3M= Subject key identifier: CE:79:38:E1:8F:A8:88:3D:EA:A3:6C:ED:11:8D:28:AE:8D:C4:AC:30 Authority key identifier: 6C:09:46:C0:81:B3:2B:E8:48:CB:00:D8:D9:32:E8:C1:F7:17:96:68 Certificate issuer: /CN=6c0946c081b32be848cb00d8d932e8c1f7179668 Certificate serial: 019AF12E3C628F1BFFF6D872906F57BF649F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bAlGwIGzK-hIywDY2TLowfcXlmg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.mft Manifest number: 1760 Signing time: Sat 06 Dec 2025 01:02:10 +0000 Manifest this update: Sat 06 Dec 2025 01:02:10 +0000 Manifest next update: Sun 07 Dec 2025 01:02:10 +0000 Files and hashes: 1: bAlGwIGzK-hIywDY2TLowfcXlmg.crl (hash: qLociQp5DKGbjJcKmevDWN/G7S7GtOfcmAWqbArJUoQ=) 2: zcbK2VYAm9mMFJWXJQ7evncTyKY.roa (hash: IlkFU9F+u30MyRO9adAYRJd3agbOfEkk4M3dko//XTI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.crl rsync://rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.mft rsync://rpki.ripe.net/repository/DEFAULT/bAlGwIGzK-hIywDY2TLowfcXlmg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:3c:62:8f:1b:ff:f6:d8:72:90:6f:57:bf:64:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6c0946c081b32be848cb00d8d932e8c1f7179668 Validity Not Before: Dec 6 01:02:10 2025 GMT Not After : Dec 7 01:02:10 2025 GMT Subject: CN=ce7938e18fa8883deaa36ced118d28ae8dc4ac30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:f4:84:93:84:73:33:ee:de:6a:77:f3:a6:df: ae:dc:64:d0:fb:05:7b:b5:6a:7b:d0:10:a5:4c:5d: de:19:0f:7e:ea:5e:90:b1:46:81:a9:47:48:7f:2c: e2:86:8b:7b:16:ba:b3:9a:e6:54:20:ff:45:34:b5: 3f:ad:75:57:40:c0:48:7c:9d:12:b8:c8:dd:df:7e: 6d:25:f9:b7:c5:50:50:16:0b:47:d6:85:e0:bf:fc: d5:d6:8c:0d:df:ac:39:ab:b1:42:44:8b:ce:68:9c: 8b:34:85:78:4f:c4:3f:ba:e4:41:4a:97:4b:ae:1d: 55:f4:72:a8:c0:5f:79:65:1e:cc:ff:eb:2b:6a:c0: 60:6c:3a:ec:6b:e7:56:4c:d1:31:c4:b9:a2:01:b9: ec:f4:96:b2:95:5d:89:fa:62:2f:16:b8:e0:1a:08: c3:f7:83:3b:bd:2e:3a:39:e4:75:a7:5b:7b:be:1b: 01:a9:02:ef:b0:c6:ce:f3:d3:e4:66:dc:b4:50:b3: 50:6e:5a:33:9a:df:9d:3e:61:18:d5:16:46:45:63: 34:26:b3:6b:70:01:11:d5:50:94:fc:f2:86:b5:75: b8:e2:56:45:e5:c0:5f:05:ab:a2:90:58:7c:c9:c9: c5:f6:0f:7e:99:a8:79:13:2b:e3:e3:5d:0e:e4:59: 22:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:79:38:E1:8F:A8:88:3D:EA:A3:6C:ED:11:8D:28:AE:8D:C4:AC:30 X509v3 Authority Key Identifier: keyid:6C:09:46:C0:81:B3:2B:E8:48:CB:00:D8:D9:32:E8:C1:F7:17:96:68 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bAlGwIGzK-hIywDY2TLowfcXlmg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/c8dc11-90ef-487e-a073-df2bbc9d0473/1/bAlGwIGzK-hIywDY2TLowfcXlmg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 29:9d:9d:f9:55:05:2f:83:90:09:67:97:c8:8e:58:a9:35:7c: 41:4b:74:5d:5f:a8:5d:a3:91:bf:70:e7:cb:65:7b:fe:d1:79: 79:ec:2d:9f:2c:c8:3b:fc:dc:36:21:54:b0:ec:b6:d4:88:a9: f6:c3:37:2e:e7:03:8d:53:69:19:a8:76:32:b1:dd:40:71:c0: 69:fd:7e:f5:b4:45:7e:90:bb:5d:2c:b2:c5:b0:66:d7:46:e2: ae:da:20:f1:ad:ca:16:1c:5e:55:ed:63:69:67:e0:a0:b3:58: e5:21:98:f9:71:a8:14:a8:d6:9e:e0:a6:ce:81:a3:f9:f7:61: 05:8d:07:5a:b7:08:76:bc:0c:17:5c:e3:8c:46:aa:e9:0a:7a: e8:08:bd:ac:5b:00:a0:4d:b0:c4:e2:00:b0:34:dc:2e:3e:09: cc:3f:5f:71:25:ec:b2:f1:6f:68:50:87:8e:4c:63:a5:d7:69: 4c:d1:3b:ce:ad:35:76:86:20:d6:27:2a:78:aa:81:c6:2a:66: 79:8f:3a:2a:83:16:25:a9:93:94:cc:5d:41:c1:23:3b:e4:71: 64:e7:be:c6:b1:03:d3:a5:5c:23:78:9b:dd:67:11:53:73:e1: d7:40:e0:9c:cf:ee:7a:76:47:b3:99:d7:e2:17:6c:0b:a2:63: 37:d2:32:e9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLjxijxv/9thykG9Xv2SfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZjMDk0NmMwODFiMzJiZTg0OGNiMDBkOGQ5MzJlOGMxZjcx Nzk2NjgwHhcNMjUxMjA2MDEwMjEwWhcNMjUxMjA3MDEwMjEwWjAzMTEwLwYDVQQD EyhjZTc5MzhlMThmYTg4ODNkZWFhMzZjZWQxMThkMjhhZThkYzRhYzMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7vSEk4RzM+7eanfzpt+u3GTQ+wV7 tWp70BClTF3eGQ9+6l6QsUaBqUdIfyzihot7FrqzmuZUIP9FNLU/rXVXQMBIfJ0S uMjd335tJfm3xVBQFgtH1oXgv/zV1owN36w5q7FCRIvOaJyLNIV4T8Q/uuRBSpdL rh1V9HKowF95ZR7M/+srasBgbDrsa+dWTNExxLmiAbns9JaylV2J+mIvFrjgGgjD 94M7vS46OeR1p1t7vhsBqQLvsMbO89PkZty0ULNQblozmt+dPmEY1RZGRWM0JrNr cAER1VCU/PKGtXW44lZF5cBfBauikFh8ycnF9g9+mah5Eyvj410O5FkiFwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM55OOGPqIg96qNs7RGNKK6NxKwwMB8GA1UdIwQY MBaAFGwJRsCBsyvoSMsA2Nky6MH3F5ZoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYkFsR3dJR3pLLWhJeXdEWTJUTG93ZmNYbG1nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZC9jOGRjMTEtOTBlZi00ODdlLWEwNzMt ZGYyYmJjOWQwNDczLzEvYkFsR3dJR3pLLWhJeXdEWTJUTG93ZmNYbG1nLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83ZC9jOGRjMTEtOTBlZi00ODdlLWEwNzMtZGYyYmJjOWQwNDcz LzEvYkFsR3dJR3pLLWhJeXdEWTJUTG93ZmNYbG1nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKZ2d+VUF L4OQCWeXyI5YqTV8QUt0XV+oXaORv3Dny2V7/tF5eewtnyzIO/zcNiFUsOy21Iip 9sM3LucDjVNpGah2MrHdQHHAaf1+9bRFfpC7XSyyxbBm10birtog8a3KFhxeVe1j aWfgoLNY5SGY+XGoFKjWnuCmzoGj+fdhBY0HWrcIdrwMF1zjjEaq6Qp66Ai9rFsA oE2wxOIAsDTcLj4JzD9fcSXssvFvaFCHjkxjpddpTNE7zq01doYg1icqeKqBxipm eY86KoMWJamTlMxdQcEjO+RxZOe+xrED06VcI3ib3WcRU3Ph10DgnM/uenZHs5nX 4hdsC6JjN9Iy6Q== -----END CERTIFICATE-----Generated at Sat Dec 6 08:27:56 2025 by rpki-client