This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/a5b368-3313-4132-9897-d017957ea39e/1/BLHnVu2xw70vV2afWCv2qVG4P0g.mft File: BLHnVu2xw70vV2afWCv2qVG4P0g.mft (raw, json) Hash identifier: EBSlLkk1A0E5MPcMqiMWqZHJsPjyyCICJYfbOZfLevU= Subject key identifier: 39:49:37:19:D3:6B:A9:5B:6F:D1:0D:77:0B:85:8F:C3:45:32:30:A9 Authority key identifier: 04:B1:E7:56:ED:B1:C3:BD:2F:57:66:9F:58:2B:F6:A9:51:B8:3F:48 Certificate issuer: /CN=04b1e756edb1c3bd2f57669f582bf6a951b83f48 Certificate serial: 019AF50A5C4DF6EF5098CF4A2912855D017B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BLHnVu2xw70vV2afWCv2qVG4P0g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/a5b368-3313-4132-9897-d017957ea39e/1/BLHnVu2xw70vV2afWCv2qVG4P0g.mft Manifest number: 1763 Signing time: Sat 06 Dec 2025 19:01:28 +0000 Manifest this update: Sat 06 Dec 2025 19:01:28 +0000 Manifest next update: Sun 07 Dec 2025 19:01:28 +0000 Files and hashes: 1: BLHnVu2xw70vV2afWCv2qVG4P0g.crl (hash: Iuu2uql/iufluSIWA9o1WKW5x3vzGrzcKKAo+OSd1Q0=) 2: RK9xACY5XxzSQaeBbJjDwmPGdFw.roa (hash: Z9/aIdSLDIxdeAqdfXn6u/SeZl9dpZ2YPR093LrIQCs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/a5b368-3313-4132-9897-d017957ea39e/1/BLHnVu2xw70vV2afWCv2qVG4P0g.crl rsync://rpki.ripe.net/repository/DEFAULT/7f/a5b368-3313-4132-9897-d017957ea39e/1/BLHnVu2xw70vV2afWCv2qVG4P0g.mft rsync://rpki.ripe.net/repository/DEFAULT/BLHnVu2xw70vV2afWCv2qVG4P0g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 19:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:0a:5c:4d:f6:ef:50:98:cf:4a:29:12:85:5d:01:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04b1e756edb1c3bd2f57669f582bf6a951b83f48 Validity Not Before: Dec 6 19:01:28 2025 GMT Not After : Dec 7 19:01:28 2025 GMT Subject: CN=39493719d36ba95b6fd10d770b858fc3453230a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:4c:a2:48:1d:69:96:e0:94:5a:be:4a:fa:c9: 1b:a8:d6:31:b8:46:bf:ed:8f:7d:0c:de:fc:42:da: 37:be:b0:66:d6:9c:e5:d1:bc:d7:df:19:ad:7d:fd: f8:f8:b2:96:45:89:f8:8a:87:3b:43:72:15:b7:ab: 03:9c:cc:24:08:9e:6c:3a:23:eb:d8:e5:1c:34:62: 30:96:70:b3:71:4a:cc:86:86:8e:75:c1:d7:74:fb: bc:a5:a4:dd:fb:fd:b0:2a:ed:96:35:16:88:3f:cb: eb:fb:6e:12:f0:76:3b:8e:ea:ca:37:b2:c6:b8:12: be:54:97:57:4e:c5:fe:b8:02:38:51:86:b2:76:af: a7:a8:72:68:2f:96:c2:de:6c:b2:33:0a:ce:39:1f: c9:e7:93:40:83:32:b4:88:bf:1f:49:9f:8c:d6:da: d9:08:44:b4:d6:bc:63:34:30:1b:89:fc:66:b2:be: 4b:53:9f:63:e6:ef:ba:04:51:83:4f:1d:32:e3:c8: 80:a4:09:1e:95:f3:78:dc:c9:1b:35:38:87:6c:30: a6:23:dc:04:1a:21:ac:5b:c1:3c:49:7b:5a:01:15: 07:d3:99:84:fa:0d:49:84:e7:89:a8:29:a6:ed:e1: dc:fe:95:96:58:ca:5f:74:be:4a:ad:57:35:f1:7f: 35:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:49:37:19:D3:6B:A9:5B:6F:D1:0D:77:0B:85:8F:C3:45:32:30:A9 X509v3 Authority Key Identifier: keyid:04:B1:E7:56:ED:B1:C3:BD:2F:57:66:9F:58:2B:F6:A9:51:B8:3F:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BLHnVu2xw70vV2afWCv2qVG4P0g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/a5b368-3313-4132-9897-d017957ea39e/1/BLHnVu2xw70vV2afWCv2qVG4P0g.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/a5b368-3313-4132-9897-d017957ea39e/1/BLHnVu2xw70vV2afWCv2qVG4P0g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 64:e2:3c:cb:e7:16:35:50:1f:bc:d1:e4:45:17:ad:6a:7b:36: ce:9e:fe:9b:9a:69:33:5e:3d:ba:56:a9:29:7c:79:91:a8:d3: 9c:f6:82:eb:7a:25:a2:b8:ae:ce:f7:e8:24:69:90:46:74:2d: 77:58:0a:0e:14:8a:03:6f:13:08:2d:d4:77:74:1e:18:0c:d3: ad:eb:8f:6d:4b:b5:1a:a5:3b:76:1f:12:1a:c9:42:7e:17:79: 47:d1:b2:a2:e5:c9:a3:30:ab:35:c8:8d:09:5d:b7:07:64:28: d0:8c:a5:06:07:d6:e2:99:7f:47:18:4c:e2:64:28:b4:99:b0: 27:fb:ff:16:49:2b:24:85:8a:3a:77:54:b0:3b:a5:62:19:ca: 91:ac:95:53:f1:ad:c9:8b:1f:96:35:a9:d4:43:80:dc:d0:98: 27:01:c2:a9:03:21:0f:19:ae:41:b0:5c:9a:57:f0:49:23:69: 7c:05:47:b3:b0:84:b6:a2:1a:d9:2a:1b:fc:ae:97:55:1b:a1: a7:87:6d:47:32:27:ad:48:5f:91:31:69:45:6e:3e:93:f3:c0: de:8c:4f:62:fc:d0:d7:fe:8e:17:e9:bd:12:9e:ff:86:bb:bd: f1:d0:d1:09:bd:ad:9a:85:a5:40:c9:a0:32:58:a1:2b:1c:34: bb:75:73:7c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1ClxN9u9QmM9KKRKFXQF7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA0YjFlNzU2ZWRiMWMzYmQyZjU3NjY5ZjU4MmJmNmE5NTFi ODNmNDgwHhcNMjUxMjA2MTkwMTI4WhcNMjUxMjA3MTkwMTI4WjAzMTEwLwYDVQQD EygzOTQ5MzcxOWQzNmJhOTViNmZkMTBkNzcwYjg1OGZjMzQ1MzIzMGE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApUyiSB1pluCUWr5K+skbqNYxuEa/ 7Y99DN78Qto3vrBm1pzl0bzX3xmtff34+LKWRYn4ioc7Q3IVt6sDnMwkCJ5sOiPr 2OUcNGIwlnCzcUrMhoaOdcHXdPu8paTd+/2wKu2WNRaIP8vr+24S8HY7jurKN7LG uBK+VJdXTsX+uAI4UYaydq+nqHJoL5bC3myyMwrOOR/J55NAgzK0iL8fSZ+M1trZ CES01rxjNDAbifxmsr5LU59j5u+6BFGDTx0y48iApAkelfN43MkbNTiHbDCmI9wE GiGsW8E8SXtaARUH05mE+g1JhOeJqCmm7eHc/pWWWMpfdL5KrVc18X81UwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDlJNxnTa6lbb9ENdwuFj8NFMjCpMB8GA1UdIwQY MBaAFASx51btscO9L1dmn1gr9qlRuD9IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQkxIblZ1Mnh3NzB2VjJhZldDdjJxVkc0UDBnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi9hNWIzNjgtMzMxMy00MTMyLTk4OTct ZDAxNzk1N2VhMzllLzEvQkxIblZ1Mnh3NzB2VjJhZldDdjJxVkc0UDBnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Zi9hNWIzNjgtMzMxMy00MTMyLTk4OTctZDAxNzk1N2VhMzll LzEvQkxIblZ1Mnh3NzB2VjJhZldDdjJxVkc0UDBnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZOI8y+cW NVAfvNHkRRetans2zp7+m5ppM149ulapKXx5kajTnPaC63oloriuzvfoJGmQRnQt d1gKDhSKA28TCC3Ud3QeGAzTreuPbUu1GqU7dh8SGslCfhd5R9GyouXJozCrNciN CV23B2Qo0IylBgfW4pl/RxhM4mQotJmwJ/v/FkkrJIWKOndUsDulYhnKkayVU/Gt yYsfljWp1EOA3NCYJwHCqQMhDxmuQbBcmlfwSSNpfAVHs7CEtqIa2Sob/K6XVRuh p4dtRzInrUhfkTFpRW4+k/PA3oxPYvzQ1/6OF+m9Ep7/hru98dDRCb2tmoWlQMmg MlihKxw0u3VzfA== -----END CERTIFICATE-----Generated at Sun Dec 7 01:49:54 2025 by rpki-client