This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/2bfa6b-baa8-4c8c-9bc6-7aa6eb012190/1/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.mft File: bwYEdAiGBuxO6O7XxBtpQ_iaCb0.mft (raw, json) Hash identifier: ni+1Wpm00Xf9tH1Iqlop5dnUzMozIAFk1BJjpN81XJE= Subject key identifier: CA:DE:72:F0:56:AC:48:0F:C0:41:C7:F9:80:43:B9:2A:E9:E4:6D:C3 Authority key identifier: 6F:06:04:74:08:86:06:EC:4E:E8:EE:D7:C4:1B:69:43:F8:9A:09:BD Certificate issuer: /CN=6f060474088606ec4ee8eed7c41b6943f89a09bd Certificate serial: 019B32D6E3125313B00FF271B4ACA80CEEB6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/2bfa6b-baa8-4c8c-9bc6-7aa6eb012190/1/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.mft Manifest number: 0AC7 Signing time: Thu 18 Dec 2025 19:01:42 +0000 Manifest this update: Thu 18 Dec 2025 19:01:42 +0000 Manifest next update: Fri 19 Dec 2025 19:01:42 +0000 Files and hashes: 1: bwYEdAiGBuxO6O7XxBtpQ_iaCb0.crl (hash: xOF9OdtY7FVmTNas5jRLN9kh2y0XUG/HdOJ3aCdM3Eo=) 2: xfilALq9xVm7LJX_uaRRDqm1ZX0.roa (hash: o3xsXXS0G1bR6xk5CmXK470ksv+YeZHYJ06DDMgu6J0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/2bfa6b-baa8-4c8c-9bc6-7aa6eb012190/1/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.crl rsync://rpki.ripe.net/repository/DEFAULT/82/2bfa6b-baa8-4c8c-9bc6-7aa6eb012190/1/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.mft rsync://rpki.ripe.net/repository/DEFAULT/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 13:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:32:d6:e3:12:53:13:b0:0f:f2:71:b4:ac:a8:0c:ee:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f060474088606ec4ee8eed7c41b6943f89a09bd Validity Not Before: Dec 18 19:01:42 2025 GMT Not After : Dec 19 19:01:42 2025 GMT Subject: CN=cade72f056ac480fc041c7f98043b92ae9e46dc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:14:7e:1e:e2:b8:17:0b:84:f6:26:a4:6b:4f: bd:09:60:e3:4c:b3:06:64:1e:af:d6:40:68:b6:9b: bf:8e:06:77:98:ee:e4:37:57:78:55:ba:03:5c:e2: 2c:96:95:04:99:41:d5:1f:8f:71:73:58:06:02:6e: ee:86:80:38:b3:97:29:39:38:9e:60:bd:3d:bf:6c: f7:31:a0:98:15:ff:7e:f3:73:83:69:40:70:fb:75: 79:b6:bc:35:c6:88:31:6f:66:0e:f7:42:86:8f:1f: eb:9d:67:63:db:85:ac:3e:59:84:8b:04:11:47:0c: 7c:41:eb:bd:2a:01:6f:eb:d1:c8:23:1a:b0:d0:34: dc:0b:62:49:c0:3c:c8:5c:16:2e:6f:ea:6f:95:8c: dc:40:7e:f6:ba:53:ec:f4:3a:4d:3f:3f:95:7d:b1: 10:9a:71:0a:45:f1:c9:d5:f1:cc:cf:fe:44:f3:af: c8:48:e6:24:35:c8:b4:16:6a:93:ad:53:be:cd:ef: 86:7e:17:81:d8:81:3c:2c:a9:73:4f:46:dc:fc:72: d5:a5:e1:fa:b3:e1:1d:9b:20:dc:6e:f1:09:86:2a: 07:11:dd:52:cc:ab:8b:f6:cc:03:e5:bf:af:ec:b5: 3f:50:6c:51:b0:c9:d3:8e:17:49:1b:5a:65:2b:f2: ad:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:DE:72:F0:56:AC:48:0F:C0:41:C7:F9:80:43:B9:2A:E9:E4:6D:C3 X509v3 Authority Key Identifier: keyid:6F:06:04:74:08:86:06:EC:4E:E8:EE:D7:C4:1B:69:43:F8:9A:09:BD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/2bfa6b-baa8-4c8c-9bc6-7aa6eb012190/1/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/82/2bfa6b-baa8-4c8c-9bc6-7aa6eb012190/1/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption e8:d0:9d:ad:80:b7:2e:e0:96:33:69:73:09:e8:15:63:62:04: 15:c6:4f:a7:63:20:0f:85:7b:38:ba:0d:58:33:a7:49:d0:ed: d3:32:84:e2:08:55:46:ed:fe:0f:14:2b:7d:ed:d5:a1:89:1d: 7a:db:0b:9a:67:a3:0b:4c:c5:52:62:b9:c4:f1:a1:e4:96:28: 22:ae:61:7f:94:b6:74:dc:af:78:dd:77:2a:e6:80:1f:3b:a7: 65:69:4a:d3:00:ff:0c:a2:1a:a4:c6:b4:ad:5d:86:4a:66:78: 68:e1:9a:a6:ff:03:1c:02:17:ee:a8:25:1b:2c:09:9e:39:a2: b3:35:fc:89:a5:73:44:11:a0:2e:0f:f7:1d:91:05:e1:b5:69: 70:ae:77:f6:ac:c4:7b:ab:1e:66:3b:03:ba:e3:4c:75:76:53: 46:77:58:44:0a:a0:d1:57:13:e7:a8:16:d9:05:02:92:03:42: e6:9d:88:12:3d:00:20:80:6f:58:73:8f:2e:02:ed:4b:40:54: 01:6e:b7:c9:f6:66:48:69:55:0a:40:22:22:2b:f1:fa:09:0d: db:0e:6a:8d:0d:76:f3:cf:77:34:fd:5d:12:9d:6b:f4:84:f9: 0f:ba:29:4a:99:fa:05:c4:63:3b:2b:66:de:2e:23:36:b1:53: b8:6c:b4:fd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsy1uMSUxOwD/JxtKyoDO62MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmMDYwNDc0MDg4NjA2ZWM0ZWU4ZWVkN2M0MWI2OTQzZjg5 YTA5YmQwHhcNMjUxMjE4MTkwMTQyWhcNMjUxMjE5MTkwMTQyWjAzMTEwLwYDVQQD EyhjYWRlNzJmMDU2YWM0ODBmYzA0MWM3Zjk4MDQzYjkyYWU5ZTQ2ZGMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2BR+HuK4FwuE9iaka0+9CWDjTLMG ZB6v1kBotpu/jgZ3mO7kN1d4VboDXOIslpUEmUHVH49xc1gGAm7uhoA4s5cpOTie YL09v2z3MaCYFf9+83ODaUBw+3V5trw1xogxb2YO90KGjx/rnWdj24WsPlmEiwQR Rwx8Qeu9KgFv69HIIxqw0DTcC2JJwDzIXBYub+pvlYzcQH72ulPs9DpNPz+VfbEQ mnEKRfHJ1fHMz/5E86/ISOYkNci0FmqTrVO+ze+GfheB2IE8LKlzT0bc/HLVpeH6 s+EdmyDcbvEJhioHEd1SzKuL9swD5b+v7LU/UGxRsMnTjhdJG1plK/KteQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMrecvBWrEgPwEHH+YBDuSrp5G3DMB8GA1UdIwQY MBaAFG8GBHQIhgbsTuju18QbaUP4mgm9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYndZRWRBaUdCdXhPNk83WHhCdHBRX2lhQ2IwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Mi8yYmZhNmItYmFhOC00YzhjLTliYzYt N2FhNmViMDEyMTkwLzEvYndZRWRBaUdCdXhPNk83WHhCdHBRX2lhQ2IwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Mi8yYmZhNmItYmFhOC00YzhjLTliYzYtN2FhNmViMDEyMTkw LzEvYndZRWRBaUdCdXhPNk83WHhCdHBRX2lhQ2IwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA6NCdrYC3 LuCWM2lzCegVY2IEFcZPp2MgD4V7OLoNWDOnSdDt0zKE4ghVRu3+DxQrfe3VoYkd etsLmmejC0zFUmK5xPGh5JYoIq5hf5S2dNyveN13KuaAHzunZWlK0wD/DKIapMa0 rV2GSmZ4aOGapv8DHAIX7qglGywJnjmiszX8iaVzRBGgLg/3HZEF4bVpcK539qzE e6seZjsDuuNMdXZTRndYRAqg0VcT56gW2QUCkgNC5p2IEj0AIIBvWHOPLgLtS0BU AW63yfZmSGlVCkAiIivx+gkN2w5qjQ128893NP1dEp1r9IT5D7opSpn6BcRjOytm 3i4jNrFTuGy0/Q== -----END CERTIFICATE-----Generated at Thu Dec 18 23:10:03 2025 by rpki-client