This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/bdecaa-d141-46b2-9d40-1331e651c79f/1/BcojF2aaRo1QmoqhkGvvp1v5wgE.mft File: BcojF2aaRo1QmoqhkGvvp1v5wgE.mft (raw, json) Hash identifier: MxaKUCTztqC5AeNzLV7fk0POwQDDk77yjSZY1SXfxVw= Subject key identifier: 42:28:64:27:4E:E4:0C:F6:75:30:68:11:24:22:89:5A:15:85:BA:57 Authority key identifier: 05:CA:23:17:66:9A:46:8D:50:9A:8A:A1:90:6B:EF:A7:5B:F9:C2:01 Certificate issuer: /CN=05ca2317669a468d509a8aa1906befa75bf9c201 Certificate serial: 019B36B3F16197AF07F2538FF7E18D041C9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BcojF2aaRo1QmoqhkGvvp1v5wgE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/bdecaa-d141-46b2-9d40-1331e651c79f/1/BcojF2aaRo1QmoqhkGvvp1v5wgE.mft Manifest number: 0EBD Signing time: Fri 19 Dec 2025 13:02:00 +0000 Manifest this update: Fri 19 Dec 2025 13:02:00 +0000 Manifest next update: Sat 20 Dec 2025 13:02:00 +0000 Files and hashes: 1: BcojF2aaRo1QmoqhkGvvp1v5wgE.crl (hash: 4IU3qQLweFUq3A8e7w9wvGgMaZPQTdN3plsXm3VFe2g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/bdecaa-d141-46b2-9d40-1331e651c79f/1/BcojF2aaRo1QmoqhkGvvp1v5wgE.crl rsync://rpki.ripe.net/repository/DEFAULT/84/bdecaa-d141-46b2-9d40-1331e651c79f/1/BcojF2aaRo1QmoqhkGvvp1v5wgE.mft rsync://rpki.ripe.net/repository/DEFAULT/BcojF2aaRo1QmoqhkGvvp1v5wgE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 07:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:36:b3:f1:61:97:af:07:f2:53:8f:f7:e1:8d:04:1c:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05ca2317669a468d509a8aa1906befa75bf9c201 Validity Not Before: Dec 19 13:02:00 2025 GMT Not After : Dec 20 13:02:00 2025 GMT Subject: CN=422864274ee40cf6753068112422895a1585ba57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:1e:18:d2:89:cf:78:36:ab:9e:dc:87:a0:d4: 1f:0f:4b:51:d4:6d:31:ff:c1:61:b2:d5:ca:2e:ff: a4:dd:9d:df:7b:d2:3f:11:7a:76:6e:4b:9d:fe:47: 8e:1a:0d:32:fc:6a:de:49:ea:ac:1d:0e:9f:d9:70: 64:23:fd:fd:07:dd:0b:76:ff:7b:ee:82:de:bd:b7: ec:50:e4:cf:7c:aa:81:3b:9e:1b:c2:b9:a3:6b:da: 69:75:d4:fd:32:e5:50:db:63:2e:77:54:df:50:d9: 67:62:12:5e:b4:d5:3a:68:ed:f0:23:01:3c:ee:1f: 6d:24:48:2f:bf:f4:2d:85:6c:25:e3:6b:c0:10:5a: 13:86:a1:ea:e2:e4:ce:ee:2b:e4:f5:11:ba:68:08: e1:ba:da:3f:c2:5b:fa:c9:37:56:8b:86:31:a1:4b: 11:84:f0:c9:69:c8:0d:f9:30:5b:c7:25:16:ba:6b: 0b:52:ec:55:1e:4d:d5:0c:f6:15:a3:81:c0:26:ef: e9:3c:01:2b:10:07:94:06:bf:4d:49:35:01:e8:27: 09:d4:ba:36:39:35:16:44:53:d4:94:45:5c:00:9e: a1:ec:52:b5:e4:e7:cf:01:1a:67:6b:18:5a:72:08: 47:56:2e:cf:19:7f:77:35:f5:39:0f:9f:d8:06:93: 8b:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:28:64:27:4E:E4:0C:F6:75:30:68:11:24:22:89:5A:15:85:BA:57 X509v3 Authority Key Identifier: keyid:05:CA:23:17:66:9A:46:8D:50:9A:8A:A1:90:6B:EF:A7:5B:F9:C2:01 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BcojF2aaRo1QmoqhkGvvp1v5wgE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/bdecaa-d141-46b2-9d40-1331e651c79f/1/BcojF2aaRo1QmoqhkGvvp1v5wgE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/84/bdecaa-d141-46b2-9d40-1331e651c79f/1/BcojF2aaRo1QmoqhkGvvp1v5wgE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4b:2e:93:be:ab:08:24:ec:af:8f:ac:6a:d2:8e:aa:30:ad:f5: be:eb:fd:04:ac:30:2f:7b:4d:fd:65:69:4f:a9:c0:48:6a:6c: ae:5d:90:37:15:5b:8e:40:5c:c3:aa:71:c4:6b:e3:ac:e5:0f: e1:b8:f9:31:b2:c9:d9:c8:2d:bc:46:ae:75:bb:6c:b2:ef:2f: 57:76:20:f3:8d:1a:96:71:8c:a4:5e:18:c8:58:4b:ee:d0:b7: c5:c6:01:8f:5e:49:4b:36:a2:17:a7:b6:d5:35:05:ea:c8:5b: 94:22:d3:d0:4d:87:f9:46:a7:c7:78:df:1e:aa:c1:d4:e6:5c: 94:0c:af:67:6d:1c:a8:96:9e:27:bd:b0:09:e6:67:d1:9c:65: 3e:7e:ff:b2:59:57:04:b2:99:66:10:95:82:0d:d6:5d:c9:ea: 1d:d1:73:43:63:23:92:de:7a:7a:e0:ca:77:aa:87:77:a0:e5: 73:0a:91:00:39:b5:ab:4b:83:a9:c3:d5:9b:22:ea:8e:7c:fc: b6:93:e5:05:8a:d9:10:e4:91:10:70:86:d8:bf:1a:7c:e2:be: b1:03:aa:f8:19:e6:6d:4d:40:96:56:60:c7:27:a5:68:20:7b: 61:4f:fb:34:9a:df:1f:ed:a8:45:e3:c9:92:18:75:0d:dc:9e: 22:0f:cb:a9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs2s/Fhl68H8lOP9+GNBBydMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1Y2EyMzE3NjY5YTQ2OGQ1MDlhOGFhMTkwNmJlZmE3NWJm OWMyMDEwHhcNMjUxMjE5MTMwMjAwWhcNMjUxMjIwMTMwMjAwWjAzMTEwLwYDVQQD Eyg0MjI4NjQyNzRlZTQwY2Y2NzUzMDY4MTEyNDIyODk1YTE1ODViYTU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArR4Y0onPeDarntyHoNQfD0tR1G0x /8FhstXKLv+k3Z3fe9I/EXp2bkud/keOGg0y/GreSeqsHQ6f2XBkI/39B90Ldv97 7oLevbfsUOTPfKqBO54bwrmja9ppddT9MuVQ22Mud1TfUNlnYhJetNU6aO3wIwE8 7h9tJEgvv/QthWwl42vAEFoThqHq4uTO7ivk9RG6aAjhuto/wlv6yTdWi4YxoUsR hPDJacgN+TBbxyUWumsLUuxVHk3VDPYVo4HAJu/pPAErEAeUBr9NSTUB6CcJ1Lo2 OTUWRFPUlEVcAJ6h7FK15OfPARpnaxhacghHVi7PGX93NfU5D5/YBpOLtQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEIoZCdO5Az2dTBoESQiiVoVhbpXMB8GA1UdIwQY MBaAFAXKIxdmmkaNUJqKoZBr76db+cIBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQmNvakYyYWFSbzFRbW9xaGtHdnZwMXY1d2dFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC9iZGVjYWEtZDE0MS00NmIyLTlkNDAt MTMzMWU2NTFjNzlmLzEvQmNvakYyYWFSbzFRbW9xaGtHdnZwMXY1d2dFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84NC9iZGVjYWEtZDE0MS00NmIyLTlkNDAtMTMzMWU2NTFjNzlm LzEvQmNvakYyYWFSbzFRbW9xaGtHdnZwMXY1d2dFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASy6TvqsI JOyvj6xq0o6qMK31vuv9BKwwL3tN/WVpT6nASGpsrl2QNxVbjkBcw6pxxGvjrOUP 4bj5MbLJ2cgtvEaudbtssu8vV3Yg840alnGMpF4YyFhL7tC3xcYBj15JSzaiF6e2 1TUF6shblCLT0E2H+Uanx3jfHqrB1OZclAyvZ20cqJaeJ72wCeZn0ZxlPn7/sllX BLKZZhCVgg3WXcnqHdFzQ2Mjkt56euDKd6qHd6DlcwqRADm1q0uDqcPVmyLqjnz8 tpPlBYrZEOSREHCG2L8afOK+sQOq+BnmbU1AllZgxyelaCB7YU/7NJrfH+2oRePJ khh1DdyeIg/LqQ== -----END CERTIFICATE-----Generated at Fri Dec 19 15:06:11 2025 by rpki-client