This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/9157d6-1f05-4510-8037-78c0c02f78a2/1/BnIOtAfVsbmyRFO4Jsqm8HTn0S0.mft File: BnIOtAfVsbmyRFO4Jsqm8HTn0S0.mft (raw, json) Hash identifier: JfDhccLpUXBUd64FXM1kirNFc7xF+K0nM5rEcFzwGIM= Subject key identifier: 0E:A0:BC:46:2D:44:1A:E6:56:59:B1:1F:4A:02:04:8D:A7:D4:F9:74 Authority key identifier: 06:72:0E:B4:07:D5:B1:B9:B2:44:53:B8:26:CA:A6:F0:74:E7:D1:2D Certificate issuer: /CN=06720eb407d5b1b9b24453b826caa6f074e7d12d Certificate serial: 019AF087FC9A0A25CF8FA6750766E90BE087 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BnIOtAfVsbmyRFO4Jsqm8HTn0S0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/9157d6-1f05-4510-8037-78c0c02f78a2/1/BnIOtAfVsbmyRFO4Jsqm8HTn0S0.mft Manifest number: 19 Signing time: Fri 05 Dec 2025 22:00:35 +0000 Manifest this update: Fri 05 Dec 2025 22:00:35 +0000 Manifest next update: Sat 06 Dec 2025 22:00:35 +0000 Files and hashes: 1: BnIOtAfVsbmyRFO4Jsqm8HTn0S0.crl (hash: Hg2nATVWywthA2fHE1QYI62k0lKDnT4/XL02zla9X4s=) 2: YilzzMVV-0x5qapa4mbtid_7Da8.asa (hash: dgX9O+nd+4dFGepaY4CTBmSILEPcJwUIKJ6bca1Tf3k=) 3: ZP2ggnguw-XEGATrr9PvJHdpJXI.roa (hash: Duuc/yLu6wD1kGS4ffozSoGNCQM0JNj0FjDWGSYtKmw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/9157d6-1f05-4510-8037-78c0c02f78a2/1/BnIOtAfVsbmyRFO4Jsqm8HTn0S0.crl rsync://rpki.ripe.net/repository/DEFAULT/89/9157d6-1f05-4510-8037-78c0c02f78a2/1/BnIOtAfVsbmyRFO4Jsqm8HTn0S0.mft rsync://rpki.ripe.net/repository/DEFAULT/BnIOtAfVsbmyRFO4Jsqm8HTn0S0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 20:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:87:fc:9a:0a:25:cf:8f:a6:75:07:66:e9:0b:e0:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=06720eb407d5b1b9b24453b826caa6f074e7d12d Validity Not Before: Dec 5 22:00:35 2025 GMT Not After : Dec 6 22:00:35 2025 GMT Subject: CN=0ea0bc462d441ae65659b11f4a02048da7d4f974 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:80:4f:9f:a3:ef:9f:83:cb:e1:8a:6e:d8:27: 89:a7:ad:3b:5f:dc:27:a2:8d:9e:ec:2d:69:ee:9a: b6:8b:c5:1e:d2:b7:73:28:e0:8e:04:dd:f9:ca:d9: 8c:3d:6a:8c:39:ae:c1:58:3f:34:b2:10:c5:a8:19: 7c:69:28:cf:12:9e:3e:5f:35:64:71:0d:11:5d:e8: 91:bf:64:ea:56:8d:86:7d:43:6d:4c:73:29:23:6b: b7:40:11:48:47:2a:72:7c:28:e4:b6:66:04:93:9b: 7e:cc:76:4c:2a:cd:8a:09:52:a7:9c:05:91:1e:98: 0d:c6:50:6b:1b:c2:69:b9:41:f4:c2:df:0c:08:75: 13:f9:00:72:df:97:ff:1f:92:bc:54:90:8b:6d:e6: 7b:5b:51:81:56:54:3b:e8:3a:46:7d:0b:05:8d:08: 08:09:9d:35:9e:dd:07:be:e6:ac:7c:07:30:45:f8: 42:e9:61:ba:e7:42:73:9b:c4:0c:df:cc:ee:82:ba: e8:71:1d:29:8d:a4:34:d5:2b:ac:92:d2:29:64:7b: d1:d1:4a:e1:2e:3c:31:d1:ed:d7:80:19:00:12:b4: 4a:d2:0c:da:ae:fc:27:e2:32:df:e0:bb:cf:b0:f6: 4a:bb:05:fe:2f:95:bb:4d:3d:65:bb:de:b2:e2:79: ce:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:A0:BC:46:2D:44:1A:E6:56:59:B1:1F:4A:02:04:8D:A7:D4:F9:74 X509v3 Authority Key Identifier: keyid:06:72:0E:B4:07:D5:B1:B9:B2:44:53:B8:26:CA:A6:F0:74:E7:D1:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BnIOtAfVsbmyRFO4Jsqm8HTn0S0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/9157d6-1f05-4510-8037-78c0c02f78a2/1/BnIOtAfVsbmyRFO4Jsqm8HTn0S0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/89/9157d6-1f05-4510-8037-78c0c02f78a2/1/BnIOtAfVsbmyRFO4Jsqm8HTn0S0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b3:95:62:56:32:f6:35:68:5b:4f:c9:35:e0:2c:9d:87:86:b3: 43:57:d2:9a:41:6c:2e:36:ae:4d:a1:29:58:94:39:76:25:b8: ca:24:ed:67:09:40:48:12:a7:fa:91:bc:5c:35:13:ec:64:b8: 9d:9f:66:5d:f8:10:02:0b:a8:87:a8:8f:cd:05:47:ff:d5:43: 8e:b1:15:a6:db:31:7a:15:7f:b0:40:bd:f0:a9:72:fb:b7:57: f4:6f:91:90:c2:31:fc:85:10:1a:bc:e2:60:5a:2c:e5:a8:24: fc:08:d5:c3:e5:74:05:89:6f:a6:35:2a:a5:03:25:4d:80:66: d9:7c:b9:59:5a:16:0e:cb:7f:c6:a2:3e:a6:d9:fa:a8:51:58: 64:f4:b8:8f:64:2e:90:d9:1b:a9:2a:14:e8:ad:96:a5:e1:e8: 6a:3c:99:6f:3e:c4:61:7d:a9:38:11:4c:85:1a:00:35:c4:1a: ad:d1:b1:f8:63:45:0f:09:76:66:d2:d8:7d:8d:2c:a3:a4:f9: 9f:fb:e0:de:35:85:af:98:57:e6:bb:e3:56:d9:1c:19:44:76: e0:95:60:d1:9e:aa:05:84:02:e2:fd:40:b8:75:c8:66:cc:f8: a3:33:58:d9:23:a9:d2:b3:3d:c7:33:0d:0e:e4:22:f2:46:33: 0e:1b:ac:24 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwh/yaCiXPj6Z1B2bpC+CHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA2NzIwZWI0MDdkNWIxYjliMjQ0NTNiODI2Y2FhNmYwNzRl N2QxMmQwHhcNMjUxMjA1MjIwMDM1WhcNMjUxMjA2MjIwMDM1WjAzMTEwLwYDVQQD EygwZWEwYmM0NjJkNDQxYWU2NTY1OWIxMWY0YTAyMDQ4ZGE3ZDRmOTc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0oBPn6Pvn4PL4Ypu2CeJp607X9wn oo2e7C1p7pq2i8Ue0rdzKOCOBN35ytmMPWqMOa7BWD80shDFqBl8aSjPEp4+XzVk cQ0RXeiRv2TqVo2GfUNtTHMpI2u3QBFIRypyfCjktmYEk5t+zHZMKs2KCVKnnAWR HpgNxlBrG8JpuUH0wt8MCHUT+QBy35f/H5K8VJCLbeZ7W1GBVlQ76DpGfQsFjQgI CZ01nt0HvuasfAcwRfhC6WG650Jzm8QM38zugrrocR0pjaQ01SusktIpZHvR0Urh Ljwx0e3XgBkAErRK0gzarvwn4jLf4LvPsPZKuwX+L5W7TT1lu96y4nnOtQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA6gvEYtRBrmVlmxH0oCBI2n1Pl0MB8GA1UdIwQY MBaAFAZyDrQH1bG5skRTuCbKpvB059EtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQm5JT3RBZlZzYm15UkZPNEpzcW04SFRuMFMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS85MTU3ZDYtMWYwNS00NTEwLTgwMzct NzhjMGMwMmY3OGEyLzEvQm5JT3RBZlZzYm15UkZPNEpzcW04SFRuMFMwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OS85MTU3ZDYtMWYwNS00NTEwLTgwMzctNzhjMGMwMmY3OGEy LzEvQm5JT3RBZlZzYm15UkZPNEpzcW04SFRuMFMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAs5ViVjL2 NWhbT8k14Cydh4azQ1fSmkFsLjauTaEpWJQ5diW4yiTtZwlASBKn+pG8XDUT7GS4 nZ9mXfgQAguoh6iPzQVH/9VDjrEVptsxehV/sEC98Kly+7dX9G+RkMIx/IUQGrzi YFos5agk/AjVw+V0BYlvpjUqpQMlTYBm2Xy5WVoWDst/xqI+ptn6qFFYZPS4j2Qu kNkbqSoU6K2WpeHoajyZbz7EYX2pOBFMhRoANcQardGx+GNFDwl2ZtLYfY0so6T5 n/vg3jWFr5hX5rvjVtkcGUR24JVg0Z6qBYQC4v1AuHXIZsz4ozNY2SOp0rM9xzMN DuQi8kYzDhusJA== -----END CERTIFICATE-----Generated at Sat Dec 6 05:42:11 2025 by rpki-client