This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/BSAFu2w9aGW4nBDzOwuZS3Svljs.mft File: BSAFu2w9aGW4nBDzOwuZS3Svljs.mft (raw, json) Hash identifier: SRDJCma7Hx0S8T/VtIUlTevX5fyNk57yihy39i5YOS8= Subject key identifier: C6:EF:86:BB:2A:85:02:A6:1C:6D:FF:ED:DC:61:C8:EC:B7:4F:5B:F1 Authority key identifier: 05:20:05:BB:6C:3D:68:65:B8:9C:10:F3:3B:0B:99:4B:74:AF:96:3B Certificate issuer: /CN=052005bb6c3d6865b89c10f33b0b994b74af963b Certificate serial: 019AF12F2B8B5D74B8B3801186E66852788D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BSAFu2w9aGW4nBDzOwuZS3Svljs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/BSAFu2w9aGW4nBDzOwuZS3Svljs.mft Manifest number: 1763 Signing time: Sat 06 Dec 2025 01:03:11 +0000 Manifest this update: Sat 06 Dec 2025 01:03:11 +0000 Manifest next update: Sun 07 Dec 2025 01:03:11 +0000 Files and hashes: 1: BSAFu2w9aGW4nBDzOwuZS3Svljs.crl (hash: YqjrmzjvZiva7/z8n6t6Wlf9y4/aOc0bIBcp31b29tg=) 2: ir1RS50i8n6-S2GFn7ZgzEJxgqk.roa (hash: c+oT6rdCWtyUihO7r4CT9JSZ34sdZ4eqqblxSm+cQz4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/BSAFu2w9aGW4nBDzOwuZS3Svljs.crl rsync://rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/BSAFu2w9aGW4nBDzOwuZS3Svljs.mft rsync://rpki.ripe.net/repository/DEFAULT/BSAFu2w9aGW4nBDzOwuZS3Svljs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:03:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2f:2b:8b:5d:74:b8:b3:80:11:86:e6:68:52:78:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=052005bb6c3d6865b89c10f33b0b994b74af963b Validity Not Before: Dec 6 01:03:11 2025 GMT Not After : Dec 7 01:03:11 2025 GMT Subject: CN=c6ef86bb2a8502a61c6dffeddc61c8ecb74f5bf1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:03:ae:ff:87:4c:64:7b:0e:72:66:c0:98:90: ae:25:c4:1c:e2:55:67:f2:ce:49:b3:4c:0e:62:1b: d7:2e:43:25:a6:5b:88:d5:0c:aa:6b:cf:75:88:d8: ad:31:c9:12:55:01:c1:9e:22:a0:a1:bc:e2:30:0e: a7:fc:44:6b:aa:6a:99:cb:ac:47:3a:e2:f4:6c:46: 21:98:40:e4:aa:99:67:c8:c7:ef:dc:e5:7e:f9:b3: 4b:ec:07:00:81:ce:2f:31:cb:d7:89:bc:f5:14:33: f1:f7:80:d6:de:f0:72:04:f3:92:57:1f:53:95:74: 48:b8:09:4e:1d:b9:c0:f7:d5:54:a6:e2:be:6f:73: a9:47:8a:ba:2b:a1:5b:b3:e2:d9:9e:20:ce:48:a0: bc:98:9a:b8:34:3d:15:7c:1a:c7:a3:0f:46:bd:60: d9:98:71:f0:20:11:de:3d:23:56:e6:67:51:b3:7b: 29:4c:e2:b7:4b:66:d9:88:f7:3f:cd:5e:f0:48:f3: 29:be:83:54:64:db:a1:51:c1:dd:16:56:70:f0:01: a8:e7:3d:5c:f5:9c:a9:bd:55:73:70:b2:4e:57:59: 42:b6:fc:ca:a7:7b:e3:35:09:cb:73:78:49:32:e6: 77:ac:0f:c8:f7:84:9d:ef:be:4b:4a:a5:57:f7:b4: a5:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:EF:86:BB:2A:85:02:A6:1C:6D:FF:ED:DC:61:C8:EC:B7:4F:5B:F1 X509v3 Authority Key Identifier: keyid:05:20:05:BB:6C:3D:68:65:B8:9C:10:F3:3B:0B:99:4B:74:AF:96:3B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BSAFu2w9aGW4nBDzOwuZS3Svljs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/BSAFu2w9aGW4nBDzOwuZS3Svljs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/BSAFu2w9aGW4nBDzOwuZS3Svljs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 16:15:7d:04:f2:c7:35:86:71:81:85:66:cc:04:c6:b2:16:ad: 79:5d:ab:9d:ee:f0:c4:37:78:5e:1e:cd:b3:4a:3b:98:d1:eb: 9b:40:28:9f:e6:29:44:68:37:b0:6a:84:fd:41:3f:25:d2:c1: b2:02:2e:76:13:60:3b:1c:9c:ce:1d:89:81:05:97:08:8c:05: ce:03:67:5c:0f:87:51:ef:7e:54:26:5d:4e:b2:b2:a5:63:be: d1:52:1e:11:66:17:9f:8f:d7:b1:ba:c3:7d:7e:0f:25:97:f6: 61:92:a2:02:61:bd:47:9c:d6:c7:4e:bb:d0:4c:6c:66:ab:3f: a0:65:da:8c:97:b2:56:48:32:cd:fe:35:c1:55:f6:87:c3:bb: 40:44:31:5f:61:e0:fb:ac:49:c0:03:e5:4c:0b:93:21:68:a3: e3:58:81:84:b5:b4:57:92:56:ac:f0:02:2d:b1:ff:8b:ac:34: bf:b3:c6:7d:cd:5f:72:06:db:53:73:0e:93:2b:d3:3f:9b:71: 26:33:79:78:3f:b4:65:3a:dc:d3:86:c1:a8:f0:70:08:f7:2d: 64:57:54:13:e8:30:38:5c:3e:8a:6c:a9:c5:bd:cd:1d:8b:c0: a9:47:38:26:d6:04:bd:50:1d:91:0f:af:02:dd:80:35:6e:d3: e8:fb:13:ca -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLyuLXXS4s4ARhuZoUniNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1MjAwNWJiNmMzZDY4NjViODljMTBmMzNiMGI5OTRiNzRh Zjk2M2IwHhcNMjUxMjA2MDEwMzExWhcNMjUxMjA3MDEwMzExWjAzMTEwLwYDVQQD EyhjNmVmODZiYjJhODUwMmE2MWM2ZGZmZWRkYzYxYzhlY2I3NGY1YmYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApgOu/4dMZHsOcmbAmJCuJcQc4lVn 8s5Js0wOYhvXLkMlpluI1Qyqa891iNitMckSVQHBniKgobziMA6n/ERrqmqZy6xH OuL0bEYhmEDkqplnyMfv3OV++bNL7AcAgc4vMcvXibz1FDPx94DW3vByBPOSVx9T lXRIuAlOHbnA99VUpuK+b3OpR4q6K6Fbs+LZniDOSKC8mJq4ND0VfBrHow9GvWDZ mHHwIBHePSNW5mdRs3spTOK3S2bZiPc/zV7wSPMpvoNUZNuhUcHdFlZw8AGo5z1c 9ZypvVVzcLJOV1lCtvzKp3vjNQnLc3hJMuZ3rA/I94Sd775LSqVX97Sl0QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMbvhrsqhQKmHG3/7dxhyOy3T1vxMB8GA1UdIwQY MBaAFAUgBbtsPWhluJwQ8zsLmUt0r5Y7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlNBRnUydzlhR1c0bkJEek93dVpTM1N2bGpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi84M2ViMDktM2ExNC00NTViLTg4OTUt YmEwYTc2ZjQzNzA0LzEvQlNBRnUydzlhR1c0bkJEek93dVpTM1N2bGpzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Yi84M2ViMDktM2ExNC00NTViLTg4OTUtYmEwYTc2ZjQzNzA0 LzEvQlNBRnUydzlhR1c0bkJEek93dVpTM1N2bGpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFhV9BPLH NYZxgYVmzATGshateV2rne7wxDd4Xh7Ns0o7mNHrm0Aon+YpRGg3sGqE/UE/JdLB sgIudhNgOxyczh2JgQWXCIwFzgNnXA+HUe9+VCZdTrKypWO+0VIeEWYXn4/XsbrD fX4PJZf2YZKiAmG9R5zWx0670ExsZqs/oGXajJeyVkgyzf41wVX2h8O7QEQxX2Hg +6xJwAPlTAuTIWij41iBhLW0V5JWrPACLbH/i6w0v7PGfc1fcgbbU3MOkyvTP5tx JjN5eD+0ZTrc04bBqPBwCPctZFdUE+gwOFw+imypxb3NHYvAqUc4JtYEvVAdkQ+v At2ANW7T6PsTyg== -----END CERTIFICATE-----Generated at Sat Dec 6 08:19:02 2025 by rpki-client