This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/ce4a4e-b1a3-45f4-a27c-e1aca01062ff/1/BFYL6jkur2kgircF70Bc94aEF2s.mft File: BFYL6jkur2kgircF70Bc94aEF2s.mft (raw, json) Hash identifier: 13VGEs2u7S6YrpkSJqN1VvaLOhXD0ahHbIVE71gOU54= Subject key identifier: D4:1E:28:07:0E:14:7A:EB:26:46:D8:61:94:CE:00:F5:61:96:F6:46 Authority key identifier: 04:56:0B:EA:39:2E:AF:69:20:8A:B7:05:EF:40:5C:F7:86:84:17:6B Certificate issuer: /CN=04560bea392eaf69208ab705ef405cf78684176b Certificate serial: 019AF1647C68778851983A10FF512CCAFA7F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BFYL6jkur2kgircF70Bc94aEF2s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/ce4a4e-b1a3-45f4-a27c-e1aca01062ff/1/BFYL6jkur2kgircF70Bc94aEF2s.mft Manifest number: 1766 Signing time: Sat 06 Dec 2025 02:01:25 +0000 Manifest this update: Sat 06 Dec 2025 02:01:25 +0000 Manifest next update: Sun 07 Dec 2025 02:01:25 +0000 Files and hashes: 1: 8kdm1ZAPNcZedXP01TafIjBXKRs.roa (hash: itb59cI824fq1EKKCsVfc6XjwoFA0+TxsZlQLnTiMW4=) 2: BFYL6jkur2kgircF70Bc94aEF2s.crl (hash: 6ZVz1jcz2ZX91WZd/wBqZq3Mdy6Fo0yPbY5tBQzEHWY=) 3: BzQdBmIbyF6srfLktxhc6qg79ec.roa (hash: H3iHKo9W+PVcnPUcadk8PCSHKjUzykftyfuq0bLuwdg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/ce4a4e-b1a3-45f4-a27c-e1aca01062ff/1/BFYL6jkur2kgircF70Bc94aEF2s.crl rsync://rpki.ripe.net/repository/DEFAULT/9b/ce4a4e-b1a3-45f4-a27c-e1aca01062ff/1/BFYL6jkur2kgircF70Bc94aEF2s.mft rsync://rpki.ripe.net/repository/DEFAULT/BFYL6jkur2kgircF70Bc94aEF2s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:64:7c:68:77:88:51:98:3a:10:ff:51:2c:ca:fa:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04560bea392eaf69208ab705ef405cf78684176b Validity Not Before: Dec 6 02:01:25 2025 GMT Not After : Dec 7 02:01:25 2025 GMT Subject: CN=d41e28070e147aeb2646d86194ce00f56196f646 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:23:cb:6f:3c:63:0d:2d:40:8f:11:80:be:59: 0a:b2:a5:c2:f7:01:9e:37:3b:9e:d7:c3:d3:42:0a: 01:4b:3f:ef:f6:4c:97:a8:77:3e:4f:c0:ca:a3:7e: b6:93:4f:48:d1:c8:0d:34:05:38:7c:00:f1:b6:a1: 96:ba:a6:c1:74:34:e7:fd:35:8c:a7:05:d7:69:90: 1f:4d:db:63:69:cf:22:7b:be:3b:60:5c:85:6e:2c: c7:c3:0e:02:cd:b7:0e:c4:b7:ac:84:54:5a:a9:ca: 1a:3f:43:b4:2d:2a:28:bd:c7:d8:ea:78:29:7a:91: 73:5a:bb:65:b8:33:44:82:8d:c0:1d:6f:30:54:9d: 72:d7:a3:c2:53:6c:ee:3b:41:f3:3c:9d:ed:8c:24: fe:a1:ee:34:c0:84:2b:0e:cd:5b:f7:23:f6:cb:a9: ad:86:a0:7c:b6:f6:9c:8c:fc:0d:6a:3d:14:a8:be: 7c:63:2f:48:c4:2c:f8:f5:de:9d:61:55:63:11:7b: 22:6c:52:b5:c1:81:92:7a:61:0a:66:41:32:5d:d8: 1b:8e:51:5f:ab:41:24:34:2d:fb:de:da:54:38:bf: 8c:7e:a4:d7:ba:07:0d:35:95:25:14:d4:4d:53:76: 51:e4:84:05:ba:20:51:ad:29:97:39:23:aa:10:80: 43:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:1E:28:07:0E:14:7A:EB:26:46:D8:61:94:CE:00:F5:61:96:F6:46 X509v3 Authority Key Identifier: keyid:04:56:0B:EA:39:2E:AF:69:20:8A:B7:05:EF:40:5C:F7:86:84:17:6B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BFYL6jkur2kgircF70Bc94aEF2s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/ce4a4e-b1a3-45f4-a27c-e1aca01062ff/1/BFYL6jkur2kgircF70Bc94aEF2s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/ce4a4e-b1a3-45f4-a27c-e1aca01062ff/1/BFYL6jkur2kgircF70Bc94aEF2s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 19:ac:93:2b:b8:e7:65:53:90:2a:a8:c5:af:64:74:f7:94:5c: fc:9d:96:da:7c:bb:5a:e1:07:a5:8e:b3:21:61:6d:5b:97:b2: 19:b8:a4:57:0b:27:54:52:58:86:07:fe:ee:ae:17:0f:47:94: 49:a7:09:18:1e:c3:c1:b8:7a:3e:b3:23:0f:93:5a:c7:59:d7: 70:25:0a:3c:92:ca:d5:e2:0b:82:a0:58:cd:af:69:01:1e:54: ea:e6:08:45:3b:1b:39:c8:b9:30:7c:cf:f4:02:c2:e0:b2:0e: c5:40:0e:fb:f7:62:e5:21:01:67:c7:80:cb:dc:b4:7e:98:9a: 1a:77:e8:89:1f:7b:b5:a6:42:12:88:92:38:ad:ef:44:a7:a2: d2:be:14:3c:3c:31:fe:69:66:71:a8:05:eb:76:ad:50:e7:8e: 8c:15:c9:32:e3:2a:fa:d5:4d:87:ea:b9:e6:6e:8a:f8:b0:c3: 03:b7:aa:2c:2c:43:c4:81:01:9b:a7:1c:87:3d:43:d3:30:4a: 5c:9d:04:00:23:4c:27:a1:a6:df:2a:8b:63:ec:c5:7b:e5:79: bf:19:58:42:ae:5f:d6:9f:48:60:d5:9f:69:88:df:29:b7:1f: 1f:9f:95:3b:ea:82:d5:00:e9:ba:0e:f8:63:4c:d4:ed:42:54: 85:44:7c:93 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxZHxod4hRmDoQ/1Esyvp/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA0NTYwYmVhMzkyZWFmNjkyMDhhYjcwNWVmNDA1Y2Y3ODY4 NDE3NmIwHhcNMjUxMjA2MDIwMTI1WhcNMjUxMjA3MDIwMTI1WjAzMTEwLwYDVQQD EyhkNDFlMjgwNzBlMTQ3YWViMjY0NmQ4NjE5NGNlMDBmNTYxOTZmNjQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsSPLbzxjDS1AjxGAvlkKsqXC9wGe Nzue18PTQgoBSz/v9kyXqHc+T8DKo362k09I0cgNNAU4fADxtqGWuqbBdDTn/TWM pwXXaZAfTdtjac8ie747YFyFbizHww4CzbcOxLeshFRaqcoaP0O0LSoovcfY6ngp epFzWrtluDNEgo3AHW8wVJ1y16PCU2zuO0HzPJ3tjCT+oe40wIQrDs1b9yP2y6mt hqB8tvacjPwNaj0UqL58Yy9IxCz49d6dYVVjEXsibFK1wYGSemEKZkEyXdgbjlFf q0EkNC373tpUOL+MfqTXugcNNZUlFNRNU3ZR5IQFuiBRrSmXOSOqEIBDIQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNQeKAcOFHrrJkbYYZTOAPVhlvZGMB8GA1UdIwQY MBaAFARWC+o5Lq9pIIq3Be9AXPeGhBdrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQkZZTDZqa3VyMmtnaXJjRjcwQmM5NGFFRjJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi9jZTRhNGUtYjFhMy00NWY0LWEyN2Mt ZTFhY2EwMTA2MmZmLzEvQkZZTDZqa3VyMmtnaXJjRjcwQmM5NGFFRjJzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Yi9jZTRhNGUtYjFhMy00NWY0LWEyN2MtZTFhY2EwMTA2MmZm LzEvQkZZTDZqa3VyMmtnaXJjRjcwQmM5NGFFRjJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGayTK7jn ZVOQKqjFr2R095Rc/J2W2ny7WuEHpY6zIWFtW5eyGbikVwsnVFJYhgf+7q4XD0eU SacJGB7Dwbh6PrMjD5Nax1nXcCUKPJLK1eILgqBYza9pAR5U6uYIRTsbOci5MHzP 9ALC4LIOxUAO+/di5SEBZ8eAy9y0fpiaGnfoiR97taZCEoiSOK3vRKei0r4UPDwx /mlmcagF63atUOeOjBXJMuMq+tVNh+q55m6K+LDDA7eqLCxDxIEBm6cchz1D0zBK XJ0EACNMJ6Gm3yqLY+zFe+V5vxlYQq5f1p9IYNWfaYjfKbcfH5+VO+qC1QDpug74 Y0zU7UJUhUR8kw== -----END CERTIFICATE-----Generated at Sat Dec 6 09:44:50 2025 by rpki-client