This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/916186-5572-40fc-9e2f-77eb53e82c5e/1/BDR_pREJ3ezWzVlMZ7sCstXnIQ4.mft File: BDR_pREJ3ezWzVlMZ7sCstXnIQ4.mft (raw, json) Hash identifier: 91TXOytuldsU6vZnAqDQ2In7i/+ZMC/WuvYq/yyQaGQ= Subject key identifier: 6A:43:59:84:3E:5A:8C:D2:B6:5C:4B:0E:C1:CF:69:65:7F:75:1E:2D Authority key identifier: 04:34:7F:A5:11:09:DD:EC:D6:CD:59:4C:67:BB:02:B2:D5:E7:21:0E Certificate issuer: /CN=04347fa51109ddecd6cd594c67bb02b2d5e7210e Certificate serial: 019AF31D409CD72F18A49CBE13D687F92AA3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BDR_pREJ3ezWzVlMZ7sCstXnIQ4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/916186-5572-40fc-9e2f-77eb53e82c5e/1/BDR_pREJ3ezWzVlMZ7sCstXnIQ4.mft Manifest number: 0C53 Signing time: Sat 06 Dec 2025 10:02:51 +0000 Manifest this update: Sat 06 Dec 2025 10:02:51 +0000 Manifest next update: Sun 07 Dec 2025 10:02:51 +0000 Files and hashes: 1: BDR_pREJ3ezWzVlMZ7sCstXnIQ4.crl (hash: WYejysFDMZNNzNsYoS2lquB+Scwt3M2oN1JjrvJ8Pf0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/916186-5572-40fc-9e2f-77eb53e82c5e/1/BDR_pREJ3ezWzVlMZ7sCstXnIQ4.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/916186-5572-40fc-9e2f-77eb53e82c5e/1/BDR_pREJ3ezWzVlMZ7sCstXnIQ4.mft rsync://rpki.ripe.net/repository/DEFAULT/BDR_pREJ3ezWzVlMZ7sCstXnIQ4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 10:02:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1d:40:9c:d7:2f:18:a4:9c:be:13:d6:87:f9:2a:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04347fa51109ddecd6cd594c67bb02b2d5e7210e Validity Not Before: Dec 6 10:02:51 2025 GMT Not After : Dec 7 10:02:51 2025 GMT Subject: CN=6a4359843e5a8cd2b65c4b0ec1cf69657f751e2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:ee:9d:59:69:c8:ba:fb:eb:d4:60:92:0d:36: f1:40:ef:79:15:de:78:2a:18:e7:80:d9:e8:b7:b5: 71:7f:f0:ad:df:14:1d:66:df:ed:72:be:dc:63:15: ec:0b:e6:0a:f9:15:3c:6e:a0:e3:cc:09:30:cf:39: e5:54:a5:b9:19:0f:e4:ee:52:e6:5d:35:ee:f4:a0: 04:51:46:b5:76:6a:85:6c:eb:43:95:6c:c3:d0:fd: 3f:15:f2:20:ca:0a:16:ee:b0:c5:3f:39:1d:89:1b: 17:e9:ef:f0:75:31:6e:7c:26:1a:f8:0d:77:42:a4: 00:ba:7f:1c:59:68:df:ac:17:64:c1:b3:ad:3c:ec: e8:09:16:7e:c6:72:09:df:dd:a6:eb:24:07:d5:1d: 90:ae:02:55:de:2b:9b:7b:d6:b4:39:2f:7a:34:93: d3:22:83:cc:f3:e8:04:ae:86:b8:ba:38:e8:be:3e: f9:12:9a:f7:1a:1b:91:ad:cb:55:9a:41:21:8f:b1: ef:3d:3a:77:c8:3a:39:0f:a8:97:b4:f8:f9:a2:9c: cf:3b:95:05:94:81:2a:bb:64:23:df:3e:d5:73:b7: 26:90:c3:e5:15:08:2b:57:10:48:08:26:28:2e:9d: 77:97:f9:07:a6:ec:35:49:ca:d6:f6:72:80:97:cd: 6d:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:43:59:84:3E:5A:8C:D2:B6:5C:4B:0E:C1:CF:69:65:7F:75:1E:2D X509v3 Authority Key Identifier: keyid:04:34:7F:A5:11:09:DD:EC:D6:CD:59:4C:67:BB:02:B2:D5:E7:21:0E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BDR_pREJ3ezWzVlMZ7sCstXnIQ4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/916186-5572-40fc-9e2f-77eb53e82c5e/1/BDR_pREJ3ezWzVlMZ7sCstXnIQ4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/916186-5572-40fc-9e2f-77eb53e82c5e/1/BDR_pREJ3ezWzVlMZ7sCstXnIQ4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 18:9b:7d:05:0d:77:a9:eb:6b:45:e1:27:86:de:3b:80:13:4c: dc:5a:02:b1:2c:81:83:5f:90:6d:c1:aa:bb:cb:95:57:0a:9f: 82:4a:8a:c3:30:70:11:67:de:97:9e:fc:52:f5:eb:35:12:bf: 92:e4:33:4e:b8:95:63:99:d6:32:3a:de:9a:e8:14:bd:2e:43: b7:55:75:d6:50:02:8b:ea:21:d1:4d:46:76:77:85:88:f0:8f: 7e:fc:2f:a4:b4:3d:31:08:7a:a0:e1:9c:d5:76:c4:96:1b:53: dc:c1:6d:f8:42:bf:7e:91:21:41:f5:df:ab:37:7e:fd:d4:90: b7:7d:27:d5:50:dc:a1:30:4c:70:e7:86:01:e9:d9:56:1c:6e: 8b:db:78:c8:57:e4:e2:36:23:c7:9c:a1:e2:68:d1:5e:6c:ae: f6:64:16:92:28:74:79:69:9d:ab:8d:4e:ac:a5:c4:b5:56:93: 83:ef:20:72:f1:34:f0:5d:c5:26:54:3a:56:74:63:18:53:d5: 8e:25:58:d2:6f:6a:90:68:e4:64:83:1f:7a:df:91:ec:89:1c: e6:f7:8a:34:87:2b:cc:fe:58:65:e7:41:6b:26:c8:48:44:36: 8f:87:31:6d:e8:49:2a:24:77:0a:62:2e:98:da:ec:6c:70:94: 15:31:22:ea -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHUCc1y8YpJy+E9aH+SqjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA0MzQ3ZmE1MTEwOWRkZWNkNmNkNTk0YzY3YmIwMmIyZDVl NzIxMGUwHhcNMjUxMjA2MTAwMjUxWhcNMjUxMjA3MTAwMjUxWjAzMTEwLwYDVQQD Eyg2YTQzNTk4NDNlNWE4Y2QyYjY1YzRiMGVjMWNmNjk2NTdmNzUxZTJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjO6dWWnIuvvr1GCSDTbxQO95Fd54 KhjngNnot7Vxf/Ct3xQdZt/tcr7cYxXsC+YK+RU8bqDjzAkwzznlVKW5GQ/k7lLm XTXu9KAEUUa1dmqFbOtDlWzD0P0/FfIgygoW7rDFPzkdiRsX6e/wdTFufCYa+A13 QqQAun8cWWjfrBdkwbOtPOzoCRZ+xnIJ392m6yQH1R2QrgJV3iube9a0OS96NJPT IoPM8+gEroa4ujjovj75Epr3GhuRrctVmkEhj7HvPTp3yDo5D6iXtPj5opzPO5UF lIEqu2Qj3z7Vc7cmkMPlFQgrVxBICCYoLp13l/kHpuw1ScrW9nKAl81tqwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGpDWYQ+WozStlxLDsHPaWV/dR4tMB8GA1UdIwQY MBaAFAQ0f6URCd3s1s1ZTGe7ArLV5yEOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQkRSX3BSRUozZXpXelZsTVo3c0NzdFhuSVE0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy85MTYxODYtNTU3Mi00MGZjLTllMmYt NzdlYjUzZTgyYzVlLzEvQkRSX3BSRUozZXpXelZsTVo3c0NzdFhuSVE0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy85MTYxODYtNTU3Mi00MGZjLTllMmYtNzdlYjUzZTgyYzVl LzEvQkRSX3BSRUozZXpXelZsTVo3c0NzdFhuSVE0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGJt9BQ13 qetrReEnht47gBNM3FoCsSyBg1+QbcGqu8uVVwqfgkqKwzBwEWfel578UvXrNRK/ kuQzTriVY5nWMjremugUvS5Dt1V11lACi+oh0U1GdneFiPCPfvwvpLQ9MQh6oOGc 1XbElhtT3MFt+EK/fpEhQfXfqzd+/dSQt30n1VDcoTBMcOeGAenZVhxui9t4yFfk 4jYjx5yh4mjRXmyu9mQWkih0eWmdq41OrKXEtVaTg+8gcvE08F3FJlQ6VnRjGFPV jiVY0m9qkGjkZIMfet+R7Ikc5veKNIcrzP5YZedBaybISEQ2j4cxbehJKiR3CmIu mNrsbHCUFTEi6g== -----END CERTIFICATE-----Generated at Sat Dec 6 16:30:42 2025 by rpki-client