This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/42af1e-d553-4fe6-9fc3-f9633292c977/1/bHOgSn0Ost9H2vDDn7p142XIhT0.mft File: bHOgSn0Ost9H2vDDn7p142XIhT0.mft (raw, json) Hash identifier: qnFGApVLjcBMzJVlCg17n/7Q5SjJxGAUlTZrgWA3LDU= Subject key identifier: 2A:84:B7:3D:02:99:C4:76:B8:67:6A:47:E9:7F:E5:C5:A6:89:D7:56 Authority key identifier: 6C:73:A0:4A:7D:0E:B2:DF:47:DA:F0:C3:9F:BA:75:E3:65:C8:85:3D Certificate issuer: /CN=6c73a04a7d0eb2df47daf0c39fba75e365c8853d Certificate serial: 019AF1D1E18187B7AFCD04AA4AB336801316 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bHOgSn0Ost9H2vDDn7p142XIhT0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/42af1e-d553-4fe6-9fc3-f9633292c977/1/bHOgSn0Ost9H2vDDn7p142XIhT0.mft Manifest number: 1133 Signing time: Sat 06 Dec 2025 04:00:55 +0000 Manifest this update: Sat 06 Dec 2025 04:00:55 +0000 Manifest next update: Sun 07 Dec 2025 04:00:55 +0000 Files and hashes: 1: 1g8u0Gir8yCyVBvzcuA27ZsMTcA.roa (hash: hLEqWjYzmOf232eRZFufaSm1niRcj5QeYBzcD6/dycc=) 2: bHOgSn0Ost9H2vDDn7p142XIhT0.crl (hash: LEzR6HlOw1YFckJDRz19y4SJUQ3igl7GCjjGuHrc8t4=) 3: uSLH-6azWyM6_toWim6PNb4arp4.roa (hash: imwU+Zb8TWocoYkIF0ZGoxJDK+doen6jZopoR2zFVWE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/42af1e-d553-4fe6-9fc3-f9633292c977/1/bHOgSn0Ost9H2vDDn7p142XIhT0.crl rsync://rpki.ripe.net/repository/DEFAULT/ab/42af1e-d553-4fe6-9fc3-f9633292c977/1/bHOgSn0Ost9H2vDDn7p142XIhT0.mft rsync://rpki.ripe.net/repository/DEFAULT/bHOgSn0Ost9H2vDDn7p142XIhT0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d1:e1:81:87:b7:af:cd:04:aa:4a:b3:36:80:13:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6c73a04a7d0eb2df47daf0c39fba75e365c8853d Validity Not Before: Dec 6 04:00:55 2025 GMT Not After : Dec 7 04:00:55 2025 GMT Subject: CN=2a84b73d0299c476b8676a47e97fe5c5a689d756 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f0:38:af:a2:72:4a:cf:93:0d:8d:49:a3:83: 7e:d7:e4:68:d5:20:c9:86:b3:9c:af:05:81:06:79: f0:fc:ed:9c:88:64:f8:64:70:fa:75:02:e1:a9:eb: cc:bb:0e:cd:7c:db:01:a0:8f:98:ba:a8:40:e4:a4: d6:d6:cc:f5:8b:0a:fb:e8:9d:b7:3e:7d:e3:26:ea: 60:d7:af:b1:c6:04:35:29:99:34:c7:50:37:44:bb: 31:65:33:b5:c9:06:2b:c3:54:f8:59:96:aa:02:be: 39:47:5d:0e:38:97:6c:d8:4f:78:cd:a3:fa:d4:01: d1:3e:f2:cf:5c:72:84:11:ed:ed:cf:fd:a1:ab:04: 87:51:26:c5:a0:13:cc:dc:45:31:ab:24:74:e7:60: a5:3a:df:d2:ea:1f:5e:55:81:53:6e:d8:d2:1c:5c: 0f:b3:b7:13:5b:af:7e:18:35:c0:f4:75:f2:63:ac: 73:86:d7:2e:73:c1:7f:0d:a5:07:38:c9:20:27:bc: 6a:e5:67:b2:ba:0e:67:d7:bf:80:08:b3:77:73:3b: 54:66:a5:85:71:2e:13:6b:8c:2e:fa:72:97:8e:c1: 94:96:38:2f:43:f1:da:9d:1b:3c:1c:e4:f7:4b:a0: 7d:d4:c2:e1:59:93:a0:4c:d3:04:6a:fd:eb:90:c1: 90:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:84:B7:3D:02:99:C4:76:B8:67:6A:47:E9:7F:E5:C5:A6:89:D7:56 X509v3 Authority Key Identifier: keyid:6C:73:A0:4A:7D:0E:B2:DF:47:DA:F0:C3:9F:BA:75:E3:65:C8:85:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bHOgSn0Ost9H2vDDn7p142XIhT0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/42af1e-d553-4fe6-9fc3-f9633292c977/1/bHOgSn0Ost9H2vDDn7p142XIhT0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/42af1e-d553-4fe6-9fc3-f9633292c977/1/bHOgSn0Ost9H2vDDn7p142XIhT0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4f:e7:1d:7d:5f:ef:74:9c:95:36:41:ca:1f:4a:b8:1f:4b:9a: ff:c3:27:88:d8:6c:c7:1f:63:68:77:c3:65:39:e4:34:9d:aa: 66:99:32:99:8d:cc:98:96:a4:8a:c7:6d:5b:83:10:70:88:ae: b8:73:83:38:4e:f1:f6:07:e8:f0:26:de:b8:6a:4d:e3:3d:24: d5:3c:28:94:67:2b:7f:ad:ee:c9:0b:0c:a4:ac:a9:04:0d:90: 15:0f:63:e8:d7:f7:10:06:77:24:6e:a8:e9:07:11:73:6c:6e: e2:8d:85:b5:75:2d:f2:33:58:ad:ac:5a:6e:0e:34:e6:6e:f7: 99:d5:07:a7:69:4d:1e:71:5f:09:29:2a:d5:c9:3b:24:5a:87: 48:00:a8:f1:9a:fc:f8:08:d8:d7:54:95:5b:43:04:a5:60:b1: f0:9a:50:5e:8d:36:12:d9:9d:ce:0d:2e:1d:24:ad:38:c3:50: 91:1b:af:97:f6:5e:50:60:ce:7f:0f:79:37:d7:30:6c:d3:d7: 21:a4:48:e0:f7:05:7d:b8:6a:60:89:ea:a0:ca:9a:80:46:a5: e6:36:fd:4d:4b:67:f7:9d:71:dc:9c:f8:2d:7d:2b:2e:3b:5f: f7:e6:aa:80:8b:e7:3f:e8:b8:cf:91:08:1c:2a:6b:2f:de:d4: c6:27:8c:3c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0eGBh7evzQSqSrM2gBMWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZjNzNhMDRhN2QwZWIyZGY0N2RhZjBjMzlmYmE3NWUzNjVj ODg1M2QwHhcNMjUxMjA2MDQwMDU1WhcNMjUxMjA3MDQwMDU1WjAzMTEwLwYDVQQD EygyYTg0YjczZDAyOTljNDc2Yjg2NzZhNDdlOTdmZTVjNWE2ODlkNzU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwvA4r6JySs+TDY1Jo4N+1+Ro1SDJ hrOcrwWBBnnw/O2ciGT4ZHD6dQLhqevMuw7NfNsBoI+YuqhA5KTW1sz1iwr76J23 Pn3jJupg16+xxgQ1KZk0x1A3RLsxZTO1yQYrw1T4WZaqAr45R10OOJds2E94zaP6 1AHRPvLPXHKEEe3tz/2hqwSHUSbFoBPM3EUxqyR052ClOt/S6h9eVYFTbtjSHFwP s7cTW69+GDXA9HXyY6xzhtcuc8F/DaUHOMkgJ7xq5Weyug5n17+ACLN3cztUZqWF cS4Ta4wu+nKXjsGUljgvQ/HanRs8HOT3S6B91MLhWZOgTNMEav3rkMGQmwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCqEtz0CmcR2uGdqR+l/5cWmiddWMB8GA1UdIwQY MBaAFGxzoEp9DrLfR9rww5+6deNlyIU9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYkhPZ1NuME9zdDlIMnZERG43cDE0MlhJaFQwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi80MmFmMWUtZDU1My00ZmU2LTlmYzMt Zjk2MzMyOTJjOTc3LzEvYkhPZ1NuME9zdDlIMnZERG43cDE0MlhJaFQwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYi80MmFmMWUtZDU1My00ZmU2LTlmYzMtZjk2MzMyOTJjOTc3 LzEvYkhPZ1NuME9zdDlIMnZERG43cDE0MlhJaFQwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT+cdfV/v dJyVNkHKH0q4H0ua/8MniNhsxx9jaHfDZTnkNJ2qZpkymY3MmJakisdtW4MQcIiu uHODOE7x9gfo8CbeuGpN4z0k1TwolGcrf63uyQsMpKypBA2QFQ9j6Nf3EAZ3JG6o 6QcRc2xu4o2FtXUt8jNYraxabg405m73mdUHp2lNHnFfCSkq1ck7JFqHSACo8Zr8 +AjY11SVW0MEpWCx8JpQXo02Etmdzg0uHSStOMNQkRuvl/ZeUGDOfw95N9cwbNPX IaRI4PcFfbhqYInqoMqagEal5jb9TUtn951x3Jz4LX0rLjtf9+aqgIvnP+i4z5EI HCprL97UxieMPA== -----END CERTIFICATE-----Generated at Sat Dec 6 08:22:57 2025 by rpki-client