This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/053892-73be-412e-9559-97d49348cc01/1/bQhdF37rDLkaQvQ-LUw8gI3sVwg.mft File: bQhdF37rDLkaQvQ-LUw8gI3sVwg.mft (raw, json) Hash identifier: aH6pXywnVXWkTCAnHMtABunrdtn9lqTh3Jno1h8jx2M= Subject key identifier: CB:09:CB:95:96:DF:BE:0F:86:36:62:8C:49:9F:D5:2B:3D:CF:D5:42 Authority key identifier: 6D:08:5D:17:7E:EB:0C:B9:1A:42:F4:3E:2D:4C:3C:80:8D:EC:57:08 Certificate issuer: /CN=6d085d177eeb0cb91a42f43e2d4c3c808dec5708 Certificate serial: 019AF0F5C80C10A3ED81817CBAA873AF018C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bQhdF37rDLkaQvQ-LUw8gI3sVwg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/053892-73be-412e-9559-97d49348cc01/1/bQhdF37rDLkaQvQ-LUw8gI3sVwg.mft Manifest number: 05 Signing time: Sat 06 Dec 2025 00:00:30 +0000 Manifest this update: Sat 06 Dec 2025 00:00:30 +0000 Manifest next update: Sun 07 Dec 2025 00:00:30 +0000 Files and hashes: 1: bQhdF37rDLkaQvQ-LUw8gI3sVwg.crl (hash: OXMbzkH6uf9i1jbGt10ymlDxd51PjVPTmGSJ1ndKtn8=) 2: dWwVRALAzAqrPFMH_475HoZXSNw.roa (hash: UJ+bbnCj2UBf8wQPJOa00WAwj/A+Ao4RrFugnSe3cZA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/053892-73be-412e-9559-97d49348cc01/1/bQhdF37rDLkaQvQ-LUw8gI3sVwg.crl rsync://rpki.ripe.net/repository/DEFAULT/ac/053892-73be-412e-9559-97d49348cc01/1/bQhdF37rDLkaQvQ-LUw8gI3sVwg.mft rsync://rpki.ripe.net/repository/DEFAULT/bQhdF37rDLkaQvQ-LUw8gI3sVwg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:f5:c8:0c:10:a3:ed:81:81:7c:ba:a8:73:af:01:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6d085d177eeb0cb91a42f43e2d4c3c808dec5708 Validity Not Before: Dec 6 00:00:30 2025 GMT Not After : Dec 7 00:00:30 2025 GMT Subject: CN=cb09cb9596dfbe0f8636628c499fd52b3dcfd542 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:38:68:d3:dc:bc:6c:35:8a:df:9d:b9:40:c0: 3d:26:a5:52:26:1d:8e:1f:44:22:f6:0b:bc:ab:ac: e2:af:c2:aa:a5:22:d0:5f:63:92:2a:69:58:b2:cd: ba:e6:9f:28:b5:10:5e:ac:54:5c:30:bc:53:c8:70: 89:77:e9:f8:c5:78:d5:d5:cc:f1:76:35:d1:0d:40: af:e5:49:21:b9:39:f7:87:bf:ac:33:f7:08:f6:50: 9d:c0:46:b7:b9:fa:41:21:ff:f6:a1:02:ac:a0:92: 76:1d:68:23:b8:61:14:eb:52:7d:55:2b:82:7c:cb: 4f:1c:e7:1c:43:1c:fa:e5:b3:65:83:2b:dd:97:9d: 90:ba:d7:21:0f:8a:20:14:d5:b5:47:e6:a7:44:01: eb:91:19:64:d9:ef:cd:3f:75:53:79:30:22:19:ad: 16:dc:d9:88:f5:7a:f0:24:b0:03:e2:94:5e:16:13: 90:34:c7:67:73:94:c7:0e:b7:86:31:70:c6:60:65: 95:3c:ec:9f:83:ff:65:b7:36:6e:24:87:92:6e:25: 32:bd:45:e8:ed:1c:4c:a7:72:0c:c9:52:29:0c:09: 2f:02:30:10:80:65:77:ef:dc:02:17:26:31:30:b9: 8a:91:1d:1c:07:81:b2:b0:4b:b2:58:be:02:1f:e1: a7:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:09:CB:95:96:DF:BE:0F:86:36:62:8C:49:9F:D5:2B:3D:CF:D5:42 X509v3 Authority Key Identifier: keyid:6D:08:5D:17:7E:EB:0C:B9:1A:42:F4:3E:2D:4C:3C:80:8D:EC:57:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bQhdF37rDLkaQvQ-LUw8gI3sVwg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/053892-73be-412e-9559-97d49348cc01/1/bQhdF37rDLkaQvQ-LUw8gI3sVwg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/053892-73be-412e-9559-97d49348cc01/1/bQhdF37rDLkaQvQ-LUw8gI3sVwg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:ea:82:5f:b6:d8:4c:b1:fa:55:17:7b:c2:20:68:7c:7d:ad: 94:9b:6e:c8:d5:fb:f2:0a:a5:7c:ab:fe:39:66:e1:14:6b:91: 72:74:80:25:16:2c:1a:55:bd:24:6f:5d:28:80:bb:38:34:78: 5e:2f:43:3f:23:ad:cc:6f:3e:c9:8b:5b:24:04:03:d5:79:08: 96:3e:b5:33:c2:8a:9a:c7:8c:e9:07:ce:6b:f7:e8:69:5e:77: 55:45:cc:bf:96:af:97:e2:7b:00:d9:90:ab:cf:cd:e7:b0:03: 96:6a:6e:1c:eb:91:71:d4:3f:22:79:c6:9e:29:ae:06:d2:be: d8:14:fe:f2:ac:ab:f3:42:04:35:c0:c5:f2:05:63:fe:9c:b2: 2f:53:28:1f:7a:9f:51:66:62:9f:07:1f:2f:fb:f7:26:18:8f: b7:48:37:0e:8d:2c:07:18:24:b9:4b:f8:08:a7:f4:c4:61:66: 89:bc:a0:b2:7b:21:5f:38:59:be:a2:da:61:37:82:9e:65:3f: 9a:b4:98:56:2c:66:73:04:92:ce:85:c3:34:7f:25:9b:fe:00: d2:3b:8b:f7:da:14:d3:1c:7b:d2:f8:ac:9e:21:bd:ea:24:32: 75:b8:c7:e5:98:04:78:8c:7a:16:cd:b0:45:d9:2a:a2:2b:fb: cf:6e:1f:37 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrw9cgMEKPtgYF8uqhzrwGMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkMDg1ZDE3N2VlYjBjYjkxYTQyZjQzZTJkNGMzYzgwOGRl YzU3MDgwHhcNMjUxMjA2MDAwMDMwWhcNMjUxMjA3MDAwMDMwWjAzMTEwLwYDVQQD EyhjYjA5Y2I5NTk2ZGZiZTBmODYzNjYyOGM0OTlmZDUyYjNkY2ZkNTQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApzho09y8bDWK3525QMA9JqVSJh2O H0Qi9gu8q6zir8KqpSLQX2OSKmlYss265p8otRBerFRcMLxTyHCJd+n4xXjV1czx djXRDUCv5UkhuTn3h7+sM/cI9lCdwEa3ufpBIf/2oQKsoJJ2HWgjuGEU61J9VSuC fMtPHOccQxz65bNlgyvdl52QutchD4ogFNW1R+anRAHrkRlk2e/NP3VTeTAiGa0W 3NmI9XrwJLAD4pReFhOQNMdnc5THDreGMXDGYGWVPOyfg/9ltzZuJIeSbiUyvUXo 7RxMp3IMyVIpDAkvAjAQgGV379wCFyYxMLmKkR0cB4GysEuyWL4CH+GncQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMsJy5WW374PhjZijEmf1Ss9z9VCMB8GA1UdIwQY MBaAFG0IXRd+6wy5GkL0Pi1MPICN7FcIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYlFoZEYzN3JETGthUXZRLUxVdzhnSTNzVndnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy8wNTM4OTItNzNiZS00MTJlLTk1NTkt OTdkNDkzNDhjYzAxLzEvYlFoZEYzN3JETGthUXZRLUxVdzhnSTNzVndnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYy8wNTM4OTItNzNiZS00MTJlLTk1NTktOTdkNDkzNDhjYzAx LzEvYlFoZEYzN3JETGthUXZRLUxVdzhnSTNzVndnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATuqCX7bY TLH6VRd7wiBofH2tlJtuyNX78gqlfKv+OWbhFGuRcnSAJRYsGlW9JG9dKIC7ODR4 Xi9DPyOtzG8+yYtbJAQD1XkIlj61M8KKmseM6QfOa/foaV53VUXMv5avl+J7ANmQ q8/N57ADlmpuHOuRcdQ/InnGnimuBtK+2BT+8qyr80IENcDF8gVj/pyyL1MoH3qf UWZinwcfL/v3JhiPt0g3Do0sBxgkuUv4CKf0xGFmibygsnshXzhZvqLaYTeCnmU/ mrSYVixmcwSSzoXDNH8lm/4A0juL99oU0xx70visniG96iQydbjH5ZgEeIx6Fs2w Rdkqoiv7z24fNw== -----END CERTIFICATE-----Generated at Sat Dec 6 07:42:15 2025 by rpki-client