This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/BYmfOXZIcDij-mNDlSsUtNBysz0.mft File: BYmfOXZIcDij-mNDlSsUtNBysz0.mft (raw, json) Hash identifier: zrSf+y3qTueeVvS9hgP8EY2BkOKPz1obuVzxKeod9Mo= Subject key identifier: 89:E7:14:92:F2:CE:1E:AD:EA:21:94:8F:EC:8E:68:CC:A9:7E:7B:79 Authority key identifier: 05:89:9F:39:76:48:70:38:A3:FA:63:43:95:2B:14:B4:D0:72:B3:3D Certificate issuer: /CN=05899f3976487038a3fa6343952b14b4d072b33d Certificate serial: 019AF12D822CDD2AD9775CC3275C96B0196F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BYmfOXZIcDij-mNDlSsUtNBysz0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/BYmfOXZIcDij-mNDlSsUtNBysz0.mft Manifest number: 1495 Signing time: Sat 06 Dec 2025 01:01:22 +0000 Manifest this update: Sat 06 Dec 2025 01:01:22 +0000 Manifest next update: Sun 07 Dec 2025 01:01:22 +0000 Files and hashes: 1: 0FPPBtsN210U9TcyUOoD4vT2QPY.roa (hash: fG8Q0h59H0I6+//7X6/ScKzAsNXNuiLvMcAt229Ohto=) 2: BYmfOXZIcDij-mNDlSsUtNBysz0.crl (hash: 43Pnsn6qT5E0fH6JDIIDAAOGNXiiHpIAIHuXLFJkTS0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/BYmfOXZIcDij-mNDlSsUtNBysz0.crl rsync://rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/BYmfOXZIcDij-mNDlSsUtNBysz0.mft rsync://rpki.ripe.net/repository/DEFAULT/BYmfOXZIcDij-mNDlSsUtNBysz0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:82:2c:dd:2a:d9:77:5c:c3:27:5c:96:b0:19:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05899f3976487038a3fa6343952b14b4d072b33d Validity Not Before: Dec 6 01:01:22 2025 GMT Not After : Dec 7 01:01:22 2025 GMT Subject: CN=89e71492f2ce1eadea21948fec8e68cca97e7b79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:cd:60:54:ae:de:0b:22:f6:c9:c4:29:91:5e: 3a:26:ae:fe:3b:08:25:b7:15:9d:34:4d:fe:1a:18: cf:71:18:0a:5d:11:55:d1:1c:59:82:a4:11:d5:c7: 8b:3c:3a:c2:41:29:05:b1:97:6e:b1:c8:f4:41:c4: df:f0:e1:75:95:b2:9b:03:04:0a:b1:cd:03:44:07: 3d:06:7f:8b:ba:3e:5b:e9:20:01:d6:6a:8e:a9:40: dd:93:f5:08:c9:dc:3f:29:1b:93:41:14:0e:27:ee: 0c:9c:d7:0b:7e:07:33:50:7d:e6:3e:6a:e3:2d:96: a0:35:9d:8f:e3:f2:ab:10:2b:54:07:cf:a6:45:3b: a1:a5:26:83:aa:d5:54:68:e3:71:f3:5c:8b:a2:8a: 12:70:c6:96:4e:6c:28:2b:34:e9:2f:99:96:7a:06: 94:e7:6b:f5:fb:18:b6:79:bd:73:d0:8c:6f:ea:d4: b3:63:8a:4f:c8:54:f2:fd:74:fc:6e:a9:ab:c2:bf: 08:7d:d3:63:f5:ba:05:ac:49:86:9e:5e:63:4c:b7: f9:46:ec:58:00:ca:36:68:4b:dd:13:ed:30:f8:5e: cd:47:d9:f0:55:c4:3f:ca:20:fd:8d:0c:b0:3d:10: d1:82:ee:65:35:1d:66:31:2d:21:7a:33:32:a8:04: 26:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:E7:14:92:F2:CE:1E:AD:EA:21:94:8F:EC:8E:68:CC:A9:7E:7B:79 X509v3 Authority Key Identifier: keyid:05:89:9F:39:76:48:70:38:A3:FA:63:43:95:2B:14:B4:D0:72:B3:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BYmfOXZIcDij-mNDlSsUtNBysz0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/BYmfOXZIcDij-mNDlSsUtNBysz0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/1fce93-02ea-4f99-99c2-08c2123580ed/1/BYmfOXZIcDij-mNDlSsUtNBysz0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 38:87:24:52:fa:49:14:3e:e7:c0:8a:f4:88:78:c5:1b:87:de: fc:4f:20:aa:ac:74:c7:9f:a7:08:c9:b2:28:d3:5e:0f:0d:5b: 4f:b2:fc:b0:ec:96:1d:d8:a5:ef:32:bc:a1:12:04:48:c2:91: 70:0f:4d:1e:43:87:80:b8:b5:6b:e4:ce:69:5c:b5:45:e4:a1: d3:bf:6c:7e:56:8b:78:20:9e:49:87:75:a7:fa:11:f4:9f:3a: ae:ca:22:f4:5c:72:cd:12:a5:a3:b6:a3:00:87:b4:14:7a:5b: 55:2b:d8:a5:b9:1e:1f:28:b6:3f:d2:e6:63:05:15:b0:88:9a: 36:07:e7:4c:de:99:d2:50:0b:6e:d8:65:9e:1c:ff:ce:21:c4: 1c:f8:e2:70:e7:94:7b:70:8d:ca:74:df:e9:61:51:a1:19:98: 06:3d:3e:7a:f6:88:95:e9:d3:d3:af:e9:6f:7d:7b:85:ce:64: a6:8f:7f:ad:f1:21:35:71:99:a0:b2:b0:63:5f:68:5a:9e:92: b9:d8:9d:77:fc:e1:2a:d9:36:33:e4:10:37:86:5e:f6:a8:ca: de:40:01:e9:6d:02:07:df:98:e1:0b:45:91:24:8e:ba:e2:20: dc:39:34:37:79:55:67:55:b7:95:f0:7a:34:75:6f:5f:7b:50: a3:74:a8:0d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLYIs3SrZd1zDJ1yWsBlvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1ODk5ZjM5NzY0ODcwMzhhM2ZhNjM0Mzk1MmIxNGI0ZDA3 MmIzM2QwHhcNMjUxMjA2MDEwMTIyWhcNMjUxMjA3MDEwMTIyWjAzMTEwLwYDVQQD Eyg4OWU3MTQ5MmYyY2UxZWFkZWEyMTk0OGZlYzhlNjhjY2E5N2U3Yjc5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoM1gVK7eCyL2ycQpkV46Jq7+Owgl txWdNE3+GhjPcRgKXRFV0RxZgqQR1ceLPDrCQSkFsZduscj0QcTf8OF1lbKbAwQK sc0DRAc9Bn+Luj5b6SAB1mqOqUDdk/UIydw/KRuTQRQOJ+4MnNcLfgczUH3mPmrj LZagNZ2P4/KrECtUB8+mRTuhpSaDqtVUaONx81yLoooScMaWTmwoKzTpL5mWegaU 52v1+xi2eb1z0Ixv6tSzY4pPyFTy/XT8bqmrwr8IfdNj9boFrEmGnl5jTLf5RuxY AMo2aEvdE+0w+F7NR9nwVcQ/yiD9jQywPRDRgu5lNR1mMS0hejMyqAQmpQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFInnFJLyzh6t6iGUj+yOaMypfnt5MB8GA1UdIwQY MBaAFAWJnzl2SHA4o/pjQ5UrFLTQcrM9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlltZk9YWkljRGlqLW1ORGxTc1V0TkJ5c3owLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS8xZmNlOTMtMDJlYS00Zjk5LTk5YzIt MDhjMjEyMzU4MGVkLzEvQlltZk9YWkljRGlqLW1ORGxTc1V0TkJ5c3owLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZS8xZmNlOTMtMDJlYS00Zjk5LTk5YzItMDhjMjEyMzU4MGVk LzEvQlltZk9YWkljRGlqLW1ORGxTc1V0TkJ5c3owLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOIckUvpJ FD7nwIr0iHjFG4fe/E8gqqx0x5+nCMmyKNNeDw1bT7L8sOyWHdil7zK8oRIESMKR cA9NHkOHgLi1a+TOaVy1ReSh079sflaLeCCeSYd1p/oR9J86rsoi9FxyzRKlo7aj AIe0FHpbVSvYpbkeHyi2P9LmYwUVsIiaNgfnTN6Z0lALbthlnhz/ziHEHPjicOeU e3CNynTf6WFRoRmYBj0+evaIlenT06/pb317hc5kpo9/rfEhNXGZoLKwY19oWp6S udidd/zhKtk2M+QQN4Ze9qjK3kAB6W0CB9+Y4QtFkSSOuuIg3Dk0N3lVZ1W3lfB6 NHVvX3tQo3SoDQ== -----END CERTIFICATE-----Generated at Sat Dec 6 08:22:16 2025 by rpki-client