This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft File: bd1AUuD8dlNjYcu9x3UId93zYK0.mft (raw, json) Hash identifier: HIX4a4KOfR5/l9hQxf4CGs/hWBRGJHwtYNG8a0IUnNM= Subject key identifier: 56:5F:F7:58:55:18:B6:94:93:30:35:D8:D6:03:10:7C:EB:59:BA:C4 Authority key identifier: 6D:DD:40:52:E0:FC:76:53:63:61:CB:BD:C7:75:08:77:DD:F3:60:AD Certificate issuer: /CN=6ddd4052e0fc76536361cbbdc7750877ddf360ad Certificate serial: 019AF49C5E924ED8F609BDB9BDEA83D9606F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bd1AUuD8dlNjYcu9x3UId93zYK0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft Manifest number: 1072 Signing time: Sat 06 Dec 2025 17:01:19 +0000 Manifest this update: Sat 06 Dec 2025 17:01:19 +0000 Manifest next update: Sun 07 Dec 2025 17:01:19 +0000 Files and hashes: 1: PBeiTxVVl13KulRPara1RXYVicA.roa (hash: RXsTBTBPcZfgBdF/8hAfnipircCVtF7KKV+ZAN7eFr0=) 2: bd1AUuD8dlNjYcu9x3UId93zYK0.crl (hash: UdVNvmugRNoRZYtCQundjvDjg2slAxF3xtl1cDQPVDo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.crl rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft rsync://rpki.ripe.net/repository/DEFAULT/bd1AUuD8dlNjYcu9x3UId93zYK0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 17:01:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:9c:5e:92:4e:d8:f6:09:bd:b9:bd:ea:83:d9:60:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ddd4052e0fc76536361cbbdc7750877ddf360ad Validity Not Before: Dec 6 17:01:19 2025 GMT Not After : Dec 7 17:01:19 2025 GMT Subject: CN=565ff7585518b694933035d8d603107ceb59bac4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:70:96:fd:74:ee:17:85:99:17:5b:10:ef:6e: e8:fa:d7:10:f8:e2:78:9d:5c:cc:16:cb:3b:4d:44: 2d:1f:15:2c:ac:87:b2:fb:03:f9:37:32:29:9a:c7: d2:95:79:87:28:0e:38:b6:4c:c7:74:3d:16:a6:dc: 69:91:b1:69:e9:e0:28:c4:cd:44:bc:df:1f:4b:87: 52:83:be:60:a5:71:11:00:b3:32:91:e7:82:e2:a4: b1:7c:05:0a:7a:96:51:aa:53:bc:77:f2:a4:1a:45: 91:4f:83:1c:4e:98:a1:5e:be:7a:3f:52:7f:25:5d: 78:92:28:03:f6:18:69:b6:d7:89:82:66:08:21:4a: 46:c4:10:d8:9f:77:6d:9f:78:0a:58:74:4c:a2:3b: 64:af:3e:04:32:a4:5b:f6:fb:17:69:e9:92:3f:7f: 6e:7d:11:6b:10:67:c2:17:61:21:81:b9:19:32:4d: 45:31:ce:19:40:bf:b1:08:13:52:f3:30:bd:b9:ab: 89:20:62:a9:ab:98:42:11:0f:8d:fd:f4:21:57:ec: e2:d1:ce:d7:31:e6:df:45:b1:71:66:0e:a2:df:78: 1d:81:52:0d:06:a3:b2:fb:f9:bd:65:e8:cc:c8:f2: f1:f7:ee:90:75:04:d5:f1:2d:2b:fb:da:10:32:bf: a4:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:5F:F7:58:55:18:B6:94:93:30:35:D8:D6:03:10:7C:EB:59:BA:C4 X509v3 Authority Key Identifier: keyid:6D:DD:40:52:E0:FC:76:53:63:61:CB:BD:C7:75:08:77:DD:F3:60:AD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd1AUuD8dlNjYcu9x3UId93zYK0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 83:7d:f6:36:25:1a:4d:cd:90:c7:11:c4:d8:87:a6:5a:46:b6: 5c:c3:12:cf:87:51:f1:97:12:41:75:45:ef:16:b7:f0:95:08: 5c:e9:7d:97:61:fe:b1:5f:75:32:03:e2:9d:89:4b:f1:dd:27: 7a:11:5d:51:df:88:99:c8:68:26:01:7a:31:4e:dd:b8:ad:6c: ec:b2:e8:49:9b:fe:79:a4:1d:be:cb:3b:c0:65:f6:5a:1b:e0: c3:ed:d2:e9:7c:5e:a0:8c:15:92:54:5e:09:9b:4c:ea:ae:42: 2e:cc:dd:ca:ea:61:6b:3b:32:41:f5:df:69:03:d7:8a:ad:c0: 6d:28:77:05:98:06:96:1f:48:5b:28:29:e5:47:b5:38:27:69: 38:d9:2c:56:f5:38:32:5c:10:d4:b9:75:d2:22:89:e8:5d:81: fd:a5:e9:ca:0f:5f:35:d6:df:2c:ba:68:1b:50:6c:2c:a1:c2: 76:4b:a8:d0:68:5d:ca:36:57:14:e5:b8:bd:1a:d1:9c:be:30: f2:49:71:2a:40:cf:ed:b6:5f:c8:ed:6d:26:b4:3e:a4:b4:78: 7f:d8:e5:ff:4c:26:e2:ce:0b:67:26:46:d6:34:97:7c:ea:d0: b4:2d:50:1a:05:27:35:b2:27:0d:6c:7a:d8:16:cb:fc:02:24: bb:4d:0d:aa -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0nF6STtj2Cb25veqD2WBvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkZGQ0MDUyZTBmYzc2NTM2MzYxY2JiZGM3NzUwODc3ZGRm MzYwYWQwHhcNMjUxMjA2MTcwMTE5WhcNMjUxMjA3MTcwMTE5WjAzMTEwLwYDVQQD Eyg1NjVmZjc1ODU1MThiNjk0OTMzMDM1ZDhkNjAzMTA3Y2ViNTliYWM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy3CW/XTuF4WZF1sQ727o+tcQ+OJ4 nVzMFss7TUQtHxUsrIey+wP5NzIpmsfSlXmHKA44tkzHdD0WptxpkbFp6eAoxM1E vN8fS4dSg75gpXERALMykeeC4qSxfAUKepZRqlO8d/KkGkWRT4McTpihXr56P1J/ JV14kigD9hhptteJgmYIIUpGxBDYn3dtn3gKWHRMojtkrz4EMqRb9vsXaemSP39u fRFrEGfCF2EhgbkZMk1FMc4ZQL+xCBNS8zC9uauJIGKpq5hCEQ+N/fQhV+zi0c7X MebfRbFxZg6i33gdgVINBqOy+/m9ZejMyPLx9+6QdQTV8S0r+9oQMr+kyQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFZf91hVGLaUkzA12NYDEHzrWbrEMB8GA1UdIwQY MBaAFG3dQFLg/HZTY2HLvcd1CHfd82CtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYmQxQVV1RDhkbE5qWWN1OXgzVUlkOTN6WUswLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi85MjM0NDgtMzAyNy00OTQxLTk4YTQt YmE3YjFmMzc2OWUzLzEvYmQxQVV1RDhkbE5qWWN1OXgzVUlkOTN6WUswLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi85MjM0NDgtMzAyNy00OTQxLTk4YTQtYmE3YjFmMzc2OWUz LzEvYmQxQVV1RDhkbE5qWWN1OXgzVUlkOTN6WUswLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAg332NiUa Tc2QxxHE2IemWka2XMMSz4dR8ZcSQXVF7xa38JUIXOl9l2H+sV91MgPinYlL8d0n ehFdUd+ImchoJgF6MU7duK1s7LLoSZv+eaQdvss7wGX2Whvgw+3S6XxeoIwVklRe CZtM6q5CLszdyuphazsyQfXfaQPXiq3AbSh3BZgGlh9IWygp5Ue1OCdpONksVvU4 MlwQ1Ll10iKJ6F2B/aXpyg9fNdbfLLpoG1BsLKHCdkuo0GhdyjZXFOW4vRrRnL4w 8klxKkDP7bZfyO1tJrQ+pLR4f9jl/0wm4s4LZyZG1jSXfOrQtC1QGgUnNbInDWx6 2BbL/AIku00Nqg== -----END CERTIFICATE-----Generated at Sun Dec 7 00:59:20 2025 by rpki-client