This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/db8ed5-37db-417e-9157-a3c3f9aa8608/1/bdoFbDtU5QDKGcj1xHcKw_RQ5L0.mft File: bdoFbDtU5QDKGcj1xHcKw_RQ5L0.mft (raw, json) Hash identifier: 9Nn/ErKZNszwbzn0yWVFsxwDEsFGKCtzD5A0DEOpgMA= Subject key identifier: B8:73:48:60:2C:6B:4A:EE:24:A7:A8:FF:E6:9B:E1:33:FA:C8:39:DA Authority key identifier: 6D:DA:05:6C:3B:54:E5:00:CA:19:C8:F5:C4:77:0A:C3:F4:50:E4:BD Certificate issuer: /CN=6dda056c3b54e500ca19c8f5c4770ac3f450e4bd Certificate serial: 019AF19AF1C080FE67A20E8D894BE46CAB48 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bdoFbDtU5QDKGcj1xHcKw_RQ5L0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/db8ed5-37db-417e-9157-a3c3f9aa8608/1/bdoFbDtU5QDKGcj1xHcKw_RQ5L0.mft Manifest number: 175D Signing time: Sat 06 Dec 2025 03:00:54 +0000 Manifest this update: Sat 06 Dec 2025 03:00:54 +0000 Manifest next update: Sun 07 Dec 2025 03:00:54 +0000 Files and hashes: 1: bdoFbDtU5QDKGcj1xHcKw_RQ5L0.crl (hash: NTFgSD5P0LprORqfLyntvk0FQmJmOE9/CUb/wYTyka4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/db8ed5-37db-417e-9157-a3c3f9aa8608/1/bdoFbDtU5QDKGcj1xHcKw_RQ5L0.crl rsync://rpki.ripe.net/repository/DEFAULT/af/db8ed5-37db-417e-9157-a3c3f9aa8608/1/bdoFbDtU5QDKGcj1xHcKw_RQ5L0.mft rsync://rpki.ripe.net/repository/DEFAULT/bdoFbDtU5QDKGcj1xHcKw_RQ5L0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 03:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9a:f1:c0:80:fe:67:a2:0e:8d:89:4b:e4:6c:ab:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6dda056c3b54e500ca19c8f5c4770ac3f450e4bd Validity Not Before: Dec 6 03:00:54 2025 GMT Not After : Dec 7 03:00:54 2025 GMT Subject: CN=b87348602c6b4aee24a7a8ffe69be133fac839da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b7:16:22:64:36:05:e0:32:45:b8:1b:22:7c: f9:aa:92:74:27:9f:8b:05:fd:b2:8d:54:85:b7:f8: 9c:e2:85:00:49:c0:3a:20:04:e5:26:31:d3:fa:ff: ab:aa:2d:8f:c5:7b:0a:86:3f:64:11:97:12:79:d0: c0:ac:d4:78:a6:ce:6f:8b:3e:4f:2a:b4:47:ad:34: e9:09:e9:80:dd:98:8d:f0:24:f8:b1:89:7b:4f:f8: 59:81:db:c6:a7:ce:15:8b:99:bf:64:ca:ba:14:88: f9:22:86:88:26:87:af:1b:83:1a:bd:7a:f6:fd:be: a3:0c:f9:38:0b:d1:bb:2f:ea:da:2c:c5:8f:00:1a: 7b:3d:b6:dd:3b:5e:7d:ac:e5:d2:a6:d9:ef:fe:6c: 05:dd:cb:3e:40:4f:69:53:51:a3:73:8e:66:a2:df: 16:56:01:c7:88:dd:2e:20:11:c6:c2:5d:87:82:21: 6f:34:6e:8c:ec:57:4a:4c:6b:84:d2:41:5a:65:c1: 1a:7f:ef:81:b1:ac:08:66:4b:8d:78:0b:e9:f4:f4: 4e:e3:b0:35:22:8a:99:82:91:24:29:2c:c2:a4:df: b7:43:3a:6e:e4:7f:0f:ec:97:f5:35:b4:32:db:c8: 8d:45:41:21:22:cc:8e:70:9a:98:64:69:79:ea:e5: c3:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:73:48:60:2C:6B:4A:EE:24:A7:A8:FF:E6:9B:E1:33:FA:C8:39:DA X509v3 Authority Key Identifier: keyid:6D:DA:05:6C:3B:54:E5:00:CA:19:C8:F5:C4:77:0A:C3:F4:50:E4:BD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bdoFbDtU5QDKGcj1xHcKw_RQ5L0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/db8ed5-37db-417e-9157-a3c3f9aa8608/1/bdoFbDtU5QDKGcj1xHcKw_RQ5L0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/db8ed5-37db-417e-9157-a3c3f9aa8608/1/bdoFbDtU5QDKGcj1xHcKw_RQ5L0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:65:2a:93:c4:5b:71:8c:be:c2:68:1c:b4:1f:fd:19:73:fb: 11:11:d4:17:74:fd:d1:c1:6a:22:4d:d7:26:b5:b2:7c:d8:f4: 46:81:ca:66:f3:ba:17:b6:d7:97:24:42:bb:bd:7d:8d:62:9a: b8:dd:c8:04:4d:17:7b:73:61:2e:b2:69:87:b7:16:ae:d4:cc: 84:e3:a9:fb:04:30:88:0a:8c:41:da:f6:5c:9b:1e:1d:00:66: c6:47:35:b1:f1:c5:17:61:28:b1:6f:cc:9a:40:5e:d9:97:9a: 0b:fc:0b:5a:1b:c2:62:f1:1c:67:37:d1:25:ec:7d:4a:92:7f: 37:d2:3e:04:19:28:48:c0:71:63:b0:bf:a4:f0:58:34:85:84: d9:57:09:7e:d8:30:d1:f1:28:3b:37:1a:6c:17:04:3b:ba:14: 45:82:f5:fe:22:ef:20:46:77:90:c0:55:f8:ee:cc:f1:9d:ae: 51:1b:fa:cc:41:e6:2d:d1:49:18:23:4d:44:ad:dc:45:6d:6c: 36:18:d7:6d:df:3b:cc:04:d2:7b:35:23:30:91:14:c2:c7:b3: f6:d3:ea:87:64:41:40:24:a2:53:eb:ad:91:47:0c:1c:76:37: 41:32:93:0e:96:e3:6a:47:de:68:1b:4d:6e:d2:b7:59:e9:5d: c9:23:d7:b4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmvHAgP5nog6NiUvkbKtIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkZGEwNTZjM2I1NGU1MDBjYTE5YzhmNWM0NzcwYWMzZjQ1 MGU0YmQwHhcNMjUxMjA2MDMwMDU0WhcNMjUxMjA3MDMwMDU0WjAzMTEwLwYDVQQD EyhiODczNDg2MDJjNmI0YWVlMjRhN2E4ZmZlNjliZTEzM2ZhYzgzOWRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv7cWImQ2BeAyRbgbInz5qpJ0J5+L Bf2yjVSFt/ic4oUAScA6IATlJjHT+v+rqi2PxXsKhj9kEZcSedDArNR4ps5viz5P KrRHrTTpCemA3ZiN8CT4sYl7T/hZgdvGp84Vi5m/ZMq6FIj5IoaIJoevG4MavXr2 /b6jDPk4C9G7L+raLMWPABp7PbbdO159rOXSptnv/mwF3cs+QE9pU1Gjc45mot8W VgHHiN0uIBHGwl2HgiFvNG6M7FdKTGuE0kFaZcEaf++BsawIZkuNeAvp9PRO47A1 IoqZgpEkKSzCpN+3Qzpu5H8P7Jf1NbQy28iNRUEhIsyOcJqYZGl56uXDXQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLhzSGAsa0ruJKeo/+ab4TP6yDnaMB8GA1UdIwQY MBaAFG3aBWw7VOUAyhnI9cR3CsP0UOS9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYmRvRmJEdFU1UURLR2NqMXhIY0t3X1JRNUwwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi9kYjhlZDUtMzdkYi00MTdlLTkxNTct YTNjM2Y5YWE4NjA4LzEvYmRvRmJEdFU1UURLR2NqMXhIY0t3X1JRNUwwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi9kYjhlZDUtMzdkYi00MTdlLTkxNTctYTNjM2Y5YWE4NjA4 LzEvYmRvRmJEdFU1UURLR2NqMXhIY0t3X1JRNUwwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAamUqk8Rb cYy+wmgctB/9GXP7ERHUF3T90cFqIk3XJrWyfNj0RoHKZvO6F7bXlyRCu719jWKa uN3IBE0Xe3NhLrJph7cWrtTMhOOp+wQwiAqMQdr2XJseHQBmxkc1sfHFF2EosW/M mkBe2ZeaC/wLWhvCYvEcZzfRJex9SpJ/N9I+BBkoSMBxY7C/pPBYNIWE2VcJftgw 0fEoOzcabBcEO7oURYL1/iLvIEZ3kMBV+O7M8Z2uURv6zEHmLdFJGCNNRK3cRW1s NhjXbd87zATSezUjMJEUwsez9tPqh2RBQCSiU+utkUcMHHY3QTKTDpbjakfeaBtN btK3WeldySPXtA== -----END CERTIFICATE-----Generated at Sat Dec 6 11:06:03 2025 by rpki-client