This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/9df11b-0187-4a91-b5d1-2d28a19135fd/1/BoekrKWB2OvN_iS2Xx5woS8omng.mft File: BoekrKWB2OvN_iS2Xx5woS8omng.mft (raw, json) Hash identifier: 1kHIXDZwsT5Yx1uF5naeXUAzDb1cjpz7C/HNciTlguI= Subject key identifier: 1B:64:61:53:F9:86:7B:B9:5D:66:CD:F0:C7:68:CF:7B:EF:6C:28:20 Authority key identifier: 06:87:A4:AC:A5:81:D8:EB:CD:FE:24:B6:5F:1E:70:A1:2F:28:9A:78 Certificate issuer: /CN=0687a4aca581d8ebcdfe24b65f1e70a12f289a78 Certificate serial: 019AF50A3A855265A99AA15CA07B46C30277 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BoekrKWB2OvN_iS2Xx5woS8omng.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/9df11b-0187-4a91-b5d1-2d28a19135fd/1/BoekrKWB2OvN_iS2Xx5woS8omng.mft Manifest number: 091C Signing time: Sat 06 Dec 2025 19:01:19 +0000 Manifest this update: Sat 06 Dec 2025 19:01:19 +0000 Manifest next update: Sun 07 Dec 2025 19:01:19 +0000 Files and hashes: 1: BoekrKWB2OvN_iS2Xx5woS8omng.crl (hash: 8+jfNAAk+wGReDjROcXCUAs3ukUwB0U9+BHc0D61fwQ=) 2: JTkFn5E31NEi0T3jHFsEReuBpS0.roa (hash: kKlmo0yCwDoRfIckDgl+hlLcGOfvby6dj08uXZBlD8g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/9df11b-0187-4a91-b5d1-2d28a19135fd/1/BoekrKWB2OvN_iS2Xx5woS8omng.crl rsync://rpki.ripe.net/repository/DEFAULT/bc/9df11b-0187-4a91-b5d1-2d28a19135fd/1/BoekrKWB2OvN_iS2Xx5woS8omng.mft rsync://rpki.ripe.net/repository/DEFAULT/BoekrKWB2OvN_iS2Xx5woS8omng.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 19:01:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:0a:3a:85:52:65:a9:9a:a1:5c:a0:7b:46:c3:02:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0687a4aca581d8ebcdfe24b65f1e70a12f289a78 Validity Not Before: Dec 6 19:01:19 2025 GMT Not After : Dec 7 19:01:19 2025 GMT Subject: CN=1b646153f9867bb95d66cdf0c768cf7bef6c2820 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:5f:f7:73:5f:d1:d8:e9:18:25:42:5f:31:05: 15:7c:66:d9:75:04:c6:8d:b4:ce:41:34:17:50:55: 72:a8:f4:3f:9d:29:5e:ac:52:ce:4b:09:ae:33:60: a4:47:7e:58:6e:d8:32:d5:54:d3:2c:52:0a:ab:35: 27:15:1a:47:4b:3b:87:8e:43:55:ad:6e:26:38:d3: 0a:5e:65:ac:29:13:4f:ff:b4:f7:f5:ff:37:e1:16: a1:25:80:41:96:e3:e6:56:e8:0e:cb:a5:7e:f8:aa: 5f:e2:82:87:19:14:79:75:2d:91:67:b2:6f:d2:4b: 00:ee:b6:c4:f9:c4:9b:8b:5b:15:90:33:84:f3:f5: f3:e9:d9:f3:88:09:b7:c5:8c:91:a5:5f:fd:ed:4f: 28:ca:08:aa:da:7f:53:e7:7c:ff:b4:43:19:f4:7f: 60:92:48:2d:18:cc:4f:fd:ab:fa:39:f5:ca:2e:44: 6c:1b:e7:c7:ce:8b:fd:5e:4e:58:64:e0:2b:b0:3a: b9:0d:85:75:f2:81:7d:2b:ce:06:dc:d4:d5:48:21: b1:08:12:0e:fa:c2:20:99:c3:2c:db:6b:d5:14:75: b1:fb:09:56:7c:a9:6f:07:cf:1e:bd:1a:5e:64:d1: 7e:09:c9:36:82:65:c4:af:c5:32:43:bf:8d:c5:7b: f8:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:64:61:53:F9:86:7B:B9:5D:66:CD:F0:C7:68:CF:7B:EF:6C:28:20 X509v3 Authority Key Identifier: keyid:06:87:A4:AC:A5:81:D8:EB:CD:FE:24:B6:5F:1E:70:A1:2F:28:9A:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BoekrKWB2OvN_iS2Xx5woS8omng.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/9df11b-0187-4a91-b5d1-2d28a19135fd/1/BoekrKWB2OvN_iS2Xx5woS8omng.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/9df11b-0187-4a91-b5d1-2d28a19135fd/1/BoekrKWB2OvN_iS2Xx5woS8omng.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9e:85:1e:10:0c:c6:18:7c:3b:25:35:04:04:c7:53:dc:7e:ed: 23:6b:f5:2e:9c:ce:ed:27:df:c3:5a:74:c7:7a:15:e8:c2:3c: 25:cb:89:bf:2e:75:d9:59:7a:90:c5:ad:21:95:32:b2:bd:cc: 1c:3d:f3:67:6a:7f:e8:7d:68:77:38:fd:52:20:7d:70:34:a0: d7:af:f5:ff:c6:36:52:03:38:14:bf:47:25:86:8e:d0:c2:36: 55:6f:00:e8:34:6a:e8:a1:f4:20:b9:c2:50:4e:ba:d8:b3:70: de:77:f7:6d:65:db:f9:41:2a:0b:7a:f6:f5:0d:84:3a:ec:f4: 05:2b:be:e9:c9:2f:9d:60:99:f5:5a:a4:42:6c:61:60:82:68: 1d:73:d1:a8:52:b7:54:b8:85:5b:ba:b4:d9:30:d5:2c:d9:39: e3:b9:34:a4:e3:54:b7:dd:fd:7f:b3:d2:16:74:bb:15:18:14: 9d:8c:36:60:d8:f3:d3:79:3f:ec:81:10:08:6e:6a:7f:8f:54: 65:e0:7a:ec:31:f8:3f:87:e3:c3:a5:57:59:8e:c8:e1:17:bb: d4:64:42:1b:88:dc:f8:cc:a7:ee:a5:9b:dd:0f:e8:b0:e1:9c: 51:06:79:eb:31:4e:f5:a5:aa:ff:65:6a:13:44:13:f2:8d:7c: 13:9b:d1:42 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1CjqFUmWpmqFcoHtGwwJ3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA2ODdhNGFjYTU4MWQ4ZWJjZGZlMjRiNjVmMWU3MGExMmYy ODlhNzgwHhcNMjUxMjA2MTkwMTE5WhcNMjUxMjA3MTkwMTE5WjAzMTEwLwYDVQQD EygxYjY0NjE1M2Y5ODY3YmI5NWQ2NmNkZjBjNzY4Y2Y3YmVmNmMyODIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA31/3c1/R2OkYJUJfMQUVfGbZdQTG jbTOQTQXUFVyqPQ/nSlerFLOSwmuM2CkR35Ybtgy1VTTLFIKqzUnFRpHSzuHjkNV rW4mONMKXmWsKRNP/7T39f834RahJYBBluPmVugOy6V++Kpf4oKHGRR5dS2RZ7Jv 0ksA7rbE+cSbi1sVkDOE8/Xz6dnziAm3xYyRpV/97U8oygiq2n9T53z/tEMZ9H9g kkgtGMxP/av6OfXKLkRsG+fHzov9Xk5YZOArsDq5DYV18oF9K84G3NTVSCGxCBIO +sIgmcMs22vVFHWx+wlWfKlvB88evRpeZNF+Cck2gmXEr8UyQ7+NxXv4mwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBtkYVP5hnu5XWbN8Mdoz3vvbCggMB8GA1UdIwQY MBaAFAaHpKylgdjrzf4ktl8ecKEvKJp4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQm9la3JLV0IyT3ZOX2lTMlh4NXdvUzhvbW5nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy85ZGYxMWItMDE4Ny00YTkxLWI1ZDEt MmQyOGExOTEzNWZkLzEvQm9la3JLV0IyT3ZOX2lTMlh4NXdvUzhvbW5nLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYy85ZGYxMWItMDE4Ny00YTkxLWI1ZDEtMmQyOGExOTEzNWZk LzEvQm9la3JLV0IyT3ZOX2lTMlh4NXdvUzhvbW5nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnoUeEAzG GHw7JTUEBMdT3H7tI2v1LpzO7Sffw1p0x3oV6MI8JcuJvy512Vl6kMWtIZUysr3M HD3zZ2p/6H1odzj9UiB9cDSg16/1/8Y2UgM4FL9HJYaO0MI2VW8A6DRq6KH0ILnC UE662LNw3nf3bWXb+UEqC3r29Q2EOuz0BSu+6ckvnWCZ9VqkQmxhYIJoHXPRqFK3 VLiFW7q02TDVLNk547k0pONUt939f7PSFnS7FRgUnYw2YNjz03k/7IEQCG5qf49U ZeB67DH4P4fjw6VXWY7I4Re71GRCG4jc+Myn7qWb3Q/osOGcUQZ56zFO9aWq/2Vq E0QT8o18E5vRQg== -----END CERTIFICATE-----Generated at Sun Dec 7 00:34:10 2025 by rpki-client