This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.mft File: bzHGTD5afeEED0Daj-3EfDj-Wfo.mft (raw, json) Hash identifier: F8prwJFEljDeRM6SvNrbgyBqDz8HvzaGPbeNVj6wMxs= Subject key identifier: 31:FF:8B:C6:A2:C4:E3:46:1B:3B:9F:D2:CB:84:79:D4:EC:A8:E9:AF Authority key identifier: 6F:31:C6:4C:3E:5A:7D:E1:04:0F:40:DA:8F:ED:C4:7C:38:FE:59:FA Certificate issuer: /CN=6f31c64c3e5a7de1040f40da8fedc47c38fe59fa Certificate serial: 019B2B8B2D73FF3F872F573EB48A09DC9592 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzHGTD5afeEED0Daj-3EfDj-Wfo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.mft Manifest number: 102B Signing time: Wed 17 Dec 2025 09:01:39 +0000 Manifest this update: Wed 17 Dec 2025 09:01:39 +0000 Manifest next update: Thu 18 Dec 2025 09:01:39 +0000 Files and hashes: 1: V-ziE9ps9Cl1x9ik1a79A00SdKk.roa (hash: vAv5TpbiymJ0TO2JtzeVr/xllon/oJLZTZGZk+qEl8o=) 2: bzHGTD5afeEED0Daj-3EfDj-Wfo.crl (hash: K7Uv+dgdaVfxsXH8eT0SBw0qcpCh0AWENHRkiGLnV5c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.crl rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.mft rsync://rpki.ripe.net/repository/DEFAULT/bzHGTD5afeEED0Daj-3EfDj-Wfo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 09:01:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2b:8b:2d:73:ff:3f:87:2f:57:3e:b4:8a:09:dc:95:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f31c64c3e5a7de1040f40da8fedc47c38fe59fa Validity Not Before: Dec 17 09:01:39 2025 GMT Not After : Dec 18 09:01:39 2025 GMT Subject: CN=31ff8bc6a2c4e3461b3b9fd2cb8479d4eca8e9af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:4c:f7:af:cd:02:c0:7b:65:ba:60:c4:51:dc: 09:93:f6:a9:56:85:1a:2e:2e:5f:6f:39:22:16:c4: e6:8d:31:91:1e:a7:04:17:a6:6f:d4:d5:b4:56:00: b1:e2:80:21:fa:cd:84:07:65:b9:0c:54:c3:5e:85: 3b:bd:bc:ee:34:ed:64:79:99:e0:1a:6e:63:e7:c4: 07:60:7c:da:8d:5b:a1:c6:ce:f4:af:09:69:23:bb: 12:6b:08:aa:d4:e8:4c:bb:a9:99:9a:81:c0:6b:c9: a5:5b:1f:8d:ef:70:23:e4:5e:cd:1f:15:45:1b:33: 51:4d:01:91:7c:10:85:d9:b7:3d:6c:ff:db:05:a4: e5:1a:61:95:03:76:ee:fb:59:52:bd:d9:c9:ea:cf: 2b:e0:2e:75:31:a8:53:99:b8:44:62:a3:e5:c6:45: 78:1a:da:b2:b7:5f:2a:5a:1d:b5:3d:d3:d5:c5:8e: f2:12:5b:43:2c:e4:13:3c:6b:f6:2b:4f:f1:76:d0: db:c2:be:cb:56:8d:cd:18:25:82:18:37:b6:46:6b: 5e:cf:00:5c:39:2d:ec:b4:39:9e:b0:79:ee:00:69: b9:d8:b4:3a:b8:65:84:d4:9b:60:5d:68:1d:da:6f: fa:0f:6c:b9:ac:06:bb:18:a0:af:6e:c4:21:0e:0d: 5e:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:FF:8B:C6:A2:C4:E3:46:1B:3B:9F:D2:CB:84:79:D4:EC:A8:E9:AF X509v3 Authority Key Identifier: keyid:6F:31:C6:4C:3E:5A:7D:E1:04:0F:40:DA:8F:ED:C4:7C:38:FE:59:FA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzHGTD5afeEED0Daj-3EfDj-Wfo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 96:6d:05:4b:df:5e:3d:0d:19:4f:6d:d2:b6:ac:43:71:46:9d: 9a:7d:c2:38:b2:c1:66:22:35:42:1f:2a:4b:08:e2:9c:8f:e9: a1:0b:70:9d:2d:e6:72:ae:c8:6b:10:c2:46:4c:bf:ab:74:df: c9:91:27:04:b9:25:aa:3f:d4:1f:fd:5d:12:60:d6:4f:69:49: 65:9e:2b:5c:25:1f:d3:75:f6:ba:d3:67:55:bf:4c:5b:4c:10: 90:ef:a6:f0:8a:1a:81:9f:55:5e:e8:25:31:4a:45:6c:c1:56: 44:f7:a9:06:dc:e0:13:93:21:92:b1:3b:e8:28:77:eb:b8:21: a5:69:cd:a3:8d:ab:7a:dc:49:a6:89:82:55:9b:1c:40:46:64: ca:e1:83:29:70:93:7b:16:55:dd:ee:3c:53:4d:2b:57:5b:a5: 1e:84:07:56:f7:5f:b2:16:bf:37:81:8a:de:ce:09:9a:7c:4d: e9:00:16:b1:9e:b8:08:44:28:16:59:d7:6d:30:dc:dd:ec:b3: 55:55:89:9f:bf:7c:52:ec:de:a5:32:43:e6:67:a7:11:aa:37: ba:d9:d0:75:b5:7c:5d:f8:30:24:58:2e:0c:40:be:c1:5a:4b: 80:71:11:83:4c:cf:ef:82:c2:c4:c5:8a:92:11:63:17:27:bd: ba:69:f2:07 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsriy1z/z+HL1c+tIoJ3JWSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmMzFjNjRjM2U1YTdkZTEwNDBmNDBkYThmZWRjNDdjMzhm ZTU5ZmEwHhcNMjUxMjE3MDkwMTM5WhcNMjUxMjE4MDkwMTM5WjAzMTEwLwYDVQQD EygzMWZmOGJjNmEyYzRlMzQ2MWIzYjlmZDJjYjg0NzlkNGVjYThlOWFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzUz3r80CwHtlumDEUdwJk/apVoUa Li5fbzkiFsTmjTGRHqcEF6Zv1NW0VgCx4oAh+s2EB2W5DFTDXoU7vbzuNO1keZng Gm5j58QHYHzajVuhxs70rwlpI7sSawiq1OhMu6mZmoHAa8mlWx+N73Aj5F7NHxVF GzNRTQGRfBCF2bc9bP/bBaTlGmGVA3bu+1lSvdnJ6s8r4C51MahTmbhEYqPlxkV4 Gtqyt18qWh21PdPVxY7yEltDLOQTPGv2K0/xdtDbwr7LVo3NGCWCGDe2RmtezwBc OS3stDmesHnuAGm52LQ6uGWE1JtgXWgd2m/6D2y5rAa7GKCvbsQhDg1eDQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDH/i8aixONGGzuf0suEedTsqOmvMB8GA1UdIwQY MBaAFG8xxkw+Wn3hBA9A2o/txHw4/ln6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYnpIR1RENWFmZUVFRDBEYWotM0VmRGotV2ZvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi84ZWQzODItMzA5Ny00MTNlLWI2YTIt YjA4MGEzNDUxYzdmLzEvYnpIR1RENWFmZUVFRDBEYWotM0VmRGotV2ZvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNi84ZWQzODItMzA5Ny00MTNlLWI2YTItYjA4MGEzNDUxYzdm LzEvYnpIR1RENWFmZUVFRDBEYWotM0VmRGotV2ZvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlm0FS99e PQ0ZT23StqxDcUadmn3COLLBZiI1Qh8qSwjinI/poQtwnS3mcq7IaxDCRky/q3Tf yZEnBLklqj/UH/1dEmDWT2lJZZ4rXCUf03X2utNnVb9MW0wQkO+m8IoagZ9VXugl MUpFbMFWRPepBtzgE5MhkrE76Ch367ghpWnNo42retxJpomCVZscQEZkyuGDKXCT exZV3e48U00rV1ulHoQHVvdfsha/N4GK3s4JmnxN6QAWsZ64CEQoFlnXbTDc3eyz VVWJn798UuzepTJD5menEao3utnQdbV8XfgwJFguDEC+wVpLgHERg0zP74LCxMWK khFjFye9umnyBw== -----END CERTIFICATE-----Generated at Wed Dec 17 18:11:34 2025 by rpki-client