This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.mft File: bzHGTD5afeEED0Daj-3EfDj-Wfo.mft (raw, json) Hash identifier: kQsMjyx2kwt/uqks3EFRip4U5hgNwQ8nuvHgJZxCap4= Subject key identifier: A7:61:EC:07:2E:0E:A8:56:0A:51:F4:53:3C:20:57:5B:78:74:97:BC Authority key identifier: 6F:31:C6:4C:3E:5A:7D:E1:04:0F:40:DA:8F:ED:C4:7C:38:FE:59:FA Certificate issuer: /CN=6f31c64c3e5a7de1040f40da8fedc47c38fe59fa Certificate serial: 019AF19B01E5B173ECC99DF2232D0EC3DC52 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzHGTD5afeEED0Daj-3EfDj-Wfo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.mft Manifest number: 100D Signing time: Sat 06 Dec 2025 03:00:58 +0000 Manifest this update: Sat 06 Dec 2025 03:00:58 +0000 Manifest next update: Sun 07 Dec 2025 03:00:58 +0000 Files and hashes: 1: V-ziE9ps9Cl1x9ik1a79A00SdKk.roa (hash: vAv5TpbiymJ0TO2JtzeVr/xllon/oJLZTZGZk+qEl8o=) 2: bzHGTD5afeEED0Daj-3EfDj-Wfo.crl (hash: ecqUFPPcl0t4Z8CxY7RW6YW0p1hNfVqSsyYuSzC+hFg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.crl rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.mft rsync://rpki.ripe.net/repository/DEFAULT/bzHGTD5afeEED0Daj-3EfDj-Wfo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:01:e5:b1:73:ec:c9:9d:f2:23:2d:0e:c3:dc:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f31c64c3e5a7de1040f40da8fedc47c38fe59fa Validity Not Before: Dec 6 03:00:58 2025 GMT Not After : Dec 7 03:00:58 2025 GMT Subject: CN=a761ec072e0ea8560a51f4533c20575b787497bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:6a:6d:0f:79:67:36:33:a5:eb:bc:d0:4e:82: 97:5b:64:9e:d7:6d:8b:4c:cb:4c:32:15:c0:29:a6: 38:b8:81:62:91:2c:a4:c2:13:63:3f:98:bf:6e:e1: 5d:c6:d6:7d:d9:ad:2f:7c:e8:ec:b5:c4:cf:02:19: b3:f4:f8:d3:6f:e3:98:ef:55:41:59:5e:d0:9d:cd: 69:c6:a4:ac:3a:a1:4e:32:ef:98:ec:21:0d:1a:1b: 82:d8:a4:b8:eb:ba:2f:82:ed:39:a3:6d:f9:60:e8: 95:32:a4:ff:f8:57:78:37:b6:cf:02:bf:70:39:04: 17:90:1d:cd:14:b4:58:97:8c:97:cf:5f:03:bd:d4: 19:92:48:40:3a:b6:71:57:6d:ab:03:de:f5:33:e0: 91:24:2c:49:45:69:22:01:73:15:c1:ba:eb:57:f8: e4:e0:7d:b8:cf:eb:f4:27:b4:1b:f6:8f:03:44:d0: d6:74:88:eb:bb:a7:f5:55:eb:1c:b7:98:2f:cb:94: b7:4e:8e:40:dd:fd:02:66:7a:4b:09:ac:4d:07:f5: 2a:8f:73:66:73:3a:3f:f9:ee:14:6f:c8:be:19:02: 65:71:16:90:9b:86:66:b3:f4:c3:9c:4e:05:de:fc: 28:f2:67:2e:e9:02:06:cb:ba:99:ab:3a:d6:06:2d: d8:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:61:EC:07:2E:0E:A8:56:0A:51:F4:53:3C:20:57:5B:78:74:97:BC X509v3 Authority Key Identifier: keyid:6F:31:C6:4C:3E:5A:7D:E1:04:0F:40:DA:8F:ED:C4:7C:38:FE:59:FA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzHGTD5afeEED0Daj-3EfDj-Wfo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 03:b1:54:0a:c5:d4:4b:06:3b:df:ba:97:7e:5a:34:8b:83:70: 86:d1:d2:75:5b:52:51:a0:09:af:4a:8c:48:09:66:6b:27:e0: 81:8b:4f:6c:f5:14:bd:da:61:92:29:01:f5:87:c9:9b:c8:8f: 5f:35:96:89:b3:1a:08:89:23:67:c8:ce:bf:a8:35:58:5e:84: 9c:15:36:c0:ac:50:c8:1c:91:b8:fb:f4:f6:53:02:0f:19:cb: 8c:4d:df:78:94:7d:94:cd:5c:9e:07:f7:99:bc:2e:ef:bb:5c: a8:16:77:80:73:df:69:f5:32:00:a6:bd:5d:95:4a:0d:56:52: 13:2a:d5:15:c1:81:35:74:4b:a5:cb:81:58:50:52:8e:68:00: f4:c4:6d:9c:1a:53:99:73:4e:96:76:34:15:f0:7f:5a:d6:8f: 46:23:1b:b4:e3:ff:3e:a2:30:66:2c:70:e7:33:91:69:42:15: 99:55:95:a2:c5:5f:2a:dd:8e:ef:ed:cf:b7:c6:c8:1e:f6:ca: ac:2b:8f:e8:62:d1:15:2b:ff:20:11:29:b5:bf:69:7a:cf:30: b8:53:3d:7a:32:a9:a2:ac:35:95:41:5b:63:0f:13:b4:d2:af: b9:d0:c2:77:59:49:74:c8:ca:fc:e7:b5:20:b2:6b:9d:82:56: d9:f4:95:9d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmwHlsXPsyZ3yIy0Ow9xSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmMzFjNjRjM2U1YTdkZTEwNDBmNDBkYThmZWRjNDdjMzhm ZTU5ZmEwHhcNMjUxMjA2MDMwMDU4WhcNMjUxMjA3MDMwMDU4WjAzMTEwLwYDVQQD EyhhNzYxZWMwNzJlMGVhODU2MGE1MWY0NTMzYzIwNTc1Yjc4NzQ5N2JjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw2ptD3lnNjOl67zQToKXW2Se122L TMtMMhXAKaY4uIFikSykwhNjP5i/buFdxtZ92a0vfOjstcTPAhmz9PjTb+OY71VB WV7Qnc1pxqSsOqFOMu+Y7CENGhuC2KS467ovgu05o235YOiVMqT/+Fd4N7bPAr9w OQQXkB3NFLRYl4yXz18DvdQZkkhAOrZxV22rA971M+CRJCxJRWkiAXMVwbrrV/jk 4H24z+v0J7Qb9o8DRNDWdIjru6f1Vesct5gvy5S3To5A3f0CZnpLCaxNB/Uqj3Nm czo/+e4Ub8i+GQJlcRaQm4Zms/TDnE4F3vwo8mcu6QIGy7qZqzrWBi3Y7wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKdh7AcuDqhWClH0UzwgV1t4dJe8MB8GA1UdIwQY MBaAFG8xxkw+Wn3hBA9A2o/txHw4/ln6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYnpIR1RENWFmZUVFRDBEYWotM0VmRGotV2ZvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi84ZWQzODItMzA5Ny00MTNlLWI2YTIt YjA4MGEzNDUxYzdmLzEvYnpIR1RENWFmZUVFRDBEYWotM0VmRGotV2ZvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNi84ZWQzODItMzA5Ny00MTNlLWI2YTItYjA4MGEzNDUxYzdm LzEvYnpIR1RENWFmZUVFRDBEYWotM0VmRGotV2ZvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAA7FUCsXU SwY737qXflo0i4NwhtHSdVtSUaAJr0qMSAlmayfggYtPbPUUvdphkikB9YfJm8iP XzWWibMaCIkjZ8jOv6g1WF6EnBU2wKxQyByRuPv09lMCDxnLjE3feJR9lM1cngf3 mbwu77tcqBZ3gHPfafUyAKa9XZVKDVZSEyrVFcGBNXRLpcuBWFBSjmgA9MRtnBpT mXNOlnY0FfB/WtaPRiMbtOP/PqIwZixw5zORaUIVmVWVosVfKt2O7+3Pt8bIHvbK rCuP6GLRFSv/IBEptb9pes8wuFM9ejKpoqw1lUFbYw8TtNKvudDCd1lJdMjK/Oe1 ILJrnYJW2fSVnQ== -----END CERTIFICATE-----Generated at Sat Dec 6 08:07:14 2025 by rpki-client