This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.mft File: BfWa7cKCluKRck95N954jichZAg.mft (raw, json) Hash identifier: 3kYqEqWVqlOUbME8j1OZw7fuXbeiculIJp6G/cUfspQ= Subject key identifier: D0:D6:DF:A4:56:22:36:1E:A6:05:17:F8:C7:BE:A7:D4:FE:1D:11:F4 Authority key identifier: 05:F5:9A:ED:C2:82:96:E2:91:72:4F:79:37:DE:78:8E:27:21:64:08 Certificate issuer: /CN=05f59aedc28296e291724f7937de788e27216408 Certificate serial: 019AF12E71C0F9049CA7200D2E68E355DCEE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BfWa7cKCluKRck95N954jichZAg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.mft Manifest number: 167E Signing time: Sat 06 Dec 2025 01:02:24 +0000 Manifest this update: Sat 06 Dec 2025 01:02:24 +0000 Manifest next update: Sun 07 Dec 2025 01:02:24 +0000 Files and hashes: 1: BfWa7cKCluKRck95N954jichZAg.crl (hash: T7rM7W+rU3yP6Y+ROAyH8gGHzz2EORodDBt0UxibLO4=) 2: u4-8TJgeQH4fa-D9xZl4ZB3jNoQ.roa (hash: tT+Wu4e7mtchTUuSJdCNjA8Yykw8lNY7Bv1xK7SFPsU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.crl rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.mft rsync://rpki.ripe.net/repository/DEFAULT/BfWa7cKCluKRck95N954jichZAg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:71:c0:f9:04:9c:a7:20:0d:2e:68:e3:55:dc:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05f59aedc28296e291724f7937de788e27216408 Validity Not Before: Dec 6 01:02:24 2025 GMT Not After : Dec 7 01:02:24 2025 GMT Subject: CN=d0d6dfa45622361ea60517f8c7bea7d4fe1d11f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:5d:6f:3e:54:10:13:aa:c7:4f:91:a2:2e:b7: 6f:18:56:ce:fd:f0:a3:34:2d:2b:98:e4:c1:bc:7a: 68:6f:4e:23:b8:72:22:e9:af:1b:88:81:eb:c8:97: 19:a7:11:c0:4e:15:d5:e7:fa:23:38:22:d6:0a:02: 3c:70:5e:40:1b:00:fe:53:e8:55:7c:46:d0:9e:7b: 26:4e:31:94:32:8d:f4:25:08:49:68:ec:e8:11:2b: 12:e4:6b:67:15:7e:95:cf:3d:e1:ee:88:0c:95:a1: eb:e5:db:ac:1e:4f:db:25:64:0d:fa:44:17:63:0a: d2:8c:0c:2c:ba:76:45:e7:8c:0a:cc:62:87:fd:eb: ae:b0:08:24:a8:d6:c5:87:5c:46:74:d1:b1:b0:ed: 74:4c:06:bf:ce:6f:55:15:ab:c7:f4:45:9c:6f:f5: 53:27:60:02:23:f5:21:d7:ef:f5:c5:64:ec:0f:13: 12:f6:17:b0:1c:a3:c2:2e:5d:9a:a5:1d:73:f9:b9: 32:c1:3b:71:92:ce:3c:13:8a:02:79:39:0a:25:a6: 8a:02:ca:19:fd:ee:4f:2e:fc:7a:c1:54:71:ef:7d: b6:69:8f:f5:3b:83:b4:6d:67:91:d0:5e:76:57:dc: aa:6f:b1:ac:60:8e:54:6a:25:0a:82:f1:25:61:c1: 5a:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:D6:DF:A4:56:22:36:1E:A6:05:17:F8:C7:BE:A7:D4:FE:1D:11:F4 X509v3 Authority Key Identifier: keyid:05:F5:9A:ED:C2:82:96:E2:91:72:4F:79:37:DE:78:8E:27:21:64:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BfWa7cKCluKRck95N954jichZAg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4f:95:4e:86:80:b6:0d:2c:db:1e:ad:a4:91:27:de:9e:25:2e: b6:2c:28:3c:26:9c:8f:9f:ef:51:4e:69:66:cc:ea:29:1f:c5: c2:a8:5b:03:49:5e:7f:39:39:c6:8a:e9:63:33:a8:5d:bb:1a: c4:74:e0:b9:c4:62:65:18:b4:80:75:ad:5b:5e:2c:31:91:2f: 15:05:41:7d:11:6b:43:3d:1c:1b:8f:61:8f:5c:64:11:b9:b3: b5:50:0f:f8:2e:28:e9:75:b4:57:ac:3a:01:e9:2a:b5:72:a0: ec:90:94:c6:a4:4d:83:cb:0f:db:91:f0:ef:a7:50:62:eb:3f: 91:1a:14:90:11:52:ad:a9:c3:64:18:82:73:b4:9a:f8:55:54: 2b:37:31:58:74:60:10:e0:d3:c1:24:31:34:00:51:ae:34:e2: 64:94:0e:fc:be:e4:fa:e5:c2:bb:33:87:84:d2:d4:ed:36:d2: 1f:e6:61:ca:dd:d4:11:34:5a:e4:78:80:9e:9b:cf:d1:0f:f2: a4:35:60:af:4b:7b:98:a6:ac:8a:5e:6c:c8:ce:2e:f4:86:81: 10:32:8c:64:a1:b7:55:c5:ae:27:2f:36:bf:8f:04:89:96:c3: 12:c1:bc:b7:2c:92:ab:5a:3d:a8:cc:4c:f0:dd:11:35:62:d7: f8:0f:1d:82 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLnHA+QScpyANLmjjVdzuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1ZjU5YWVkYzI4Mjk2ZTI5MTcyNGY3OTM3ZGU3ODhlMjcy MTY0MDgwHhcNMjUxMjA2MDEwMjI0WhcNMjUxMjA3MDEwMjI0WjAzMTEwLwYDVQQD EyhkMGQ2ZGZhNDU2MjIzNjFlYTYwNTE3ZjhjN2JlYTdkNGZlMWQxMWY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxl1vPlQQE6rHT5GiLrdvGFbO/fCj NC0rmOTBvHpob04juHIi6a8biIHryJcZpxHAThXV5/ojOCLWCgI8cF5AGwD+U+hV fEbQnnsmTjGUMo30JQhJaOzoESsS5GtnFX6Vzz3h7ogMlaHr5dusHk/bJWQN+kQX YwrSjAwsunZF54wKzGKH/euusAgkqNbFh1xGdNGxsO10TAa/zm9VFavH9EWcb/VT J2ACI/Uh1+/1xWTsDxMS9hewHKPCLl2apR1z+bkywTtxks48E4oCeTkKJaaKAsoZ /e5PLvx6wVRx7322aY/1O4O0bWeR0F52V9yqb7GsYI5UaiUKgvElYcFaJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNDW36RWIjYepgUX+Me+p9T+HRH0MB8GA1UdIwQY MBaAFAX1mu3CgpbikXJPeTfeeI4nIWQIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQmZXYTdjS0NsdUtSY2s5NU45NTRqaWNoWkFnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi81ZTFkNDItMzU3NS00ZWMxLWJjN2Mt ZDY0MzY4MjA4MTMxLzEvQmZXYTdjS0NsdUtSY2s5NU45NTRqaWNoWkFnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi81ZTFkNDItMzU3NS00ZWMxLWJjN2MtZDY0MzY4MjA4MTMx LzEvQmZXYTdjS0NsdUtSY2s5NU45NTRqaWNoWkFnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT5VOhoC2 DSzbHq2kkSfeniUutiwoPCacj5/vUU5pZszqKR/FwqhbA0lefzk5xorpYzOoXbsa xHTgucRiZRi0gHWtW14sMZEvFQVBfRFrQz0cG49hj1xkEbmztVAP+C4o6XW0V6w6 AekqtXKg7JCUxqRNg8sP25Hw76dQYus/kRoUkBFSranDZBiCc7Sa+FVUKzcxWHRg EODTwSQxNABRrjTiZJQO/L7k+uXCuzOHhNLU7TbSH+Zhyt3UETRa5HiAnpvP0Q/y pDVgr0t7mKasil5syM4u9IaBEDKMZKG3VcWuJy82v48EiZbDEsG8tyySq1o9qMxM 8N0RNWLX+A8dgg== -----END CERTIFICATE-----Generated at Sat Dec 6 11:32:15 2025 by rpki-client