This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/c02c5c-ea17-4893-85e0-0205460e8990/1/BWxm1F_n4vNVmVcqd2sSdk3GmgE.mft File: BWxm1F_n4vNVmVcqd2sSdk3GmgE.mft (raw, json) Hash identifier: zuScKgW40Q2QuY22eoHqjaaKf5XdQZvktUtGoA4qm04= Subject key identifier: 20:5D:AF:56:2A:4F:97:8E:60:58:4E:7A:32:02:EC:1D:6E:5B:D7:33 Authority key identifier: 05:6C:66:D4:5F:E7:E2:F3:55:99:57:2A:77:6B:12:76:4D:C6:9A:01 Certificate issuer: /CN=056c66d45fe7e2f35599572a776b12764dc69a01 Certificate serial: 019AF1D1ED1BDBD028556F60C9B7187AFF7B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BWxm1F_n4vNVmVcqd2sSdk3GmgE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/c02c5c-ea17-4893-85e0-0205460e8990/1/BWxm1F_n4vNVmVcqd2sSdk3GmgE.mft Manifest number: 0167 Signing time: Sat 06 Dec 2025 04:00:58 +0000 Manifest this update: Sat 06 Dec 2025 04:00:58 +0000 Manifest next update: Sun 07 Dec 2025 04:00:58 +0000 Files and hashes: 1: BWxm1F_n4vNVmVcqd2sSdk3GmgE.crl (hash: aJ9xzN25OUkKyDYrFiVkkW7G1vlHN7tMlTMprhVuB6o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/c02c5c-ea17-4893-85e0-0205460e8990/1/BWxm1F_n4vNVmVcqd2sSdk3GmgE.crl rsync://rpki.ripe.net/repository/DEFAULT/e3/c02c5c-ea17-4893-85e0-0205460e8990/1/BWxm1F_n4vNVmVcqd2sSdk3GmgE.mft rsync://rpki.ripe.net/repository/DEFAULT/BWxm1F_n4vNVmVcqd2sSdk3GmgE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d1:ed:1b:db:d0:28:55:6f:60:c9:b7:18:7a:ff:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=056c66d45fe7e2f35599572a776b12764dc69a01 Validity Not Before: Dec 6 04:00:58 2025 GMT Not After : Dec 7 04:00:58 2025 GMT Subject: CN=205daf562a4f978e60584e7a3202ec1d6e5bd733 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:17:ff:1b:34:67:36:bc:b7:53:16:15:5b:cf: bb:02:12:62:03:03:65:b2:ac:21:e2:75:38:e7:a7: 8f:21:df:c5:02:74:63:bb:64:d0:79:fd:bc:00:c6: cd:5f:c1:49:7e:dd:18:21:3d:e3:da:94:66:4e:fd: e9:46:04:d2:55:c8:08:58:5c:c7:fe:41:13:d7:6e: de:8f:7e:df:b0:23:f3:e4:98:58:8d:f6:9c:51:8d: b8:9b:f5:e6:aa:5b:de:8b:67:fe:04:9d:ca:ee:af: 89:d1:62:cc:d5:36:e6:6a:b4:a8:49:8a:72:30:4e: 3c:ea:5e:a9:5a:6c:c0:44:15:c0:1a:0d:8c:da:b7: 19:36:a8:b2:72:21:48:db:1b:2a:1f:a1:0f:02:87: 37:e9:d5:bd:fc:a0:74:82:34:c0:2a:45:14:75:2c: 02:3c:20:ae:33:e9:e8:7e:ed:c8:7c:74:a5:2f:20: 5e:24:47:97:f4:43:6d:dc:ac:bd:9a:28:dd:a4:48: c6:a7:f8:c9:43:d4:f4:37:1d:b2:75:9f:fc:59:8f: 25:c5:80:fb:8f:a2:9e:a9:1c:a0:9f:1d:0b:86:bf: fd:8f:9e:a5:2d:82:d4:9a:33:6e:b1:ad:28:53:56: a8:53:70:69:83:8f:55:b5:15:18:b6:ab:14:e2:e2: d5:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:5D:AF:56:2A:4F:97:8E:60:58:4E:7A:32:02:EC:1D:6E:5B:D7:33 X509v3 Authority Key Identifier: keyid:05:6C:66:D4:5F:E7:E2:F3:55:99:57:2A:77:6B:12:76:4D:C6:9A:01 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BWxm1F_n4vNVmVcqd2sSdk3GmgE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/c02c5c-ea17-4893-85e0-0205460e8990/1/BWxm1F_n4vNVmVcqd2sSdk3GmgE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/c02c5c-ea17-4893-85e0-0205460e8990/1/BWxm1F_n4vNVmVcqd2sSdk3GmgE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 77:79:38:60:1d:b6:cd:da:42:71:80:a5:e1:44:18:44:5d:e3: 5a:a4:b3:ac:54:14:07:27:de:07:dd:4a:e3:67:a5:16:c8:3a: 85:c7:fe:fe:ff:59:72:1d:82:60:b3:51:15:da:f5:ed:4f:01: a1:ca:cd:2f:17:dd:a0:25:e7:9b:1a:a0:d2:0f:e9:0a:f9:56: ca:38:04:5f:5a:5f:a6:62:16:67:7a:42:64:ee:05:d5:b3:81: 17:f7:48:eb:f2:42:8c:bb:d6:dc:d6:78:1f:a8:0b:85:d4:44: f1:5e:af:7f:aa:64:e7:9f:e7:ef:fc:02:34:9f:ff:1b:79:7b: ca:ab:d1:1f:32:7f:1d:57:cc:e7:59:7f:68:25:43:94:f5:ed: 1c:46:c5:e2:31:94:34:37:06:70:3d:b4:50:4f:b3:e6:51:3c: bf:e4:ed:9e:73:21:2c:05:a8:b7:a0:fa:6d:44:63:6d:9c:c1: c6:eb:28:2c:53:7d:50:b5:fa:89:30:08:da:7f:a2:6e:01:b7: 0a:d5:e2:b3:e6:b8:b0:9c:3f:ef:18:aa:7f:77:20:a1:3d:e1: 3e:81:a9:70:11:1d:09:cb:91:ee:c1:49:a0:38:0b:6b:07:ad: 4f:3c:06:2b:53:e4:d1:5c:d3:3d:42:21:fe:6d:c3:fc:63:e4: eb:f7:0d:4c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0e0b29AoVW9gybcYev97MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1NmM2NmQ0NWZlN2UyZjM1NTk5NTcyYTc3NmIxMjc2NGRj NjlhMDEwHhcNMjUxMjA2MDQwMDU4WhcNMjUxMjA3MDQwMDU4WjAzMTEwLwYDVQQD EygyMDVkYWY1NjJhNGY5NzhlNjA1ODRlN2EzMjAyZWMxZDZlNWJkNzMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqxf/GzRnNry3UxYVW8+7AhJiAwNl sqwh4nU456ePId/FAnRju2TQef28AMbNX8FJft0YIT3j2pRmTv3pRgTSVcgIWFzH /kET127ej37fsCPz5JhYjfacUY24m/Xmqlvei2f+BJ3K7q+J0WLM1TbmarSoSYpy ME486l6pWmzARBXAGg2M2rcZNqiyciFI2xsqH6EPAoc36dW9/KB0gjTAKkUUdSwC PCCuM+nofu3IfHSlLyBeJEeX9ENt3Ky9mijdpEjGp/jJQ9T0Nx2ydZ/8WY8lxYD7 j6KeqRygnx0Lhr/9j56lLYLUmjNusa0oU1aoU3Bpg49VtRUYtqsU4uLVsQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCBdr1YqT5eOYFhOejIC7B1uW9czMB8GA1UdIwQY MBaAFAVsZtRf5+LzVZlXKndrEnZNxpoBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQld4bTFGX240dk5WbVZjcWQyc1NkazNHbWdFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy9jMDJjNWMtZWExNy00ODkzLTg1ZTAt MDIwNTQ2MGU4OTkwLzEvQld4bTFGX240dk5WbVZjcWQyc1NkazNHbWdFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMy9jMDJjNWMtZWExNy00ODkzLTg1ZTAtMDIwNTQ2MGU4OTkw LzEvQld4bTFGX240dk5WbVZjcWQyc1NkazNHbWdFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAd3k4YB22 zdpCcYCl4UQYRF3jWqSzrFQUByfeB91K42elFsg6hcf+/v9Zch2CYLNRFdr17U8B ocrNLxfdoCXnmxqg0g/pCvlWyjgEX1pfpmIWZ3pCZO4F1bOBF/dI6/JCjLvW3NZ4 H6gLhdRE8V6vf6pk55/n7/wCNJ//G3l7yqvRHzJ/HVfM51l/aCVDlPXtHEbF4jGU NDcGcD20UE+z5lE8v+TtnnMhLAWot6D6bURjbZzBxusoLFN9ULX6iTAI2n+ibgG3 CtXis+a4sJw/7xiqf3cgoT3hPoGpcBEdCcuR7sFJoDgLawetTzwGK1Pk0VzTPUIh /m3D/GPk6/cNTA== -----END CERTIFICATE-----Generated at Sat Dec 6 07:21:29 2025 by rpki-client