This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/277154-efba-48ed-bb0c-650b70bad7a9/1/bQ1uHM2JDfL16cFF7LpGiZzOs70.mft File: bQ1uHM2JDfL16cFF7LpGiZzOs70.mft (raw, json) Hash identifier: WSGerQ33p/QSPa7BP8cDH1AJi3pFq1/cAMimO9uQ+9k= Subject key identifier: 8A:17:49:E4:7B:64:3A:B8:9A:C1:FB:59:7E:1C:BB:DD:BE:A0:A6:3F Authority key identifier: 6D:0D:6E:1C:CD:89:0D:F2:F5:E9:C1:45:EC:BA:46:89:9C:CE:B3:BD Certificate issuer: /CN=6d0d6e1ccd890df2f5e9c145ecba46899cceb3bd Certificate serial: 019AF19B937AB930038B4B8A0C2385080A2E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bQ1uHM2JDfL16cFF7LpGiZzOs70.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/277154-efba-48ed-bb0c-650b70bad7a9/1/bQ1uHM2JDfL16cFF7LpGiZzOs70.mft Manifest number: 13F1 Signing time: Sat 06 Dec 2025 03:01:36 +0000 Manifest this update: Sat 06 Dec 2025 03:01:36 +0000 Manifest next update: Sun 07 Dec 2025 03:01:36 +0000 Files and hashes: 1: bQ1uHM2JDfL16cFF7LpGiZzOs70.crl (hash: c/PgXYVERhEt1Yl+7az8R/WKI/sfZijd5/HgsDcgLq8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/277154-efba-48ed-bb0c-650b70bad7a9/1/bQ1uHM2JDfL16cFF7LpGiZzOs70.crl rsync://rpki.ripe.net/repository/DEFAULT/f4/277154-efba-48ed-bb0c-650b70bad7a9/1/bQ1uHM2JDfL16cFF7LpGiZzOs70.mft rsync://rpki.ripe.net/repository/DEFAULT/bQ1uHM2JDfL16cFF7LpGiZzOs70.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:93:7a:b9:30:03:8b:4b:8a:0c:23:85:08:0a:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6d0d6e1ccd890df2f5e9c145ecba46899cceb3bd Validity Not Before: Dec 6 03:01:36 2025 GMT Not After : Dec 7 03:01:36 2025 GMT Subject: CN=8a1749e47b643ab89ac1fb597e1cbbddbea0a63f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:4c:d7:27:f0:17:65:ad:cc:44:18:db:93:c2: 54:e9:37:28:cf:c6:e1:2d:48:2a:93:bf:7a:b4:e3: 91:2c:0d:5b:fd:48:1b:7a:3e:63:5e:4b:58:47:b9: 68:2f:21:f7:17:64:dd:7f:f2:b3:2d:70:f3:8a:cb: be:fb:00:be:56:2d:ee:11:8a:df:5e:4a:36:9c:f0: 0e:c7:91:ac:82:9b:f0:85:b6:9e:95:63:38:23:e6: 5d:fa:6d:a7:12:f7:c0:b6:7f:3d:76:d5:fd:02:20: fd:d2:64:86:c1:d4:dc:0a:aa:c0:26:39:91:9a:ef: 88:a1:39:28:8a:b0:cf:87:cf:85:d2:55:f2:b9:53: 23:dc:6a:a4:13:2d:d0:66:d2:e6:6b:bd:bc:78:ac: 47:4a:4f:85:a9:3f:85:c2:d1:c1:25:4d:61:d7:73: ab:7c:fb:dc:7f:7b:70:d1:1e:e9:34:02:3a:df:06: 88:6c:f6:30:de:93:f7:e6:36:73:ce:00:f9:02:83: 54:de:4b:62:a5:50:10:02:61:f4:0a:71:a4:10:30: c4:0a:39:2f:36:cb:d3:a8:92:20:63:e5:73:35:b7: 91:0e:d1:5c:13:13:0a:a5:4d:a0:35:f3:a8:d4:3c: 9b:95:b2:22:04:8b:2e:62:2f:3f:92:fd:bf:c6:64: ac:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:17:49:E4:7B:64:3A:B8:9A:C1:FB:59:7E:1C:BB:DD:BE:A0:A6:3F X509v3 Authority Key Identifier: keyid:6D:0D:6E:1C:CD:89:0D:F2:F5:E9:C1:45:EC:BA:46:89:9C:CE:B3:BD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bQ1uHM2JDfL16cFF7LpGiZzOs70.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/277154-efba-48ed-bb0c-650b70bad7a9/1/bQ1uHM2JDfL16cFF7LpGiZzOs70.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/277154-efba-48ed-bb0c-650b70bad7a9/1/bQ1uHM2JDfL16cFF7LpGiZzOs70.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3f:3f:70:57:b7:f5:27:dc:24:69:66:2d:38:7a:ed:d7:71:3b: cf:45:31:7d:42:13:db:54:5c:0c:49:9b:f4:40:e1:98:a4:54: 53:b2:b4:86:7f:9e:3b:d7:62:af:cd:5d:8f:1e:97:0d:bf:a0: 61:29:60:f0:1a:df:17:83:a2:90:e5:fc:d0:e0:1f:55:52:49: 13:63:90:c4:75:9f:8b:be:13:71:c2:3c:23:94:8a:c9:3f:eb: 2e:c2:f1:bb:41:09:2a:6e:f7:91:54:3d:b0:d1:b6:2f:bb:a3: ac:76:39:6f:1f:1c:8b:d7:fc:65:47:97:48:72:bb:17:da:aa: 38:05:34:2d:61:f8:14:d8:5b:b6:46:12:dc:bd:1a:26:3c:87: 5c:7e:04:e4:05:ea:e6:72:3c:22:67:e6:ce:82:6c:e6:42:48: 7a:06:24:d6:3e:41:bb:63:53:20:08:96:9d:2c:ac:4d:34:6d: 90:fc:f4:3d:45:32:1c:29:6b:a3:36:b6:eb:54:69:dc:71:4d: b6:89:eb:49:f6:64:4f:8c:06:5c:95:f7:40:dc:3e:9b:b8:fb: 35:16:2f:07:8f:f3:e3:31:7e:77:37:73:b2:90:d7:0a:39:c8: f5:9a:08:c3:ed:84:99:23:de:c3:e8:7b:cb:1e:2b:6d:dd:d4: 88:87:37:af -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm5N6uTADi0uKDCOFCAouMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkMGQ2ZTFjY2Q4OTBkZjJmNWU5YzE0NWVjYmE0Njg5OWNj ZWIzYmQwHhcNMjUxMjA2MDMwMTM2WhcNMjUxMjA3MDMwMTM2WjAzMTEwLwYDVQQD Eyg4YTE3NDllNDdiNjQzYWI4OWFjMWZiNTk3ZTFjYmJkZGJlYTBhNjNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh0zXJ/AXZa3MRBjbk8JU6Tcoz8bh LUgqk796tOORLA1b/Ugbej5jXktYR7loLyH3F2Tdf/KzLXDzisu++wC+Vi3uEYrf Xko2nPAOx5GsgpvwhbaelWM4I+Zd+m2nEvfAtn89dtX9AiD90mSGwdTcCqrAJjmR mu+IoTkoirDPh8+F0lXyuVMj3GqkEy3QZtLma728eKxHSk+FqT+FwtHBJU1h13Or fPvcf3tw0R7pNAI63waIbPYw3pP35jZzzgD5AoNU3ktipVAQAmH0CnGkEDDECjkv NsvTqJIgY+VzNbeRDtFcExMKpU2gNfOo1DyblbIiBIsuYi8/kv2/xmSskwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIoXSeR7ZDq4msH7WX4cu92+oKY/MB8GA1UdIwQY MBaAFG0NbhzNiQ3y9enBRey6RomczrO9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYlExdUhNMkpEZkwxNmNGRjdMcEdpWnpPczcwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC8yNzcxNTQtZWZiYS00OGVkLWJiMGMt NjUwYjcwYmFkN2E5LzEvYlExdUhNMkpEZkwxNmNGRjdMcEdpWnpPczcwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNC8yNzcxNTQtZWZiYS00OGVkLWJiMGMtNjUwYjcwYmFkN2E5 LzEvYlExdUhNMkpEZkwxNmNGRjdMcEdpWnpPczcwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPz9wV7f1 J9wkaWYtOHrt13E7z0UxfUIT21RcDEmb9EDhmKRUU7K0hn+eO9dir81djx6XDb+g YSlg8BrfF4OikOX80OAfVVJJE2OQxHWfi74TccI8I5SKyT/rLsLxu0EJKm73kVQ9 sNG2L7ujrHY5bx8ci9f8ZUeXSHK7F9qqOAU0LWH4FNhbtkYS3L0aJjyHXH4E5AXq 5nI8ImfmzoJs5kJIegYk1j5Bu2NTIAiWnSysTTRtkPz0PUUyHClroza261Rp3HFN tonrSfZkT4wGXJX3QNw+m7j7NRYvB4/z4zF+dzdzspDXCjnI9ZoIw+2EmSPew+h7 yx4rbd3UiIc3rw== -----END CERTIFICATE-----Generated at Sat Dec 6 07:15:03 2025 by rpki-client