This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/119c70-3950-4636-8395-2fc486015564/1/bHDW7sK1YF-LG-bOhDlfJGxC3xw.mft File: bHDW7sK1YF-LG-bOhDlfJGxC3xw.mft (raw, json) Hash identifier: uNCqTk+HxKqgJbBF6Oat1BqKPHT6d9XvaeWrE8QH0Ag= Subject key identifier: 6F:BD:B5:84:72:E9:53:8F:69:40:6E:EE:D4:28:5D:24:DE:5D:F4:00 Authority key identifier: 6C:70:D6:EE:C2:B5:60:5F:8B:1B:E6:CE:84:39:5F:24:6C:42:DF:1C Certificate issuer: /CN=6c70d6eec2b5605f8b1be6ce84395f246c42df1c Certificate serial: 019AF12E3837C0828CDC0156AC56DF665E03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bHDW7sK1YF-LG-bOhDlfJGxC3xw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/119c70-3950-4636-8395-2fc486015564/1/bHDW7sK1YF-LG-bOhDlfJGxC3xw.mft Manifest number: 0580 Signing time: Sat 06 Dec 2025 01:02:09 +0000 Manifest this update: Sat 06 Dec 2025 01:02:09 +0000 Manifest next update: Sun 07 Dec 2025 01:02:09 +0000 Files and hashes: 1: bHDW7sK1YF-LG-bOhDlfJGxC3xw.crl (hash: Ji19zPDYDL4Jqps8vFJONttTKvtfOFeK0BSbqXN3PBs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/119c70-3950-4636-8395-2fc486015564/1/bHDW7sK1YF-LG-bOhDlfJGxC3xw.crl rsync://rpki.ripe.net/repository/DEFAULT/fb/119c70-3950-4636-8395-2fc486015564/1/bHDW7sK1YF-LG-bOhDlfJGxC3xw.mft rsync://rpki.ripe.net/repository/DEFAULT/bHDW7sK1YF-LG-bOhDlfJGxC3xw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:38:37:c0:82:8c:dc:01:56:ac:56:df:66:5e:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6c70d6eec2b5605f8b1be6ce84395f246c42df1c Validity Not Before: Dec 6 01:02:09 2025 GMT Not After : Dec 7 01:02:09 2025 GMT Subject: CN=6fbdb58472e9538f69406eeed4285d24de5df400 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:10:b0:8a:30:6e:fa:33:fe:f8:ab:fe:d3:bb: 4e:d7:f8:70:a0:33:62:92:93:10:55:88:4d:c4:e4: 72:03:79:bc:9f:c5:40:7c:8f:5e:96:3d:0d:6a:38: 43:43:2e:d8:cc:b9:dc:eb:d9:ab:54:ab:e6:6a:ab: 6a:b4:41:33:a1:ab:bb:7b:81:ce:f1:e1:bf:d4:4d: 3d:60:22:0a:03:f1:61:46:32:08:ef:15:6b:40:9e: d6:93:02:44:52:ff:6b:15:b3:20:38:bd:b2:c7:d6: a6:e7:0e:6b:88:c9:78:c2:6c:59:12:23:b2:f8:44: c4:8f:74:ee:d3:9c:d9:5a:d2:38:0d:80:b7:10:4d: a8:b8:81:f3:26:b9:d1:a6:17:8e:d6:c9:1c:44:31: 85:eb:cc:93:71:71:01:f4:d6:87:80:82:5a:8c:b4: 25:52:ba:62:69:4b:e8:4e:f5:de:a6:ed:51:1f:6e: 54:2c:04:bd:d9:5d:51:ae:02:8e:ac:fe:f9:1a:df: 61:f5:7a:88:0e:15:df:93:45:61:8b:f4:f2:df:16: 5d:70:a1:bf:43:0e:0b:c6:66:51:44:68:d7:3b:cb: 29:d9:6c:1d:58:1c:18:80:63:1c:bc:c2:b6:2e:32: 79:74:1d:77:6c:e1:bb:8a:c3:00:cc:71:1e:88:af: 7f:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:BD:B5:84:72:E9:53:8F:69:40:6E:EE:D4:28:5D:24:DE:5D:F4:00 X509v3 Authority Key Identifier: keyid:6C:70:D6:EE:C2:B5:60:5F:8B:1B:E6:CE:84:39:5F:24:6C:42:DF:1C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bHDW7sK1YF-LG-bOhDlfJGxC3xw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/119c70-3950-4636-8395-2fc486015564/1/bHDW7sK1YF-LG-bOhDlfJGxC3xw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/119c70-3950-4636-8395-2fc486015564/1/bHDW7sK1YF-LG-bOhDlfJGxC3xw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 03:7a:03:28:8f:99:db:0f:d6:9a:43:0f:e4:68:1a:fc:7f:81: ec:fd:33:83:bd:9c:93:0e:32:ed:8c:65:08:fe:39:f8:01:39: 99:44:c5:c4:6b:e1:5e:1a:56:de:d5:98:59:f3:27:45:ca:b7: d8:6e:96:71:6f:94:9e:77:96:54:30:fb:bb:96:26:98:d3:9c: 82:3a:59:3b:98:57:f4:9d:84:8a:d3:e2:f8:d4:56:63:72:02: 22:22:4b:28:81:84:ca:0e:11:68:0e:17:64:92:a6:7c:18:4a: 81:d4:a5:d1:19:a5:a4:7c:3f:9a:28:71:54:0d:27:97:0e:47: 47:fe:e7:cc:6c:e8:67:5d:05:db:28:6c:cc:84:03:ac:28:f8: bc:a8:18:d7:b1:a0:f8:78:69:70:d4:73:81:e6:ed:b2:7e:e7: a8:8e:95:96:be:12:d7:14:aa:c9:5c:3c:8d:ed:70:ef:a6:2e: 1c:a5:93:ac:f7:9b:ce:7a:59:94:9d:6d:7a:7f:c2:9f:89:7c: 81:35:8d:1f:ad:4b:ca:1f:e3:fe:b9:0f:59:90:40:92:a3:cc: 50:36:98:83:e2:dc:c6:d5:25:49:85:fc:55:75:d9:79:17:64: 8e:c9:c2:a3:66:19:09:c6:d0:7d:29:6a:66:4e:bf:9e:68:ee: 1a:ef:57:9a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLjg3wIKM3AFWrFbfZl4DMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZjNzBkNmVlYzJiNTYwNWY4YjFiZTZjZTg0Mzk1ZjI0NmM0 MmRmMWMwHhcNMjUxMjA2MDEwMjA5WhcNMjUxMjA3MDEwMjA5WjAzMTEwLwYDVQQD Eyg2ZmJkYjU4NDcyZTk1MzhmNjk0MDZlZWVkNDI4NWQyNGRlNWRmNDAwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmhCwijBu+jP++Kv+07tO1/hwoDNi kpMQVYhNxORyA3m8n8VAfI9elj0NajhDQy7YzLnc69mrVKvmaqtqtEEzoau7e4HO 8eG/1E09YCIKA/FhRjII7xVrQJ7WkwJEUv9rFbMgOL2yx9am5w5riMl4wmxZEiOy +ETEj3Tu05zZWtI4DYC3EE2ouIHzJrnRpheO1skcRDGF68yTcXEB9NaHgIJajLQl UrpiaUvoTvXepu1RH25ULAS92V1RrgKOrP75Gt9h9XqIDhXfk0Vhi/Ty3xZdcKG/ Qw4LxmZRRGjXO8sp2WwdWBwYgGMcvMK2LjJ5dB13bOG7isMAzHEeiK9/UwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG+9tYRy6VOPaUBu7tQoXSTeXfQAMB8GA1UdIwQY MBaAFGxw1u7CtWBfixvmzoQ5XyRsQt8cMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYkhEVzdzSzFZRi1MRy1iT2hEbGZKR3hDM3h3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi8xMTljNzAtMzk1MC00NjM2LTgzOTUt MmZjNDg2MDE1NTY0LzEvYkhEVzdzSzFZRi1MRy1iT2hEbGZKR3hDM3h3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYi8xMTljNzAtMzk1MC00NjM2LTgzOTUtMmZjNDg2MDE1NTY0 LzEvYkhEVzdzSzFZRi1MRy1iT2hEbGZKR3hDM3h3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAA3oDKI+Z 2w/WmkMP5Gga/H+B7P0zg72ckw4y7YxlCP45+AE5mUTFxGvhXhpW3tWYWfMnRcq3 2G6WcW+UnneWVDD7u5YmmNOcgjpZO5hX9J2EitPi+NRWY3ICIiJLKIGEyg4RaA4X ZJKmfBhKgdSl0RmlpHw/mihxVA0nlw5HR/7nzGzoZ10F2yhszIQDrCj4vKgY17Gg +HhpcNRzgebtsn7nqI6Vlr4S1xSqyVw8je1w76YuHKWTrPebznpZlJ1ten/Cn4l8 gTWNH61Lyh/j/rkPWZBAkqPMUDaYg+LcxtUlSYX8VXXZeRdkjsnCo2YZCcbQfSlq Zk6/nmjuGu9Xmg== -----END CERTIFICATE-----Generated at Sat Dec 6 09:27:55 2025 by rpki-client