This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft File: BB0F8437DE6BB251821A7A5FB8111376F1709023.mft (raw, json) Hash identifier: 9e+e6PXZz7IqVVi243pN353PVhoQ+9VWP24P4JuoJzw= Subject key identifier: E3:38:56:B6:A4:7F:A4:72:07:13:AC:A9:35:5F:52:DE:FB:26:E2:9D Authority key identifier: BB:0F:84:37:DE:6B:B2:51:82:1A:7A:5F:B8:11:13:76:F1:70:90:23 Certificate issuer: /CN=bb0f8437de6bb251821a7a5fb8111376f1709023 Certificate serial: 5AB63E134BEBFF9D3762D452F6FDD15EC153AD4D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uw-EN95rslGCGnpfuBETdvFwkCM.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft Manifest number: 04C8 Signing time: Fri 05 Dec 2025 12:58:13 +0000 Manifest this update: Fri 05 Dec 2025 12:53:13 +0000 Manifest next update: Sat 06 Dec 2025 14:19:13 +0000 Files and hashes: 1: BB0F8437DE6BB251821A7A5FB8111376F1709023.crl (hash: 8v+6fTTGxZee+p6EZq1nnNmDrIm86dGf6NfjoTbqmQQ=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft rsync://rpki.ripe.net/repository/DEFAULT/uw-EN95rslGCGnpfuBETdvFwkCM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 14:19:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:b6:3e:13:4b:eb:ff:9d:37:62:d4:52:f6:fd:d1:5e:c1:53:ad:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bb0f8437de6bb251821a7a5fb8111376f1709023 Validity Not Before: Dec 5 12:53:13 2025 GMT Not After : Dec 6 14:19:13 2025 GMT Subject: CN=E33856B6A47FA4720713ACA9355F52DEFB26E29D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:69:24:ff:2c:41:43:79:aa:6e:94:ad:31:8c: 0e:85:a4:a3:f3:26:ea:de:10:01:6c:d2:ff:2c:3c: 51:b4:ce:aa:a3:2b:b9:7a:c4:09:ff:6e:48:95:3b: 08:20:f9:53:b6:8b:50:45:be:d3:18:97:97:d8:ff: 71:85:99:2a:bf:16:40:ab:c7:73:5f:b2:dd:de:27: b9:7e:b3:2b:93:93:c9:80:7a:1b:61:e0:c1:54:5d: 19:0e:8c:21:2b:21:66:3d:89:56:07:35:6f:cb:13: 0b:11:d6:da:a6:9a:66:1d:62:5a:1f:ed:7f:93:2e: c0:39:d7:65:f4:00:bc:d0:eb:f1:d2:8b:2b:84:b6: 22:44:5e:23:99:1d:98:a7:06:a2:34:93:35:1d:4f: dd:31:1a:4c:5b:08:57:a5:b0:a7:e8:d6:fc:d1:62: 25:1b:8a:c1:af:1d:01:6b:f1:39:5e:5b:bb:b5:99: 07:0f:e8:0a:5e:90:1e:55:7d:bf:97:8d:3e:fd:79: b4:7a:34:0d:25:c2:0c:2e:50:04:7a:98:1b:36:05: 09:7b:d0:d2:de:98:06:fc:40:dc:44:d8:80:f3:e2: 3f:d9:7e:c2:d5:6d:df:88:ff:76:2e:f8:8c:d7:39: 7e:ac:c2:b5:11:e7:40:45:fc:f0:c8:2f:52:c8:f1: 23:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:38:56:B6:A4:7F:A4:72:07:13:AC:A9:35:5F:52:DE:FB:26:E2:9D X509v3 Authority Key Identifier: keyid:BB:0F:84:37:DE:6B:B2:51:82:1A:7A:5F:B8:11:13:76:F1:70:90:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uw-EN95rslGCGnpfuBETdvFwkCM.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/0/BB0F8437DE6BB251821A7A5FB8111376F1709023.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c6:f6:9c:e5:34:d7:19:f0:48:46:b9:dd:56:63:9c:fb:68:16: 5d:3b:27:25:2e:46:2d:42:50:e1:69:a0:58:c9:58:ba:6b:97: f4:4b:96:46:e9:1b:05:37:ef:7b:93:1d:7d:8e:96:2c:06:ec: 70:9e:e5:3f:38:2a:ba:13:e7:54:ba:51:07:98:cc:80:fc:95: 2c:72:ef:db:aa:bc:45:47:ea:ab:88:84:3f:83:b1:e1:7f:55: 7b:3d:9b:7b:45:73:b8:e1:ce:e6:d4:a7:91:c1:c7:20:b2:ef: 4d:a6:92:68:d1:2e:b0:22:36:33:8a:83:2e:31:24:5e:1c:f5: f2:d8:ee:9b:0c:d5:e0:f7:04:db:0c:30:22:3a:2c:4c:05:ba: 7d:25:b5:9f:26:94:79:1a:71:c1:0b:be:93:3b:27:88:bc:db: 6b:53:b7:c2:77:5e:83:f6:23:8c:a7:b2:55:07:a2:37:58:13: 5f:c2:1d:6b:f7:f7:7a:cb:f3:c2:81:c6:47:d3:5d:2c:52:3d: 74:5b:9e:dc:63:ef:35:dd:63:c6:45:a0:5a:06:e3:d1:e0:ae: 09:3c:bf:14:38:bd:74:4d:c2:11:48:42:cb:ec:5f:5b:d8:6d: 63:c7:8a:8f:64:0e:54:78:58:34:a8:f1:d9:1a:a2:57:12:1f: 72:67:8c:4c -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUWrY+E0vr/503YtRS9v3RXsFTrU0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYmIwZjg0MzdkZTZiYjI1MTgyMWE3YTVmYjgxMTEzNzZm MTcwOTAyMzAeFw0yNTEyMDUxMjUzMTNaFw0yNTEyMDYxNDE5MTNaMDMxMTAvBgNV BAMTKEUzMzg1NkI2QTQ3RkE0NzIwNzEzQUNBOTM1NUY1MkRFRkIyNkUyOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6aST/LEFDeapulK0xjA6FpKPz JureEAFs0v8sPFG0zqqjK7l6xAn/bkiVOwgg+VO2i1BFvtMYl5fY/3GFmSq/FkCr x3Nfst3eJ7l+syuTk8mAehth4MFUXRkOjCErIWY9iVYHNW/LEwsR1tqmmmYdYlof 7X+TLsA512X0ALzQ6/HSiyuEtiJEXiOZHZinBqI0kzUdT90xGkxbCFelsKfo1vzR YiUbisGvHQFr8TleW7u1mQcP6ApekB5Vfb+XjT79ebR6NA0lwgwuUAR6mBs2BQl7 0NLemAb8QNxE2IDz4j/ZfsLVbd+I/3Yu+IzXOX6swrUR50BF/PDIL1LI8SMBAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQU4zhWtqR/pHIHE6ypNV9S3vsm4p0wHwYDVR0j BBgwFoAUuw+EN95rslGCGnpfuBETdvFwkCMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzAvQkIwRjg0MzdERTZCQjI1MTgyMUE3QTVGQjgxMTEzNzZGMTcwOTAyMy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3V3LUVOOTVyc2xHQ0ducGZ1QkVUZHZG d2tDTS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yM2Q1ZjY4Mi1i NTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMC9CQjBGODQzN0RFNkJCMjUxODIx QTdBNUZCODExMTM3NkYxNzA5MDIzLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxvac5TTXGfBIRrndVmOc +2gWXTsnJS5GLUJQ4WmgWMlYumuX9EuWRukbBTfve5MdfY6WLAbscJ7lPzgquhPn VLpRB5jMgPyVLHLv26q8RUfqq4iEP4Ox4X9Vez2be0VzuOHO5tSnkcHHILLvTaaS aNEusCI2M4qDLjEkXhz18tjumwzV4PcE2wwwIjosTAW6fSW1nyaUeRpxwQu+kzsn iLzba1O3wndeg/YjjKeyVQeiN1gTX8Ida/f3esvzwoHGR9NdLFI9dFue3GPvNd1j xkWgWgbj0eCuCTy/FDi9dE3CEUhCy+xfW9htY8eKj2QOVHhYNKjx2RqiVxIfcmeM TA== -----END CERTIFICATE-----Generated at Sat Dec 6 07:23:22 2025 by rpki-client