This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft File: bSDd05jayPYswSUmMl8YIftyT3U.mft (raw, json) Hash identifier: i8U5lCxegsJldX1Rbs8VcKhXsoSS0yey58nQroquMBg= Subject key identifier: 12:30:1A:56:3F:78:C5:63:3E:59:29:11:60:D0:52:38:C7:2A:AA:F4 Authority key identifier: 6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75 Certificate issuer: /CN=6d20ddd398dac8f62cc12526325f1821fb724f75 Certificate serial: 019B3AC6A2C7296C60671241D885648EED74 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft Manifest number: 168D Signing time: Sat 20 Dec 2025 08:00:54 +0000 Manifest this update: Sat 20 Dec 2025 08:00:54 +0000 Manifest next update: Sun 21 Dec 2025 08:00:54 +0000 Files and hashes: 1: 1-wNbXwWq_rcd31KdtUHBjHqlOYw.roa (hash: Vna41k3RUzjuu4Rno9oMx5pWO8RDhSOU/oHNJLNrfMg=) 2: 1cBjbhQO7ncLuCJPPP3ax-BP1rc.roa (hash: Jy5kekjzCQxDaa0ItIoXnMNYM41DXr2Kna+F8NZUTeI=) 3: 5EzMYu_fV4yzemMUF8IEirZ3m4k.roa (hash: 2tDqtkuFBxnBwvK51GUDoy84nUWDqYsh4HO+bwOKy8M=) 4: 5eRHhosWaEn81OkNyusCZwVd7dE.roa (hash: ocfP0fS6gnrVeOxLsKmob4730X36T0aRDwqF+FQB7po=) 5: 7dOxBPA-NVqHM_R34TmdQX-eiVk.roa (hash: F50CnYYnm4HGmpVuvVtE+trmrhmEhsgxat1JiN/ij8U=) 6: 8hRBXjeqaNVqsRXwD3teVm2IptQ.roa (hash: 7trj/DN0w0nR+thBLV8DeXduqLYmWtu9yjYZdu4vyJw=) 7: Ff-r3-0iyLfe2eC4tftKl7r4ksA.roa (hash: XBCuFAzYlK+KS0b0qdNX4BGXCyC4kES1ua5iNmQkljo=) 8: GDtm9Gv3P0fKgIud1P943rZPnpI.roa (hash: ZgMgh7QThQHVCvY7UkXW80lU6rdqlfPDwGLKvElHD7o=) 9: Hd6EfoaV6nT3HCN6XaeOjid6KeE.roa (hash: jB+LwnmkqI7LD0NI0i2IOq5xZm+2j2nKXigXc5yngNg=) 10: I-d3mGhKAHlT8J9wAcisFqLqGFQ.roa (hash: +t66xrsaCPSb5WzTrykjh+nmEbajrQRTzYzj7itFceY=) 11: Kdr1IpxFOfOedDgEd0rr_-GJc6w.roa (hash: 4mvPk5YCIebKrrCqmTuHh7apgwePzT2ptGjzqSnMQ2k=) 12: RpFEf2i-KdvJWns5f60QFIiul8A.roa (hash: IhnLzk7nknFDNbFcmh5KMyW66l5exCsFA25jgANhkOU=) 13: S1WNVPH-yhQYVBlY1oxGoA4pYB8.roa (hash: /KwKr2NjkF6vHZXTNqR2GuVfyY5uthmni4bhiTmH1io=) 14: TKHVPCgKWgmlRhWEubfTc_2iNdo.roa (hash: kNRIFdkqpRBsn7JG22+KFQspfd2argAfeCH1zb4/CE4=) 15: V2uTQCIG7cpvASw3b1o6E1FEC9w.roa (hash: lSRRwHc5aUwf96o9oByRNWmxPAHRtbICzuXtltcIQaU=) 16: aIC6ROQmIBkJtMQV3BLilIyM4Jc.roa (hash: +ZDiWP7vx5S7AAhHLcn6ylil5bTpyx1nO3rHC5JU56A=) 17: bSDd05jayPYswSUmMl8YIftyT3U.crl (hash: BtmqDLkC0iJw4BCL6H2s/LrCQQOoS5az2NnMCHF8BPc=) 18: hmhsGXGseV2PwIXfLkkzy9brjH8.roa (hash: LD7+KdCf6+q+GHIUMNOAE/kbGPimpdSNwZOTxjTUsL4=) 19: lTuwy0CV892PuCB-pFiGJP53Jfc.roa (hash: 18dJLCtPjiOUThLo90h3UI2WpttIaLE5TSwG1m7paLM=) 20: mrPMPRRrlkwWoRTckPExVReGdzU.roa (hash: udQkxnQ/puhpRZBZD7aeBvy0qFXVY4xyBvq7R9flC08=) 21: o5T0k_44TSkIgUx_Ff4U-HFRZqU.roa (hash: IFaPUBy92F06F1cq2klHPE/ZCTKON9EkjF2KsBLKJXw=) 22: rgzdAffmWWAVB7HsZPyDscdDfUs.roa (hash: PHFUtB9FTI42HYVNCn11UAKgdzJHvZkAvCdcalSeSVs=) 23: vyh_XE53itxxZ2DN3zJiSHad7oQ.roa (hash: BwwJTDqClirjAI8z/+dm20U+LpRGL9usTj1KRJXE4gs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 08:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3a:c6:a2:c7:29:6c:60:67:12:41:d8:85:64:8e:ed:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6d20ddd398dac8f62cc12526325f1821fb724f75 Validity Not Before: Dec 20 08:00:54 2025 GMT Not After : Dec 21 08:00:54 2025 GMT Subject: CN=12301a563f78c5633e59291160d05238c72aaaf4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:74:f5:80:59:16:a5:7b:81:ff:c1:26:e0:c8: 04:ef:e4:d8:dc:50:74:a1:84:21:2d:80:44:9c:53: 62:39:6d:7f:7e:2b:37:cb:b8:d4:5a:a8:16:01:e0: 6f:dd:c6:12:ed:33:ae:86:70:2c:da:f0:8a:f0:18: 7a:7f:03:34:3f:3c:12:35:6c:3b:28:61:8d:9e:51: 92:3e:9e:5a:e7:aa:c7:20:1c:98:6b:5f:97:fb:63: 00:d9:81:28:f9:80:9c:98:42:81:7e:45:4d:e9:da: b6:d3:4f:88:d9:4c:66:78:02:cc:fc:e6:c4:39:b4: 43:91:b8:4c:4e:fa:dd:7c:bc:d5:fc:33:ae:26:1c: fc:fb:9d:4f:3f:35:22:e6:51:cf:76:4b:96:a8:1d: 77:81:59:1a:b0:f5:3c:87:94:ea:3b:08:1d:b7:43: 7a:4d:00:72:29:3b:87:a4:04:e6:c5:1d:5b:a2:5a: 35:dc:87:90:1c:ea:56:48:4f:13:05:72:a5:6a:3e: e9:66:47:02:5f:24:8c:c6:a1:55:17:5f:89:fe:aa: 48:0b:e2:bc:31:d7:d8:fe:88:bd:d7:5a:e6:fc:01: df:28:d1:8c:1b:ae:73:be:5b:4f:e4:37:d3:01:03: 10:96:9f:bd:50:bb:52:ca:4a:c6:7e:13:56:f0:39: 73:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:30:1A:56:3F:78:C5:63:3E:59:29:11:60:D0:52:38:C7:2A:AA:F4 X509v3 Authority Key Identifier: keyid:6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 07:a5:56:aa:bf:b7:79:5c:00:09:2c:d2:6c:28:fe:52:aa:f3: fc:2b:76:53:4f:b0:3b:a0:79:5e:c4:d8:c0:52:0e:4d:35:f1: 39:d0:0e:52:1b:76:12:4b:f8:e6:7a:2f:b2:d2:af:e7:57:a7: cb:77:53:03:9b:1d:e3:87:c8:f7:22:91:7f:c1:a8:45:7c:2d: d3:09:be:4b:db:0d:bd:3c:46:66:9e:9f:b9:9f:5f:32:da:24: 5c:04:7a:96:08:8d:f4:8d:29:36:04:8f:bd:1b:f0:5e:76:10: 41:c2:76:93:ae:24:b2:7f:86:38:27:53:43:e6:50:97:50:cd: bc:32:8f:77:65:39:b5:ea:d2:c0:71:2f:44:7e:07:57:41:1c: 00:9d:41:15:b8:81:cc:75:0a:ae:a9:fb:a5:9a:de:a6:99:f2: f5:87:77:bb:39:6c:2d:ad:90:12:20:3e:8b:af:1a:c5:dd:36: fb:d1:17:0e:f7:a9:ab:0c:f1:33:0b:6d:5c:20:74:dd:65:0a: 5b:44:8e:27:26:ef:ea:95:23:f2:cf:e2:bc:eb:31:1b:da:47: b2:15:71:e6:58:6d:fb:d6:d5:f0:97:12:35:2e:4a:eb:62:2a: 25:6c:bb:8a:d9:26:0c:93:17:ce:df:7d:83:f8:23:7c:cd:87: a0:76:c4:cd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs6xqLHKWxgZxJB2IVkju10MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkMjBkZGQzOThkYWM4ZjYyY2MxMjUyNjMyNWYxODIxZmI3 MjRmNzUwHhcNMjUxMjIwMDgwMDU0WhcNMjUxMjIxMDgwMDU0WjAzMTEwLwYDVQQD EygxMjMwMWE1NjNmNzhjNTYzM2U1OTI5MTE2MGQwNTIzOGM3MmFhYWY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxXT1gFkWpXuB/8Em4MgE7+TY3FB0 oYQhLYBEnFNiOW1/fis3y7jUWqgWAeBv3cYS7TOuhnAs2vCK8Bh6fwM0PzwSNWw7 KGGNnlGSPp5a56rHIByYa1+X+2MA2YEo+YCcmEKBfkVN6dq200+I2UxmeALM/ObE ObRDkbhMTvrdfLzV/DOuJhz8+51PPzUi5lHPdkuWqB13gVkasPU8h5TqOwgdt0N6 TQByKTuHpATmxR1bolo13IeQHOpWSE8TBXKlaj7pZkcCXySMxqFVF1+J/qpIC+K8 MdfY/oi911rm/AHfKNGMG65zvltP5DfTAQMQlp+9ULtSykrGfhNW8DlzbQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBIwGlY/eMVjPlkpEWDQUjjHKqr0MB8GA1UdIwQY MBaAFG0g3dOY2sj2LMElJjJfGCH7ck91MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS9hMWE4OGYtMWRmZi00ZWZmLTgyNmIt MzZkZTY1NzIzMmJlLzEvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMS9hMWE4OGYtMWRmZi00ZWZmLTgyNmItMzZkZTY1NzIzMmJl LzEvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB6VWqr+3 eVwACSzSbCj+Uqrz/Ct2U0+wO6B5XsTYwFIOTTXxOdAOUht2Ekv45novstKv51en y3dTA5sd44fI9yKRf8GoRXwt0wm+S9sNvTxGZp6fuZ9fMtokXAR6lgiN9I0pNgSP vRvwXnYQQcJ2k64ksn+GOCdTQ+ZQl1DNvDKPd2U5terSwHEvRH4HV0EcAJ1BFbiB zHUKrqn7pZreppny9Yd3uzlsLa2QEiA+i68axd02+9EXDvepqwzxMwttXCB03WUK W0SOJybv6pUj8s/ivOsxG9pHshVx5lht+9bV8JcSNS5K62IqJWy7itkmDJMXzt99 g/gjfM2HoHbEzQ== -----END CERTIFICATE-----Generated at Sat Dec 20 14:37:48 2025 by rpki-client