This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.


Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft
File:                     bSDd05jayPYswSUmMl8YIftyT3U.mft (raw, json)
Hash identifier:          i8U5lCxegsJldX1Rbs8VcKhXsoSS0yey58nQroquMBg=
Subject key identifier:   12:30:1A:56:3F:78:C5:63:3E:59:29:11:60:D0:52:38:C7:2A:AA:F4
Authority key identifier: 6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75
Certificate issuer:       /CN=6d20ddd398dac8f62cc12526325f1821fb724f75
Certificate serial:       019B3AC6A2C7296C60671241D885648EED74
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft
Manifest number:          168D
Signing time:             Sat 20 Dec 2025 08:00:54 +0000
Manifest this update:     Sat 20 Dec 2025 08:00:54 +0000
Manifest next update:     Sun 21 Dec 2025 08:00:54 +0000
Files and hashes:         1: 1-wNbXwWq_rcd31KdtUHBjHqlOYw.roa (hash: Vna41k3RUzjuu4Rno9oMx5pWO8RDhSOU/oHNJLNrfMg=)
                          2: 1cBjbhQO7ncLuCJPPP3ax-BP1rc.roa (hash: Jy5kekjzCQxDaa0ItIoXnMNYM41DXr2Kna+F8NZUTeI=)
                          3: 5EzMYu_fV4yzemMUF8IEirZ3m4k.roa (hash: 2tDqtkuFBxnBwvK51GUDoy84nUWDqYsh4HO+bwOKy8M=)
                          4: 5eRHhosWaEn81OkNyusCZwVd7dE.roa (hash: ocfP0fS6gnrVeOxLsKmob4730X36T0aRDwqF+FQB7po=)
                          5: 7dOxBPA-NVqHM_R34TmdQX-eiVk.roa (hash: F50CnYYnm4HGmpVuvVtE+trmrhmEhsgxat1JiN/ij8U=)
                          6: 8hRBXjeqaNVqsRXwD3teVm2IptQ.roa (hash: 7trj/DN0w0nR+thBLV8DeXduqLYmWtu9yjYZdu4vyJw=)
                          7: Ff-r3-0iyLfe2eC4tftKl7r4ksA.roa (hash: XBCuFAzYlK+KS0b0qdNX4BGXCyC4kES1ua5iNmQkljo=)
                          8: GDtm9Gv3P0fKgIud1P943rZPnpI.roa (hash: ZgMgh7QThQHVCvY7UkXW80lU6rdqlfPDwGLKvElHD7o=)
                          9: Hd6EfoaV6nT3HCN6XaeOjid6KeE.roa (hash: jB+LwnmkqI7LD0NI0i2IOq5xZm+2j2nKXigXc5yngNg=)
                          10: I-d3mGhKAHlT8J9wAcisFqLqGFQ.roa (hash: +t66xrsaCPSb5WzTrykjh+nmEbajrQRTzYzj7itFceY=)
                          11: Kdr1IpxFOfOedDgEd0rr_-GJc6w.roa (hash: 4mvPk5YCIebKrrCqmTuHh7apgwePzT2ptGjzqSnMQ2k=)
                          12: RpFEf2i-KdvJWns5f60QFIiul8A.roa (hash: IhnLzk7nknFDNbFcmh5KMyW66l5exCsFA25jgANhkOU=)
                          13: S1WNVPH-yhQYVBlY1oxGoA4pYB8.roa (hash: /KwKr2NjkF6vHZXTNqR2GuVfyY5uthmni4bhiTmH1io=)
                          14: TKHVPCgKWgmlRhWEubfTc_2iNdo.roa (hash: kNRIFdkqpRBsn7JG22+KFQspfd2argAfeCH1zb4/CE4=)
                          15: V2uTQCIG7cpvASw3b1o6E1FEC9w.roa (hash: lSRRwHc5aUwf96o9oByRNWmxPAHRtbICzuXtltcIQaU=)
                          16: aIC6ROQmIBkJtMQV3BLilIyM4Jc.roa (hash: +ZDiWP7vx5S7AAhHLcn6ylil5bTpyx1nO3rHC5JU56A=)
                          17: bSDd05jayPYswSUmMl8YIftyT3U.crl (hash: BtmqDLkC0iJw4BCL6H2s/LrCQQOoS5az2NnMCHF8BPc=)
                          18: hmhsGXGseV2PwIXfLkkzy9brjH8.roa (hash: LD7+KdCf6+q+GHIUMNOAE/kbGPimpdSNwZOTxjTUsL4=)
                          19: lTuwy0CV892PuCB-pFiGJP53Jfc.roa (hash: 18dJLCtPjiOUThLo90h3UI2WpttIaLE5TSwG1m7paLM=)
                          20: mrPMPRRrlkwWoRTckPExVReGdzU.roa (hash: udQkxnQ/puhpRZBZD7aeBvy0qFXVY4xyBvq7R9flC08=)
                          21: o5T0k_44TSkIgUx_Ff4U-HFRZqU.roa (hash: IFaPUBy92F06F1cq2klHPE/ZCTKON9EkjF2KsBLKJXw=)
                          22: rgzdAffmWWAVB7HsZPyDscdDfUs.roa (hash: PHFUtB9FTI42HYVNCn11UAKgdzJHvZkAvCdcalSeSVs=)
                          23: vyh_XE53itxxZ2DN3zJiSHad7oQ.roa (hash: BwwJTDqClirjAI8z/+dm20U+LpRGL9usTj1KRJXE4gs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 21 Dec 2025 08:00:54 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9b:3a:c6:a2:c7:29:6c:60:67:12:41:d8:85:64:8e:ed:74
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6d20ddd398dac8f62cc12526325f1821fb724f75
        Validity
            Not Before: Dec 20 08:00:54 2025 GMT
            Not After : Dec 21 08:00:54 2025 GMT
        Subject: CN=12301a563f78c5633e59291160d05238c72aaaf4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:74:f5:80:59:16:a5:7b:81:ff:c1:26:e0:c8:
                    04:ef:e4:d8:dc:50:74:a1:84:21:2d:80:44:9c:53:
                    62:39:6d:7f:7e:2b:37:cb:b8:d4:5a:a8:16:01:e0:
                    6f:dd:c6:12:ed:33:ae:86:70:2c:da:f0:8a:f0:18:
                    7a:7f:03:34:3f:3c:12:35:6c:3b:28:61:8d:9e:51:
                    92:3e:9e:5a:e7:aa:c7:20:1c:98:6b:5f:97:fb:63:
                    00:d9:81:28:f9:80:9c:98:42:81:7e:45:4d:e9:da:
                    b6:d3:4f:88:d9:4c:66:78:02:cc:fc:e6:c4:39:b4:
                    43:91:b8:4c:4e:fa:dd:7c:bc:d5:fc:33:ae:26:1c:
                    fc:fb:9d:4f:3f:35:22:e6:51:cf:76:4b:96:a8:1d:
                    77:81:59:1a:b0:f5:3c:87:94:ea:3b:08:1d:b7:43:
                    7a:4d:00:72:29:3b:87:a4:04:e6:c5:1d:5b:a2:5a:
                    35:dc:87:90:1c:ea:56:48:4f:13:05:72:a5:6a:3e:
                    e9:66:47:02:5f:24:8c:c6:a1:55:17:5f:89:fe:aa:
                    48:0b:e2:bc:31:d7:d8:fe:88:bd:d7:5a:e6:fc:01:
                    df:28:d1:8c:1b:ae:73:be:5b:4f:e4:37:d3:01:03:
                    10:96:9f:bd:50:bb:52:ca:4a:c6:7e:13:56:f0:39:
                    73:6d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                12:30:1A:56:3F:78:C5:63:3E:59:29:11:60:D0:52:38:C7:2A:AA:F4
            X509v3 Authority Key Identifier:
                keyid:6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         07:a5:56:aa:bf:b7:79:5c:00:09:2c:d2:6c:28:fe:52:aa:f3:
         fc:2b:76:53:4f:b0:3b:a0:79:5e:c4:d8:c0:52:0e:4d:35:f1:
         39:d0:0e:52:1b:76:12:4b:f8:e6:7a:2f:b2:d2:af:e7:57:a7:
         cb:77:53:03:9b:1d:e3:87:c8:f7:22:91:7f:c1:a8:45:7c:2d:
         d3:09:be:4b:db:0d:bd:3c:46:66:9e:9f:b9:9f:5f:32:da:24:
         5c:04:7a:96:08:8d:f4:8d:29:36:04:8f:bd:1b:f0:5e:76:10:
         41:c2:76:93:ae:24:b2:7f:86:38:27:53:43:e6:50:97:50:cd:
         bc:32:8f:77:65:39:b5:ea:d2:c0:71:2f:44:7e:07:57:41:1c:
         00:9d:41:15:b8:81:cc:75:0a:ae:a9:fb:a5:9a:de:a6:99:f2:
         f5:87:77:bb:39:6c:2d:ad:90:12:20:3e:8b:af:1a:c5:dd:36:
         fb:d1:17:0e:f7:a9:ab:0c:f1:33:0b:6d:5c:20:74:dd:65:0a:
         5b:44:8e:27:26:ef:ea:95:23:f2:cf:e2:bc:eb:31:1b:da:47:
         b2:15:71:e6:58:6d:fb:d6:d5:f0:97:12:35:2e:4a:eb:62:2a:
         25:6c:bb:8a:d9:26:0c:93:17:ce:df:7d:83:f8:23:7c:cd:87:
         a0:76:c4:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Dec 20 14:37:48 2025 by rpki-client