This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft File: bSDd05jayPYswSUmMl8YIftyT3U.mft (raw, json) Hash identifier: mTWJImMmmiI5tZe5xCpnEuBtUpvpooUul+a8MoJZFnw= Subject key identifier: 8C:A5:A2:8F:01:49:BC:0B:32:1B:33:E6:95:DD:13:B3:D3:A2:26:4F Authority key identifier: 6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75 Certificate issuer: /CN=6d20ddd398dac8f62cc12526325f1821fb724f75 Certificate serial: 019B38D8471E2936B4CFA0C1C85ACC1024E0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft Manifest number: 168C Signing time: Fri 19 Dec 2025 23:00:56 +0000 Manifest this update: Fri 19 Dec 2025 23:00:56 +0000 Manifest next update: Sat 20 Dec 2025 23:00:56 +0000 Files and hashes: 1: 1-wNbXwWq_rcd31KdtUHBjHqlOYw.roa (hash: Vna41k3RUzjuu4Rno9oMx5pWO8RDhSOU/oHNJLNrfMg=) 2: 1cBjbhQO7ncLuCJPPP3ax-BP1rc.roa (hash: Jy5kekjzCQxDaa0ItIoXnMNYM41DXr2Kna+F8NZUTeI=) 3: 5EzMYu_fV4yzemMUF8IEirZ3m4k.roa (hash: 2tDqtkuFBxnBwvK51GUDoy84nUWDqYsh4HO+bwOKy8M=) 4: 5eRHhosWaEn81OkNyusCZwVd7dE.roa (hash: ocfP0fS6gnrVeOxLsKmob4730X36T0aRDwqF+FQB7po=) 5: 7dOxBPA-NVqHM_R34TmdQX-eiVk.roa (hash: F50CnYYnm4HGmpVuvVtE+trmrhmEhsgxat1JiN/ij8U=) 6: 8hRBXjeqaNVqsRXwD3teVm2IptQ.roa (hash: 7trj/DN0w0nR+thBLV8DeXduqLYmWtu9yjYZdu4vyJw=) 7: Ff-r3-0iyLfe2eC4tftKl7r4ksA.roa (hash: XBCuFAzYlK+KS0b0qdNX4BGXCyC4kES1ua5iNmQkljo=) 8: GDtm9Gv3P0fKgIud1P943rZPnpI.roa (hash: ZgMgh7QThQHVCvY7UkXW80lU6rdqlfPDwGLKvElHD7o=) 9: Hd6EfoaV6nT3HCN6XaeOjid6KeE.roa (hash: jB+LwnmkqI7LD0NI0i2IOq5xZm+2j2nKXigXc5yngNg=) 10: I-d3mGhKAHlT8J9wAcisFqLqGFQ.roa (hash: +t66xrsaCPSb5WzTrykjh+nmEbajrQRTzYzj7itFceY=) 11: Kdr1IpxFOfOedDgEd0rr_-GJc6w.roa (hash: 4mvPk5YCIebKrrCqmTuHh7apgwePzT2ptGjzqSnMQ2k=) 12: RpFEf2i-KdvJWns5f60QFIiul8A.roa (hash: IhnLzk7nknFDNbFcmh5KMyW66l5exCsFA25jgANhkOU=) 13: S1WNVPH-yhQYVBlY1oxGoA4pYB8.roa (hash: /KwKr2NjkF6vHZXTNqR2GuVfyY5uthmni4bhiTmH1io=) 14: TKHVPCgKWgmlRhWEubfTc_2iNdo.roa (hash: kNRIFdkqpRBsn7JG22+KFQspfd2argAfeCH1zb4/CE4=) 15: V2uTQCIG7cpvASw3b1o6E1FEC9w.roa (hash: lSRRwHc5aUwf96o9oByRNWmxPAHRtbICzuXtltcIQaU=) 16: aIC6ROQmIBkJtMQV3BLilIyM4Jc.roa (hash: +ZDiWP7vx5S7AAhHLcn6ylil5bTpyx1nO3rHC5JU56A=) 17: bSDd05jayPYswSUmMl8YIftyT3U.crl (hash: GV5P6Ny50anhmn7+dNfJ6yBJN0p94EzJAKrIij4jLrs=) 18: hmhsGXGseV2PwIXfLkkzy9brjH8.roa (hash: LD7+KdCf6+q+GHIUMNOAE/kbGPimpdSNwZOTxjTUsL4=) 19: lTuwy0CV892PuCB-pFiGJP53Jfc.roa (hash: 18dJLCtPjiOUThLo90h3UI2WpttIaLE5TSwG1m7paLM=) 20: mrPMPRRrlkwWoRTckPExVReGdzU.roa (hash: udQkxnQ/puhpRZBZD7aeBvy0qFXVY4xyBvq7R9flC08=) 21: o5T0k_44TSkIgUx_Ff4U-HFRZqU.roa (hash: IFaPUBy92F06F1cq2klHPE/ZCTKON9EkjF2KsBLKJXw=) 22: rgzdAffmWWAVB7HsZPyDscdDfUs.roa (hash: PHFUtB9FTI42HYVNCn11UAKgdzJHvZkAvCdcalSeSVs=) 23: vyh_XE53itxxZ2DN3zJiSHad7oQ.roa (hash: BwwJTDqClirjAI8z/+dm20U+LpRGL9usTj1KRJXE4gs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 23:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:38:d8:47:1e:29:36:b4:cf:a0:c1:c8:5a:cc:10:24:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6d20ddd398dac8f62cc12526325f1821fb724f75 Validity Not Before: Dec 19 23:00:56 2025 GMT Not After : Dec 20 23:00:56 2025 GMT Subject: CN=8ca5a28f0149bc0b321b33e695dd13b3d3a2264f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:5c:6d:ec:66:79:8a:fe:94:da:d0:2c:b2:28: 5e:76:d4:d0:25:23:54:c1:6c:66:98:bf:32:09:b2: a7:83:88:a3:1b:0b:58:a0:65:43:15:e0:53:6d:c6: be:4c:b7:51:2c:46:05:a4:87:47:fd:7c:b0:73:72: 46:7a:4e:54:97:29:be:61:37:fd:6b:b4:75:c4:29: 90:48:4a:f5:bf:4e:f1:fc:04:a9:df:c6:f8:f7:37: ca:96:88:14:b3:cc:7b:66:44:a6:c8:f7:08:bf:dc: 65:ac:9e:d0:39:36:ae:b7:3d:fb:a6:ba:41:d2:41: ab:5a:1f:eb:ba:3a:3d:d3:eb:e2:97:cf:af:0b:73: c9:e4:3b:01:ae:45:c0:e2:70:1f:66:57:d1:fd:ae: 39:ff:a1:f3:0b:a0:eb:84:67:ae:da:86:45:47:77: 0c:4e:55:e1:fd:ab:e8:4a:b0:d8:3c:76:90:3d:0a: 9f:2a:24:fb:46:9c:94:1c:dc:22:0e:9d:c6:71:17: f9:ab:4b:67:48:c1:15:be:88:d3:bd:05:fd:78:c5: ae:25:e3:43:91:72:da:90:98:7b:42:d2:ff:31:b5: e4:40:89:36:73:ab:ae:3a:9d:d4:da:db:e4:8f:a2: d9:af:50:c4:09:e2:3d:93:d6:29:9e:31:01:a7:e5: f2:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:A5:A2:8F:01:49:BC:0B:32:1B:33:E6:95:DD:13:B3:D3:A2:26:4F X509v3 Authority Key Identifier: keyid:6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:ae:e4:01:fa:39:7e:32:13:48:74:36:f6:85:a6:94:41:75: 9e:36:51:ff:2c:2f:9e:0c:ab:d2:e4:8b:13:f7:98:9c:0a:ce: d6:2b:f2:ae:bc:c9:26:b1:4e:92:d7:9d:5d:69:87:a2:99:c5: 1c:6e:1a:06:0f:fe:b8:12:b4:4f:6e:db:c4:a9:2c:94:ae:62: 67:e7:a1:6f:c0:10:00:97:7c:bc:86:e3:92:18:cc:43:42:c6: 31:ea:93:03:c8:2b:21:2b:f2:4d:bc:f6:7b:35:b8:a8:80:4c: 98:e8:44:36:dc:d3:a0:06:c7:0a:f7:3a:f4:ab:68:50:07:a8: 4a:46:ac:a6:8a:bf:a4:c1:97:e0:6c:92:2f:1d:3d:2c:af:a2: 67:65:74:d8:d3:fb:09:ce:e7:6d:16:bc:be:87:48:dc:aa:83: 76:86:5e:f0:69:d1:4a:7c:44:09:36:08:15:56:46:a8:57:89: ed:b5:1e:22:9f:83:9a:94:51:e4:54:2c:5f:ea:80:da:b8:17: 7c:db:15:09:28:05:44:69:80:cb:58:ee:ab:8a:a7:d7:a5:d9: dd:88:1c:dd:e6:73:73:53:ff:9f:fc:cb:f8:4c:b1:df:30:35: 90:b1:ee:0a:f0:0f:1d:bb:6b:6f:32:6c:5f:32:39:24:ab:84: 4d:e2:3c:f5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs42EceKTa0z6DByFrMECTgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkMjBkZGQzOThkYWM4ZjYyY2MxMjUyNjMyNWYxODIxZmI3 MjRmNzUwHhcNMjUxMjE5MjMwMDU2WhcNMjUxMjIwMjMwMDU2WjAzMTEwLwYDVQQD Eyg4Y2E1YTI4ZjAxNDliYzBiMzIxYjMzZTY5NWRkMTNiM2QzYTIyNjRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArFxt7GZ5iv6U2tAssihedtTQJSNU wWxmmL8yCbKng4ijGwtYoGVDFeBTbca+TLdRLEYFpIdH/Xywc3JGek5Ulym+YTf9 a7R1xCmQSEr1v07x/ASp38b49zfKlogUs8x7ZkSmyPcIv9xlrJ7QOTautz37prpB 0kGrWh/rujo90+vil8+vC3PJ5DsBrkXA4nAfZlfR/a45/6HzC6DrhGeu2oZFR3cM TlXh/avoSrDYPHaQPQqfKiT7RpyUHNwiDp3GcRf5q0tnSMEVvojTvQX9eMWuJeND kXLakJh7QtL/MbXkQIk2c6uuOp3U2tvkj6LZr1DECeI9k9YpnjEBp+XyDwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIyloo8BSbwLMhsz5pXdE7PToiZPMB8GA1UdIwQY MBaAFG0g3dOY2sj2LMElJjJfGCH7ck91MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS9hMWE4OGYtMWRmZi00ZWZmLTgyNmIt MzZkZTY1NzIzMmJlLzEvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMS9hMWE4OGYtMWRmZi00ZWZmLTgyNmItMzZkZTY1NzIzMmJl LzEvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhq7kAfo5 fjITSHQ29oWmlEF1njZR/ywvngyr0uSLE/eYnArO1ivyrrzJJrFOktedXWmHopnF HG4aBg/+uBK0T27bxKkslK5iZ+ehb8AQAJd8vIbjkhjMQ0LGMeqTA8grISvyTbz2 ezW4qIBMmOhENtzToAbHCvc69KtoUAeoSkaspoq/pMGX4GySLx09LK+iZ2V02NP7 Cc7nbRa8vodI3KqDdoZe8GnRSnxECTYIFVZGqFeJ7bUeIp+DmpRR5FQsX+qA2rgX fNsVCSgFRGmAy1juq4qn16XZ3Ygc3eZzc1P/n/zL+Eyx3zA1kLHuCvAPHbtrbzJs XzI5JKuETeI89Q== -----END CERTIFICATE-----Generated at Sat Dec 20 08:40:07 2025 by rpki-client