This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft File: bdLO01LwH3613HYZ7XFMa2pceR4.mft (raw, json) Hash identifier: j7rFZAEKzttgqO2YjiYoUksZ7Ur72yThaufTfw/WPjk= Subject key identifier: F0:75:2B:63:45:03:BE:21:33:8B:EA:2E:A4:51:61:05:41:ED:B4:55 Authority key identifier: 6D:D2:CE:D3:52:F0:1F:7E:B5:DC:76:19:ED:71:4C:6B:6A:5C:79:1E Certificate issuer: /CN=6dd2ced352f01f7eb5dc7619ed714c6b6a5c791e Certificate serial: 019B38A1A9D39FED16B2C1373D6818831954 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft Manifest number: 0383 Signing time: Fri 19 Dec 2025 22:01:17 +0000 Manifest this update: Fri 19 Dec 2025 22:01:17 +0000 Manifest next update: Sat 20 Dec 2025 22:01:17 +0000 Files and hashes: 1: bdLO01LwH3613HYZ7XFMa2pceR4.crl (hash: WDK5xy2SkofU7fP8I8df4vrIjgJiR04lN/c62LaaUrw=) 2: ldaG2ZtwFXa0D8MT2zJfF9j3gsg.roa (hash: Iho31engw2p2ICkoCri0OTvpMAFdFfQ9ZJ+brUIBG2M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.crl rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:38:a1:a9:d3:9f:ed:16:b2:c1:37:3d:68:18:83:19:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6dd2ced352f01f7eb5dc7619ed714c6b6a5c791e Validity Not Before: Dec 19 22:01:17 2025 GMT Not After : Dec 20 22:01:17 2025 GMT Subject: CN=f0752b634503be21338bea2ea451610541edb455 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:01:da:6e:45:2f:c2:e7:b3:e5:7d:09:1f:3c: ff:5b:b7:34:fe:db:b4:b6:ab:c2:3c:29:4f:7d:04: 14:86:c3:1b:3c:c1:42:3c:c2:b1:b4:34:6f:0c:40: b1:f6:e7:fa:a0:d4:b3:7a:4b:a3:ba:00:52:d0:84: 59:78:f9:bd:6f:72:68:8d:d3:79:d1:fb:8c:60:98: c1:e6:ec:f0:c6:52:53:60:da:35:99:26:b3:5c:2b: 29:15:82:71:c6:8c:ab:66:b9:bd:28:ac:25:aa:4d: 17:29:82:a9:46:0f:14:d3:75:d4:44:59:c3:52:a8: 59:a2:a8:03:b7:22:c4:80:a8:57:34:fd:02:84:d1: a1:eb:a9:c4:60:e2:2f:aa:6f:bc:fc:30:d4:34:a8: 0e:62:94:5f:42:99:b3:a7:52:2d:be:86:76:7c:0f: 43:6d:f4:2a:8e:a1:57:2b:80:5b:92:df:e0:99:7a: 18:17:dd:94:e7:5a:95:b9:e4:0b:0a:e7:cb:fb:79: b8:ba:f3:b9:ce:c6:f5:d6:c9:20:57:48:b2:fd:74: 28:1b:a7:f3:90:fe:82:aa:a5:0d:e9:44:59:ce:89: c8:2e:4c:d2:04:ef:f4:84:fd:3b:f0:68:e6:8d:64: fb:a1:e3:73:0e:22:8e:7c:49:19:9e:ad:2c:c3:24: e9:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:75:2B:63:45:03:BE:21:33:8B:EA:2E:A4:51:61:05:41:ED:B4:55 X509v3 Authority Key Identifier: keyid:6D:D2:CE:D3:52:F0:1F:7E:B5:DC:76:19:ED:71:4C:6B:6A:5C:79:1E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 69:57:ca:22:36:0c:79:ea:85:53:ef:99:23:75:92:e5:20:13: 0f:d1:1a:29:6a:c8:57:7c:bc:1c:ee:e4:80:b4:72:da:4e:98: 9a:30:f9:72:e9:ee:ff:84:67:b8:80:60:7a:32:0d:0f:32:c0: f4:ff:02:0d:7a:b5:80:78:58:a5:c0:f3:3f:88:8f:ca:6e:3f: c6:3d:40:f2:52:10:09:48:ce:67:ca:08:70:33:a3:9b:f8:cb: a3:0d:45:0f:0b:06:fe:35:b2:af:9d:47:1c:c3:d1:87:b9:5a: c6:1a:31:e4:f9:06:b4:5e:02:5b:61:52:be:8a:50:e4:b1:f2: dc:0c:65:83:2b:0a:4a:25:74:bc:f3:3e:30:e5:90:ac:2d:b6: b7:bf:74:1e:65:9d:d0:f5:ce:83:06:d1:23:43:85:de:f1:d8: ed:b3:ff:b7:13:69:ab:89:cf:0a:55:bb:8b:cf:6f:9a:0a:5a: ee:3b:3f:3f:12:36:36:58:fe:4b:46:5d:3f:dc:02:a4:a9:cb: 5e:65:8d:41:3f:b3:20:9b:fe:fc:9c:4d:e5:d3:19:96:da:b2: 5c:85:79:7c:b6:71:ae:13:87:72:be:df:33:5f:39:b4:e9:21: d0:e6:cf:68:44:fc:1f:8a:99:08:84:9b:dc:36:4f:b6:c5:20: 56:c7:53:a9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs4oanTn+0WssE3PWgYgxlUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkZDJjZWQzNTJmMDFmN2ViNWRjNzYxOWVkNzE0YzZiNmE1 Yzc5MWUwHhcNMjUxMjE5MjIwMTE3WhcNMjUxMjIwMjIwMTE3WjAzMTEwLwYDVQQD EyhmMDc1MmI2MzQ1MDNiZTIxMzM4YmVhMmVhNDUxNjEwNTQxZWRiNDU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnwHabkUvwuez5X0JHzz/W7c0/tu0 tqvCPClPfQQUhsMbPMFCPMKxtDRvDECx9uf6oNSzekujugBS0IRZePm9b3JojdN5 0fuMYJjB5uzwxlJTYNo1mSazXCspFYJxxoyrZrm9KKwlqk0XKYKpRg8U03XURFnD UqhZoqgDtyLEgKhXNP0ChNGh66nEYOIvqm+8/DDUNKgOYpRfQpmzp1ItvoZ2fA9D bfQqjqFXK4Bbkt/gmXoYF92U51qVueQLCufL+3m4uvO5zsb11skgV0iy/XQoG6fz kP6CqqUN6URZzonILkzSBO/0hP078GjmjWT7oeNzDiKOfEkZnq0swyTpFwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPB1K2NFA74hM4vqLqRRYQVB7bRVMB8GA1UdIwQY MBaAFG3SztNS8B9+tdx2Ge1xTGtqXHkeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYmRMTzAxTHdIMzYxM0hZWjdYRk1hMnBjZVI0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi8yNDVlMWEtMDYxMi00NTk2LWE5NWEt OWRmNzI1MzBiNjY5LzEvYmRMTzAxTHdIMzYxM0hZWjdYRk1hMnBjZVI0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNi8yNDVlMWEtMDYxMi00NTk2LWE5NWEtOWRmNzI1MzBiNjY5 LzEvYmRMTzAxTHdIMzYxM0hZWjdYRk1hMnBjZVI0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaVfKIjYM eeqFU++ZI3WS5SATD9EaKWrIV3y8HO7kgLRy2k6YmjD5cunu/4RnuIBgejINDzLA 9P8CDXq1gHhYpcDzP4iPym4/xj1A8lIQCUjOZ8oIcDOjm/jLow1FDwsG/jWyr51H HMPRh7laxhox5PkGtF4CW2FSvopQ5LHy3AxlgysKSiV0vPM+MOWQrC22t790HmWd 0PXOgwbRI0OF3vHY7bP/txNpq4nPClW7i89vmgpa7js/PxI2Nlj+S0ZdP9wCpKnL XmWNQT+zIJv+/JxN5dMZltqyXIV5fLZxrhOHcr7fM185tOkh0ObPaET8H4qZCISb 3DZPtsUgVsdTqQ== -----END CERTIFICATE-----Generated at Sat Dec 20 00:54:38 2025 by rpki-client