This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft File: bdLO01LwH3613HYZ7XFMa2pceR4.mft (raw, json) Hash identifier: tv4oLD3dduE8Lb2WYARVWphq9b/jCqjj/7PCWi0sYLE= Subject key identifier: 20:22:0F:66:48:09:60:F3:58:66:96:28:87:DB:AF:99:59:35:F1:27 Authority key identifier: 6D:D2:CE:D3:52:F0:1F:7E:B5:DC:76:19:ED:71:4C:6B:6A:5C:79:1E Certificate issuer: /CN=6dd2ced352f01f7eb5dc7619ed714c6b6a5c791e Certificate serial: 019B6CC57D464A1672255D6F6D61B160E4D6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft Manifest number: 039E Signing time: Tue 30 Dec 2025 01:00:40 +0000 Manifest this update: Tue 30 Dec 2025 01:00:40 +0000 Manifest next update: Wed 31 Dec 2025 01:00:40 +0000 Files and hashes: 1: bdLO01LwH3613HYZ7XFMa2pceR4.crl (hash: 7FZ8QEXYk8f2lYIL8Bs/UTPTTOgNXDEvm7NMhNPsDaM=) 2: ldaG2ZtwFXa0D8MT2zJfF9j3gsg.roa (hash: Iho31engw2p2ICkoCri0OTvpMAFdFfQ9ZJ+brUIBG2M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.crl rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 31 Dec 2025 00:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:6c:c5:7d:46:4a:16:72:25:5d:6f:6d:61:b1:60:e4:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6dd2ced352f01f7eb5dc7619ed714c6b6a5c791e Validity Not Before: Dec 30 01:00:40 2025 GMT Not After : Dec 31 01:00:40 2025 GMT Subject: CN=20220f66480960f35866962887dbaf995935f127 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:76:d3:82:df:0a:51:a4:fa:cc:b8:37:6c:75: 15:9f:e4:ab:60:62:e7:1d:f8:27:07:7c:61:15:57: b4:b0:6a:87:87:31:75:88:57:78:1e:f7:69:bc:2d: a2:bd:93:5d:2d:65:7a:44:de:3d:01:fc:55:5d:4c: 79:8f:b5:b3:a7:00:ed:58:40:d8:a5:9d:50:0c:3b: 83:34:b6:ad:85:ba:c9:d5:e1:59:82:22:ba:5a:47: aa:68:fb:50:9e:3f:4d:f8:a1:aa:cf:b6:22:b9:b4: 59:66:e8:35:f8:03:3c:cf:3c:b8:f2:d1:21:c7:2d: 9e:f0:ac:6d:86:02:8c:88:99:4a:73:b3:f0:48:4f: 65:95:83:05:1b:61:63:7e:21:8a:09:c2:b9:f1:db: e7:7e:9a:01:67:87:42:29:81:48:b7:be:16:dc:58: 13:b7:65:cd:f7:c3:cc:12:af:df:71:3e:2c:83:1f: ea:26:ce:86:9d:a1:46:88:b1:63:0c:c7:e2:a6:67: 34:f1:8e:40:a0:f2:88:f7:f8:d3:43:67:19:49:d8: 45:fc:e3:c4:85:f6:7a:6b:d4:30:ee:b5:dd:21:60: 44:25:56:5e:46:04:2f:b6:5e:e2:63:42:9a:86:0d: b1:6f:bd:27:5e:ad:94:aa:27:a8:5c:72:94:48:8d: 83:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:22:0F:66:48:09:60:F3:58:66:96:28:87:DB:AF:99:59:35:F1:27 X509v3 Authority Key Identifier: keyid:6D:D2:CE:D3:52:F0:1F:7E:B5:DC:76:19:ED:71:4C:6B:6A:5C:79:1E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b3:a5:b1:bd:9d:d7:4d:5f:34:98:ba:3b:d6:4e:a3:0d:3c:11: 46:aa:05:a7:84:44:60:70:ed:d5:5b:c3:c0:1d:9e:06:e9:50: ab:3b:96:05:5e:a8:5a:a3:0f:61:60:25:73:2f:73:85:86:5c: 79:74:b6:f4:0b:14:44:40:1e:1f:ac:ad:2b:23:ca:f4:24:97: e2:64:7b:0d:d8:9b:aa:f2:64:d5:7d:f7:41:fc:a6:47:3d:d2: 5e:c8:ed:e4:84:0c:a1:f5:3a:cd:8c:e4:c5:74:f6:0e:55:4d: 2d:58:78:e1:a0:6a:c2:97:9a:32:22:f6:b2:29:c8:9d:b7:63: 9d:b2:d6:b8:f2:37:86:1d:d5:2b:5c:8a:25:da:cd:b6:84:54: 63:42:c2:10:c9:c3:56:2a:71:c0:ac:42:65:99:77:a2:4c:2a: b5:52:da:d5:6a:70:a4:42:42:a6:2a:43:e9:59:8d:e8:06:27: d8:ee:59:f5:58:48:14:f3:44:1f:40:74:f1:38:18:a9:ac:c9: b2:0c:76:16:56:84:c4:a2:6a:ee:b2:1e:8a:10:39:49:8e:33: ab:5a:86:95:db:3e:b9:b9:19:f5:5b:b1:0c:07:83:84:3e:21: 36:40:a4:e8:26:05:54:0e:07:86:17:40:77:b4:e2:77:e1:af: 34:5d:9c:a4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtsxX1GShZyJV1vbWGxYOTWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkZDJjZWQzNTJmMDFmN2ViNWRjNzYxOWVkNzE0YzZiNmE1 Yzc5MWUwHhcNMjUxMjMwMDEwMDQwWhcNMjUxMjMxMDEwMDQwWjAzMTEwLwYDVQQD EygyMDIyMGY2NjQ4MDk2MGYzNTg2Njk2Mjg4N2RiYWY5OTU5MzVmMTI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA43bTgt8KUaT6zLg3bHUVn+SrYGLn HfgnB3xhFVe0sGqHhzF1iFd4HvdpvC2ivZNdLWV6RN49AfxVXUx5j7WzpwDtWEDY pZ1QDDuDNLathbrJ1eFZgiK6WkeqaPtQnj9N+KGqz7YiubRZZug1+AM8zzy48tEh xy2e8KxthgKMiJlKc7PwSE9llYMFG2FjfiGKCcK58dvnfpoBZ4dCKYFIt74W3FgT t2XN98PMEq/fcT4sgx/qJs6GnaFGiLFjDMfipmc08Y5AoPKI9/jTQ2cZSdhF/OPE hfZ6a9Qw7rXdIWBEJVZeRgQvtl7iY0Kahg2xb70nXq2UqieoXHKUSI2DtQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCAiD2ZICWDzWGaWKIfbr5lZNfEnMB8GA1UdIwQY MBaAFG3SztNS8B9+tdx2Ge1xTGtqXHkeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYmRMTzAxTHdIMzYxM0hZWjdYRk1hMnBjZVI0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi8yNDVlMWEtMDYxMi00NTk2LWE5NWEt OWRmNzI1MzBiNjY5LzEvYmRMTzAxTHdIMzYxM0hZWjdYRk1hMnBjZVI0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNi8yNDVlMWEtMDYxMi00NTk2LWE5NWEtOWRmNzI1MzBiNjY5 LzEvYmRMTzAxTHdIMzYxM0hZWjdYRk1hMnBjZVI0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAs6WxvZ3X TV80mLo71k6jDTwRRqoFp4REYHDt1VvDwB2eBulQqzuWBV6oWqMPYWAlcy9zhYZc eXS29AsUREAeH6ytKyPK9CSX4mR7DdibqvJk1X33QfymRz3SXsjt5IQMofU6zYzk xXT2DlVNLVh44aBqwpeaMiL2sinInbdjnbLWuPI3hh3VK1yKJdrNtoRUY0LCEMnD VipxwKxCZZl3okwqtVLa1WpwpEJCpipD6VmN6AYn2O5Z9VhIFPNEH0B08TgYqazJ sgx2FlaExKJq7rIeihA5SY4zq1qGlds+ubkZ9VuxDAeDhD4hNkCk6CYFVA4HhhdA d7Tid+GvNF2cpA== -----END CERTIFICATE-----Generated at Tue Dec 30 09:05:09 2025 by rpki-client