This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.mft File: BCSFBLVFValEOwKjPTUakChju5k.mft (raw, json) Hash identifier: rSUaDinACb1RBX8DYqaCTZxJOZrXO5s4e4TrFIMBKGg= Subject key identifier: 5D:1F:AC:3A:6A:0C:60:46:41:E6:54:07:F2:D1:FE:C5:F7:C8:65:93 Authority key identifier: 04:24:85:04:B5:45:55:A9:44:3B:02:A3:3D:35:1A:90:28:63:BB:99 Certificate issuer: /CN=04248504b54555a9443b02a33d351a902863bb99 Certificate serial: 019B416DD955D694E9598286DF68DF8762F6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BCSFBLVFValEOwKjPTUakChju5k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.mft Manifest number: 178D Signing time: Sun 21 Dec 2025 15:01:16 +0000 Manifest this update: Sun 21 Dec 2025 15:01:16 +0000 Manifest next update: Mon 22 Dec 2025 15:01:16 +0000 Files and hashes: 1: BCSFBLVFValEOwKjPTUakChju5k.crl (hash: soRK0uj70DeWNQR1FqFXSsT8G4e0fnnYVym7zsjOcys=) 2: b8vdOmpolmwnMi7asOpMYmI4_jA.roa (hash: 9A3fwbUf06Rc6Df5WmKqMxfDfFV1g3qJ0g03eRw6WqE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.crl rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.mft rsync://rpki.ripe.net/repository/DEFAULT/BCSFBLVFValEOwKjPTUakChju5k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 13:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:41:6d:d9:55:d6:94:e9:59:82:86:df:68:df:87:62:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04248504b54555a9443b02a33d351a902863bb99 Validity Not Before: Dec 21 15:01:16 2025 GMT Not After : Dec 22 15:01:16 2025 GMT Subject: CN=5d1fac3a6a0c604641e65407f2d1fec5f7c86593 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:44:1e:15:00:28:00:e5:78:46:8b:bd:a9:93: 40:07:33:c6:36:4e:21:c3:d5:f2:d7:e9:de:04:d8: 47:7e:22:4b:8e:49:e7:25:8d:5c:d3:cb:b8:28:3a: 44:ad:40:a9:23:24:a7:e1:94:7a:32:75:4d:fc:03: 53:50:47:04:fd:7f:21:0c:60:30:db:97:61:f8:64: c2:79:47:f4:c2:e6:02:f6:32:31:39:27:e8:ed:b5: 50:a1:6f:26:e0:cc:a7:56:fa:70:d4:ed:81:67:e0: bb:7a:cc:fe:30:81:c0:ca:6e:56:5f:f8:16:fa:b5: 21:9c:cc:84:d8:58:45:7b:79:02:cb:8a:26:52:3d: d8:b0:da:af:43:17:d6:f3:1a:ba:de:4c:4c:66:cd: 98:0c:11:17:8a:80:7d:82:de:2f:2b:b1:64:5f:dd: 77:6e:c1:ed:2e:08:4e:a4:9e:2e:8f:5a:fa:9d:c4: f2:88:bb:be:c2:b7:ab:c5:18:9e:6f:91:52:cc:ef: d9:ce:e5:56:0d:c1:6e:66:96:79:17:1d:cf:82:17: 27:b2:21:66:4b:18:7f:72:f1:a7:12:95:38:c5:89: af:3a:89:af:1a:71:52:47:67:66:f3:36:e8:fd:19: 15:10:30:5b:b0:98:f0:27:36:28:ba:34:81:d8:a3: 78:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:1F:AC:3A:6A:0C:60:46:41:E6:54:07:F2:D1:FE:C5:F7:C8:65:93 X509v3 Authority Key Identifier: keyid:04:24:85:04:B5:45:55:A9:44:3B:02:A3:3D:35:1A:90:28:63:BB:99 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BCSFBLVFValEOwKjPTUakChju5k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/09/b8bb1a-a88e-4b2f-987f-47015a6077b2/1/BCSFBLVFValEOwKjPTUakChju5k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 88:dd:af:ec:71:55:4a:20:de:10:3a:57:28:5c:8e:1b:17:f8: d7:54:3d:57:b1:c6:9c:0c:6b:b3:ac:f1:fd:7b:bd:30:4f:74: bb:49:a3:fd:02:00:38:66:eb:30:bb:d2:a5:20:02:d9:6a:9d: 5b:3d:6e:d8:25:9c:10:78:0d:1b:f0:dc:27:6d:59:7d:07:e5: 50:1a:03:8f:45:8b:0c:b1:62:f0:fb:43:76:68:bd:35:7e:aa: a5:d7:f6:0f:98:fd:4f:10:b9:4e:e3:42:cd:2a:80:c1:c6:4d: 7e:9c:44:f9:9e:50:41:20:79:1c:86:86:fb:2e:c9:f9:be:3e: 2b:76:5e:7f:79:8f:42:3f:8b:ce:36:a2:f0:03:25:54:45:48: 8b:5e:ec:30:81:54:1b:22:4e:bb:ed:6a:7e:cb:e9:25:d6:53: 5a:74:91:e7:85:4e:32:ee:68:41:80:a3:6b:62:b9:24:33:2f: 7a:af:b8:68:77:cc:56:8e:0e:61:89:18:2d:a5:7d:b4:a5:da: 27:7b:f6:b7:48:71:e9:27:20:1d:c6:29:00:af:2e:1c:3e:1a: 19:a7:8f:67:5f:f5:e0:2b:0b:1c:e3:5c:42:92:4b:3a:7f:e3: c3:8a:c6:f3:55:7c:ed:98:51:7e:49:be:67:ec:3a:07:fb:2c: 5b:c8:18:37 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtBbdlV1pTpWYKG32jfh2L2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA0MjQ4NTA0YjU0NTU1YTk0NDNiMDJhMzNkMzUxYTkwMjg2 M2JiOTkwHhcNMjUxMjIxMTUwMTE2WhcNMjUxMjIyMTUwMTE2WjAzMTEwLwYDVQQD Eyg1ZDFmYWMzYTZhMGM2MDQ2NDFlNjU0MDdmMmQxZmVjNWY3Yzg2NTkzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8UQeFQAoAOV4Rou9qZNABzPGNk4h w9Xy1+neBNhHfiJLjknnJY1c08u4KDpErUCpIySn4ZR6MnVN/ANTUEcE/X8hDGAw 25dh+GTCeUf0wuYC9jIxOSfo7bVQoW8m4MynVvpw1O2BZ+C7esz+MIHAym5WX/gW +rUhnMyE2FhFe3kCy4omUj3YsNqvQxfW8xq63kxMZs2YDBEXioB9gt4vK7FkX913 bsHtLghOpJ4uj1r6ncTyiLu+wrerxRieb5FSzO/ZzuVWDcFuZpZ5Fx3PghcnsiFm Sxh/cvGnEpU4xYmvOomvGnFSR2dm8zbo/RkVEDBbsJjwJzYoujSB2KN4nQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF0frDpqDGBGQeZUB/LR/sX3yGWTMB8GA1UdIwQY MBaAFAQkhQS1RVWpRDsCoz01GpAoY7uZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQkNTRkJMVkZWYWxFT3dLalBUVWFrQ2hqdTVrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9iOGJiMWEtYTg4ZS00YjJmLTk4N2Yt NDcwMTVhNjA3N2IyLzEvQkNTRkJMVkZWYWxFT3dLalBUVWFrQ2hqdTVrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOS9iOGJiMWEtYTg4ZS00YjJmLTk4N2YtNDcwMTVhNjA3N2Iy LzEvQkNTRkJMVkZWYWxFT3dLalBUVWFrQ2hqdTVrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiN2v7HFV SiDeEDpXKFyOGxf411Q9V7HGnAxrs6zx/Xu9ME90u0mj/QIAOGbrMLvSpSAC2Wqd Wz1u2CWcEHgNG/DcJ21ZfQflUBoDj0WLDLFi8PtDdmi9NX6qpdf2D5j9TxC5TuNC zSqAwcZNfpxE+Z5QQSB5HIaG+y7J+b4+K3Zef3mPQj+Lzjai8AMlVEVIi17sMIFU GyJOu+1qfsvpJdZTWnSR54VOMu5oQYCja2K5JDMveq+4aHfMVo4OYYkYLaV9tKXa J3v2t0hx6ScgHcYpAK8uHD4aGaePZ1/14CsLHONcQpJLOn/jw4rG81V87ZhRfkm+ Z+w6B/ssW8gYNw== -----END CERTIFICATE-----Generated at Sun Dec 21 19:14:29 2025 by rpki-client