This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.mft File: BsdGzX1N-VptA8qVVKdUdg1eTgY.mft (raw, json) Hash identifier: MmnLlrj8PSu1fgL9iHBWc30Pu7TAH+jwD7fm5188dUA= Subject key identifier: 6E:DB:D7:E3:35:E5:35:88:14:A7:12:1C:2C:B8:DD:74:05:6B:5A:4C Authority key identifier: 06:C7:46:CD:7D:4D:F9:5A:6D:03:CA:95:54:A7:54:76:0D:5E:4E:06 Certificate issuer: /CN=06c746cd7d4df95a6d03ca9554a754760d5e4e06 Certificate serial: 019B736CEBA38EEDDD33016DC3855A3DD11D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BsdGzX1N-VptA8qVVKdUdg1eTgY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.mft Manifest number: 081B Signing time: Wed 31 Dec 2025 08:01:16 +0000 Manifest this update: Wed 31 Dec 2025 08:01:16 +0000 Manifest next update: Thu 01 Jan 2026 08:01:16 +0000 Files and hashes: 1: BsdGzX1N-VptA8qVVKdUdg1eTgY.crl (hash: aUNVHk2MzxIEsH2I0zZRNI9rt62amTERllZ5QumuPwQ=) 2: X40tLgIMCQZAYRAwmZdn2JjY2Sg.roa (hash: eDaX3dI5fxxRGSOkAJcdOwrelUSaDgM3W7s+OAzNuqk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.crl rsync://rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.mft rsync://rpki.ripe.net/repository/DEFAULT/BsdGzX1N-VptA8qVVKdUdg1eTgY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 01 Jan 2026 08:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:73:6c:eb:a3:8e:ed:dd:33:01:6d:c3:85:5a:3d:d1:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=06c746cd7d4df95a6d03ca9554a754760d5e4e06 Validity Not Before: Dec 31 08:01:16 2025 GMT Not After : Jan 1 08:01:16 2026 GMT Subject: CN=6edbd7e335e5358814a7121c2cb8dd74056b5a4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:d6:f2:ed:bb:e1:8a:af:10:76:42:ab:2c:ac: bd:f5:88:02:2a:f0:f9:dc:bb:4c:d1:7d:a7:0c:08: 0c:a8:f9:c7:77:99:fc:33:92:2e:00:b8:b3:09:e5: 6a:60:8a:45:46:b1:dc:36:3f:63:7e:4d:6a:46:99: 01:38:29:a8:d6:5f:f0:6e:d1:4c:c9:4e:76:0f:20: 37:5b:01:9b:4b:93:84:98:e6:a5:57:cf:8c:af:81: 1d:51:9d:35:5e:d6:6f:f8:de:0a:f1:76:1a:7f:6f: 4e:61:64:f5:55:e4:f2:97:77:ba:ab:0c:e1:68:78: 80:2b:41:df:3a:91:61:6a:fe:c3:e6:81:4f:a9:4c: 8a:79:a5:5e:59:e0:13:24:d9:af:7c:d2:a7:60:f6: 76:34:78:5d:15:8c:a0:df:8c:f9:6c:58:37:6a:cb: 2c:d4:9e:0b:8b:5c:2f:21:1d:f5:6f:73:19:fb:5c: 80:9b:61:28:9a:0d:c0:16:b2:65:6a:1a:93:ee:d9: 48:9a:76:17:ec:a5:0e:1f:bb:9e:52:be:29:1b:cc: 9b:ca:9c:f7:17:66:94:ac:2f:34:2c:a7:fe:2b:f5: 52:01:a0:b9:13:a7:bc:04:c4:d4:76:de:26:59:73: 4e:0e:48:3c:09:a0:e1:47:d9:b1:01:3e:63:e0:92: 39:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:DB:D7:E3:35:E5:35:88:14:A7:12:1C:2C:B8:DD:74:05:6B:5A:4C X509v3 Authority Key Identifier: keyid:06:C7:46:CD:7D:4D:F9:5A:6D:03:CA:95:54:A7:54:76:0D:5E:4E:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BsdGzX1N-VptA8qVVKdUdg1eTgY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3f:11:ad:02:99:5e:0c:97:f8:e0:cd:d2:8b:88:c5:df:23:62: 61:d1:6d:25:36:e4:25:e4:97:d2:b3:64:41:8e:e9:d2:7e:60: 93:10:1e:1a:5a:a0:fe:31:b1:32:9f:47:e7:53:a6:e5:81:82: 54:cc:f0:6c:8f:18:ea:62:1b:09:f9:9c:03:d0:13:2d:54:58: e3:21:c2:3b:b7:39:5d:d5:6b:6d:a5:d7:72:6c:bf:8f:fc:76: d8:9b:62:ea:a4:eb:d6:34:32:75:0c:da:b8:7a:60:6e:da:84: 8c:84:fd:f6:b0:41:a8:42:d3:74:c5:9b:3e:21:b0:e6:5c:c2: 99:8d:a9:34:ce:ce:83:00:5d:95:e7:cf:c1:b6:c7:68:17:2a: 8d:40:3d:f1:b7:f8:24:6d:10:52:1d:01:16:03:b8:94:71:3b: c0:fe:6c:b1:dd:2d:0f:f0:b6:69:52:63:ce:7e:d3:ac:ab:5b: 77:e2:e4:09:27:2e:eb:2c:c5:d0:3d:c3:7d:3d:4d:ee:d5:72: 41:44:57:aa:e6:69:25:c8:4b:7b:c7:14:e1:1b:10:12:b9:f0: 4b:d9:0d:f2:5d:84:fc:4c:71:4e:ec:b4:b3:5f:5f:8c:5b:34: a3:83:b0:cd:07:24:1c:03:ea:86:b7:7f:8e:5c:6c:24:4b:46: d9:21:4f:5c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtzbOujju3dMwFtw4VaPdEdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA2Yzc0NmNkN2Q0ZGY5NWE2ZDAzY2E5NTU0YTc1NDc2MGQ1 ZTRlMDYwHhcNMjUxMjMxMDgwMTE2WhcNMjYwMTAxMDgwMTE2WjAzMTEwLwYDVQQD Eyg2ZWRiZDdlMzM1ZTUzNTg4MTRhNzEyMWMyY2I4ZGQ3NDA1NmI1YTRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmtby7bvhiq8QdkKrLKy99YgCKvD5 3LtM0X2nDAgMqPnHd5n8M5IuALizCeVqYIpFRrHcNj9jfk1qRpkBOCmo1l/wbtFM yU52DyA3WwGbS5OEmOalV8+Mr4EdUZ01XtZv+N4K8XYaf29OYWT1VeTyl3e6qwzh aHiAK0HfOpFhav7D5oFPqUyKeaVeWeATJNmvfNKnYPZ2NHhdFYyg34z5bFg3asss 1J4Li1wvIR31b3MZ+1yAm2Eomg3AFrJlahqT7tlImnYX7KUOH7ueUr4pG8ybypz3 F2aUrC80LKf+K/VSAaC5E6e8BMTUdt4mWXNODkg8CaDhR9mxAT5j4JI5WwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG7b1+M15TWIFKcSHCy43XQFa1pMMB8GA1UdIwQY MBaAFAbHRs19TflabQPKlVSnVHYNXk4GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQnNkR3pYMU4tVnB0QThxVlZLZFVkZzFlVGdZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi85NTJjZDctMzI5Ny00ZWFmLTg1NGYt YjBhZmQ0NWRjZDc4LzEvQnNkR3pYMU4tVnB0QThxVlZLZFVkZzFlVGdZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi85NTJjZDctMzI5Ny00ZWFmLTg1NGYtYjBhZmQ0NWRjZDc4 LzEvQnNkR3pYMU4tVnB0QThxVlZLZFVkZzFlVGdZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPxGtAple DJf44M3Si4jF3yNiYdFtJTbkJeSX0rNkQY7p0n5gkxAeGlqg/jGxMp9H51Om5YGC VMzwbI8Y6mIbCfmcA9ATLVRY4yHCO7c5XdVrbaXXcmy/j/x22Jti6qTr1jQydQza uHpgbtqEjIT99rBBqELTdMWbPiGw5lzCmY2pNM7OgwBdlefPwbbHaBcqjUA98bf4 JG0QUh0BFgO4lHE7wP5ssd0tD/C2aVJjzn7TrKtbd+LkCScu6yzF0D3DfT1N7tVy QURXquZpJchLe8cU4RsQErnwS9kN8l2E/ExxTuy0s19fjFs0o4OwzQckHAPqhrd/ jlxsJEtG2SFPXA== -----END CERTIFICATE-----Generated at Wed Dec 31 11:02:40 2025 by rpki-client