This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/98dab8-7b24-49f3-a36f-73a157a2b99f/1/bHO9JP2DCIa_otKWFBbSGF3jN3I.mft File: bHO9JP2DCIa_otKWFBbSGF3jN3I.mft (raw, json) Hash identifier: ESZm12idKOVBrtkNsPe6Tii4OV3o5whe2pN52rZgxec= Subject key identifier: 92:F2:01:D1:44:F5:6E:A6:8A:76:EE:56:47:09:22:04:78:93:80:B0 Authority key identifier: 6C:73:BD:24:FD:83:08:86:BF:A2:D2:96:14:16:D2:18:5D:E3:37:72 Certificate issuer: /CN=6c73bd24fd830886bfa2d2961416d2185de33772 Certificate serial: 019B3E6CE337754444C969B25F52BBF92A17 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bHO9JP2DCIa_otKWFBbSGF3jN3I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/98dab8-7b24-49f3-a36f-73a157a2b99f/1/bHO9JP2DCIa_otKWFBbSGF3jN3I.mft Manifest number: 0AD5 Signing time: Sun 21 Dec 2025 01:01:21 +0000 Manifest this update: Sun 21 Dec 2025 01:01:21 +0000 Manifest next update: Mon 22 Dec 2025 01:01:21 +0000 Files and hashes: 1: bHO9JP2DCIa_otKWFBbSGF3jN3I.crl (hash: HhLXQmt8icKoTk9aoqkUdlsOBYfX6xSMkGUOcWhuU5U=) 2: qHEAWZ6N3iBzcK7IIzIjqot58Rk.roa (hash: n8u6jtIG9RsDk/UjBbBpLB8puiC2i8ky96Vt7ctj0eY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/98dab8-7b24-49f3-a36f-73a157a2b99f/1/bHO9JP2DCIa_otKWFBbSGF3jN3I.crl rsync://rpki.ripe.net/repository/DEFAULT/18/98dab8-7b24-49f3-a36f-73a157a2b99f/1/bHO9JP2DCIa_otKWFBbSGF3jN3I.mft rsync://rpki.ripe.net/repository/DEFAULT/bHO9JP2DCIa_otKWFBbSGF3jN3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 19:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3e:6c:e3:37:75:44:44:c9:69:b2:5f:52:bb:f9:2a:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6c73bd24fd830886bfa2d2961416d2185de33772 Validity Not Before: Dec 21 01:01:21 2025 GMT Not After : Dec 22 01:01:21 2025 GMT Subject: CN=92f201d144f56ea68a76ee5647092204789380b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d1:4f:3a:9f:f4:61:c9:61:d8:25:0b:5d:1b: 37:b7:a5:2a:41:11:63:b8:09:58:da:4b:bb:cc:81: ee:1a:9e:98:b8:73:af:e8:04:37:47:d1:de:ab:c2: 0f:78:d3:8c:87:bc:07:fa:e7:22:a3:aa:07:be:7c: 4e:6c:5a:e7:76:b0:8e:f0:6a:a3:9e:53:25:6e:8f: fb:7d:17:fa:9f:db:fa:af:9c:72:23:d1:fd:36:f3: 92:0b:28:1e:2f:78:eb:aa:be:c1:b0:4d:e0:74:2e: 49:97:09:06:f8:79:3f:60:72:e2:e7:59:d8:7d:42: 2a:06:ae:17:a0:a8:7b:df:14:cf:2d:12:56:4f:0f: 8d:bf:1d:c2:74:3b:ba:8f:97:91:82:32:4b:7f:4a: 52:f5:1c:6a:c7:1d:2b:86:78:f1:b5:ec:62:ae:91: 0d:b1:fb:97:df:de:9f:42:38:10:55:6a:5e:4d:fe: c9:bd:53:1f:38:7b:0e:ab:d8:9c:58:f2:c2:ca:30: 6b:96:ce:c4:ae:70:9a:b0:ad:de:ec:83:57:55:46: 27:35:c5:c5:45:2b:c6:dc:fc:e7:20:01:dc:ff:29: 57:ef:f8:59:d8:4b:20:62:d9:61:93:17:85:35:d6: c8:0e:56:b3:23:b2:e0:34:ca:f8:c5:3c:f9:ef:ef: 11:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:F2:01:D1:44:F5:6E:A6:8A:76:EE:56:47:09:22:04:78:93:80:B0 X509v3 Authority Key Identifier: keyid:6C:73:BD:24:FD:83:08:86:BF:A2:D2:96:14:16:D2:18:5D:E3:37:72 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bHO9JP2DCIa_otKWFBbSGF3jN3I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/98dab8-7b24-49f3-a36f-73a157a2b99f/1/bHO9JP2DCIa_otKWFBbSGF3jN3I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/18/98dab8-7b24-49f3-a36f-73a157a2b99f/1/bHO9JP2DCIa_otKWFBbSGF3jN3I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 34:f8:dd:95:1c:1d:99:0f:bc:bc:1d:9e:01:5a:93:95:ea:b5: 1a:c2:4b:7d:3e:dc:50:44:73:4c:30:e9:48:8f:c3:3c:a3:de: a8:14:18:6a:74:13:90:6b:15:8b:d3:79:4e:5e:ff:4c:40:d7: 21:43:9b:66:4d:be:5b:a5:31:2a:c5:0a:f6:2c:bb:8a:47:da: c5:e9:27:19:d8:5d:32:12:f3:bc:e1:e7:17:19:7c:f0:39:8a: b2:2b:ff:c5:2e:98:5c:1a:e1:59:11:d5:24:38:03:2f:e1:d4: ae:a6:03:88:b6:f1:33:c0:a6:76:22:f4:31:46:6a:28:19:09: ee:e9:6f:72:2b:a6:c3:1b:47:2d:cb:7f:9d:bc:c7:d4:5d:1d: df:a1:a4:99:f8:0f:56:2a:03:1a:b1:94:ee:f4:ee:34:4b:8d: 81:ab:1a:48:05:58:bc:32:fc:71:d9:57:f9:49:5a:6e:cd:74: 55:90:1d:8f:85:d7:40:e9:c8:ff:4e:23:10:66:06:ca:a3:ac: 64:71:53:ea:c8:89:c2:9b:b0:a4:3a:ef:cc:e8:39:2d:1a:75: 28:c3:cc:cf:fc:21:2f:36:d0:05:d8:fa:d1:78:88:37:ac:6e: a2:03:d7:f1:ea:ef:df:72:be:2a:b9:9e:f3:f2:8c:3d:8c:64: b8:ea:14:ee -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs+bOM3dUREyWmyX1K7+SoXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZjNzNiZDI0ZmQ4MzA4ODZiZmEyZDI5NjE0MTZkMjE4NWRl MzM3NzIwHhcNMjUxMjIxMDEwMTIxWhcNMjUxMjIyMDEwMTIxWjAzMTEwLwYDVQQD Eyg5MmYyMDFkMTQ0ZjU2ZWE2OGE3NmVlNTY0NzA5MjIwNDc4OTM4MGIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsdFPOp/0Yclh2CULXRs3t6UqQRFj uAlY2ku7zIHuGp6YuHOv6AQ3R9Heq8IPeNOMh7wH+ucio6oHvnxObFrndrCO8Gqj nlMlbo/7fRf6n9v6r5xyI9H9NvOSCygeL3jrqr7BsE3gdC5JlwkG+Hk/YHLi51nY fUIqBq4XoKh73xTPLRJWTw+Nvx3CdDu6j5eRgjJLf0pS9Rxqxx0rhnjxtexirpEN sfuX396fQjgQVWpeTf7JvVMfOHsOq9icWPLCyjBrls7ErnCasK3e7INXVUYnNcXF RSvG3PznIAHc/ylX7/hZ2EsgYtlhkxeFNdbIDlazI7LgNMr4xTz57+8RXQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJLyAdFE9W6minbuVkcJIgR4k4CwMB8GA1UdIwQY MBaAFGxzvST9gwiGv6LSlhQW0hhd4zdyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYkhPOUpQMkRDSWFfb3RLV0ZCYlNHRjNqTjNJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC85OGRhYjgtN2IyNC00OWYzLWEzNmYt NzNhMTU3YTJiOTlmLzEvYkhPOUpQMkRDSWFfb3RLV0ZCYlNHRjNqTjNJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOC85OGRhYjgtN2IyNC00OWYzLWEzNmYtNzNhMTU3YTJiOTlm LzEvYkhPOUpQMkRDSWFfb3RLV0ZCYlNHRjNqTjNJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANPjdlRwd mQ+8vB2eAVqTleq1GsJLfT7cUERzTDDpSI/DPKPeqBQYanQTkGsVi9N5Tl7/TEDX IUObZk2+W6UxKsUK9iy7ikfaxeknGdhdMhLzvOHnFxl88DmKsiv/xS6YXBrhWRHV JDgDL+HUrqYDiLbxM8CmdiL0MUZqKBkJ7ulvciumwxtHLct/nbzH1F0d36GkmfgP VioDGrGU7vTuNEuNgasaSAVYvDL8cdlX+Ulabs10VZAdj4XXQOnI/04jEGYGyqOs ZHFT6siJwpuwpDrvzOg5LRp1KMPMz/whLzbQBdj60XiIN6xuogPX8erv33K+Krme 8/KMPYxkuOoU7g== -----END CERTIFICATE-----Generated at Sun Dec 21 02:56:46 2025 by rpki-client