This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/620df1-34ca-4e57-b3e1-b8d4bba7021e/1/Bv170s3aV23AzQiOvm7mAZceEjQ.mft File: Bv170s3aV23AzQiOvm7mAZceEjQ.mft (raw, json) Hash identifier: lOweznZi4lg+yHWhXIT8FZDi1/vYanXkKC8Qkmhjsh8= Subject key identifier: CA:FE:27:B3:D3:43:26:7F:2A:9C:73:69:2B:BC:2C:F0:73:92:F0:B6 Authority key identifier: 06:FD:7B:D2:CD:DA:57:6D:C0:CD:08:8E:BE:6E:E6:01:97:1E:12:34 Certificate issuer: /CN=06fd7bd2cdda576dc0cd088ebe6ee601971e1234 Certificate serial: 019B31C3D65AAD25288FBA2AF5FE18A3F25F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Bv170s3aV23AzQiOvm7mAZceEjQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/620df1-34ca-4e57-b3e1-b8d4bba7021e/1/Bv170s3aV23AzQiOvm7mAZceEjQ.mft Manifest number: 0F59 Signing time: Thu 18 Dec 2025 14:01:16 +0000 Manifest this update: Thu 18 Dec 2025 14:01:16 +0000 Manifest next update: Fri 19 Dec 2025 14:01:16 +0000 Files and hashes: 1: Bv170s3aV23AzQiOvm7mAZceEjQ.crl (hash: U6B9CZUKeEieNhYghT8xcELxFxJtYKJqmcRcBvicQTE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/620df1-34ca-4e57-b3e1-b8d4bba7021e/1/Bv170s3aV23AzQiOvm7mAZceEjQ.crl rsync://rpki.ripe.net/repository/DEFAULT/28/620df1-34ca-4e57-b3e1-b8d4bba7021e/1/Bv170s3aV23AzQiOvm7mAZceEjQ.mft rsync://rpki.ripe.net/repository/DEFAULT/Bv170s3aV23AzQiOvm7mAZceEjQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 14:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:31:c3:d6:5a:ad:25:28:8f:ba:2a:f5:fe:18:a3:f2:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=06fd7bd2cdda576dc0cd088ebe6ee601971e1234 Validity Not Before: Dec 18 14:01:16 2025 GMT Not After : Dec 19 14:01:16 2025 GMT Subject: CN=cafe27b3d343267f2a9c73692bbc2cf07392f0b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:a9:6b:47:cc:fe:95:3c:67:63:c6:aa:b5:7a: 86:db:a2:40:3e:43:84:98:e7:09:81:e0:87:c7:3f: 85:78:48:78:8f:7b:e7:0f:be:54:a2:bf:7b:82:26: 6c:7f:b0:a3:12:f3:39:7c:90:f3:d0:57:ed:e9:8e: a3:fd:52:7b:78:86:91:79:90:3a:2e:c5:33:71:9a: e1:74:77:b1:90:e5:08:10:9e:33:fa:3a:34:90:cc: 99:6e:e3:ab:f5:30:de:7c:bd:85:a4:be:34:a5:1a: 24:b0:24:dd:7e:4d:8f:d7:3a:23:8a:4c:44:75:7c: 5c:e9:27:95:01:96:ee:44:5b:cf:12:96:90:e0:60: 06:ec:0a:29:74:0b:da:5f:82:9e:67:6b:3a:a5:f1: e4:a4:62:9f:30:7f:e7:3e:5c:db:9c:f7:e3:c9:15: 77:fd:23:74:09:7b:3d:29:e8:db:1c:73:e7:07:94: 1d:91:87:d8:35:b5:3f:40:3e:a0:a9:92:47:5d:9e: 65:ab:e8:e0:f0:ba:6c:99:84:f9:26:45:b8:82:d0: e9:70:fa:88:82:e9:80:74:aa:55:57:62:8b:77:33: da:7e:1f:39:4f:fa:e6:53:1c:62:2e:52:9b:40:1c: 7a:11:00:66:ca:06:ae:35:b5:43:52:04:ff:a1:a7: 48:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:FE:27:B3:D3:43:26:7F:2A:9C:73:69:2B:BC:2C:F0:73:92:F0:B6 X509v3 Authority Key Identifier: keyid:06:FD:7B:D2:CD:DA:57:6D:C0:CD:08:8E:BE:6E:E6:01:97:1E:12:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Bv170s3aV23AzQiOvm7mAZceEjQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/620df1-34ca-4e57-b3e1-b8d4bba7021e/1/Bv170s3aV23AzQiOvm7mAZceEjQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/620df1-34ca-4e57-b3e1-b8d4bba7021e/1/Bv170s3aV23AzQiOvm7mAZceEjQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 44:f6:c6:3c:35:62:ba:0e:49:88:e3:de:82:fa:b6:ea:a1:77: b6:b6:e0:4d:d7:c2:c9:da:d5:cf:8a:cf:2e:65:fb:ab:b6:1e: 05:2c:1b:58:07:70:f9:c0:73:d2:7c:7f:4f:c4:43:11:b6:2d: 1b:25:f2:4b:df:f9:37:f0:9a:bd:2c:6f:8c:d9:f0:62:6b:1e: a8:41:5e:5c:e8:30:68:99:45:31:2f:f0:e9:3f:e2:d0:bf:41: 9d:5c:94:2a:1b:da:f2:70:58:15:14:a2:80:9f:43:d6:15:e5: 48:60:dd:b6:c0:f0:c7:ce:36:12:87:00:f9:3e:22:23:fd:0e: a6:2a:08:ea:03:3c:40:99:f1:86:97:0e:30:97:8a:33:b9:85: f4:94:89:41:9c:d8:dd:75:39:b5:65:16:63:b5:44:08:9a:2e: 6b:10:77:0b:54:f6:b4:aa:2f:31:0d:07:9a:6f:42:30:20:af: 13:57:65:f2:89:14:13:61:d5:24:b3:91:83:09:9e:7e:87:d9: 56:8b:ed:3e:c2:1c:26:18:7e:d0:cf:c8:1f:1d:a6:63:ae:e9: 4f:01:c1:e2:11:64:c4:d9:59:47:f3:9d:1f:de:29:de:33:a6: 32:f3:50:2a:df:74:a6:bb:8d:59:98:9d:0a:20:59:3a:de:77: 5e:ae:16:cf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsxw9ZarSUoj7oq9f4Yo/JfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA2ZmQ3YmQyY2RkYTU3NmRjMGNkMDg4ZWJlNmVlNjAxOTcx ZTEyMzQwHhcNMjUxMjE4MTQwMTE2WhcNMjUxMjE5MTQwMTE2WjAzMTEwLwYDVQQD EyhjYWZlMjdiM2QzNDMyNjdmMmE5YzczNjkyYmJjMmNmMDczOTJmMGI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxKlrR8z+lTxnY8aqtXqG26JAPkOE mOcJgeCHxz+FeEh4j3vnD75Uor97giZsf7CjEvM5fJDz0Fft6Y6j/VJ7eIaReZA6 LsUzcZrhdHexkOUIEJ4z+jo0kMyZbuOr9TDefL2FpL40pRoksCTdfk2P1zojikxE dXxc6SeVAZbuRFvPEpaQ4GAG7AopdAvaX4KeZ2s6pfHkpGKfMH/nPlzbnPfjyRV3 /SN0CXs9KejbHHPnB5QdkYfYNbU/QD6gqZJHXZ5lq+jg8LpsmYT5JkW4gtDpcPqI gumAdKpVV2KLdzPafh85T/rmUxxiLlKbQBx6EQBmygauNbVDUgT/oadIZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMr+J7PTQyZ/KpxzaSu8LPBzkvC2MB8GA1UdIwQY MBaAFAb9e9LN2ldtwM0Ijr5u5gGXHhI0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQnYxNzBzM2FWMjNBelFpT3ZtN21BWmNlRWpRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC82MjBkZjEtMzRjYS00ZTU3LWIzZTEt YjhkNGJiYTcwMjFlLzEvQnYxNzBzM2FWMjNBelFpT3ZtN21BWmNlRWpRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC82MjBkZjEtMzRjYS00ZTU3LWIzZTEtYjhkNGJiYTcwMjFl LzEvQnYxNzBzM2FWMjNBelFpT3ZtN21BWmNlRWpRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARPbGPDVi ug5JiOPegvq26qF3trbgTdfCydrVz4rPLmX7q7YeBSwbWAdw+cBz0nx/T8RDEbYt GyXyS9/5N/CavSxvjNnwYmseqEFeXOgwaJlFMS/w6T/i0L9BnVyUKhva8nBYFRSi gJ9D1hXlSGDdtsDwx842EocA+T4iI/0OpioI6gM8QJnxhpcOMJeKM7mF9JSJQZzY 3XU5tWUWY7VECJouaxB3C1T2tKovMQ0Hmm9CMCCvE1dl8okUE2HVJLORgwmefofZ VovtPsIcJhh+0M/IHx2mY67pTwHB4hFkxNlZR/OdH94p3jOmMvNQKt90pruNWZid CiBZOt53Xq4Wzw== -----END CERTIFICATE-----Generated at Fri Dec 19 00:15:58 2025 by rpki-client