This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft File: bSID7B5abCZsyjm5rxq-LLILGVo.mft (raw, json) Hash identifier: d5O31v4gehNQAjeR3au08loxQV+JdA/WWvx0yMof2Ug= Subject key identifier: 5D:74:85:C5:BD:91:34:FB:62:85:B8:22:F3:1C:5B:B6:49:2F:24:96 Authority key identifier: 6D:22:03:EC:1E:5A:6C:26:6C:CA:39:B9:AF:1A:BE:2C:B2:0B:19:5A Certificate issuer: /CN=6d2203ec1e5a6c266cca39b9af1abe2cb20b195a Certificate serial: 019B4FCE42079C49AA446282E15CFA265DB6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSID7B5abCZsyjm5rxq-LLILGVo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft Manifest number: 1791 Signing time: Wed 24 Dec 2025 10:01:15 +0000 Manifest this update: Wed 24 Dec 2025 10:01:15 +0000 Manifest next update: Thu 25 Dec 2025 10:01:15 +0000 Files and hashes: 1: bSID7B5abCZsyjm5rxq-LLILGVo.crl (hash: t6Xa4rWgQMd8rLsz4vRPBbZAbWa6EVDUNBKRM5tv4R4=) 2: h9zvvPI2dBY4jNWQKpPxUoE047A.roa (hash: PkWglafHXDxF9KIzM61BgLg1omYPGots3ZThAKgjHP4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft rsync://rpki.ripe.net/repository/DEFAULT/bSID7B5abCZsyjm5rxq-LLILGVo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 09:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4f:ce:42:07:9c:49:aa:44:62:82:e1:5c:fa:26:5d:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6d2203ec1e5a6c266cca39b9af1abe2cb20b195a Validity Not Before: Dec 24 10:01:15 2025 GMT Not After : Dec 25 10:01:15 2025 GMT Subject: CN=5d7485c5bd9134fb6285b822f31c5bb6492f2496 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:71:d5:72:9c:f5:c1:04:54:b9:8e:c8:ff:a3: cf:dd:59:d7:29:01:88:ab:a8:86:94:85:99:4d:fa: a6:d7:93:7d:3f:25:cc:ad:da:d5:5b:07:e6:4b:53: 8a:2d:11:38:9b:49:00:41:e2:da:50:75:95:50:78: 8e:69:69:42:48:c5:06:48:b8:12:35:0a:43:08:13: 0c:d7:54:1b:af:98:89:3d:86:a6:2f:9c:b2:b2:37: 2a:9b:bd:26:2b:aa:66:68:d0:c7:de:34:22:a5:22: 59:04:18:ab:34:4d:d1:85:a9:f9:cc:6f:06:48:8a: 04:1f:d7:b3:f7:da:c0:51:49:39:31:d7:63:96:56: 6f:29:df:68:35:3e:98:1f:a4:71:9a:4a:f0:c8:0d: 60:d8:96:61:5d:61:62:30:8a:fe:11:8a:9d:34:8a: 27:50:4d:c1:87:66:73:21:a9:f3:7f:58:8d:38:73: b9:8c:bb:ff:a9:4a:9a:fe:82:9f:31:59:ab:66:38: 74:63:e2:b0:81:8d:78:64:0b:40:f1:69:4a:66:47: c9:6b:bb:c9:bb:06:07:ff:35:b4:db:81:e1:68:a3: 46:d4:19:79:fb:17:fb:ca:16:ce:2f:bf:b7:d9:99: a5:24:09:e6:54:99:6b:3c:e5:19:1b:56:1a:81:1a: fb:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:74:85:C5:BD:91:34:FB:62:85:B8:22:F3:1C:5B:B6:49:2F:24:96 X509v3 Authority Key Identifier: keyid:6D:22:03:EC:1E:5A:6C:26:6C:CA:39:B9:AF:1A:BE:2C:B2:0B:19:5A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSID7B5abCZsyjm5rxq-LLILGVo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/fc522f-b20f-47af-80c6-1a97944c91ca/1/bSID7B5abCZsyjm5rxq-LLILGVo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 78:71:66:21:be:1d:24:2a:11:d5:4b:5e:31:08:1c:71:97:d5: f1:9a:f0:18:9f:5e:0c:f0:a1:c7:e2:ce:ba:ae:3f:92:5d:91: 73:21:cd:3b:9b:df:15:62:ec:c4:a0:6b:01:c9:70:52:2c:f4: 90:a6:16:a4:b6:15:fa:65:a1:9a:1d:e3:da:e1:e3:9d:93:2a: bd:50:a1:77:bd:46:d9:e3:25:8a:e6:64:14:37:43:dd:da:f3: 8b:76:b8:30:71:85:88:1c:f8:5a:72:96:51:72:f4:71:34:62: 16:9c:6a:05:54:49:6e:e0:cd:79:0f:a5:be:9f:69:de:83:63: e5:92:6a:71:40:c2:25:5f:63:b0:36:c3:3f:7b:09:a3:a5:41: 12:44:97:bd:62:39:d4:6c:67:0e:e5:df:7b:c1:fd:5a:1f:bd: 8b:8c:69:18:e2:16:f3:95:1d:6b:5e:8a:0d:17:68:64:24:2f: 15:ba:62:3a:0c:db:12:f8:a7:f7:42:53:23:8e:14:05:3e:3b: 2d:3b:c3:83:c9:81:67:6b:33:87:fa:d3:8f:4c:ac:23:63:4f: f5:b9:9e:a9:8c:b5:7e:34:ec:f2:1d:ff:10:a2:02:8e:72:91: a8:4f:fc:80:5f:e9:76:c8:d6:b5:bc:04:3f:ce:09:a6:80:47: 3e:75:7b:fb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtPzkIHnEmqRGKC4Vz6Jl22MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkMjIwM2VjMWU1YTZjMjY2Y2NhMzliOWFmMWFiZTJjYjIw YjE5NWEwHhcNMjUxMjI0MTAwMTE1WhcNMjUxMjI1MTAwMTE1WjAzMTEwLwYDVQQD Eyg1ZDc0ODVjNWJkOTEzNGZiNjI4NWI4MjJmMzFjNWJiNjQ5MmYyNDk2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzXHVcpz1wQRUuY7I/6PP3VnXKQGI q6iGlIWZTfqm15N9PyXMrdrVWwfmS1OKLRE4m0kAQeLaUHWVUHiOaWlCSMUGSLgS NQpDCBMM11Qbr5iJPYamL5yysjcqm70mK6pmaNDH3jQipSJZBBirNE3Rhan5zG8G SIoEH9ez99rAUUk5MddjllZvKd9oNT6YH6RxmkrwyA1g2JZhXWFiMIr+EYqdNIon UE3Bh2ZzIanzf1iNOHO5jLv/qUqa/oKfMVmrZjh0Y+KwgY14ZAtA8WlKZkfJa7vJ uwYH/zW024HhaKNG1Bl5+xf7yhbOL7+32ZmlJAnmVJlrPOUZG1YagRr7LwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF10hcW9kTT7YoW4IvMcW7ZJLySWMB8GA1UdIwQY MBaAFG0iA+weWmwmbMo5ua8aviyyCxlaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYlNJRDdCNWFiQ1pzeWptNXJ4cS1MTElMR1ZvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS9mYzUyMmYtYjIwZi00N2FmLTgwYzYt MWE5Nzk0NGM5MWNhLzEvYlNJRDdCNWFiQ1pzeWptNXJ4cS1MTElMR1ZvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS9mYzUyMmYtYjIwZi00N2FmLTgwYzYtMWE5Nzk0NGM5MWNh LzEvYlNJRDdCNWFiQ1pzeWptNXJ4cS1MTElMR1ZvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeHFmIb4d JCoR1UteMQgccZfV8ZrwGJ9eDPChx+LOuq4/kl2RcyHNO5vfFWLsxKBrAclwUiz0 kKYWpLYV+mWhmh3j2uHjnZMqvVChd71G2eMliuZkFDdD3drzi3a4MHGFiBz4WnKW UXL0cTRiFpxqBVRJbuDNeQ+lvp9p3oNj5ZJqcUDCJV9jsDbDP3sJo6VBEkSXvWI5 1GxnDuXfe8H9Wh+9i4xpGOIW85Uda16KDRdoZCQvFbpiOgzbEvin90JTI44UBT47 LTvDg8mBZ2szh/rTj0ysI2NP9bmeqYy1fjTs8h3/EKICjnKRqE/8gF/pdsjWtbwE P84JpoBHPnV7+w== -----END CERTIFICATE-----Generated at Wed Dec 24 12:29:09 2025 by rpki-client