This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/2a4bf5-40cf-447a-97e0-679cf0210d49/1/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.mft File: BzXaqM_iXdEqLCbg_8zpdjZ0jr0.mft (raw, json) Hash identifier: m2UaBT6NAwcLdLa4DlF3KR/EY9FaL8Yj2q6EFISci1M= Subject key identifier: 44:FB:9A:01:06:A5:D6:3A:A8:E9:EE:54:A7:68:06:CF:B5:21:D4:31 Authority key identifier: 07:35:DA:A8:CF:E2:5D:D1:2A:2C:26:E0:FF:CC:E9:76:36:74:8E:BD Certificate issuer: /CN=0735daa8cfe25dd12a2c26e0ffcce97636748ebd Certificate serial: 019B6CC6075D1C7E42DD08E16B599299FAE0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/2a4bf5-40cf-447a-97e0-679cf0210d49/1/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.mft Manifest number: 179F Signing time: Tue 30 Dec 2025 01:01:15 +0000 Manifest this update: Tue 30 Dec 2025 01:01:15 +0000 Manifest next update: Wed 31 Dec 2025 01:01:15 +0000 Files and hashes: 1: BzXaqM_iXdEqLCbg_8zpdjZ0jr0.crl (hash: NB0RpagZ8OGhvLbaaX+Z2GIMGRu3DHwJhp7rEiEPv88=) 2: x6seRwBOq_CRZGJqhRd1EBp_kiI.roa (hash: rR2gIHJRwQudNQFzsP+C+tD9iC/4YNN6FWVD4AJ320s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/2a4bf5-40cf-447a-97e0-679cf0210d49/1/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.crl rsync://rpki.ripe.net/repository/DEFAULT/3e/2a4bf5-40cf-447a-97e0-679cf0210d49/1/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.mft rsync://rpki.ripe.net/repository/DEFAULT/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 30 Dec 2025 23:52:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:6c:c6:07:5d:1c:7e:42:dd:08:e1:6b:59:92:99:fa:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0735daa8cfe25dd12a2c26e0ffcce97636748ebd Validity Not Before: Dec 30 01:01:15 2025 GMT Not After : Dec 31 01:01:15 2025 GMT Subject: CN=44fb9a0106a5d63aa8e9ee54a76806cfb521d431 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:a3:c8:05:81:8b:62:2d:b9:ac:b1:9b:13:b7: 7b:4c:2b:93:e7:37:34:86:32:5f:e3:f9:28:04:41: 36:df:a1:5b:eb:e1:4c:95:00:cc:5a:f5:35:66:d2: 6e:30:83:eb:32:5e:44:7e:a0:83:59:c1:c1:69:f9: 27:5a:04:ed:ec:5a:4b:68:0b:da:f5:89:ff:79:29: a1:b8:51:37:90:51:fd:c9:ee:61:92:43:0c:7b:6a: 19:bb:ae:d7:1a:61:8e:fb:ee:70:10:ac:1d:29:a9: 55:86:c8:87:50:05:fc:bd:aa:be:c7:a8:e3:f3:48: de:27:e2:8a:c4:30:5c:9c:0d:56:23:d6:3d:41:27: 3f:8b:92:c3:86:e3:2a:b0:45:1b:8f:b5:a0:15:53: 18:ad:4c:6e:43:f7:52:68:c6:b2:ae:51:65:04:dd: f9:df:07:1d:72:8f:25:50:d6:13:a3:00:7f:9f:6f: 88:8a:6d:b6:11:bb:c3:3f:01:04:73:fe:c1:62:85: 74:f2:6a:f5:d4:07:fb:f8:4f:3d:73:43:ff:f2:7e: 1c:a9:e2:a6:49:0b:1c:9f:a4:14:ba:02:e2:93:56: fc:ac:c6:9f:c0:a4:7c:a4:37:9b:d6:34:e5:5a:10: 7a:40:1d:73:fa:c2:ee:74:8f:5b:16:8b:f0:40:a0: 8f:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:FB:9A:01:06:A5:D6:3A:A8:E9:EE:54:A7:68:06:CF:B5:21:D4:31 X509v3 Authority Key Identifier: keyid:07:35:DA:A8:CF:E2:5D:D1:2A:2C:26:E0:FF:CC:E9:76:36:74:8E:BD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/2a4bf5-40cf-447a-97e0-679cf0210d49/1/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/2a4bf5-40cf-447a-97e0-679cf0210d49/1/BzXaqM_iXdEqLCbg_8zpdjZ0jr0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b3:ac:57:2a:c2:43:05:5d:65:04:58:aa:e1:f1:47:04:4a:91: a6:1b:39:15:23:45:95:ef:80:eb:67:9e:3a:89:f6:f2:0c:6c: 37:22:04:69:ca:d8:0a:f5:ba:d3:f6:60:f3:88:3b:95:7d:df: 05:d1:0b:bf:69:93:6b:c1:e2:73:bd:7c:d1:62:d8:af:62:06: c7:8b:ea:87:61:00:8c:81:a7:86:4b:1a:8a:45:6f:1f:b1:45: 54:28:9b:3a:08:af:f3:2e:ab:36:cb:b4:cb:06:e8:bd:da:c9: a7:16:cb:44:c5:f1:9b:fa:69:4f:25:b6:53:98:68:67:9e:b5: cd:b3:a0:31:79:58:33:fb:a8:b6:f2:36:aa:db:93:38:2f:59: 8f:08:b3:be:ee:f0:65:99:5d:f9:6e:6c:15:22:17:c7:c0:63: 9e:b5:a9:bd:a2:94:31:3c:88:8c:f4:a7:f2:fa:67:00:1e:e0: 89:47:30:2f:87:ae:f8:a6:38:8f:5a:fa:d9:0b:78:a9:37:1d: 95:a5:e7:2d:9c:7b:70:63:2d:6b:95:d1:fd:42:10:c2:c6:88: 81:a9:98:fd:91:3b:a3:5d:c6:36:b3:f4:47:e7:19:7f:bd:38: 52:08:d4:25:d7:a4:39:cf:cf:b2:7b:d5:ff:6d:2c:b6:a5:df: d8:09:eb:fb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtsxgddHH5C3Qjha1mSmfrgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA3MzVkYWE4Y2ZlMjVkZDEyYTJjMjZlMGZmY2NlOTc2MzY3 NDhlYmQwHhcNMjUxMjMwMDEwMTE1WhcNMjUxMjMxMDEwMTE1WjAzMTEwLwYDVQQD Eyg0NGZiOWEwMTA2YTVkNjNhYThlOWVlNTRhNzY4MDZjZmI1MjFkNDMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8aPIBYGLYi25rLGbE7d7TCuT5zc0 hjJf4/koBEE236Fb6+FMlQDMWvU1ZtJuMIPrMl5EfqCDWcHBafknWgTt7FpLaAva 9Yn/eSmhuFE3kFH9ye5hkkMMe2oZu67XGmGO++5wEKwdKalVhsiHUAX8vaq+x6jj 80jeJ+KKxDBcnA1WI9Y9QSc/i5LDhuMqsEUbj7WgFVMYrUxuQ/dSaMayrlFlBN35 3wcdco8lUNYTowB/n2+Iim22EbvDPwEEc/7BYoV08mr11Af7+E89c0P/8n4cqeKm SQscn6QUugLik1b8rMafwKR8pDeb1jTlWhB6QB1z+sLudI9bFovwQKCPHwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFET7mgEGpdY6qOnuVKdoBs+1IdQxMB8GA1UdIwQY MBaAFAc12qjP4l3RKiwm4P/M6XY2dI69MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQnpYYXFNX2lYZEVxTENiZ184enBkalowanIwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZS8yYTRiZjUtNDBjZi00NDdhLTk3ZTAt Njc5Y2YwMjEwZDQ5LzEvQnpYYXFNX2lYZEVxTENiZ184enBkalowanIwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZS8yYTRiZjUtNDBjZi00NDdhLTk3ZTAtNjc5Y2YwMjEwZDQ5 LzEvQnpYYXFNX2lYZEVxTENiZ184enBkalowanIwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAs6xXKsJD BV1lBFiq4fFHBEqRphs5FSNFle+A62eeOon28gxsNyIEacrYCvW60/Zg84g7lX3f BdELv2mTa8Hic7180WLYr2IGx4vqh2EAjIGnhksaikVvH7FFVCibOgiv8y6rNsu0 ywbovdrJpxbLRMXxm/ppTyW2U5hoZ561zbOgMXlYM/uotvI2qtuTOC9Zjwizvu7w ZZld+W5sFSIXx8BjnrWpvaKUMTyIjPSn8vpnAB7giUcwL4eu+KY4j1r62Qt4qTcd laXnLZx7cGMta5XR/UIQwsaIgamY/ZE7o13GNrP0R+cZf704UgjUJdekOc/PsnvV /20stqXf2Anr+w== -----END CERTIFICATE-----Generated at Tue Dec 30 04:54:44 2025 by rpki-client