This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.mft File: bzipg89Dc6pJdJhasi1RTA9IHS4.mft (raw, json) Hash identifier: EP6JfyOeav2LKjLaC0UWnam+YJFWjz3sNvps+1d+GYA= Subject key identifier: CF:66:A1:FF:F9:C0:6F:48:17:2A:C5:A8:D5:23:FD:BC:A3:3A:88:96 Authority key identifier: 6F:38:A9:83:CF:43:73:AA:49:74:98:5A:B2:2D:51:4C:0F:48:1D:2E Certificate issuer: /CN=6f38a983cf4373aa4974985ab22d514c0f481d2e Certificate serial: 019B747EEA953DF250A88CE8EA74520747D1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzipg89Dc6pJdJhasi1RTA9IHS4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.mft Manifest number: 03F2 Signing time: Wed 31 Dec 2025 13:00:33 +0000 Manifest this update: Wed 31 Dec 2025 13:00:33 +0000 Manifest next update: Thu 01 Jan 2026 13:00:33 +0000 Files and hashes: 1: HZb4ypfyyLknrNflDGCKDQospm0.roa (hash: DJb41fbhgLGXN4Umv3DyaNZTQa8ZY7nKkJ22hR0xLS4=) 2: bzipg89Dc6pJdJhasi1RTA9IHS4.crl (hash: m749ANlq7xtHvZOcdspGOc1wObF7sHASBUVdjlU6IcU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.crl rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.mft rsync://rpki.ripe.net/repository/DEFAULT/bzipg89Dc6pJdJhasi1RTA9IHS4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 01 Jan 2026 13:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:74:7e:ea:95:3d:f2:50:a8:8c:e8:ea:74:52:07:47:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f38a983cf4373aa4974985ab22d514c0f481d2e Validity Not Before: Dec 31 13:00:33 2025 GMT Not After : Jan 1 13:00:33 2026 GMT Subject: CN=cf66a1fff9c06f48172ac5a8d523fdbca33a8896 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:b6:d6:da:1e:63:ca:8a:44:db:c2:95:0b:b1: ff:98:d8:10:d5:57:c7:c8:a9:a7:07:f1:01:71:d4: b5:d5:62:90:20:7c:31:4d:11:c7:20:ea:f1:7e:ed: b2:9a:4f:25:99:80:b1:af:15:28:62:e5:59:74:2e: 4c:93:f7:2c:b4:0e:3e:75:f1:01:1d:7c:22:c0:43: f2:5e:18:50:e4:a5:d7:41:3d:22:d2:8f:a5:73:2d: ef:bd:44:fc:8b:17:18:bd:65:8a:f5:ea:3d:c5:25: a8:4e:4d:34:06:71:ed:53:63:a3:41:d5:a9:47:dc: 31:2e:a4:60:1f:d6:a1:53:7b:17:e9:ea:24:82:9d: 46:4d:42:8d:15:c9:98:70:e7:bf:7f:1c:f0:45:3b: 15:04:b9:bd:89:80:31:67:dc:22:37:37:48:04:30: 74:09:5f:21:a1:c7:2d:5c:54:84:ce:64:3e:97:7a: 6e:12:67:30:45:27:67:a0:b6:4c:30:e3:32:03:53: 85:45:23:f1:d8:82:08:cc:94:2c:6c:6c:4b:ba:16: 8b:ab:1b:72:88:d9:f1:03:b5:5e:4c:60:b0:5c:a1: 40:42:4a:99:f8:5c:a7:3c:0b:8a:d2:16:c3:cd:cb: 80:59:08:5b:e8:68:64:57:fd:e6:67:2c:23:ea:8e: 56:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:66:A1:FF:F9:C0:6F:48:17:2A:C5:A8:D5:23:FD:BC:A3:3A:88:96 X509v3 Authority Key Identifier: keyid:6F:38:A9:83:CF:43:73:AA:49:74:98:5A:B2:2D:51:4C:0F:48:1D:2E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzipg89Dc6pJdJhasi1RTA9IHS4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/45/74337b-f98e-4e31-9004-af5a567732ef/1/bzipg89Dc6pJdJhasi1RTA9IHS4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:e5:21:d7:31:2d:b7:cc:ad:59:eb:a9:aa:d1:59:ab:a1:af: 36:d9:53:1c:f3:4e:98:98:ee:76:4c:2c:e4:46:c9:5a:11:13: fd:cc:4d:86:26:5a:ad:61:2b:53:89:84:a2:eb:28:16:f8:bd: be:2e:e8:87:72:c8:46:34:63:2b:32:07:9c:b7:b5:3f:2b:e2: 26:65:14:a1:82:89:0f:db:23:e6:96:3f:02:39:e6:8c:d8:f6: e3:44:9b:ce:dc:b4:f9:00:77:7e:16:19:1d:b6:65:60:de:c3: 75:4e:68:1a:85:1b:df:b7:d4:48:eb:87:6b:68:fe:df:61:60: 00:8e:9e:06:ea:01:49:93:1d:05:65:a6:b0:e9:2b:8d:e2:67: 9d:57:25:02:da:48:ec:4d:36:33:b8:30:8b:c1:9d:7b:7a:86: c2:db:51:d3:ef:c3:3f:dd:9d:3e:c7:bd:0e:f7:fc:c2:23:14: b0:14:5b:69:18:ee:97:94:cb:9e:31:c2:c0:1f:75:b2:44:ad: f5:2c:1d:e7:16:1c:f1:05:cf:b7:40:e9:7e:55:ec:a4:28:13: f3:b5:10:30:06:45:be:e6:1a:46:79:1a:24:63:51:15:9e:70: ef:57:7c:26:a5:14:e7:28:9e:8f:e8:cd:83:7a:2c:2f:d6:e9: ce:f9:e9:2e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZt0fuqVPfJQqIzo6nRSB0fRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmMzhhOTgzY2Y0MzczYWE0OTc0OTg1YWIyMmQ1MTRjMGY0 ODFkMmUwHhcNMjUxMjMxMTMwMDMzWhcNMjYwMTAxMTMwMDMzWjAzMTEwLwYDVQQD EyhjZjY2YTFmZmY5YzA2ZjQ4MTcyYWM1YThkNTIzZmRiY2EzM2E4ODk2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA67bW2h5jyopE28KVC7H/mNgQ1VfH yKmnB/EBcdS11WKQIHwxTRHHIOrxfu2ymk8lmYCxrxUoYuVZdC5Mk/cstA4+dfEB HXwiwEPyXhhQ5KXXQT0i0o+lcy3vvUT8ixcYvWWK9eo9xSWoTk00BnHtU2OjQdWp R9wxLqRgH9ahU3sX6eokgp1GTUKNFcmYcOe/fxzwRTsVBLm9iYAxZ9wiNzdIBDB0 CV8hocctXFSEzmQ+l3puEmcwRSdnoLZMMOMyA1OFRSPx2IIIzJQsbGxLuhaLqxty iNnxA7VeTGCwXKFAQkqZ+FynPAuK0hbDzcuAWQhb6GhkV/3mZywj6o5WpwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM9mof/5wG9IFyrFqNUj/byjOoiWMB8GA1UdIwQY MBaAFG84qYPPQ3OqSXSYWrItUUwPSB0uMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYnppcGc4OURjNnBKZEpoYXNpMVJUQTlJSFM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS83NDMzN2ItZjk4ZS00ZTMxLTkwMDQt YWY1YTU2NzczMmVmLzEvYnppcGc4OURjNnBKZEpoYXNpMVJUQTlJSFM0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NS83NDMzN2ItZjk4ZS00ZTMxLTkwMDQtYWY1YTU2NzczMmVm LzEvYnppcGc4OURjNnBKZEpoYXNpMVJUQTlJSFM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAF+Uh1zEt t8ytWeupqtFZq6GvNtlTHPNOmJjudkws5EbJWhET/cxNhiZarWErU4mEousoFvi9 vi7oh3LIRjRjKzIHnLe1PyviJmUUoYKJD9sj5pY/AjnmjNj240Sbzty0+QB3fhYZ HbZlYN7DdU5oGoUb37fUSOuHa2j+32FgAI6eBuoBSZMdBWWmsOkrjeJnnVclAtpI 7E02M7gwi8Gde3qGwttR0+/DP92dPse9Dvf8wiMUsBRbaRjul5TLnjHCwB91skSt 9Swd5xYc8QXPt0DpflXspCgT87UQMAZFvuYaRnkaJGNRFZ5w71d8JqUU5yiej+jN g3osL9bpzvnpLg== -----END CERTIFICATE-----Generated at Wed Dec 31 21:05:56 2025 by rpki-client