This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/c4a45f-4213-4f01-98f6-98eb53b9502a/1/bNoVAPXJY-0jT9lIWfI7MvSIXfw.mft File: bNoVAPXJY-0jT9lIWfI7MvSIXfw.mft (raw, json) Hash identifier: UYDt7QifPB9OYTy6JBgR9xDniYmXvNLN5GPnRu6vm8Q= Subject key identifier: F7:E9:90:45:04:A0:91:46:68:8E:D8:ED:CA:7F:7A:E9:4B:E2:E6:39 Authority key identifier: 6C:DA:15:00:F5:C9:63:ED:23:4F:D9:48:59:F2:3B:32:F4:88:5D:FC Certificate issuer: /CN=6cda1500f5c963ed234fd94859f23b32f4885dfc Certificate serial: 019B3D2396BF5A3C6ED80F8A62A1559801AB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNoVAPXJY-0jT9lIWfI7MvSIXfw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/c4a45f-4213-4f01-98f6-98eb53b9502a/1/bNoVAPXJY-0jT9lIWfI7MvSIXfw.mft Manifest number: 1567 Signing time: Sat 20 Dec 2025 19:01:41 +0000 Manifest this update: Sat 20 Dec 2025 19:01:41 +0000 Manifest next update: Sun 21 Dec 2025 19:01:41 +0000 Files and hashes: 1: VL7EtVPW-Ba0tPYDXOg-sXCbn4U.roa (hash: gs/UbUcaVfJny1jbjzMdFc3Au+82Qsl/IH1AWl7JplE=) 2: bNoVAPXJY-0jT9lIWfI7MvSIXfw.crl (hash: QGXFkNboss+cN1C/gw1to23RS5vLRbSusLr7XW97hMM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/c4a45f-4213-4f01-98f6-98eb53b9502a/1/bNoVAPXJY-0jT9lIWfI7MvSIXfw.crl rsync://rpki.ripe.net/repository/DEFAULT/4f/c4a45f-4213-4f01-98f6-98eb53b9502a/1/bNoVAPXJY-0jT9lIWfI7MvSIXfw.mft rsync://rpki.ripe.net/repository/DEFAULT/bNoVAPXJY-0jT9lIWfI7MvSIXfw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 15:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3d:23:96:bf:5a:3c:6e:d8:0f:8a:62:a1:55:98:01:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6cda1500f5c963ed234fd94859f23b32f4885dfc Validity Not Before: Dec 20 19:01:41 2025 GMT Not After : Dec 21 19:01:41 2025 GMT Subject: CN=f7e9904504a09146688ed8edca7f7ae94be2e639 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a8:18:f7:d3:ed:d4:bc:c7:67:b6:93:d8:fa: 6e:c4:69:1b:be:f5:8e:a9:0d:be:d9:6b:15:ce:f6: 22:9e:3c:cc:35:29:43:a9:39:e4:d2:7c:f9:17:ce: 8c:c9:28:89:3e:3b:ac:d4:6d:02:86:f0:b2:79:24: bf:a2:7d:89:7a:e3:5e:78:2a:5a:d3:0a:66:57:8d: 09:d1:dd:60:c7:c1:8a:eb:d1:a4:ec:ae:b4:b9:fc: 96:e9:1a:5b:17:f3:d2:2f:ae:7f:0f:ee:80:22:a4: a4:df:10:f1:02:d6:60:18:b1:69:c5:c5:b9:03:48: 3c:b3:e7:44:9c:84:ae:a5:2d:d0:ef:a6:04:10:2a: 65:20:9c:e7:10:7f:00:a0:25:01:2f:05:0b:da:1f: 32:f2:6c:cb:a1:43:30:d1:63:e7:ec:08:6b:c6:e0: 76:2d:8e:1c:79:61:a1:72:c2:6b:cd:08:aa:9d:f1: 76:aa:d6:5b:1d:21:46:56:0c:84:08:41:01:7c:24: 57:b3:07:31:cd:d3:49:b9:09:20:00:93:16:5f:e7: 5b:f3:6d:05:a3:74:f6:72:e8:57:f0:1b:6d:25:b4: 41:6c:7e:a9:81:e3:1d:da:64:a3:01:d2:84:ac:fc: 54:04:16:61:4d:48:be:f6:50:92:8c:08:10:38:dc: 64:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:E9:90:45:04:A0:91:46:68:8E:D8:ED:CA:7F:7A:E9:4B:E2:E6:39 X509v3 Authority Key Identifier: keyid:6C:DA:15:00:F5:C9:63:ED:23:4F:D9:48:59:F2:3B:32:F4:88:5D:FC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNoVAPXJY-0jT9lIWfI7MvSIXfw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/c4a45f-4213-4f01-98f6-98eb53b9502a/1/bNoVAPXJY-0jT9lIWfI7MvSIXfw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/c4a45f-4213-4f01-98f6-98eb53b9502a/1/bNoVAPXJY-0jT9lIWfI7MvSIXfw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3c:b0:ae:00:82:76:db:36:99:8b:a7:c0:8b:aa:d9:b9:0a:f6: 9c:3b:96:b5:18:f5:2b:39:81:66:84:cf:8a:af:86:d0:9a:03: 64:b4:93:c0:01:99:66:0e:af:b1:60:e5:90:e6:6f:1c:10:96: 92:50:50:0d:17:b5:bd:b7:fd:28:bd:ec:50:26:c8:1c:55:54: bb:ab:cb:63:7f:c2:4a:3b:7c:bd:c8:a0:f9:05:f8:30:7c:1b: 24:f4:a6:eb:18:dd:9c:34:a9:da:81:45:8e:7a:c7:5a:40:d4: 05:8c:35:41:f0:e2:b1:93:c9:ce:6a:20:88:c7:f4:d4:0e:04: 6f:dc:65:53:6c:90:3c:b4:12:ea:72:2b:78:8f:22:d8:79:67: df:0a:ab:85:b9:21:7f:fc:11:51:f5:ec:2c:99:53:d5:d7:b6: 21:e0:d8:5b:cd:21:16:c3:9e:b6:de:62:e3:d6:97:72:12:e7: 8b:8d:15:a4:e2:4c:27:5d:ff:5a:af:47:aa:34:4a:55:6e:e6: af:4b:aa:be:89:25:13:86:82:74:71:b0:b8:3b:b0:30:67:07: 2b:27:15:bc:e5:d2:59:f9:1a:73:46:bb:14:26:e8:98:4b:ea: f0:0d:14:b0:03:1e:7f:2e:cd:96:98:33:b1:d6:51:d8:ac:13: f1:6d:ed:1c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs9I5a/Wjxu2A+KYqFVmAGrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZjZGExNTAwZjVjOTYzZWQyMzRmZDk0ODU5ZjIzYjMyZjQ4 ODVkZmMwHhcNMjUxMjIwMTkwMTQxWhcNMjUxMjIxMTkwMTQxWjAzMTEwLwYDVQQD EyhmN2U5OTA0NTA0YTA5MTQ2Njg4ZWQ4ZWRjYTdmN2FlOTRiZTJlNjM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu6gY99Pt1LzHZ7aT2PpuxGkbvvWO qQ2+2WsVzvYinjzMNSlDqTnk0nz5F86MySiJPjus1G0ChvCyeSS/on2JeuNeeCpa 0wpmV40J0d1gx8GK69Gk7K60ufyW6RpbF/PSL65/D+6AIqSk3xDxAtZgGLFpxcW5 A0g8s+dEnISupS3Q76YEECplIJznEH8AoCUBLwUL2h8y8mzLoUMw0WPn7AhrxuB2 LY4ceWGhcsJrzQiqnfF2qtZbHSFGVgyECEEBfCRXswcxzdNJuQkgAJMWX+db820F o3T2cuhX8BttJbRBbH6pgeMd2mSjAdKErPxUBBZhTUi+9lCSjAgQONxk7wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPfpkEUEoJFGaI7Y7cp/eulL4uY5MB8GA1UdIwQY MBaAFGzaFQD1yWPtI0/ZSFnyOzL0iF38MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYk5vVkFQWEpZLTBqVDlsSVdmSTdNdlNJWGZ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi9jNGE0NWYtNDIxMy00ZjAxLTk4ZjYt OThlYjUzYjk1MDJhLzEvYk5vVkFQWEpZLTBqVDlsSVdmSTdNdlNJWGZ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Zi9jNGE0NWYtNDIxMy00ZjAxLTk4ZjYtOThlYjUzYjk1MDJh LzEvYk5vVkFQWEpZLTBqVDlsSVdmSTdNdlNJWGZ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPLCuAIJ2 2zaZi6fAi6rZuQr2nDuWtRj1KzmBZoTPiq+G0JoDZLSTwAGZZg6vsWDlkOZvHBCW klBQDRe1vbf9KL3sUCbIHFVUu6vLY3/CSjt8vcig+QX4MHwbJPSm6xjdnDSp2oFF jnrHWkDUBYw1QfDisZPJzmogiMf01A4Eb9xlU2yQPLQS6nIreI8i2Hln3wqrhbkh f/wRUfXsLJlT1de2IeDYW80hFsOett5i49aXchLni40VpOJMJ13/Wq9HqjRKVW7m r0uqvoklE4aCdHGwuDuwMGcHKycVvOXSWfkac0a7FCbomEvq8A0UsAMefy7Nlpgz sdZR2KwT8W3tHA== -----END CERTIFICATE-----Generated at Sun Dec 21 01:31:34 2025 by rpki-client