This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/62e5f2-25b3-4557-aa94-150354b00e55/1/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.mft File: BWPLJj31DS1NBzwPfbbNJ3YwLJ0.mft (raw, json) Hash identifier: TFzOC1wF1dsRWyL4Sd3aCglxiyZ66x7RI/b4hRXxM+g= Subject key identifier: AB:C6:43:E0:CB:9A:DB:B7:75:06:80:70:48:88:64:D4:7A:71:BC:5F Authority key identifier: 05:63:CB:26:3D:F5:0D:2D:4D:07:3C:0F:7D:B6:CD:27:76:30:2C:9D Certificate issuer: /CN=0563cb263df50d2d4d073c0f7db6cd2776302c9d Certificate serial: 019B3CB52769BDBACC6C93200BF2DD5C3A0D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/62e5f2-25b3-4557-aa94-150354b00e55/1/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.mft Manifest number: 078B Signing time: Sat 20 Dec 2025 17:01:03 +0000 Manifest this update: Sat 20 Dec 2025 17:01:03 +0000 Manifest next update: Sun 21 Dec 2025 17:01:03 +0000 Files and hashes: 1: B6FxjiJOC6_Birv76wylcyDexTM.roa (hash: eGhXe2MadeqSm3dFdd2yllOqHv5uGkbMvrl6C4hJsTU=) 2: BWPLJj31DS1NBzwPfbbNJ3YwLJ0.crl (hash: vKm78Yye5mhZZfzMFcsBsBXUTBNhi9uWC80xBtETF34=) 3: Jkosv2xFFNQ2gORMGJ-Rj1JTgqk.roa (hash: V03sqShQTC3KKVEiSIPpDzr6IAR7BOwlpV6pUG5aI+w=) 4: PU3RtVE8bUTLDau3UULyJxnwYvk.roa (hash: rurDzg32C4cm1zQE6cZCxEDJG3aKAFEXLx56a9lYAvQ=) 5: TPqMfRSK5sIipm7-2Mw_-o6t_pE.roa (hash: DbvKLEpzC4KlaBAFfc8W2Orz87Jz73d6hIvvLvcnSeI=) 6: aFnhQawEO18IQ3GTJ01kkL1iiO8.roa (hash: lmQ4l6Xz/ufxEDRo15j0d1wdcSctSZ/L1+X4hlqiZ0E=) 7: i5Cva7AkVQeMjYySCI1cSGulBFU.roa (hash: OqdQgQr223XTYw+nW6EEK96kWz2kctHBvYApbJ8V5SM=) 8: orwBdnVfFaxWFzZXqCDe7xYVF-0.roa (hash: s5h3MlDKvwqoRseQHdYHw8t3JkEhjpPj+FNdQWzBxyg=) 9: zfGaREwozQlPDznadYm5iZBdTbo.roa (hash: BQ/Qo3WVP+Q/nW3nNfYM3evPzNFHtG1U5B77mp2vN9c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/62e5f2-25b3-4557-aa94-150354b00e55/1/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.crl rsync://rpki.ripe.net/repository/DEFAULT/52/62e5f2-25b3-4557-aa94-150354b00e55/1/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.mft rsync://rpki.ripe.net/repository/DEFAULT/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 15:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3c:b5:27:69:bd:ba:cc:6c:93:20:0b:f2:dd:5c:3a:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0563cb263df50d2d4d073c0f7db6cd2776302c9d Validity Not Before: Dec 20 17:01:03 2025 GMT Not After : Dec 21 17:01:03 2025 GMT Subject: CN=abc643e0cb9adbb775068070488864d47a71bc5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f0:96:ea:be:1a:e9:98:33:17:07:10:07:06: d5:86:87:c9:28:42:ab:09:f9:d1:5b:74:24:00:75: 72:9b:70:59:91:82:03:e7:b7:41:04:f1:97:55:81: 6b:23:3b:3d:99:d9:0e:22:e5:8b:16:0f:d3:02:bb: b7:b2:af:a2:1d:f5:f4:d7:d7:f8:6d:50:11:19:45: 59:e3:2b:7e:e4:62:45:ae:d9:73:af:43:af:d7:c0: ff:e8:3b:ab:17:e2:ac:54:21:43:c1:7d:4e:fe:81: 87:6f:d9:cc:ef:dd:ff:e1:ec:02:4f:e2:2c:3b:32: f9:88:97:b3:b3:2a:59:14:0e:17:5f:26:a9:d2:f0: 92:f8:8c:71:40:2e:2a:c8:d3:21:75:bb:db:3d:1c: 3a:1e:65:49:e1:ae:64:ee:23:51:dc:c0:f2:02:ff: 19:30:b4:f9:b4:41:f4:e8:e4:0f:b9:6e:ae:72:b6: 34:02:50:dc:63:46:d9:b7:3b:02:fd:a1:cf:38:cd: e3:d5:7b:eb:8c:37:dd:29:2c:54:9a:c8:71:83:50: 47:5a:f3:53:c2:6a:fc:52:d3:0b:e5:05:66:74:d0: 12:2d:df:f9:7b:03:1d:06:97:ac:9c:aa:4b:da:0d: c9:17:ce:ec:36:e6:ca:53:5b:74:46:f1:e1:24:59: 4a:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:C6:43:E0:CB:9A:DB:B7:75:06:80:70:48:88:64:D4:7A:71:BC:5F X509v3 Authority Key Identifier: keyid:05:63:CB:26:3D:F5:0D:2D:4D:07:3C:0F:7D:B6:CD:27:76:30:2C:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/62e5f2-25b3-4557-aa94-150354b00e55/1/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/52/62e5f2-25b3-4557-aa94-150354b00e55/1/BWPLJj31DS1NBzwPfbbNJ3YwLJ0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:ed:76:f9:81:65:20:ac:45:fa:7e:cb:2c:1b:82:c0:b3:5e: 6a:71:20:61:b6:35:4d:de:a3:29:06:60:79:ef:8f:60:70:01: 1d:4b:b9:e0:b0:de:68:8e:7d:9a:bc:a9:28:54:da:54:e2:31: 53:7c:4a:2e:7a:e0:19:86:26:8a:e9:77:9c:10:2a:53:a2:33: c4:8a:b8:8e:f1:24:61:fd:a8:57:7e:d8:48:28:75:fa:87:b9: fd:1c:05:2a:a9:a7:3a:19:f8:d6:75:6d:af:23:6c:60:4a:91: e5:8c:30:49:ee:9a:a2:a1:5c:92:6e:38:81:a7:f7:f8:79:14: d4:ee:71:c2:2f:ff:19:a9:f1:74:4d:63:21:cc:fb:fa:a0:88: 57:da:1b:b5:97:2b:dc:46:8d:ba:93:24:1f:f1:ba:90:22:20: 8d:88:14:f1:93:b3:82:3a:07:11:9d:e6:96:5e:94:19:82:91: 28:45:a0:e1:1f:e2:84:bd:b8:aa:ae:fb:51:fc:77:10:9b:ce: cb:69:c8:a0:4c:25:df:f2:2a:af:5b:6e:71:37:1a:2d:38:8b: cc:ae:f6:d1:e9:8b:a0:cc:37:20:07:74:1a:41:de:67:e0:8e: 4b:1e:8c:64:f8:6a:16:16:5d:d4:30:51:3e:1a:c8:33:cb:60: f5:67:aa:67 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs8tSdpvbrMbJMgC/LdXDoNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1NjNjYjI2M2RmNTBkMmQ0ZDA3M2MwZjdkYjZjZDI3NzYz MDJjOWQwHhcNMjUxMjIwMTcwMTAzWhcNMjUxMjIxMTcwMTAzWjAzMTEwLwYDVQQD EyhhYmM2NDNlMGNiOWFkYmI3NzUwNjgwNzA0ODg4NjRkNDdhNzFiYzVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsvCW6r4a6ZgzFwcQBwbVhofJKEKr CfnRW3QkAHVym3BZkYID57dBBPGXVYFrIzs9mdkOIuWLFg/TAru3sq+iHfX019f4 bVARGUVZ4yt+5GJFrtlzr0Ov18D/6DurF+KsVCFDwX1O/oGHb9nM793/4ewCT+Is OzL5iJezsypZFA4XXyap0vCS+IxxQC4qyNMhdbvbPRw6HmVJ4a5k7iNR3MDyAv8Z MLT5tEH06OQPuW6ucrY0AlDcY0bZtzsC/aHPOM3j1XvrjDfdKSxUmshxg1BHWvNT wmr8UtML5QVmdNASLd/5ewMdBpesnKpL2g3JF87sNubKU1t0RvHhJFlKXwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKvGQ+DLmtu3dQaAcEiIZNR6cbxfMB8GA1UdIwQY MBaAFAVjyyY99Q0tTQc8D322zSd2MCydMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQldQTEpqMzFEUzFOQnp3UGZiYk5KM1l3TEowLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi82MmU1ZjItMjViMy00NTU3LWFhOTQt MTUwMzU0YjAwZTU1LzEvQldQTEpqMzFEUzFOQnp3UGZiYk5KM1l3TEowLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Mi82MmU1ZjItMjViMy00NTU3LWFhOTQtMTUwMzU0YjAwZTU1 LzEvQldQTEpqMzFEUzFOQnp3UGZiYk5KM1l3TEowLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAke12+YFl IKxF+n7LLBuCwLNeanEgYbY1Td6jKQZgee+PYHABHUu54LDeaI59mrypKFTaVOIx U3xKLnrgGYYmiul3nBAqU6IzxIq4jvEkYf2oV37YSCh1+oe5/RwFKqmnOhn41nVt ryNsYEqR5YwwSe6aoqFckm44gaf3+HkU1O5xwi//GanxdE1jIcz7+qCIV9obtZcr 3EaNupMkH/G6kCIgjYgU8ZOzgjoHEZ3mll6UGYKRKEWg4R/ihL24qq77Ufx3EJvO y2nIoEwl3/Iqr1tucTcaLTiLzK720emLoMw3IAd0GkHeZ+COSx6MZPhqFhZd1DBR PhrIM8tg9WeqZw== -----END CERTIFICATE-----Generated at Sat Dec 20 21:49:40 2025 by rpki-client