This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft File: bfHIcky70DS6t6Da3wq0uZ_2b_8.mft (raw, json) Hash identifier: YL6yqkldRcjN5ALLF8tDc4hUPe47v5T7TH+XhVKQDW8= Subject key identifier: 6C:02:6D:82:DB:82:6D:3F:04:1B:A3:32:B5:FD:F5:BC:38:38:63:97 Authority key identifier: 6D:F1:C8:72:4C:BB:D0:34:BA:B7:A0:DA:DF:0A:B4:B9:9F:F6:6F:FF Certificate issuer: /CN=6df1c8724cbbd034bab7a0dadf0ab4b99ff66fff Certificate serial: 019B41A514B99B91A6AF42BEA36FC6B10255 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft Manifest number: 178C Signing time: Sun 21 Dec 2025 16:01:36 +0000 Manifest this update: Sun 21 Dec 2025 16:01:36 +0000 Manifest next update: Mon 22 Dec 2025 16:01:36 +0000 Files and hashes: 1: 3gASlQlN9UdPtrWqrdLITdzt5Ew.roa (hash: ramhN8+V67WDz+dJge66wgSFRzcM7UnMyKgsybDZiQA=) 2: bfHIcky70DS6t6Da3wq0uZ_2b_8.crl (hash: yTr7lCeVRgaxrFLWyG9FlaqQMpqF9vilXU0uBjtpEqE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.crl rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 16:01:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:41:a5:14:b9:9b:91:a6:af:42:be:a3:6f:c6:b1:02:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6df1c8724cbbd034bab7a0dadf0ab4b99ff66fff Validity Not Before: Dec 21 16:01:36 2025 GMT Not After : Dec 22 16:01:36 2025 GMT Subject: CN=6c026d82db826d3f041ba332b5fdf5bc38386397 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:2c:b5:3b:31:29:fa:64:7b:ba:b5:d1:55:14: e8:bc:ca:8c:00:4f:97:17:a9:c9:fb:d5:f7:91:2e: 8b:89:78:1c:1d:ca:d8:d4:ce:46:ca:ea:59:bd:01: fb:1c:6c:a4:58:77:d8:4b:57:f8:e6:dc:02:e5:1a: 81:5f:90:49:63:29:ee:ff:b2:aa:85:04:d8:20:72: 8c:be:16:e1:94:41:93:2e:c5:d7:7d:fd:38:60:05: 0e:cb:0c:9a:81:ff:f3:3e:6a:ca:aa:bd:6b:98:3a: 20:a8:33:2d:b4:c4:ab:ae:94:3d:22:dc:0a:1b:5b: c9:f7:cf:13:19:53:35:de:52:5c:eb:05:5e:98:70: 99:5b:7a:a5:83:8f:c0:e5:43:d3:00:15:55:21:09: 2e:3f:eb:34:e0:2f:2a:34:d8:0b:6b:13:4b:f6:12: 01:30:22:62:e9:7a:81:8f:df:5b:15:83:b2:39:b3: b3:ea:90:45:f5:97:fc:fd:76:1b:f9:4b:60:21:b4: 91:6a:b4:f4:bb:27:a5:00:75:78:19:d2:64:37:a8: a1:28:f9:6a:2b:76:9c:cb:58:dd:57:2b:e2:2c:66: 0c:c4:0d:08:53:de:bd:d7:46:c4:b3:1e:b2:db:78: 0d:d8:a0:ea:61:4e:aa:23:7d:70:62:0e:06:8e:50: dc:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:02:6D:82:DB:82:6D:3F:04:1B:A3:32:B5:FD:F5:BC:38:38:63:97 X509v3 Authority Key Identifier: keyid:6D:F1:C8:72:4C:BB:D0:34:BA:B7:A0:DA:DF:0A:B4:B9:9F:F6:6F:FF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1b:8b:3c:15:32:df:d6:1c:db:cb:e4:aa:0b:1d:4e:5b:f2:d6: 7d:01:17:e2:ac:49:cf:67:31:c9:d7:20:39:6d:0c:8e:2e:6d: 58:d4:2f:11:d6:4d:f1:fa:72:5b:ea:f6:2c:52:3f:d4:5b:d1: a9:cd:e2:3c:2c:0f:85:d1:cf:e7:58:b2:76:1f:63:36:77:e4: 93:d9:b1:38:d9:7d:f4:87:61:86:9c:da:c4:cb:48:5c:fc:1a: 71:6b:69:bf:8b:31:58:89:f9:79:82:44:31:92:19:fd:eb:a2: e9:51:7e:6c:96:1f:03:9c:c8:6b:e9:2d:91:49:58:94:1e:6c: 0a:dc:6f:50:86:d5:c3:0a:7e:b0:f5:76:65:62:15:4d:45:39: ee:d1:d3:c9:a1:fb:9b:f8:ab:82:03:fd:be:3c:c6:c9:81:08: 14:47:6d:ed:5c:d5:ca:28:94:33:8c:d9:f4:62:0c:e8:52:7e: ee:13:0b:69:a0:11:a5:aa:03:24:06:da:fe:5f:ef:2d:d5:01: 2e:05:27:33:75:b8:62:15:43:06:4c:39:59:32:df:9a:4a:a8: de:9b:08:60:8a:ee:cf:a0:da:02:d5:99:01:c1:de:e0:66:47: 33:fd:16:74:58:b0:58:9d:ee:c7:87:93:0e:1b:ea:97:eb:d2: 71:bf:a2:5c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtBpRS5m5Gmr0K+o2/GsQJVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkZjFjODcyNGNiYmQwMzRiYWI3YTBkYWRmMGFiNGI5OWZm NjZmZmYwHhcNMjUxMjIxMTYwMTM2WhcNMjUxMjIyMTYwMTM2WjAzMTEwLwYDVQQD Eyg2YzAyNmQ4MmRiODI2ZDNmMDQxYmEzMzJiNWZkZjViYzM4Mzg2Mzk3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkyy1OzEp+mR7urXRVRTovMqMAE+X F6nJ+9X3kS6LiXgcHcrY1M5GyupZvQH7HGykWHfYS1f45twC5RqBX5BJYynu/7Kq hQTYIHKMvhbhlEGTLsXXff04YAUOywyagf/zPmrKqr1rmDogqDMttMSrrpQ9ItwK G1vJ988TGVM13lJc6wVemHCZW3qlg4/A5UPTABVVIQkuP+s04C8qNNgLaxNL9hIB MCJi6XqBj99bFYOyObOz6pBF9Zf8/XYb+UtgIbSRarT0uyelAHV4GdJkN6ihKPlq K3acy1jdVyviLGYMxA0IU96910bEsx6y23gN2KDqYU6qI31wYg4GjlDcyQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGwCbYLbgm0/BBujMrX99bw4OGOXMB8GA1UdIwQY MBaAFG3xyHJMu9A0ureg2t8KtLmf9m//MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYmZISWNreTcwRFM2dDZEYTN3cTB1Wl8yYl84LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi9lMDc4MWYtNmU2NC00NmFhLThhZjAt ZjkyNGQ2ZjZhNTk1LzEvYmZISWNreTcwRFM2dDZEYTN3cTB1Wl8yYl84Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Mi9lMDc4MWYtNmU2NC00NmFhLThhZjAtZjkyNGQ2ZjZhNTk1 LzEvYmZISWNreTcwRFM2dDZEYTN3cTB1Wl8yYl84LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAG4s8FTLf 1hzby+SqCx1OW/LWfQEX4qxJz2cxydcgOW0Mji5tWNQvEdZN8fpyW+r2LFI/1FvR qc3iPCwPhdHP51iydh9jNnfkk9mxONl99IdhhpzaxMtIXPwacWtpv4sxWIn5eYJE MZIZ/eui6VF+bJYfA5zIa+ktkUlYlB5sCtxvUIbVwwp+sPV2ZWIVTUU57tHTyaH7 m/irggP9vjzGyYEIFEdt7VzVyiiUM4zZ9GIM6FJ+7hMLaaARpaoDJAba/l/vLdUB LgUnM3W4YhVDBkw5WTLfmkqo3psIYIruz6DaAtWZAcHe4GZHM/0WdFiwWJ3ux4eT Dhvql+vScb+iXA== -----END CERTIFICATE-----Generated at Mon Dec 22 02:32:10 2025 by rpki-client