This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/cf3b98-4941-4bbe-82b3-731e9339d6ac/1/BzX8jPArik43L6W8ZAlE_rwk8f4.mft File: BzX8jPArik43L6W8ZAlE_rwk8f4.mft (raw, json) Hash identifier: u0FWKbWurE9dgPs9Woh5UnmFKzT33FEkNPkbK60Bhh4= Subject key identifier: 6E:65:B0:20:64:89:17:72:2E:01:F9:B4:A1:3F:D7:DE:13:ED:75:9E Authority key identifier: 07:35:FC:8C:F0:2B:8A:4E:37:2F:A5:BC:64:09:44:FE:BC:24:F1:FE Certificate issuer: /CN=0735fc8cf02b8a4e372fa5bc640944febc24f1fe Certificate serial: 019B5C08F7A9EBEB0B5A7AB6F0F8D12EAC6E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BzX8jPArik43L6W8ZAlE_rwk8f4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/cf3b98-4941-4bbe-82b3-731e9339d6ac/1/BzX8jPArik43L6W8ZAlE_rwk8f4.mft Manifest number: 0597 Signing time: Fri 26 Dec 2025 19:00:50 +0000 Manifest this update: Fri 26 Dec 2025 19:00:50 +0000 Manifest next update: Sat 27 Dec 2025 19:00:50 +0000 Files and hashes: 1: BzX8jPArik43L6W8ZAlE_rwk8f4.crl (hash: fFw/hlwY0J5cUWl23BzXFdoWJA2+3f7x6ez4nG88u+8=) 2: J8Ib4FQqHMHCvKM2y1SUnog9X74.roa (hash: f8Ibq/aTG18/pniIFSUAU4E687jQnL2EjkQj6M5lHl4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/cf3b98-4941-4bbe-82b3-731e9339d6ac/1/BzX8jPArik43L6W8ZAlE_rwk8f4.crl rsync://rpki.ripe.net/repository/DEFAULT/56/cf3b98-4941-4bbe-82b3-731e9339d6ac/1/BzX8jPArik43L6W8ZAlE_rwk8f4.mft rsync://rpki.ripe.net/repository/DEFAULT/BzX8jPArik43L6W8ZAlE_rwk8f4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 19:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5c:08:f7:a9:eb:eb:0b:5a:7a:b6:f0:f8:d1:2e:ac:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0735fc8cf02b8a4e372fa5bc640944febc24f1fe Validity Not Before: Dec 26 19:00:50 2025 GMT Not After : Dec 27 19:00:50 2025 GMT Subject: CN=6e65b020648917722e01f9b4a13fd7de13ed759e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:e6:3f:f8:29:67:02:22:3c:79:56:01:be:22: f2:a9:46:66:51:be:3e:b3:4e:76:2f:31:1f:60:64: 83:6c:09:69:d2:ba:31:ab:bc:66:cb:3b:44:47:86: 5f:c2:3d:53:09:25:23:3d:70:2e:1a:31:bb:df:23: f7:cc:e2:b2:a3:d3:3b:76:6c:80:38:7c:0b:5b:ef: dc:8e:56:41:a8:77:41:a6:d7:d3:1f:45:b8:8f:24: ca:c0:12:dc:ff:0b:50:94:53:3c:45:7c:39:70:30: 93:cb:0b:9d:93:14:75:13:a6:36:54:fa:98:3b:a8: 08:5f:ac:03:95:8b:38:1a:19:e8:76:0a:04:2b:88: d1:7e:53:89:69:57:13:71:74:d3:eb:ad:86:6b:2c: f5:a5:27:83:fa:d8:55:82:7a:76:73:27:a8:b1:1e: 69:31:f5:c6:4c:6d:f5:a2:73:b7:6a:00:a2:f2:a9: 3a:05:74:48:f7:eb:2a:f4:b1:8e:b9:0d:8b:c3:4c: 82:2e:93:fe:01:e0:04:42:f4:0d:11:b5:85:35:69: fa:41:0f:a3:69:0a:b1:10:33:2c:47:57:a9:28:7f: 01:b6:d0:82:14:92:29:f7:4f:52:32:13:69:b4:65: 6e:c8:f8:1e:b5:7e:92:c0:bf:84:90:28:2a:8e:8b: de:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:65:B0:20:64:89:17:72:2E:01:F9:B4:A1:3F:D7:DE:13:ED:75:9E X509v3 Authority Key Identifier: keyid:07:35:FC:8C:F0:2B:8A:4E:37:2F:A5:BC:64:09:44:FE:BC:24:F1:FE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BzX8jPArik43L6W8ZAlE_rwk8f4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/cf3b98-4941-4bbe-82b3-731e9339d6ac/1/BzX8jPArik43L6W8ZAlE_rwk8f4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/56/cf3b98-4941-4bbe-82b3-731e9339d6ac/1/BzX8jPArik43L6W8ZAlE_rwk8f4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:91:ee:f5:7b:c4:9e:5c:ad:6f:12:41:6f:34:34:53:4b:f5: 22:46:c7:b2:67:d6:af:79:d6:c3:f1:3c:df:3c:78:46:53:c2: 1a:0d:00:0c:ad:ed:a4:00:b9:a2:54:ed:3f:46:86:22:db:94: 71:62:68:77:b8:d9:d9:26:2b:69:87:b9:db:ad:b6:85:ff:2a: 00:33:4a:70:cc:3d:da:e3:f7:aa:f8:fb:e7:da:d2:17:54:06: 73:4a:30:59:82:fa:d2:70:e6:31:51:5e:04:c3:15:10:ae:0f: 9f:6d:4f:2a:dd:64:3d:26:9f:1b:54:04:e8:63:ed:1c:03:ed: ec:a5:4a:3b:35:b9:88:d0:73:13:d7:e2:20:5a:eb:78:04:36: d4:bd:ae:53:74:c7:b5:96:aa:b5:78:f4:d7:ba:fe:27:e6:39: c8:57:31:dd:11:bf:28:79:27:9d:dc:55:c0:2e:b0:3b:27:83: d4:45:08:9a:31:7d:cb:73:bd:76:4a:30:c7:e8:3a:a1:21:37: ce:08:e4:84:22:12:70:4c:8c:84:85:1e:4e:6f:ba:d0:68:56: 87:f7:ff:c9:ba:56:b5:39:f2:c2:16:5e:fc:75:c5:c1:47:ee: 10:d5:c6:50:dc:49:f6:5c:cd:b3:98:cd:69:6d:17:d5:09:0d: 48:1b:af:3b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtcCPep6+sLWnq28PjRLqxuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA3MzVmYzhjZjAyYjhhNGUzNzJmYTViYzY0MDk0NGZlYmMy NGYxZmUwHhcNMjUxMjI2MTkwMDUwWhcNMjUxMjI3MTkwMDUwWjAzMTEwLwYDVQQD Eyg2ZTY1YjAyMDY0ODkxNzcyMmUwMWY5YjRhMTNmZDdkZTEzZWQ3NTllMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApeY/+ClnAiI8eVYBviLyqUZmUb4+ s052LzEfYGSDbAlp0roxq7xmyztER4Zfwj1TCSUjPXAuGjG73yP3zOKyo9M7dmyA OHwLW+/cjlZBqHdBptfTH0W4jyTKwBLc/wtQlFM8RXw5cDCTywudkxR1E6Y2VPqY O6gIX6wDlYs4GhnodgoEK4jRflOJaVcTcXTT662Gayz1pSeD+thVgnp2cyeosR5p MfXGTG31onO3agCi8qk6BXRI9+sq9LGOuQ2Lw0yCLpP+AeAEQvQNEbWFNWn6QQ+j aQqxEDMsR1epKH8BttCCFJIp909SMhNptGVuyPgetX6SwL+EkCgqjove6QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG5lsCBkiRdyLgH5tKE/194T7XWeMB8GA1UdIwQY MBaAFAc1/IzwK4pONy+lvGQJRP68JPH+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQnpYOGpQQXJpazQzTDZXOFpBbEVfcndrOGY0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni9jZjNiOTgtNDk0MS00YmJlLTgyYjMt NzMxZTkzMzlkNmFjLzEvQnpYOGpQQXJpazQzTDZXOFpBbEVfcndrOGY0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ni9jZjNiOTgtNDk0MS00YmJlLTgyYjMtNzMxZTkzMzlkNmFj LzEvQnpYOGpQQXJpazQzTDZXOFpBbEVfcndrOGY0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAapHu9XvE nlytbxJBbzQ0U0v1IkbHsmfWr3nWw/E83zx4RlPCGg0ADK3tpAC5olTtP0aGItuU cWJod7jZ2SYraYe52622hf8qADNKcMw92uP3qvj759rSF1QGc0owWYL60nDmMVFe BMMVEK4Pn21PKt1kPSafG1QE6GPtHAPt7KVKOzW5iNBzE9fiIFrreAQ21L2uU3TH tZaqtXj017r+J+Y5yFcx3RG/KHknndxVwC6wOyeD1EUImjF9y3O9dkowx+g6oSE3 zgjkhCIScEyMhIUeTm+60GhWh/f/ybpWtTnywhZe/HXFwUfuENXGUNxJ9lzNs5jN aW0X1QkNSBuvOw== -----END CERTIFICATE-----Generated at Sat Dec 27 02:16:57 2025 by rpki-client