This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/ef6461-a0ef-4c19-9e1d-f223dacb6017/1/Bc5N0ogBsoO_hRtcANAOuLUUpVo.mft File: Bc5N0ogBsoO_hRtcANAOuLUUpVo.mft (raw, json) Hash identifier: VSjkwN69nuJpWSumYzCIApIw+3zIORQeqjf8cDtkXPM= Subject key identifier: CF:EA:0F:EF:5E:B4:AD:72:42:14:CC:D1:17:AC:FA:95:FC:EB:B9:E4 Authority key identifier: 05:CE:4D:D2:88:01:B2:83:BF:85:1B:5C:00:D0:0E:B8:B5:14:A5:5A Certificate issuer: /CN=05ce4dd28801b283bf851b5c00d00eb8b514a55a Certificate serial: 019B462615747E1ABF9E6AF99A4E7D498E84 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Bc5N0ogBsoO_hRtcANAOuLUUpVo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/ef6461-a0ef-4c19-9e1d-f223dacb6017/1/Bc5N0ogBsoO_hRtcANAOuLUUpVo.mft Manifest number: 047F Signing time: Mon 22 Dec 2025 13:00:59 +0000 Manifest this update: Mon 22 Dec 2025 13:00:59 +0000 Manifest next update: Tue 23 Dec 2025 13:00:59 +0000 Files and hashes: 1: Bc5N0ogBsoO_hRtcANAOuLUUpVo.crl (hash: FR62GhPd+JBiLpq4AQLy4VL/2a2CwzTqPz4jA6ghSq8=) 2: x9qgtwMUU_-nMY5SDajHYEXNiCY.roa (hash: 6NC1NBKuG21Mjttmx4hIVvV+xQmoan4Z9cfB+7hjW1E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/ef6461-a0ef-4c19-9e1d-f223dacb6017/1/Bc5N0ogBsoO_hRtcANAOuLUUpVo.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/ef6461-a0ef-4c19-9e1d-f223dacb6017/1/Bc5N0ogBsoO_hRtcANAOuLUUpVo.mft rsync://rpki.ripe.net/repository/DEFAULT/Bc5N0ogBsoO_hRtcANAOuLUUpVo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 10:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:46:26:15:74:7e:1a:bf:9e:6a:f9:9a:4e:7d:49:8e:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05ce4dd28801b283bf851b5c00d00eb8b514a55a Validity Not Before: Dec 22 13:00:59 2025 GMT Not After : Dec 23 13:00:59 2025 GMT Subject: CN=cfea0fef5eb4ad724214ccd117acfa95fcebb9e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:3b:a2:61:2a:f8:0a:0e:91:ec:01:8e:6b:ed: fc:80:38:80:54:f2:65:5a:39:dd:fd:f8:51:26:b2: e5:cd:7b:b6:d6:b5:c8:b3:e9:41:04:b8:65:bf:d3: 24:ef:ff:72:d0:c7:de:6a:f4:53:c5:1e:05:4f:b2: e8:ad:af:e6:61:1c:45:6a:07:32:f6:ca:68:b8:59: 92:bb:6c:69:79:1c:ae:b7:17:8a:1c:62:3e:0d:52: f3:b9:af:f5:7c:2c:d3:54:b8:d4:36:eb:2b:6b:42: 7c:bc:9d:5e:e6:b3:91:bf:b2:be:7f:2e:70:e2:76: 08:fd:a9:1a:32:93:a7:14:8a:0e:35:0b:2d:31:b7: d2:e5:c2:de:67:5f:68:9b:c4:09:d4:0c:af:ac:2a: a8:7e:93:2f:55:38:20:0f:53:a9:01:f1:02:4b:9e: 99:c0:eb:80:20:d4:3e:a5:19:7c:93:f9:a5:e3:68: 68:76:b5:91:b1:0f:b7:60:17:c0:7b:a5:33:7b:8e: 51:87:df:80:85:96:52:9f:5b:26:c7:11:a4:86:cb: 90:87:57:01:8d:f0:0c:47:4c:c3:51:61:e9:25:c0: 56:df:a4:cd:fc:3d:58:e0:50:06:be:e1:55:22:98: 1e:97:76:eb:c1:00:58:a0:3d:47:c2:0d:13:2d:0b: ef:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:EA:0F:EF:5E:B4:AD:72:42:14:CC:D1:17:AC:FA:95:FC:EB:B9:E4 X509v3 Authority Key Identifier: keyid:05:CE:4D:D2:88:01:B2:83:BF:85:1B:5C:00:D0:0E:B8:B5:14:A5:5A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Bc5N0ogBsoO_hRtcANAOuLUUpVo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/ef6461-a0ef-4c19-9e1d-f223dacb6017/1/Bc5N0ogBsoO_hRtcANAOuLUUpVo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/ef6461-a0ef-4c19-9e1d-f223dacb6017/1/Bc5N0ogBsoO_hRtcANAOuLUUpVo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 39:46:94:91:97:0c:64:0a:12:ab:73:15:06:9a:1e:6c:fe:9b: 1d:40:b0:12:3f:90:a1:66:2c:52:0c:79:68:b8:62:66:a0:34: e2:f8:41:23:b9:ea:d1:c0:ea:1d:2c:d3:05:cf:fb:14:e4:45: 85:4d:75:73:49:1a:3e:67:39:79:68:db:6b:94:7d:8f:dc:f4: 95:b5:14:61:8d:b1:cc:d4:24:89:c7:11:a2:06:b4:ff:8e:94: 7f:bd:0e:b5:83:61:63:f3:e5:8c:80:28:e1:c1:80:69:59:14: 34:6d:46:09:e3:f8:7a:a3:a4:c2:75:f5:d1:14:f4:97:dd:dd: b3:53:83:34:87:d0:e1:14:8a:15:59:71:e2:75:69:dd:bc:64: 94:72:fa:0c:00:17:f5:30:58:b9:21:d7:6b:26:ac:6b:d6:65: 1b:ef:d2:f1:47:1d:6e:2d:50:a4:34:9c:58:0b:59:36:dd:1a: e2:8c:48:40:9f:4b:a8:44:fd:dd:fc:7e:9a:8a:af:f7:42:3b: c5:02:f1:08:65:0e:03:ce:74:cf:fe:46:d2:c2:b6:c2:00:1d: 7e:f1:c4:ff:d2:81:84:90:40:83:82:45:0e:40:9c:d3:81:64: e5:ae:98:71:80:78:fa:79:55:af:6c:10:a7:a7:aa:cd:c7:70: 6e:02:40:77 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtGJhV0fhq/nmr5mk59SY6EMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1Y2U0ZGQyODgwMWIyODNiZjg1MWI1YzAwZDAwZWI4YjUx NGE1NWEwHhcNMjUxMjIyMTMwMDU5WhcNMjUxMjIzMTMwMDU5WjAzMTEwLwYDVQQD EyhjZmVhMGZlZjVlYjRhZDcyNDIxNGNjZDExN2FjZmE5NWZjZWJiOWU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApDuiYSr4Cg6R7AGOa+38gDiAVPJl Wjnd/fhRJrLlzXu21rXIs+lBBLhlv9Mk7/9y0MfeavRTxR4FT7Lora/mYRxFagcy 9spouFmSu2xpeRyutxeKHGI+DVLzua/1fCzTVLjUNusra0J8vJ1e5rORv7K+fy5w 4nYI/akaMpOnFIoONQstMbfS5cLeZ19om8QJ1AyvrCqofpMvVTggD1OpAfECS56Z wOuAINQ+pRl8k/ml42hodrWRsQ+3YBfAe6Uze45Rh9+AhZZSn1smxxGkhsuQh1cB jfAMR0zDUWHpJcBW36TN/D1Y4FAGvuFVIpgel3brwQBYoD1Hwg0TLQvvwwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM/qD+9etK1yQhTM0Res+pX867nkMB8GA1UdIwQY MBaAFAXOTdKIAbKDv4UbXADQDri1FKVaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQmM1TjBvZ0Jzb09faFJ0Y0FOQU91TFVVcFZvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9lZjY0NjEtYTBlZi00YzE5LTllMWQt ZjIyM2RhY2I2MDE3LzEvQmM1TjBvZ0Jzb09faFJ0Y0FOQU91TFVVcFZvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS9lZjY0NjEtYTBlZi00YzE5LTllMWQtZjIyM2RhY2I2MDE3 LzEvQmM1TjBvZ0Jzb09faFJ0Y0FOQU91TFVVcFZvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOUaUkZcM ZAoSq3MVBpoebP6bHUCwEj+QoWYsUgx5aLhiZqA04vhBI7nq0cDqHSzTBc/7FORF hU11c0kaPmc5eWjba5R9j9z0lbUUYY2xzNQkiccRoga0/46Uf70OtYNhY/PljIAo 4cGAaVkUNG1GCeP4eqOkwnX10RT0l93ds1ODNIfQ4RSKFVlx4nVp3bxklHL6DAAX 9TBYuSHXayasa9ZlG+/S8Ucdbi1QpDScWAtZNt0a4oxIQJ9LqET93fx+moqv90I7 xQLxCGUOA850z/5G0sK2wgAdfvHE/9KBhJBAg4JFDkCc04Fk5a6YcYB4+nlVr2wQ p6eqzcdwbgJAdw== -----END CERTIFICATE-----Generated at Mon Dec 22 15:41:15 2025 by rpki-client