This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/3d2894-32e9-4f02-a8b9-532ed2567e9b/1/BqTBjS4g22T_nbUpKzefU4t2oVE.mft File: BqTBjS4g22T_nbUpKzefU4t2oVE.mft (raw, json) Hash identifier: sLFn1X2HVqYXSjFMP0GVhhBSreokcZ377z6CEDy/ygE= Subject key identifier: 91:6A:FD:FC:BC:16:C3:18:7C:B9:CB:19:47:8F:C3:9E:82:9D:3F:D4 Authority key identifier: 06:A4:C1:8D:2E:20:DB:64:FF:9D:B5:29:2B:37:9F:53:8B:76:A1:51 Certificate issuer: /CN=06a4c18d2e20db64ff9db5292b379f538b76a151 Certificate serial: 019B60C1D807A4BD3E0BE5DF31E4C6C922C3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BqTBjS4g22T_nbUpKzefU4t2oVE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/3d2894-32e9-4f02-a8b9-532ed2567e9b/1/BqTBjS4g22T_nbUpKzefU4t2oVE.mft Manifest number: 0E98 Signing time: Sat 27 Dec 2025 17:01:14 +0000 Manifest this update: Sat 27 Dec 2025 17:01:14 +0000 Manifest next update: Sun 28 Dec 2025 17:01:14 +0000 Files and hashes: 1: BqTBjS4g22T_nbUpKzefU4t2oVE.crl (hash: uqAqxqiKli+lU73r95N5GZZJX3sJKz5WYHO6frWcmmc=) 2: wr12a9AIrcr_aNyfTvBnBd_4UPk.roa (hash: q/68eMJ+gUB4PpFkh+pkPW+TmRs5+PPrtN+mSwC3zqU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/3d2894-32e9-4f02-a8b9-532ed2567e9b/1/BqTBjS4g22T_nbUpKzefU4t2oVE.crl rsync://rpki.ripe.net/repository/DEFAULT/60/3d2894-32e9-4f02-a8b9-532ed2567e9b/1/BqTBjS4g22T_nbUpKzefU4t2oVE.mft rsync://rpki.ripe.net/repository/DEFAULT/BqTBjS4g22T_nbUpKzefU4t2oVE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 28 Dec 2025 15:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:60:c1:d8:07:a4:bd:3e:0b:e5:df:31:e4:c6:c9:22:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=06a4c18d2e20db64ff9db5292b379f538b76a151 Validity Not Before: Dec 27 17:01:14 2025 GMT Not After : Dec 28 17:01:14 2025 GMT Subject: CN=916afdfcbc16c3187cb9cb19478fc39e829d3fd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:9c:8e:28:de:7a:48:1f:44:93:af:e1:90:41: d2:a4:80:5b:16:e9:ef:cd:d2:63:b9:bb:11:86:1b: 57:dd:e1:0a:ca:fb:5c:48:82:8e:c1:7e:45:87:09: bb:8e:67:84:06:2b:c8:9d:af:c0:a5:d8:4d:a9:15: 29:b8:e4:9a:f3:4f:c9:d8:23:96:04:ac:d2:55:ac: 00:31:cf:bb:3e:0b:25:cc:53:2f:69:3c:7c:51:53: 60:1b:c9:1d:2b:f7:3f:b1:36:ae:52:54:29:77:11: 9e:a9:4d:71:59:2e:17:e1:cc:1e:af:ae:e7:df:b6: 03:b1:cf:f8:39:66:64:a7:58:27:c5:d2:d6:7a:5f: c0:1d:b4:ea:a0:19:34:c3:ee:65:77:a8:18:ff:52: 8e:c4:53:ee:58:09:5d:d2:ba:24:af:97:20:8c:90: 59:8f:3e:02:e1:b6:6f:66:d8:df:a1:5e:69:3f:02: 42:94:42:62:a5:a5:6f:21:33:97:3d:e4:81:82:d1: e9:c6:b7:57:2c:a8:ea:d7:23:b5:a6:b0:fa:1d:d4: cf:72:34:28:52:b7:61:2e:28:18:85:37:23:c0:37: 90:a4:db:48:c9:ab:c4:9d:eb:a1:a6:60:18:18:4d: 2f:b3:e7:9e:da:f2:de:98:57:31:fe:ec:82:ab:ec: b5:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:6A:FD:FC:BC:16:C3:18:7C:B9:CB:19:47:8F:C3:9E:82:9D:3F:D4 X509v3 Authority Key Identifier: keyid:06:A4:C1:8D:2E:20:DB:64:FF:9D:B5:29:2B:37:9F:53:8B:76:A1:51 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BqTBjS4g22T_nbUpKzefU4t2oVE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/3d2894-32e9-4f02-a8b9-532ed2567e9b/1/BqTBjS4g22T_nbUpKzefU4t2oVE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/60/3d2894-32e9-4f02-a8b9-532ed2567e9b/1/BqTBjS4g22T_nbUpKzefU4t2oVE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 50:64:38:53:f2:6d:c1:bc:bf:cf:ce:c9:31:e9:85:67:d5:1d: 59:f1:d8:7b:1b:be:d1:9c:f8:1f:74:1a:49:cd:7c:af:ee:31: 3b:d0:e3:cf:c8:e1:04:df:ae:76:6a:ca:41:b9:1b:01:5b:c5: ce:fb:da:5d:9d:62:4a:c3:68:3d:bc:8c:a0:0b:71:ec:a8:63: a4:d4:a1:a7:7e:c9:2e:4f:8c:f6:17:d7:e8:17:cb:f7:ed:6a: 44:2f:37:ee:aa:c3:7a:05:61:0a:58:10:ef:8d:f9:f1:3b:d9: 0a:65:a0:8c:5f:4b:1a:51:4f:8d:5a:27:87:6a:0f:ce:c4:1b: 3d:8e:a5:21:62:7a:65:b7:f4:fd:66:fd:74:4c:fa:2a:81:28: 2a:79:c1:a7:8d:fe:7e:01:01:4f:8b:24:86:53:3d:29:d0:4a: 8f:29:5f:c5:6f:0c:9d:44:76:4f:54:c8:27:db:fd:93:31:95: 60:c1:b9:7c:2b:26:5b:c1:af:8e:76:fa:bc:31:85:df:e5:8f: 06:90:9a:dc:db:c9:78:a6:cf:91:2d:9f:17:5e:a9:41:2f:bc: 45:e3:1a:fa:d8:52:4e:31:19:cf:41:46:03:eb:e3:ae:2b:6c: dd:37:ff:1b:90:a0:91:04:8b:28:84:e5:b9:de:fe:18:5d:a9: 0d:9b:c2:1e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtgwdgHpL0+C+XfMeTGySLDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA2YTRjMThkMmUyMGRiNjRmZjlkYjUyOTJiMzc5ZjUzOGI3 NmExNTEwHhcNMjUxMjI3MTcwMTE0WhcNMjUxMjI4MTcwMTE0WjAzMTEwLwYDVQQD Eyg5MTZhZmRmY2JjMTZjMzE4N2NiOWNiMTk0NzhmYzM5ZTgyOWQzZmQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnJyOKN56SB9Ek6/hkEHSpIBbFunv zdJjubsRhhtX3eEKyvtcSIKOwX5Fhwm7jmeEBivIna/ApdhNqRUpuOSa80/J2COW BKzSVawAMc+7PgslzFMvaTx8UVNgG8kdK/c/sTauUlQpdxGeqU1xWS4X4cwer67n 37YDsc/4OWZkp1gnxdLWel/AHbTqoBk0w+5ld6gY/1KOxFPuWAld0rokr5cgjJBZ jz4C4bZvZtjfoV5pPwJClEJipaVvITOXPeSBgtHpxrdXLKjq1yO1prD6HdTPcjQo UrdhLigYhTcjwDeQpNtIyavEneuhpmAYGE0vs+ee2vLemFcx/uyCq+y1DwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJFq/fy8FsMYfLnLGUePw56CnT/UMB8GA1UdIwQY MBaAFAakwY0uINtk/521KSs3n1OLdqFRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQnFUQmpTNGcyMlRfbmJVcEt6ZWZVNHQyb1ZFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC8zZDI4OTQtMzJlOS00ZjAyLWE4Yjkt NTMyZWQyNTY3ZTliLzEvQnFUQmpTNGcyMlRfbmJVcEt6ZWZVNHQyb1ZFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MC8zZDI4OTQtMzJlOS00ZjAyLWE4YjktNTMyZWQyNTY3ZTli LzEvQnFUQmpTNGcyMlRfbmJVcEt6ZWZVNHQyb1ZFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUGQ4U/Jt wby/z87JMemFZ9UdWfHYexu+0Zz4H3QaSc18r+4xO9Djz8jhBN+udmrKQbkbAVvF zvvaXZ1iSsNoPbyMoAtx7KhjpNShp37JLk+M9hfX6BfL9+1qRC837qrDegVhClgQ 74358TvZCmWgjF9LGlFPjVonh2oPzsQbPY6lIWJ6Zbf0/Wb9dEz6KoEoKnnBp43+ fgEBT4skhlM9KdBKjylfxW8MnUR2T1TIJ9v9kzGVYMG5fCsmW8Gvjnb6vDGF3+WP BpCa3NvJeKbPkS2fF16pQS+8ReMa+thSTjEZz0FGA+vjrits3Tf/G5CgkQSLKITl ud7+GF2pDZvCHg== -----END CERTIFICATE-----Generated at Sat Dec 27 19:24:58 2025 by rpki-client