This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft File: BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft (raw, json) Hash identifier: YoEcQA5qOOEC+hrmI/EZUvjDkobSIhyNSjuOQHvNTxc= Subject key identifier: A1:AD:7D:14:97:BC:7E:76:92:F7:99:1A:64:A7:1C:06:1F:84:42:4C Authority key identifier: 04:E3:2C:43:F9:69:BA:41:7B:A3:6D:07:21:B1:D9:D5:06:24:C4:0F Certificate issuer: /CN=04e32c43f969ba417ba36d0721b1d9d50624c40f Certificate serial: 019B3D90C40D3DA98F18CAA8DE5F2C0F30A0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft Manifest number: 0933 Signing time: Sat 20 Dec 2025 21:00:56 +0000 Manifest this update: Sat 20 Dec 2025 21:00:56 +0000 Manifest next update: Sun 21 Dec 2025 21:00:56 +0000 Files and hashes: 1: BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl (hash: 6Qazn2/z6SWLWArHHidbw+9geEv0mI7A3zKtMndYRIo=) 2: nHuVyjc3KMoSX7dk6oCcJzZC7yI.roa (hash: 8kNlY4DAN29iBV2YoNVORKEQ7cx+NbbKiFTFq2jo6ec=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 19:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3d:90:c4:0d:3d:a9:8f:18:ca:a8:de:5f:2c:0f:30:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04e32c43f969ba417ba36d0721b1d9d50624c40f Validity Not Before: Dec 20 21:00:56 2025 GMT Not After : Dec 21 21:00:56 2025 GMT Subject: CN=a1ad7d1497bc7e7692f7991a64a71c061f84424c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:39:c3:d5:7e:43:07:3f:69:9c:4b:9b:8b:32: 72:9c:a6:42:49:1d:62:a4:9e:9e:eb:b9:f9:d4:d0: cb:6c:5f:ec:74:9b:e3:db:bc:a5:c2:74:dc:b5:7b: e9:69:ce:37:6b:cf:64:1e:8b:ad:83:1a:37:3c:7d: 57:97:2e:8b:6e:42:33:84:33:74:1d:f2:8c:3e:fc: 28:51:2e:03:3b:b6:56:5b:c3:5b:b1:22:90:97:d8: 25:14:f3:ae:e6:01:bc:e4:16:58:80:6d:7f:14:98: 9c:a6:62:cc:4f:b0:11:36:16:7d:73:95:d0:63:bd: 2c:5a:bf:67:fd:2c:cc:de:97:c2:70:04:10:0b:27: 55:c7:b5:3e:24:f7:8f:2b:e6:35:03:17:a6:f9:9d: 26:a0:60:59:0e:3d:c8:f4:d5:3a:73:a6:a0:7b:6f: f4:aa:80:f4:a4:ba:b0:5d:ed:22:67:be:4a:2c:de: b2:2d:d6:b0:4d:c9:da:31:43:cf:85:f6:21:f0:bc: 08:88:91:9f:5a:18:41:57:bd:e6:b5:36:f1:da:cd: bd:5f:1f:cb:f8:d4:85:e8:86:b3:c9:bf:5c:5d:5c: 2c:77:6e:17:31:ee:9e:2f:13:79:4e:8b:bc:a7:d6: 1c:b7:5c:81:a9:6e:4c:08:a6:bd:5f:6e:f9:4c:86: 40:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:AD:7D:14:97:BC:7E:76:92:F7:99:1A:64:A7:1C:06:1F:84:42:4C X509v3 Authority Key Identifier: keyid:04:E3:2C:43:F9:69:BA:41:7B:A3:6D:07:21:B1:D9:D5:06:24:C4:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3a:e8:35:48:dc:a9:05:58:ca:6d:f2:c0:4e:36:d0:9b:6b:af: b3:71:ef:d2:02:0e:27:42:47:49:fc:9f:9e:e3:fc:e2:11:d5: d1:72:f5:c2:80:43:26:65:68:67:a9:7c:b0:0b:56:04:b2:80: 21:96:52:4b:90:50:47:53:4e:52:46:48:9e:5e:71:e7:05:af: 09:49:57:93:f1:0d:27:88:90:ac:99:d1:5b:a8:f8:fc:e9:7a: 6a:e3:20:36:06:46:5e:97:30:69:84:1f:8a:ea:af:ed:26:0e: f1:48:a7:67:a1:2a:79:23:54:11:5a:29:26:8c:dd:60:cd:09: 88:dc:d0:56:1e:f3:76:56:64:8c:53:03:10:56:f2:86:3b:19: 92:c7:e9:06:a3:32:b7:00:c2:7c:a8:a1:62:1d:51:bf:0a:2d: 63:5a:09:e3:b5:45:25:0e:27:5d:e1:2a:57:ec:d9:6c:33:b2: 0f:0d:79:da:63:d8:50:84:37:db:59:f6:a9:ca:66:cb:c6:bf: 20:5f:12:56:42:7d:c5:95:78:6e:98:df:99:e6:ac:ce:a8:f5: 94:24:6e:70:21:b6:58:7f:11:a0:0f:64:04:57:02:83:35:2e: 4a:86:5c:d1:96:73:77:e3:06:3a:d9:4e:e4:f3:91:74:34:b1: 79:5f:b0:8f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs9kMQNPamPGMqo3l8sDzCgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA0ZTMyYzQzZjk2OWJhNDE3YmEzNmQwNzIxYjFkOWQ1MDYy NGM0MGYwHhcNMjUxMjIwMjEwMDU2WhcNMjUxMjIxMjEwMDU2WjAzMTEwLwYDVQQD EyhhMWFkN2QxNDk3YmM3ZTc2OTJmNzk5MWE2NGE3MWMwNjFmODQ0MjRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmznD1X5DBz9pnEubizJynKZCSR1i pJ6e67n51NDLbF/sdJvj27ylwnTctXvpac43a89kHoutgxo3PH1Xly6LbkIzhDN0 HfKMPvwoUS4DO7ZWW8NbsSKQl9glFPOu5gG85BZYgG1/FJicpmLMT7ARNhZ9c5XQ Y70sWr9n/SzM3pfCcAQQCydVx7U+JPePK+Y1Axem+Z0moGBZDj3I9NU6c6age2/0 qoD0pLqwXe0iZ75KLN6yLdawTcnaMUPPhfYh8LwIiJGfWhhBV73mtTbx2s29Xx/L +NSF6Iazyb9cXVwsd24XMe6eLxN5Tou8p9Yct1yBqW5MCKa9X275TIZAZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKGtfRSXvH52kveZGmSnHAYfhEJMMB8GA1UdIwQY MBaAFATjLEP5abpBe6NtByGx2dUGJMQPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQk9Nc1FfbHB1a0Y3bzIwSEliSFoxUVlreEE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi8zMTZmMTUtYmNiNS00MjJjLTkyYTAt ODI2YTQ4ZWVmZDk2LzEvQk9Nc1FfbHB1a0Y3bzIwSEliSFoxUVlreEE4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Mi8zMTZmMTUtYmNiNS00MjJjLTkyYTAtODI2YTQ4ZWVmZDk2 LzEvQk9Nc1FfbHB1a0Y3bzIwSEliSFoxUVlreEE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOug1SNyp BVjKbfLATjbQm2uvs3Hv0gIOJ0JHSfyfnuP84hHV0XL1woBDJmVoZ6l8sAtWBLKA IZZSS5BQR1NOUkZInl5x5wWvCUlXk/ENJ4iQrJnRW6j4/Ol6auMgNgZGXpcwaYQf iuqv7SYO8UinZ6EqeSNUEVopJozdYM0JiNzQVh7zdlZkjFMDEFbyhjsZksfpBqMy twDCfKihYh1RvwotY1oJ47VFJQ4nXeEqV+zZbDOyDw152mPYUIQ321n2qcpmy8a/ IF8SVkJ9xZV4bpjfmeaszqj1lCRucCG2WH8RoA9kBFcCgzUuSoZc0ZZzd+MGOtlO 5PORdDSxeV+wjw== -----END CERTIFICATE-----Generated at Sun Dec 21 04:23:38 2025 by rpki-client