This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/324a9d-cf07-4e71-83a1-182512f8bcde/1/BVPEM_bCJQGdnLWkMwAS9Md6Hz4.mft File: BVPEM_bCJQGdnLWkMwAS9Md6Hz4.mft (raw, json) Hash identifier: coV0VQxkc0uevSRtnfTQZa9z0wlroKhVkE7RJQ4LPZE= Subject key identifier: 34:E5:4E:DB:87:2B:F2:0D:C2:EA:B3:2E:4F:5E:19:EA:DA:A4:BA:E4 Authority key identifier: 05:53:C4:33:F6:C2:25:01:9D:9C:B5:A4:33:00:12:F4:C7:7A:1F:3E Certificate issuer: /CN=0553c433f6c225019d9cb5a4330012f4c77a1f3e Certificate serial: 019B4FCFB9C0D1FFB8CCB9118CF0A94147EB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BVPEM_bCJQGdnLWkMwAS9Md6Hz4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/324a9d-cf07-4e71-83a1-182512f8bcde/1/BVPEM_bCJQGdnLWkMwAS9Md6Hz4.mft Manifest number: 178F Signing time: Wed 24 Dec 2025 10:02:52 +0000 Manifest this update: Wed 24 Dec 2025 10:02:52 +0000 Manifest next update: Thu 25 Dec 2025 10:02:52 +0000 Files and hashes: 1: BVPEM_bCJQGdnLWkMwAS9Md6Hz4.crl (hash: FM97QN4a/h5YDY6RItOhnOFUWQU3KLw2Sca2pzXkSb8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/324a9d-cf07-4e71-83a1-182512f8bcde/1/BVPEM_bCJQGdnLWkMwAS9Md6Hz4.crl rsync://rpki.ripe.net/repository/DEFAULT/62/324a9d-cf07-4e71-83a1-182512f8bcde/1/BVPEM_bCJQGdnLWkMwAS9Md6Hz4.mft rsync://rpki.ripe.net/repository/DEFAULT/BVPEM_bCJQGdnLWkMwAS9Md6Hz4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 09:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4f:cf:b9:c0:d1:ff:b8:cc:b9:11:8c:f0:a9:41:47:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0553c433f6c225019d9cb5a4330012f4c77a1f3e Validity Not Before: Dec 24 10:02:52 2025 GMT Not After : Dec 25 10:02:52 2025 GMT Subject: CN=34e54edb872bf20dc2eab32e4f5e19eadaa4bae4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:8f:cc:5f:5f:85:48:7d:23:5e:0d:6d:a8:f9: 68:1e:58:f1:3a:df:24:a7:2e:16:5d:ef:6e:23:4c: 43:78:6f:e6:50:42:ef:47:3d:dc:54:c5:24:5e:67: bb:ae:a3:22:7f:11:1f:c1:9d:6a:ef:d7:da:55:41: 3e:e2:35:31:01:47:a1:71:73:2a:ef:09:c0:82:96: ae:b2:e6:0c:0a:02:be:a2:b0:6f:fd:bc:34:e1:66: 00:d5:05:f7:d2:9f:37:8c:9c:10:55:d0:c2:7f:c7: ad:24:d9:2a:03:ba:21:06:05:c1:66:b3:60:9e:15: 67:b2:6a:97:b1:ab:1a:8e:0e:e9:17:21:37:c0:ef: 83:05:11:e5:34:cc:76:ba:88:51:06:35:84:5f:c6: 9c:40:3b:78:15:fd:c0:1f:ca:67:1b:45:ad:1b:90: e7:f6:22:62:a3:50:68:61:ca:63:06:97:13:ae:ba: 81:71:2f:e9:5f:fd:0e:14:f6:83:73:0e:e0:03:9a: 53:cb:50:77:7e:84:74:c9:1c:08:fe:a4:e0:0d:83: 43:44:38:79:7f:df:b2:62:80:f9:af:f1:3a:31:aa: b6:5b:b9:20:7a:8a:2e:9b:49:57:61:5f:25:fb:b5: f7:aa:32:01:5c:d4:97:97:7b:ff:50:54:9b:78:56: 70:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:E5:4E:DB:87:2B:F2:0D:C2:EA:B3:2E:4F:5E:19:EA:DA:A4:BA:E4 X509v3 Authority Key Identifier: keyid:05:53:C4:33:F6:C2:25:01:9D:9C:B5:A4:33:00:12:F4:C7:7A:1F:3E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BVPEM_bCJQGdnLWkMwAS9Md6Hz4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/324a9d-cf07-4e71-83a1-182512f8bcde/1/BVPEM_bCJQGdnLWkMwAS9Md6Hz4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/62/324a9d-cf07-4e71-83a1-182512f8bcde/1/BVPEM_bCJQGdnLWkMwAS9Md6Hz4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:c6:07:f0:dd:14:6c:7d:24:fd:2a:0e:2d:06:42:c6:ab:15: e8:1d:d2:b1:a8:a6:30:38:7e:8c:a8:c0:3d:73:c3:dc:16:5e: 12:3c:0d:40:8b:10:78:97:f7:e7:e6:ff:cd:90:17:a9:65:1f: a2:15:8f:df:22:cc:74:b6:a2:21:89:05:00:40:73:e9:f5:0d: 71:73:7e:28:68:32:3d:bb:a8:f9:af:37:81:aa:23:32:85:8f: fc:14:af:d0:b7:07:9d:d2:71:16:b6:6c:35:20:73:9a:84:a1: 6e:7d:69:85:5c:17:66:3c:7f:e9:b5:0f:5e:3c:14:4b:24:c8: 99:49:6b:c8:b9:39:62:03:8d:5f:9a:09:13:16:04:b1:e2:b0: 64:f7:22:ba:28:c8:b6:ce:f8:75:81:f5:48:e9:2d:8d:4a:dc: df:78:b0:5a:96:17:a4:97:28:a2:0a:26:4c:f0:de:15:f1:04: 46:67:9d:af:d8:20:a3:13:e8:4e:2b:c1:e5:56:f3:4b:ef:7f: 32:ea:af:6d:8b:73:ce:7a:20:2d:65:b6:17:5c:f8:7e:a7:3b: 1d:02:60:ac:46:8c:5b:79:6c:c4:a1:8c:72:35:86:81:fc:a7: 35:5f:ae:db:5c:12:cf:50:3f:36:0c:de:14:e5:9b:10:f2:3a: 8b:32:5a:64 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtPz7nA0f+4zLkRjPCpQUfrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1NTNjNDMzZjZjMjI1MDE5ZDljYjVhNDMzMDAxMmY0Yzc3 YTFmM2UwHhcNMjUxMjI0MTAwMjUyWhcNMjUxMjI1MTAwMjUyWjAzMTEwLwYDVQQD EygzNGU1NGVkYjg3MmJmMjBkYzJlYWIzMmU0ZjVlMTllYWRhYTRiYWU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1o/MX1+FSH0jXg1tqPloHljxOt8k py4WXe9uI0xDeG/mUELvRz3cVMUkXme7rqMifxEfwZ1q79faVUE+4jUxAUehcXMq 7wnAgpausuYMCgK+orBv/bw04WYA1QX30p83jJwQVdDCf8etJNkqA7ohBgXBZrNg nhVnsmqXsasajg7pFyE3wO+DBRHlNMx2uohRBjWEX8acQDt4Ff3AH8pnG0WtG5Dn 9iJio1BoYcpjBpcTrrqBcS/pX/0OFPaDcw7gA5pTy1B3foR0yRwI/qTgDYNDRDh5 f9+yYoD5r/E6Maq2W7kgeooum0lXYV8l+7X3qjIBXNSXl3v/UFSbeFZwvQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDTlTtuHK/INwuqzLk9eGerapLrkMB8GA1UdIwQY MBaAFAVTxDP2wiUBnZy1pDMAEvTHeh8+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlZQRU1fYkNKUUdkbkxXa013QVM5TWQ2SHo0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi8zMjRhOWQtY2YwNy00ZTcxLTgzYTEt MTgyNTEyZjhiY2RlLzEvQlZQRU1fYkNKUUdkbkxXa013QVM5TWQ2SHo0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Mi8zMjRhOWQtY2YwNy00ZTcxLTgzYTEtMTgyNTEyZjhiY2Rl LzEvQlZQRU1fYkNKUUdkbkxXa013QVM5TWQ2SHo0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkcYH8N0U bH0k/SoOLQZCxqsV6B3SsaimMDh+jKjAPXPD3BZeEjwNQIsQeJf35+b/zZAXqWUf ohWP3yLMdLaiIYkFAEBz6fUNcXN+KGgyPbuo+a83gaojMoWP/BSv0LcHndJxFrZs NSBzmoShbn1phVwXZjx/6bUPXjwUSyTImUlryLk5YgONX5oJExYEseKwZPciuijI ts74dYH1SOktjUrc33iwWpYXpJcoogomTPDeFfEERmedr9ggoxPoTivB5VbzS+9/ MuqvbYtzznogLWW2F1z4fqc7HQJgrEaMW3lsxKGMcjWGgfynNV+u21wSz1A/Ngze FOWbEPI6izJaZA== -----END CERTIFICATE-----Generated at Wed Dec 24 13:35:47 2025 by rpki-client