This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/2b9296-6bd1-49fb-aea0-d893211e6719/1/bbMKQaam8hqbLdflhWog1bXv_hw.mft File: bbMKQaam8hqbLdflhWog1bXv_hw.mft (raw, json) Hash identifier: 4jx05Wuvjn4AmpMdX0ZnggoLaojX3F8mpri38C7wlZQ= Subject key identifier: 53:70:D6:AA:E8:8C:1C:70:A1:76:C8:F0:0B:01:37:61:4F:5A:69:05 Authority key identifier: 6D:B3:0A:41:A6:A6:F2:1A:9B:2D:D7:E5:85:6A:20:D5:B5:EF:FE:1C Certificate issuer: /CN=6db30a41a6a6f21a9b2dd7e5856a20d5b5effe1c Certificate serial: 019B7759E01980A0D7B79806F65772D2F7C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bbMKQaam8hqbLdflhWog1bXv_hw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/2b9296-6bd1-49fb-aea0-d893211e6719/1/bbMKQaam8hqbLdflhWog1bXv_hw.mft Manifest number: 17 Signing time: Thu 01 Jan 2026 02:18:57 +0000 Manifest this update: Thu 01 Jan 2026 02:18:57 +0000 Manifest next update: Fri 02 Jan 2026 02:18:57 +0000 Files and hashes: 1: KmzjptRoJ7fRzVMuAbPyGaNlK4U.roa (hash: HTQ4SqU1gbnyzbZ9VFLXWOk6V34twlkajlodOkPujZU=) 2: bbMKQaam8hqbLdflhWog1bXv_hw.crl (hash: FCJ6TUu9lDGXS4kSCk/+jYq2cv3x51TGsEvvAXVTJoU=) 3: cgRdj34DpoTUvX6McD-JQwWr-WA.roa (hash: ZVcWw9p279t4mbxBYleG4Xg0e+UqxRd7bXYPDCuxz2w=) 4: dFsfHDXFAVvIPBP5nRJqNmbKuXM.roa (hash: YiThV6hGoAFFghLAZu6/Suaci71yHsUeFK7P3D3y8FQ=) 5: gSng8bmqZiw6jb1bs3NjfDpX7wM.roa (hash: rLCdrSPUSpTEnkTQiU5fDOLCEMchnh4Nxl216udf2yU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/2b9296-6bd1-49fb-aea0-d893211e6719/1/bbMKQaam8hqbLdflhWog1bXv_hw.crl rsync://rpki.ripe.net/repository/DEFAULT/92/2b9296-6bd1-49fb-aea0-d893211e6719/1/bbMKQaam8hqbLdflhWog1bXv_hw.mft rsync://rpki.ripe.net/repository/DEFAULT/bbMKQaam8hqbLdflhWog1bXv_hw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 02 Jan 2026 02:18:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:e0:19:80:a0:d7:b7:98:06:f6:57:72:d2:f7:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6db30a41a6a6f21a9b2dd7e5856a20d5b5effe1c Validity Not Before: Jan 1 02:18:57 2026 GMT Not After : Jan 2 02:18:57 2026 GMT Subject: CN=5370d6aae88c1c70a176c8f00b0137614f5a6905 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:87:f0:23:69:2f:98:69:05:44:94:05:d5:1e: 05:71:7c:96:d9:ef:2e:55:db:1b:e5:bc:1d:3c:23: 77:b1:0d:54:89:44:38:a3:13:96:9d:02:f5:43:44: b1:1b:84:81:6b:ce:3c:aa:06:1a:6c:e1:fa:15:a1: 3e:a2:dd:d5:e7:e3:4d:7a:41:2c:8b:98:2e:4b:07: 5c:ff:00:b4:70:c5:49:5f:95:38:24:a4:50:de:e7: d4:b2:4f:ba:39:1d:7c:0a:5a:99:9a:f1:1b:99:b9: 9e:af:cf:c6:74:17:1b:3e:1a:57:8f:6e:1e:ce:c6: ea:94:73:62:7b:50:c5:e2:ad:21:2a:73:42:20:52: 0c:a6:43:c5:29:b8:a5:e9:f9:eb:ad:eb:d0:85:6a: 06:52:26:0a:a3:f4:28:79:8e:f2:5f:f2:26:d5:69: 05:ad:b3:57:19:49:80:d2:69:30:d8:e0:20:a8:ec: 5f:af:3d:2d:12:d3:48:e3:bf:f5:ae:4d:65:2b:4e: 0a:df:bf:21:35:ce:e9:be:f3:da:78:5b:c8:ad:59: b4:bb:99:b8:91:59:e0:99:f3:c0:a0:57:0f:98:cc: 1e:8e:43:74:e1:fb:d9:3d:ff:ef:19:0d:6a:57:2c: 11:de:4b:2f:a0:e1:cc:08:9e:94:e9:1f:51:0d:f9: 4e:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:70:D6:AA:E8:8C:1C:70:A1:76:C8:F0:0B:01:37:61:4F:5A:69:05 X509v3 Authority Key Identifier: keyid:6D:B3:0A:41:A6:A6:F2:1A:9B:2D:D7:E5:85:6A:20:D5:B5:EF:FE:1C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bbMKQaam8hqbLdflhWog1bXv_hw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/2b9296-6bd1-49fb-aea0-d893211e6719/1/bbMKQaam8hqbLdflhWog1bXv_hw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/92/2b9296-6bd1-49fb-aea0-d893211e6719/1/bbMKQaam8hqbLdflhWog1bXv_hw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:07:2a:55:87:27:3d:8c:89:22:74:2f:7b:97:e1:b6:af:5f: c1:2a:44:61:71:22:b1:ea:bc:85:54:b2:57:5e:08:69:52:b1: 99:2d:35:3f:93:65:08:55:4a:02:84:db:4a:11:83:a2:3c:d5: 4c:17:f5:9e:d3:ff:f2:38:cd:b2:28:2d:fd:57:f7:de:23:40: 20:23:fd:9e:db:f7:3a:35:25:d0:6c:6d:44:13:f2:07:ea:26: 3b:31:11:bb:30:5e:60:ec:99:56:0f:d1:75:d9:6f:5e:39:35: 36:c3:7c:8d:09:39:f2:72:93:9c:6a:29:b6:c7:67:e6:86:f6: 8f:f6:58:31:f8:a8:17:fb:e1:97:d6:ac:94:c2:3a:25:ec:1f: 63:99:3a:65:64:8a:67:f1:04:e3:bc:c6:ef:8c:d3:b0:f6:d6: 81:06:92:71:86:b6:dc:90:1a:02:3c:1f:70:bc:56:eb:58:5e: a1:b1:0c:43:df:05:24:8f:bb:b3:25:29:78:10:76:5c:38:be: 5a:85:6c:b3:97:d4:88:43:ea:18:70:e1:72:01:25:20:1c:d4: fa:0a:d4:5e:50:9c:f9:64:77:32:9c:b3:06:0b:12:25:07:e0: 48:e4:80:0f:ee:2a:81:64:47:fa:48:95:9f:2a:9f:3e:55:8d: e9:66:6b:78 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZt3WeAZgKDXt5gG9ldy0vfAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkYjMwYTQxYTZhNmYyMWE5YjJkZDdlNTg1NmEyMGQ1YjVl ZmZlMWMwHhcNMjYwMTAxMDIxODU3WhcNMjYwMTAyMDIxODU3WjAzMTEwLwYDVQQD Eyg1MzcwZDZhYWU4OGMxYzcwYTE3NmM4ZjAwYjAxMzc2MTRmNWE2OTA1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqIfwI2kvmGkFRJQF1R4FcXyW2e8u Vdsb5bwdPCN3sQ1UiUQ4oxOWnQL1Q0SxG4SBa848qgYabOH6FaE+ot3V5+NNekEs i5guSwdc/wC0cMVJX5U4JKRQ3ufUsk+6OR18ClqZmvEbmbmer8/GdBcbPhpXj24e zsbqlHNie1DF4q0hKnNCIFIMpkPFKbil6fnrrevQhWoGUiYKo/QoeY7yX/Im1WkF rbNXGUmA0mkw2OAgqOxfrz0tEtNI47/1rk1lK04K378hNc7pvvPaeFvIrVm0u5m4 kVngmfPAoFcPmMwejkN04fvZPf/vGQ1qVywR3ksvoOHMCJ6U6R9RDflO4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFNw1qrojBxwoXbI8AsBN2FPWmkFMB8GA1UdIwQY MBaAFG2zCkGmpvIamy3X5YVqINW17/4cMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYmJNS1FhYW04aHFiTGRmbGhXb2cxYlh2X2h3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi8yYjkyOTYtNmJkMS00OWZiLWFlYTAt ZDg5MzIxMWU2NzE5LzEvYmJNS1FhYW04aHFiTGRmbGhXb2cxYlh2X2h3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Mi8yYjkyOTYtNmJkMS00OWZiLWFlYTAtZDg5MzIxMWU2NzE5 LzEvYmJNS1FhYW04aHFiTGRmbGhXb2cxYlh2X2h3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMgcqVYcn PYyJInQve5fhtq9fwSpEYXEiseq8hVSyV14IaVKxmS01P5NlCFVKAoTbShGDojzV TBf1ntP/8jjNsigt/Vf33iNAICP9ntv3OjUl0GxtRBPyB+omOzERuzBeYOyZVg/R ddlvXjk1NsN8jQk58nKTnGoptsdn5ob2j/ZYMfioF/vhl9aslMI6JewfY5k6ZWSK Z/EE47zG74zTsPbWgQaScYa23JAaAjwfcLxW61heobEMQ98FJI+7syUpeBB2XDi+ WoVss5fUiEPqGHDhcgElIBzU+grUXlCc+WR3MpyzBgsSJQfgSOSAD+4qgWRH+kiV nyqfPlWN6WZreA== -----END CERTIFICATE-----Generated at Thu Jan 1 12:26:54 2026 by rpki-client