This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft File: bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft (raw, json) Hash identifier: 54HuxEb4H3nKdBji2LVJ+Hrj5iY0/0O2On3QmjJlMXU= Subject key identifier: 3E:42:F9:5C:29:7F:AD:A0:28:30:39:62:99:A6:F7:9B:03:94:F8:22 Authority key identifier: 6F:30:30:A4:B6:7F:95:C2:FE:D9:02:D5:66:57:FA:A2:49:4B:51:29 Certificate issuer: /CN=6f3030a4b67f95c2fed902d56657faa2494b5129 Certificate serial: 019B3A9131CF8DF7DE21A2E7EB61EA3D929E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft Manifest number: 180D Signing time: Sat 20 Dec 2025 07:02:32 +0000 Manifest this update: Sat 20 Dec 2025 07:02:32 +0000 Manifest next update: Sun 21 Dec 2025 07:02:32 +0000 Files and hashes: 1: GJGNGTLsLaPzo7RV9J9cGo7ZCKI.roa (hash: ycPiGraLR+oJB3cwW5Zn+sG2+Vx4fOUp8s3QYwjDHdY=) 2: JnX62VIezaaKWkcW4gBg92XEQXM.roa (hash: dATTafsuJ7WJOlZ8NSS+mLvuyWixoMb7Td/wFEnsYlk=) 3: LJGytq9N5LZAfsPYy6Q-7xTDnFQ.roa (hash: L8DANG0AVQkhh+LlhVF97AUo2a9H2Thg2+BhZTsZc9s=) 4: VdTIZg10bNsf97lJZgApyqs5rnw.roa (hash: JZmVNExP4W1uSJTEkKjxhG9IYISkRZKnN8IfaygiTvg=) 5: _RuQI5qt_gCJV8eSXJjHywGzAcM.roa (hash: DUnvGlvb0qBwrlu2PMIboP80gnaIA1d0Yg1mit2U5+4=) 6: _oIa1v5_qtgCStQ7Gr8CmdhmJJk.roa (hash: sBeGOfBKlFTzuSpkLUgZSpY0MFPhQu/DyIR2/KkHkUM=) 7: acsdEgh-dFdAGSqAE_lAYWdPdzo.roa (hash: lIvBIoA3FQRV1Et4CF8cBr7OP+IuEmQHKzZDW4s0Y6A=) 8: bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl (hash: +8LE3W2/yrumyeTtcZtZ9ZbfhUgLASclegcnLR2BnWA=) 9: mJjHdX3SCVwj6yoNCT7Dpu7pXSo.roa (hash: ccP3x4XUmUaf8il9YXiD7LEPdeAv9/EZKZYCHAVZnrA=) 10: uXeorQ0KraTFvVQlrxOSwyrTRt8.roa (hash: p6Mox6CbN3FoG5SSiyHeNVnPtI+94QgKaVPxEdmTl2o=) 11: yE8yGiOSM9_WiLeRkIg-dqNW2to.roa (hash: lSz5irzOf2/kcuzlFP5VLqCVP2LHBpJf2WHVunZKvMQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 07:02:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3a:91:31:cf:8d:f7:de:21:a2:e7:eb:61:ea:3d:92:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f3030a4b67f95c2fed902d56657faa2494b5129 Validity Not Before: Dec 20 07:02:32 2025 GMT Not After : Dec 21 07:02:32 2025 GMT Subject: CN=3e42f95c297fada02830396299a6f79b0394f822 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:4a:43:cd:31:dc:c1:f5:aa:93:3a:97:a2:c7: ea:f4:11:ac:8e:25:5e:ec:6c:7e:9d:dc:4e:d0:c7: 5e:3a:60:ef:a1:15:85:e4:d8:51:92:51:7c:a4:89: 8d:78:76:22:92:ce:e2:3c:08:f4:77:e4:4c:c5:ae: 7c:76:96:b3:2d:75:d7:b6:3d:ba:b3:28:8f:e4:93: 00:00:c1:d1:45:09:4b:44:28:95:35:95:53:7f:cd: 24:b0:9a:7a:7c:aa:07:c5:33:33:93:a8:84:d2:5b: 44:1e:a4:bc:a0:6e:1b:72:9d:67:14:ad:d1:34:96: 12:05:ae:f6:cf:9c:3e:80:48:ba:f8:6e:a0:59:bc: 81:e1:72:e6:59:7c:84:9b:27:e9:0c:da:bf:68:28: bf:be:2a:3d:88:6c:46:d4:68:5b:f2:26:bd:00:79: de:6e:6c:82:7b:a6:57:c8:cd:46:27:b2:0c:f7:ff: 06:65:dc:d2:78:c6:d0:75:24:7d:c1:4b:13:91:d2: 33:86:5f:fe:f6:d3:2c:43:70:12:41:87:c1:3e:ec: 62:e0:85:64:39:62:f2:30:c8:6b:ae:9b:5a:65:0e: 39:11:71:8a:61:68:0d:47:aa:69:1b:31:c2:0c:fd: a8:8c:cf:06:56:ce:8b:70:6f:9b:5e:8b:96:b6:06: f1:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:42:F9:5C:29:7F:AD:A0:28:30:39:62:99:A6:F7:9B:03:94:F8:22 X509v3 Authority Key Identifier: keyid:6F:30:30:A4:B6:7F:95:C2:FE:D9:02:D5:66:57:FA:A2:49:4B:51:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:9b:6b:80:20:08:ea:42:3f:19:af:2a:15:37:ba:39:d7:92: d1:89:b9:2e:69:a1:ed:ef:4d:b1:d1:4d:40:4a:72:7d:8f:c1: 03:25:bd:22:fd:83:20:7d:f5:5a:67:74:27:db:f2:75:fc:ef: 8f:6e:2e:3f:64:26:51:9b:87:30:36:81:a3:53:3b:d3:8c:11: ec:90:9f:62:11:8c:b9:58:9e:02:a1:31:81:21:bd:bc:47:28: ed:ba:67:47:3d:69:6e:e3:ae:ad:c2:32:14:bc:e9:dd:40:e5: 9c:bf:fd:56:45:39:bf:e3:76:f6:99:19:95:8b:1b:10:92:2c: 9c:fe:91:d5:e1:3b:1d:58:f7:2c:65:9c:3f:c4:4d:bb:9b:53: 09:a3:3a:88:b7:9d:4f:71:03:ac:81:97:19:07:fb:08:61:2a: 42:9f:25:29:03:fb:fd:9a:c3:c7:42:b7:33:80:2c:e8:7d:d2: a2:bb:a7:34:6e:61:d3:f3:e8:ae:d7:1b:58:f0:5a:ca:3d:d8: 7d:a5:84:2d:11:98:dd:c9:0e:29:76:ea:1b:6b:af:5a:2c:f6: e0:44:10:59:06:76:f7:78:5e:4f:23:a9:7f:61:dc:ef:ad:21: 21:a5:73:a0:1c:22:0c:62:d4:3b:19:fd:4d:a6:8b:09:71:11: ac:de:79:f5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs6kTHPjffeIaLn62HqPZKeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmMzAzMGE0YjY3Zjk1YzJmZWQ5MDJkNTY2NTdmYWEyNDk0 YjUxMjkwHhcNMjUxMjIwMDcwMjMyWhcNMjUxMjIxMDcwMjMyWjAzMTEwLwYDVQQD EygzZTQyZjk1YzI5N2ZhZGEwMjgzMDM5NjI5OWE2Zjc5YjAzOTRmODIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxUpDzTHcwfWqkzqXosfq9BGsjiVe 7Gx+ndxO0MdeOmDvoRWF5NhRklF8pImNeHYiks7iPAj0d+RMxa58dpazLXXXtj26 syiP5JMAAMHRRQlLRCiVNZVTf80ksJp6fKoHxTMzk6iE0ltEHqS8oG4bcp1nFK3R NJYSBa72z5w+gEi6+G6gWbyB4XLmWXyEmyfpDNq/aCi/vio9iGxG1Ghb8ia9AHne bmyCe6ZXyM1GJ7IM9/8GZdzSeMbQdSR9wUsTkdIzhl/+9tMsQ3ASQYfBPuxi4IVk OWLyMMhrrptaZQ45EXGKYWgNR6ppGzHCDP2ojM8GVs6LcG+bXouWtgbxgQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD5C+Vwpf62gKDA5Ypmm95sDlPgiMB8GA1UdIwQY MBaAFG8wMKS2f5XC/tkC1WZX+qJJS1EpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy8yYjk5YTMtZGQ1Zi00ZmZlLTgyZWYt YmYzYjIxYTI3MGYyLzEvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy8yYjk5YTMtZGQ1Zi00ZmZlLTgyZWYtYmYzYjIxYTI3MGYy LzEvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI5trgCAI 6kI/Ga8qFTe6OdeS0Ym5Lmmh7e9NsdFNQEpyfY/BAyW9Iv2DIH31Wmd0J9vydfzv j24uP2QmUZuHMDaBo1M704wR7JCfYhGMuVieAqExgSG9vEco7bpnRz1pbuOurcIy FLzp3UDlnL/9VkU5v+N29pkZlYsbEJIsnP6R1eE7HVj3LGWcP8RNu5tTCaM6iLed T3EDrIGXGQf7CGEqQp8lKQP7/ZrDx0K3M4As6H3SorunNG5h0/PortcbWPBayj3Y faWELRGY3ckOKXbqG2uvWiz24EQQWQZ293heTyOpf2Hc760hIaVzoBwiDGLUOxn9 TaaLCXERrN559Q== -----END CERTIFICATE-----Generated at Sat Dec 20 14:06:37 2025 by rpki-client