This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.mft File: thBG3LGFsL_Zl2Yo1poYnTw5h9g.mft (raw, json) Hash identifier: RDQ2dG0Rii5AtHdrtg8Ehi02Pi+nBsuAjvlWacvh9dQ= Subject key identifier: DC:9D:DF:27:CB:29:F3:B2:47:D2:77:FB:88:0E:4F:4D:E9:2A:8E:28 Authority key identifier: B6:10:46:DC:B1:85:B0:BF:D9:97:66:28:D6:9A:18:9D:3C:39:87:D8 Certificate issuer: /CN=b61046dcb185b0bfd9976628d69a189d3c3987d8 Certificate serial: 019B3BA20DCA47D2701ECBCC8334B54F99C1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/thBG3LGFsL_Zl2Yo1poYnTw5h9g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.mft Manifest number: 0BCC Signing time: Sat 20 Dec 2025 12:00:34 +0000 Manifest this update: Sat 20 Dec 2025 12:00:34 +0000 Manifest next update: Sun 21 Dec 2025 12:00:34 +0000 Files and hashes: 1: B1zjeI12z7rKzJjEV2xk7Kx6YeQ.roa (hash: r2WGLNl7mqhMqh1kFVBikeJbCxyFFZKze+pH0m8/Lxw=) 2: J0SmJvo_DblXKy-6WzDl514uI_0.roa (hash: q/+Q30dvsgavMpRf9kHRcZOPpYacKoQhzHpVoqSh0+Q=) 3: oE2klgKXcU6ZFBaxD5Ye5dFs4b0.roa (hash: xVrVcQ4eqe5NnaROnCloWgSzhvwXlAPv4n0sYt9CbFA=) 4: thBG3LGFsL_Zl2Yo1poYnTw5h9g.crl (hash: ZN37L+Vx73sXi/uVF1GfFaVNUv2JkTYEVSexV31PQj8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.mft rsync://rpki.ripe.net/repository/DEFAULT/thBG3LGFsL_Zl2Yo1poYnTw5h9g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 09:56:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3b:a2:0d:ca:47:d2:70:1e:cb:cc:83:34:b5:4f:99:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b61046dcb185b0bfd9976628d69a189d3c3987d8 Validity Not Before: Dec 20 12:00:34 2025 GMT Not After : Dec 21 12:00:34 2025 GMT Subject: CN=dc9ddf27cb29f3b247d277fb880e4f4de92a8e28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:1f:6b:ae:06:a2:68:a4:c6:ba:66:70:2a:f8: a2:ff:42:9a:0c:da:0f:14:fa:ed:6c:2f:99:89:5a: ee:78:c9:51:a0:0e:f3:d8:bc:7c:f7:26:2b:92:b5: 92:9f:23:b1:9c:3e:ae:f5:3b:7d:a9:c7:0e:16:ca: 7f:7d:43:9a:1e:98:cb:f5:76:2a:28:f4:c5:a3:2e: 64:5b:a8:ec:4a:21:f0:2a:88:92:f0:2d:35:35:0e: 26:18:da:af:fe:2b:9a:31:b1:d8:68:8b:58:c6:0d: 02:19:1b:88:5b:e8:24:bf:35:71:0e:25:f3:ff:6c: 77:44:f8:af:65:20:27:4b:f4:b2:c4:7a:96:6e:c2: a8:5a:ab:a3:aa:f5:2e:61:35:8a:fa:70:51:1f:d0: dc:45:4a:b5:bb:2f:9d:4a:dc:61:88:63:5f:9d:88: 97:3c:6f:ad:55:d5:1e:99:f8:03:68:5f:de:a9:02: 80:ed:4f:6f:08:68:d2:cd:99:87:a3:c9:d4:3a:36: d5:9a:e6:19:19:e7:ac:fe:92:6c:ee:ff:eb:4c:e3: 76:a0:3d:b2:3e:1b:4b:cd:52:cc:76:84:11:6b:88: 12:c3:51:0a:0f:18:94:18:38:a4:29:de:64:e2:7c: ac:eb:7c:d1:16:29:51:8f:c7:60:e9:bd:4d:ee:54: ae:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:9D:DF:27:CB:29:F3:B2:47:D2:77:FB:88:0E:4F:4D:E9:2A:8E:28 X509v3 Authority Key Identifier: keyid:B6:10:46:DC:B1:85:B0:BF:D9:97:66:28:D6:9A:18:9D:3C:39:87:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/thBG3LGFsL_Zl2Yo1poYnTw5h9g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 64:30:af:9e:31:27:fe:d9:c0:63:a6:05:5d:3c:a7:8c:3b:34: 1e:19:dc:f4:84:2c:98:dc:ea:01:24:f0:e2:df:6c:64:54:7f: 71:6a:59:2a:2a:64:fb:07:b2:c6:be:13:e5:fe:44:04:f6:fc: 07:cf:c1:36:bb:b9:72:79:c9:ea:af:8e:31:8a:84:61:4b:9f: a6:90:88:b8:ad:b7:91:ef:20:1e:46:e9:ee:99:fb:c6:a6:09: 09:e8:6e:38:53:64:1b:a5:1f:cc:6e:a4:9b:ab:d9:09:08:6d: 2e:13:fc:4b:f4:47:91:5d:32:e4:70:34:db:c5:71:da:1d:93: a4:55:1f:96:72:49:08:ba:5c:94:67:d3:b3:21:46:1c:0c:c7: 65:c7:b6:3a:7e:c4:a6:be:8a:b5:07:33:67:72:da:f8:d9:7b: 3b:6b:79:9c:9f:cd:7c:38:d7:ac:25:24:d0:23:d9:a5:f0:ca: 3a:2d:e0:97:e6:15:25:1d:44:77:fe:cc:52:87:75:c7:b8:9e: 43:65:fb:96:55:91:9b:ed:b4:dd:5a:ea:84:a7:4f:ec:67:3b: 5f:5a:0c:1e:3b:f1:82:1e:dd:22:18:0c:05:ca:2e:da:44:23: 2e:59:24:79:cc:61:b1:f7:eb:e7:d6:37:06:b1:94:63:9a:aa: d4:03:6d:40 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs7og3KR9JwHsvMgzS1T5nBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI2MTA0NmRjYjE4NWIwYmZkOTk3NjYyOGQ2OWExODlkM2Mz OTg3ZDgwHhcNMjUxMjIwMTIwMDM0WhcNMjUxMjIxMTIwMDM0WjAzMTEwLwYDVQQD EyhkYzlkZGYyN2NiMjlmM2IyNDdkMjc3ZmI4ODBlNGY0ZGU5MmE4ZTI4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6h9rrgaiaKTGumZwKvii/0KaDNoP FPrtbC+ZiVrueMlRoA7z2Lx89yYrkrWSnyOxnD6u9Tt9qccOFsp/fUOaHpjL9XYq KPTFoy5kW6jsSiHwKoiS8C01NQ4mGNqv/iuaMbHYaItYxg0CGRuIW+gkvzVxDiXz /2x3RPivZSAnS/SyxHqWbsKoWqujqvUuYTWK+nBRH9DcRUq1uy+dStxhiGNfnYiX PG+tVdUemfgDaF/eqQKA7U9vCGjSzZmHo8nUOjbVmuYZGees/pJs7v/rTON2oD2y PhtLzVLMdoQRa4gSw1EKDxiUGDikKd5k4nys63zRFilRj8dg6b1N7lSuUwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNyd3yfLKfOyR9J3+4gOT03pKo4oMB8GA1UdIwQY MBaAFLYQRtyxhbC/2ZdmKNaaGJ08OYfYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdGhCRzNMR0ZzTF9abDJZbzFwb1luVHc1aDlnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC83MDc1N2ItYzc1OC00MjkyLThiNWMt Y2YxZjJmYThlNWYyLzEvdGhCRzNMR0ZzTF9abDJZbzFwb1luVHc1aDlnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC83MDc1N2ItYzc1OC00MjkyLThiNWMtY2YxZjJmYThlNWYy LzEvdGhCRzNMR0ZzTF9abDJZbzFwb1luVHc1aDlnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZDCvnjEn /tnAY6YFXTynjDs0Hhnc9IQsmNzqASTw4t9sZFR/cWpZKipk+weyxr4T5f5EBPb8 B8/BNru5cnnJ6q+OMYqEYUufppCIuK23ke8gHkbp7pn7xqYJCehuOFNkG6UfzG6k m6vZCQhtLhP8S/RHkV0y5HA028Vx2h2TpFUflnJJCLpclGfTsyFGHAzHZce2On7E pr6KtQczZ3La+Nl7O2t5nJ/NfDjXrCUk0CPZpfDKOi3gl+YVJR1Ed/7MUod1x7ie Q2X7llWRm+203VrqhKdP7Gc7X1oMHjvxgh7dIhgMBcou2kQjLlkkecxhsffr59Y3 BrGUY5qq1ANtQA== -----END CERTIFICATE-----Generated at Sat Dec 20 16:18:01 2025 by rpki-client