This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/9b5e26-0148-4f9f-a46a-bc8425c60604/1/BgPfkU3wTkf1a9li8vncPwQ0pdM.mft File: BgPfkU3wTkf1a9li8vncPwQ0pdM.mft (raw, json) Hash identifier: i6zu2UfEJMS7lGE93avVGkY73aIISOTWK0gLpCrrcOQ= Subject key identifier: 58:0F:70:47:C9:58:40:E2:16:F2:17:9C:7B:23:56:B8:C7:6B:5D:09 Authority key identifier: 06:03:DF:91:4D:F0:4E:47:F5:6B:D9:62:F2:F9:DC:3F:04:34:A5:D3 Certificate issuer: /CN=0603df914df04e47f56bd962f2f9dc3f0434a5d3 Certificate serial: 019B4E4D793B41939EAFA3A9C3F2A434A99D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BgPfkU3wTkf1a9li8vncPwQ0pdM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/9b5e26-0148-4f9f-a46a-bc8425c60604/1/BgPfkU3wTkf1a9li8vncPwQ0pdM.mft Manifest number: 09DC Signing time: Wed 24 Dec 2025 03:00:58 +0000 Manifest this update: Wed 24 Dec 2025 03:00:58 +0000 Manifest next update: Thu 25 Dec 2025 03:00:58 +0000 Files and hashes: 1: BgPfkU3wTkf1a9li8vncPwQ0pdM.crl (hash: yPvUJJc5Ga/VL2ox45HjoI6fD6CnwJDuLAg/wxHS8gU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c9/9b5e26-0148-4f9f-a46a-bc8425c60604/1/BgPfkU3wTkf1a9li8vncPwQ0pdM.crl rsync://rpki.ripe.net/repository/DEFAULT/c9/9b5e26-0148-4f9f-a46a-bc8425c60604/1/BgPfkU3wTkf1a9li8vncPwQ0pdM.mft rsync://rpki.ripe.net/repository/DEFAULT/BgPfkU3wTkf1a9li8vncPwQ0pdM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 03:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4e:4d:79:3b:41:93:9e:af:a3:a9:c3:f2:a4:34:a9:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0603df914df04e47f56bd962f2f9dc3f0434a5d3 Validity Not Before: Dec 24 03:00:58 2025 GMT Not After : Dec 25 03:00:58 2025 GMT Subject: CN=580f7047c95840e216f2179c7b2356b8c76b5d09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:c4:c3:d7:f0:81:04:ba:db:39:64:d7:52:90: b6:2c:b2:e0:ef:4f:d1:41:2a:dd:22:08:e2:f3:47: 2a:e1:5a:c8:66:bc:16:f4:ee:59:3d:5a:98:33:3a: 9d:da:5b:de:22:be:72:f3:3a:ab:56:31:40:da:19: 0e:22:6f:2d:fe:93:4f:6e:a8:51:e8:41:e0:d5:82: a7:26:68:50:a4:00:38:31:c1:7a:22:d2:66:b2:3a: da:a9:ca:82:7b:89:34:23:8d:2f:4d:45:bf:1e:1a: 13:8c:d5:c8:dd:76:f3:ba:0f:b7:cf:b0:e1:44:25: d4:b2:21:13:d7:b5:57:90:f4:fa:d1:39:7e:0e:ad: d8:55:bd:4e:45:dd:34:6a:e7:6f:bc:c5:41:f1:79: 00:a9:ac:4d:02:5f:08:62:e9:4b:91:cf:a4:c7:36: 03:83:b7:eb:c8:92:e4:37:96:e2:42:6f:b6:c0:6f: 7e:54:89:39:65:9f:9b:b0:be:40:23:5e:43:84:97: 1e:3a:49:04:7e:a2:c1:d8:fc:b0:43:29:25:34:04: c1:b1:a2:4a:5a:8c:3f:a1:d6:ec:f4:1c:22:58:ee: ea:c4:17:98:38:65:89:3c:4e:a4:b7:fa:94:bf:3f: 88:8c:ff:38:32:62:17:ff:1e:48:47:8f:29:3a:c8: da:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:0F:70:47:C9:58:40:E2:16:F2:17:9C:7B:23:56:B8:C7:6B:5D:09 X509v3 Authority Key Identifier: keyid:06:03:DF:91:4D:F0:4E:47:F5:6B:D9:62:F2:F9:DC:3F:04:34:A5:D3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BgPfkU3wTkf1a9li8vncPwQ0pdM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/9b5e26-0148-4f9f-a46a-bc8425c60604/1/BgPfkU3wTkf1a9li8vncPwQ0pdM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/9b5e26-0148-4f9f-a46a-bc8425c60604/1/BgPfkU3wTkf1a9li8vncPwQ0pdM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 13:96:59:ca:36:88:17:0b:f8:98:48:0c:af:32:d4:f8:6f:5c: b6:c0:f2:ef:21:71:8f:47:52:12:12:23:ae:d9:48:32:ff:e2: bb:32:10:23:cc:74:2f:d3:90:73:69:ce:ba:e6:91:9d:47:4a: bc:46:4c:81:3d:2d:ea:f7:78:ba:fc:50:76:b3:aa:31:41:66: df:f1:8b:b6:6a:48:63:cb:39:a1:9c:b9:3c:ef:4f:28:f3:5f: 82:85:12:cf:7a:91:5e:94:8f:c4:ba:72:00:49:ad:64:a4:61: c3:44:e7:4c:af:05:cf:91:b0:40:96:8a:d6:3a:53:7d:c5:25: 90:45:1f:05:0c:80:bb:e7:00:90:1b:f9:40:78:a2:9e:a2:2e: 04:04:d3:cb:f8:1b:0f:6a:45:7c:ec:ef:3c:6b:f1:e5:65:ec: dd:76:f2:de:5e:3b:3b:0e:d4:c2:19:14:a8:14:42:91:d0:9a: 52:66:18:f2:52:40:49:ab:35:b9:3d:92:ef:88:cb:9f:0e:6c: b9:a7:3e:18:89:ce:d2:ac:6c:60:36:1b:e0:f2:ca:b2:e5:60: d1:f8:89:e7:42:35:dc:fc:c7:8a:7a:b8:2f:cf:9e:73:d4:e5: a8:c6:3b:a7:c1:21:e9:84:74:d7:96:d1:e2:f1:24:ec:6a:25: 13:8c:0a:a8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtOTXk7QZOer6Opw/KkNKmdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA2MDNkZjkxNGRmMDRlNDdmNTZiZDk2MmYyZjlkYzNmMDQz NGE1ZDMwHhcNMjUxMjI0MDMwMDU4WhcNMjUxMjI1MDMwMDU4WjAzMTEwLwYDVQQD Eyg1ODBmNzA0N2M5NTg0MGUyMTZmMjE3OWM3YjIzNTZiOGM3NmI1ZDA5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn8TD1/CBBLrbOWTXUpC2LLLg70/R QSrdIgji80cq4VrIZrwW9O5ZPVqYMzqd2lveIr5y8zqrVjFA2hkOIm8t/pNPbqhR 6EHg1YKnJmhQpAA4McF6ItJmsjraqcqCe4k0I40vTUW/HhoTjNXI3Xbzug+3z7Dh RCXUsiET17VXkPT60Tl+Dq3YVb1ORd00audvvMVB8XkAqaxNAl8IYulLkc+kxzYD g7fryJLkN5biQm+2wG9+VIk5ZZ+bsL5AI15DhJceOkkEfqLB2PywQyklNATBsaJK Wow/odbs9BwiWO7qxBeYOGWJPE6kt/qUvz+IjP84MmIX/x5IR48pOsjagQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFgPcEfJWEDiFvIXnHsjVrjHa10JMB8GA1UdIwQY MBaAFAYD35FN8E5H9WvZYvL53D8ENKXTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQmdQZmtVM3dUa2YxYTlsaTh2bmNQd1EwcGRNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOS85YjVlMjYtMDE0OC00ZjlmLWE0NmEt YmM4NDI1YzYwNjA0LzEvQmdQZmtVM3dUa2YxYTlsaTh2bmNQd1EwcGRNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOS85YjVlMjYtMDE0OC00ZjlmLWE0NmEtYmM4NDI1YzYwNjA0 LzEvQmdQZmtVM3dUa2YxYTlsaTh2bmNQd1EwcGRNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE5ZZyjaI Fwv4mEgMrzLU+G9ctsDy7yFxj0dSEhIjrtlIMv/iuzIQI8x0L9OQc2nOuuaRnUdK vEZMgT0t6vd4uvxQdrOqMUFm3/GLtmpIY8s5oZy5PO9PKPNfgoUSz3qRXpSPxLpy AEmtZKRhw0TnTK8Fz5GwQJaK1jpTfcUlkEUfBQyAu+cAkBv5QHiinqIuBATTy/gb D2pFfOzvPGvx5WXs3Xby3l47Ow7UwhkUqBRCkdCaUmYY8lJASas1uT2S74jLnw5s uac+GInO0qxsYDYb4PLKsuVg0fiJ50I13PzHinq4L8+ec9TlqMY7p8Eh6YR015bR 4vEk7GolE4wKqA== -----END CERTIFICATE-----Generated at Wed Dec 24 13:08:51 2025 by rpki-client