This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/010d3d-1ba8-4a96-8212-94ac8af1bfcf/1/bBlbm9RwAeq1D9uh3g0tP0Un9nU.mft File: bBlbm9RwAeq1D9uh3g0tP0Un9nU.mft (raw, json) Hash identifier: C1o+ZRuG7Dv38OGt8rUS83ciB2xIUhgoaEpgFN2HMmk= Subject key identifier: AC:89:23:FC:30:3E:01:6B:5C:F9:96:58:04:86:62:BC:AE:CE:1B:AC Authority key identifier: 6C:19:5B:9B:D4:70:01:EA:B5:0F:DB:A1:DE:0D:2D:3F:45:27:F6:75 Certificate issuer: /CN=6c195b9bd47001eab50fdba1de0d2d3f4527f675 Certificate serial: 019B4EF1E6C2CA286E61610C9AAABF4BF564 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bBlbm9RwAeq1D9uh3g0tP0Un9nU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/010d3d-1ba8-4a96-8212-94ac8af1bfcf/1/bBlbm9RwAeq1D9uh3g0tP0Un9nU.mft Manifest number: 0324 Signing time: Wed 24 Dec 2025 06:00:34 +0000 Manifest this update: Wed 24 Dec 2025 06:00:34 +0000 Manifest next update: Thu 25 Dec 2025 06:00:34 +0000 Files and hashes: 1: MB79B-8QZwUqYrXc2Ibwogq_qLQ.roa (hash: bNBfBbjDpqRStExCWEma6tP6lj9BYj7p2ZAmcoBXfmY=) 2: bBlbm9RwAeq1D9uh3g0tP0Un9nU.crl (hash: EicPGrO64hceu8FLHWe41M/LC0RqCbOBXszjZXjQq7U=) 3: jf4WdQ24BygRnLqj51WchS5928k.roa (hash: /f6JdSqZIG39wyf+D4unjoQWcyolGzjFS4yjumA6E0g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/010d3d-1ba8-4a96-8212-94ac8af1bfcf/1/bBlbm9RwAeq1D9uh3g0tP0Un9nU.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/010d3d-1ba8-4a96-8212-94ac8af1bfcf/1/bBlbm9RwAeq1D9uh3g0tP0Un9nU.mft rsync://rpki.ripe.net/repository/DEFAULT/bBlbm9RwAeq1D9uh3g0tP0Un9nU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 06:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4e:f1:e6:c2:ca:28:6e:61:61:0c:9a:aa:bf:4b:f5:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6c195b9bd47001eab50fdba1de0d2d3f4527f675 Validity Not Before: Dec 24 06:00:34 2025 GMT Not After : Dec 25 06:00:34 2025 GMT Subject: CN=ac8923fc303e016b5cf99658048662bcaece1bac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:20:47:2e:a0:7e:54:c2:4c:ce:81:16:a9:c9: 04:82:1a:f5:80:9b:a2:0e:f7:3e:db:e1:9a:7d:47: fd:62:90:f4:bf:f3:07:75:0b:27:a8:a5:c4:eb:55: 37:a0:f1:f7:8d:2a:ef:ca:7c:93:ee:7f:c8:28:12: 48:3a:3b:c4:6a:b1:8d:57:dc:12:9a:d8:03:ea:de: 42:95:ce:fd:06:dd:d5:2e:d0:a4:55:10:c5:e0:4c: d5:35:5a:ba:81:65:42:39:11:cb:09:11:c0:53:cf: be:c6:6d:a1:3b:98:9a:b6:49:f8:2c:81:01:27:af: 01:a9:71:ef:7b:e2:34:b9:19:44:6e:8c:f5:39:50: fe:15:47:cb:bb:ef:c6:5f:f4:ca:ec:31:e1:f7:4f: d8:24:ab:76:44:74:d4:64:8e:7c:64:47:13:02:31: f1:b9:c7:1f:a2:d7:51:b5:15:29:22:a3:a3:28:bc: 6b:23:41:dc:e5:be:72:06:74:c3:3c:14:b3:20:f9: de:c1:9f:88:f4:66:f6:8e:bc:42:32:46:0a:12:5f: 5b:73:98:ee:7a:ed:05:28:81:f5:9a:cd:dc:1a:6c: 78:18:03:2a:af:2a:d8:fd:df:20:de:25:38:62:5b: fd:2c:ba:b0:6c:b7:30:57:ba:1c:0c:2f:ca:af:db: c4:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:89:23:FC:30:3E:01:6B:5C:F9:96:58:04:86:62:BC:AE:CE:1B:AC X509v3 Authority Key Identifier: keyid:6C:19:5B:9B:D4:70:01:EA:B5:0F:DB:A1:DE:0D:2D:3F:45:27:F6:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bBlbm9RwAeq1D9uh3g0tP0Un9nU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/010d3d-1ba8-4a96-8212-94ac8af1bfcf/1/bBlbm9RwAeq1D9uh3g0tP0Un9nU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/010d3d-1ba8-4a96-8212-94ac8af1bfcf/1/bBlbm9RwAeq1D9uh3g0tP0Un9nU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:ef:04:1d:55:9a:91:bb:96:e7:5e:88:5a:ec:d1:78:ca:3f: 3c:94:f4:5c:1b:37:80:2f:62:9e:bc:46:9c:cc:00:b8:ee:36: 4e:33:49:e4:3b:3d:46:2c:a5:a8:0f:b0:84:3a:e8:97:d6:da: a6:7f:9b:8c:29:a2:d1:b2:04:d1:26:ab:b5:c9:0f:d3:53:b5: 85:2f:f3:b2:fa:be:a4:3b:71:ad:d3:3a:e9:f5:0e:16:88:15: a8:2a:88:e3:59:5b:84:d8:e3:b6:a2:fe:39:fa:81:3e:b9:b3: 64:77:87:12:e9:10:7f:54:04:5d:9c:45:7b:fd:e1:00:c3:0e: 44:4c:fe:b6:c4:18:3f:b8:0c:f9:52:92:b8:ad:87:1c:0f:e5: 20:ca:2c:67:24:d5:a8:93:fa:57:8f:10:1e:6e:db:5e:6a:ae: af:a8:24:9d:56:31:44:f6:a5:65:99:76:41:cc:01:9d:1b:5d: eb:3d:29:3b:4d:7f:22:db:05:5d:24:26:14:43:84:98:16:fa: 22:1b:7e:2e:1f:8b:fe:8c:2e:ee:04:9e:43:32:7b:c2:f1:4b: f1:61:10:2c:16:ba:2f:62:65:a9:b3:ac:8a:6a:cf:bb:11:21: ee:c1:02:cd:5d:d0:7b:1b:9d:55:42:2d:02:e7:bc:07:c3:fe: d8:09:86:ff -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtO8ebCyihuYWEMmqq/S/VkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZjMTk1YjliZDQ3MDAxZWFiNTBmZGJhMWRlMGQyZDNmNDUy N2Y2NzUwHhcNMjUxMjI0MDYwMDM0WhcNMjUxMjI1MDYwMDM0WjAzMTEwLwYDVQQD EyhhYzg5MjNmYzMwM2UwMTZiNWNmOTk2NTgwNDg2NjJiY2FlY2UxYmFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwCBHLqB+VMJMzoEWqckEghr1gJui Dvc+2+GafUf9YpD0v/MHdQsnqKXE61U3oPH3jSrvynyT7n/IKBJIOjvEarGNV9wS mtgD6t5Clc79Bt3VLtCkVRDF4EzVNVq6gWVCORHLCRHAU8++xm2hO5iatkn4LIEB J68BqXHve+I0uRlEboz1OVD+FUfLu+/GX/TK7DHh90/YJKt2RHTUZI58ZEcTAjHx uccfotdRtRUpIqOjKLxrI0Hc5b5yBnTDPBSzIPnewZ+I9Gb2jrxCMkYKEl9bc5ju eu0FKIH1ms3cGmx4GAMqryrY/d8g3iU4Ylv9LLqwbLcwV7ocDC/Kr9vEwQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKyJI/wwPgFrXPmWWASGYryuzhusMB8GA1UdIwQY MBaAFGwZW5vUcAHqtQ/bod4NLT9FJ/Z1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYkJsYm05UndBZXExRDl1aDNnMHRQMFVuOW5VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS8wMTBkM2QtMWJhOC00YTk2LTgyMTIt OTRhYzhhZjFiZmNmLzEvYkJsYm05UndBZXExRDl1aDNnMHRQMFVuOW5VLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS8wMTBkM2QtMWJhOC00YTk2LTgyMTItOTRhYzhhZjFiZmNm LzEvYkJsYm05UndBZXExRDl1aDNnMHRQMFVuOW5VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfe8EHVWa kbuW516IWuzReMo/PJT0XBs3gC9inrxGnMwAuO42TjNJ5Ds9RiylqA+whDrol9ba pn+bjCmi0bIE0SartckP01O1hS/zsvq+pDtxrdM66fUOFogVqCqI41lbhNjjtqL+ OfqBPrmzZHeHEukQf1QEXZxFe/3hAMMOREz+tsQYP7gM+VKSuK2HHA/lIMosZyTV qJP6V48QHm7bXmqur6gknVYxRPalZZl2QcwBnRtd6z0pO01/ItsFXSQmFEOEmBb6 Iht+Lh+L/owu7gSeQzJ7wvFL8WEQLBa6L2JlqbOsimrPuxEh7sECzV3QexudVUIt Aue8B8P+2AmG/w== -----END CERTIFICATE-----Generated at Wed Dec 24 10:30:53 2025 by rpki-client