This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/277154-efba-48ed-bb0c-650b70bad7a9/1/bQ1uHM2JDfL16cFF7LpGiZzOs70.mft File: bQ1uHM2JDfL16cFF7LpGiZzOs70.mft (raw, json) Hash identifier: WNYgHuKiEsb/uRGNM2PwPsgdQ188MTIT8n/5l6tqTKQ= Subject key identifier: 70:B8:43:32:66:C9:AD:4E:78:2B:6B:42:FB:FC:42:B6:D1:DE:DC:BC Authority key identifier: 6D:0D:6E:1C:CD:89:0D:F2:F5:E9:C1:45:EC:BA:46:89:9C:CE:B3:BD Certificate issuer: /CN=6d0d6e1ccd890df2f5e9c145ecba46899cceb3bd Certificate serial: 019B6D337198AE54B900BE8FAB2AB5F7A674 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bQ1uHM2JDfL16cFF7LpGiZzOs70.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/277154-efba-48ed-bb0c-650b70bad7a9/1/bQ1uHM2JDfL16cFF7LpGiZzOs70.mft Manifest number: 1431 Signing time: Tue 30 Dec 2025 03:00:46 +0000 Manifest this update: Tue 30 Dec 2025 03:00:46 +0000 Manifest next update: Wed 31 Dec 2025 03:00:46 +0000 Files and hashes: 1: bQ1uHM2JDfL16cFF7LpGiZzOs70.crl (hash: y0hHk59TTC2z4j2GHRv0KegKPXDz+wsoPcgJTn9U5bE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/277154-efba-48ed-bb0c-650b70bad7a9/1/bQ1uHM2JDfL16cFF7LpGiZzOs70.crl rsync://rpki.ripe.net/repository/DEFAULT/f4/277154-efba-48ed-bb0c-650b70bad7a9/1/bQ1uHM2JDfL16cFF7LpGiZzOs70.mft rsync://rpki.ripe.net/repository/DEFAULT/bQ1uHM2JDfL16cFF7LpGiZzOs70.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 31 Dec 2025 00:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:6d:33:71:98:ae:54:b9:00:be:8f:ab:2a:b5:f7:a6:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6d0d6e1ccd890df2f5e9c145ecba46899cceb3bd Validity Not Before: Dec 30 03:00:46 2025 GMT Not After : Dec 31 03:00:46 2025 GMT Subject: CN=70b8433266c9ad4e782b6b42fbfc42b6d1dedcbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:74:a0:76:78:23:34:34:3d:91:a2:9b:bc:cb: 8b:2c:4f:28:30:f2:5e:d3:76:50:ec:7e:fa:bf:f8: ca:4b:92:75:82:04:d5:58:af:cb:9f:94:b1:41:50: 1e:b9:63:92:e0:3d:6f:9a:94:8e:b4:14:2c:b0:5c: ca:1e:4b:11:28:5a:de:7e:fe:d1:f1:cb:ab:63:c7: 58:8f:1c:85:00:ed:70:7d:35:a0:73:18:f8:b5:8d: ff:5a:27:b2:52:90:d3:9f:e7:92:0e:f9:62:a7:3a: f2:1e:8f:b0:e2:8a:f3:60:6e:97:c4:0c:14:30:30: 1e:b1:36:73:64:1f:ea:a4:4b:12:4f:c7:61:a0:64: 90:f2:80:9d:62:52:b7:8c:e7:ec:3b:1d:59:bc:b4: a4:4c:11:f4:61:09:67:b8:c7:b7:72:40:06:ab:26: 8e:c9:fb:02:b8:b3:4a:84:74:34:56:e7:b7:0a:77: 0c:87:e3:45:04:80:4b:1d:2b:76:e9:4a:84:d5:88: 05:8e:a5:59:d3:67:71:ff:5a:b9:e7:5f:fd:ba:be: b7:2f:fa:78:1f:fd:c5:99:d5:8d:6e:a2:b9:11:a0: 01:ef:8a:5a:b5:ce:94:03:5e:c6:89:b9:05:f2:67: 95:bf:f7:75:96:81:8c:3a:23:42:e1:01:e9:ce:f6: 90:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:B8:43:32:66:C9:AD:4E:78:2B:6B:42:FB:FC:42:B6:D1:DE:DC:BC X509v3 Authority Key Identifier: keyid:6D:0D:6E:1C:CD:89:0D:F2:F5:E9:C1:45:EC:BA:46:89:9C:CE:B3:BD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bQ1uHM2JDfL16cFF7LpGiZzOs70.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/277154-efba-48ed-bb0c-650b70bad7a9/1/bQ1uHM2JDfL16cFF7LpGiZzOs70.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/277154-efba-48ed-bb0c-650b70bad7a9/1/bQ1uHM2JDfL16cFF7LpGiZzOs70.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 92:68:56:7f:ec:5f:be:5d:cf:6e:26:7c:7e:90:19:f4:52:8e: 09:31:02:0b:70:57:6e:fe:6f:01:76:65:c1:02:bf:90:ab:61: 1f:0f:f4:04:ee:a1:fc:3a:2e:05:e9:50:db:af:4c:45:75:63: 67:aa:f7:bf:20:94:9d:71:2d:72:29:7e:7e:68:0e:79:34:9f: 60:54:37:2a:93:65:fb:56:a2:86:5e:f1:fc:b9:fa:46:dc:21: 1b:6c:a4:f3:94:12:05:3c:85:04:66:5e:ec:5d:bc:25:19:f0: f8:b3:95:9e:c4:a1:89:e7:d9:0a:58:0d:64:93:d7:2e:9c:62: 3c:74:c0:99:86:01:0e:d5:b9:b6:89:e9:7b:bd:a5:81:0f:d7: 97:9f:dd:fe:13:fe:60:30:4b:db:f2:45:38:86:a2:60:79:49: 20:cd:af:9c:f4:70:c9:57:ee:ff:b1:06:dc:c3:43:1b:1b:ff: e8:d9:f4:dc:0f:c9:d4:f1:17:ee:f5:97:7f:f8:eb:47:70:33: 38:ce:bd:38:41:cc:e5:28:4c:ac:32:9d:8b:0d:31:60:cc:38: 0c:2d:8b:dd:ae:8a:6a:5c:da:41:1c:fb:39:f6:e8:c7:b3:05: c6:6d:ad:17:2b:91:fd:d2:46:a0:72:56:b3:8e:d4:09:26:6d: 40:ba:dd:7d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZttM3GYrlS5AL6Pqyq196Z0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkMGQ2ZTFjY2Q4OTBkZjJmNWU5YzE0NWVjYmE0Njg5OWNj ZWIzYmQwHhcNMjUxMjMwMDMwMDQ2WhcNMjUxMjMxMDMwMDQ2WjAzMTEwLwYDVQQD Eyg3MGI4NDMzMjY2YzlhZDRlNzgyYjZiNDJmYmZjNDJiNmQxZGVkY2JjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsHSgdngjNDQ9kaKbvMuLLE8oMPJe 03ZQ7H76v/jKS5J1ggTVWK/Ln5SxQVAeuWOS4D1vmpSOtBQssFzKHksRKFrefv7R 8curY8dYjxyFAO1wfTWgcxj4tY3/WieyUpDTn+eSDvlipzryHo+w4orzYG6XxAwU MDAesTZzZB/qpEsST8dhoGSQ8oCdYlK3jOfsOx1ZvLSkTBH0YQlnuMe3ckAGqyaO yfsCuLNKhHQ0Vue3CncMh+NFBIBLHSt26UqE1YgFjqVZ02dx/1q551/9ur63L/p4 H/3FmdWNbqK5EaAB74patc6UA17GibkF8meVv/d1loGMOiNC4QHpzvaQ7wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHC4QzJmya1OeCtrQvv8QrbR3ty8MB8GA1UdIwQY MBaAFG0NbhzNiQ3y9enBRey6RomczrO9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYlExdUhNMkpEZkwxNmNGRjdMcEdpWnpPczcwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC8yNzcxNTQtZWZiYS00OGVkLWJiMGMt NjUwYjcwYmFkN2E5LzEvYlExdUhNMkpEZkwxNmNGRjdMcEdpWnpPczcwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNC8yNzcxNTQtZWZiYS00OGVkLWJiMGMtNjUwYjcwYmFkN2E5 LzEvYlExdUhNMkpEZkwxNmNGRjdMcEdpWnpPczcwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkmhWf+xf vl3PbiZ8fpAZ9FKOCTECC3BXbv5vAXZlwQK/kKthHw/0BO6h/DouBelQ269MRXVj Z6r3vyCUnXEtcil+fmgOeTSfYFQ3KpNl+1aihl7x/Ln6RtwhG2yk85QSBTyFBGZe 7F28JRnw+LOVnsShiefZClgNZJPXLpxiPHTAmYYBDtW5tonpe72lgQ/Xl5/d/hP+ YDBL2/JFOIaiYHlJIM2vnPRwyVfu/7EG3MNDGxv/6Nn03A/J1PEX7vWXf/jrR3Az OM69OEHM5ShMrDKdiw0xYMw4DC2L3a6KalzaQRz7Ofbox7MFxm2tFyuR/dJGoHJW s47UCSZtQLrdfQ== -----END CERTIFICATE-----Generated at Tue Dec 30 06:17:59 2025 by rpki-client