This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft File: bSDd05jayPYswSUmMl8YIftyT3U.mft (raw, json) Hash identifier: 51UFZ4Ai0EYpyism+wC0GA93kufXOsSnRbc9E6eyE9Q= Subject key identifier: 04:AC:21:F1:E9:B7:05:9B:E5:F7:7E:F5:DB:EC:C3:42:77:A8:C9:FF Authority key identifier: 6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75 Certificate issuer: /CN=6d20ddd398dac8f62cc12526325f1821fb724f75 Certificate serial: 019AF61CDABE32089686713891A4ED9F99BF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft Manifest number: 1668 Signing time: Sun 07 Dec 2025 00:01:17 +0000 Manifest this update: Sun 07 Dec 2025 00:01:17 +0000 Manifest next update: Mon 08 Dec 2025 00:01:17 +0000 Files and hashes: 1: 1-wNbXwWq_rcd31KdtUHBjHqlOYw.roa (hash: Vna41k3RUzjuu4Rno9oMx5pWO8RDhSOU/oHNJLNrfMg=) 2: 1cBjbhQO7ncLuCJPPP3ax-BP1rc.roa (hash: Jy5kekjzCQxDaa0ItIoXnMNYM41DXr2Kna+F8NZUTeI=) 3: 5eRHhosWaEn81OkNyusCZwVd7dE.roa (hash: ocfP0fS6gnrVeOxLsKmob4730X36T0aRDwqF+FQB7po=) 4: 7dOxBPA-NVqHM_R34TmdQX-eiVk.roa (hash: F50CnYYnm4HGmpVuvVtE+trmrhmEhsgxat1JiN/ij8U=) 5: 8hRBXjeqaNVqsRXwD3teVm2IptQ.roa (hash: 7trj/DN0w0nR+thBLV8DeXduqLYmWtu9yjYZdu4vyJw=) 6: Ff-r3-0iyLfe2eC4tftKl7r4ksA.roa (hash: XBCuFAzYlK+KS0b0qdNX4BGXCyC4kES1ua5iNmQkljo=) 7: Hd6EfoaV6nT3HCN6XaeOjid6KeE.roa (hash: jB+LwnmkqI7LD0NI0i2IOq5xZm+2j2nKXigXc5yngNg=) 8: I-d3mGhKAHlT8J9wAcisFqLqGFQ.roa (hash: +t66xrsaCPSb5WzTrykjh+nmEbajrQRTzYzj7itFceY=) 9: Kdr1IpxFOfOedDgEd0rr_-GJc6w.roa (hash: 4mvPk5YCIebKrrCqmTuHh7apgwePzT2ptGjzqSnMQ2k=) 10: RpFEf2i-KdvJWns5f60QFIiul8A.roa (hash: IhnLzk7nknFDNbFcmh5KMyW66l5exCsFA25jgANhkOU=) 11: S1WNVPH-yhQYVBlY1oxGoA4pYB8.roa (hash: /KwKr2NjkF6vHZXTNqR2GuVfyY5uthmni4bhiTmH1io=) 12: TKHVPCgKWgmlRhWEubfTc_2iNdo.roa (hash: kNRIFdkqpRBsn7JG22+KFQspfd2argAfeCH1zb4/CE4=) 13: V2uTQCIG7cpvASw3b1o6E1FEC9w.roa (hash: lSRRwHc5aUwf96o9oByRNWmxPAHRtbICzuXtltcIQaU=) 14: YC4l494MMi7jTGcWqfTEBZhM2VY.roa (hash: DmaVqTngLmKv88xcCzv/bh/3DcOXypOgid+RGqcY+/k=) 15: aIC6ROQmIBkJtMQV3BLilIyM4Jc.roa (hash: +ZDiWP7vx5S7AAhHLcn6ylil5bTpyx1nO3rHC5JU56A=) 16: bSDd05jayPYswSUmMl8YIftyT3U.crl (hash: NZvfftm0+59cAeImjOKAlr7rNU2MSsoOPnOrz2RB+e0=) 17: hmhsGXGseV2PwIXfLkkzy9brjH8.roa (hash: LD7+KdCf6+q+GHIUMNOAE/kbGPimpdSNwZOTxjTUsL4=) 18: iCZsI36d2-8-6a5AmuiDBban0Wk.roa (hash: EmGj3fjcpHlOiNERRV6BrRl723+1lvAThpgK7PMRptQ=) 19: mrPMPRRrlkwWoRTckPExVReGdzU.roa (hash: udQkxnQ/puhpRZBZD7aeBvy0qFXVY4xyBvq7R9flC08=) 20: o5T0k_44TSkIgUx_Ff4U-HFRZqU.roa (hash: IFaPUBy92F06F1cq2klHPE/ZCTKON9EkjF2KsBLKJXw=) 21: qSlaLn-7EYhvBs__DrzBebluApA.roa (hash: /m9RdlfwCPFmSdntKKJTP1sX7ETuhSL8wJhpD8u8EQU=) 22: rgzdAffmWWAVB7HsZPyDscdDfUs.roa (hash: PHFUtB9FTI42HYVNCn11UAKgdzJHvZkAvCdcalSeSVs=) 23: vyh_XE53itxxZ2DN3zJiSHad7oQ.roa (hash: BwwJTDqClirjAI8z/+dm20U+LpRGL9usTj1KRJXE4gs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f6:1c:da:be:32:08:96:86:71:38:91:a4:ed:9f:99:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6d20ddd398dac8f62cc12526325f1821fb724f75 Validity Not Before: Dec 7 00:01:17 2025 GMT Not After : Dec 8 00:01:17 2025 GMT Subject: CN=04ac21f1e9b7059be5f77ef5dbecc34277a8c9ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:35:81:d2:f0:53:0b:f8:f8:66:53:a4:0f:ad: 35:1c:e2:9e:8d:ea:d9:c5:d3:88:a6:96:c4:2d:89: 4a:f0:c7:35:7c:13:2c:da:cd:63:c2:cb:00:84:3c: 87:5a:37:76:a7:4e:11:04:fb:c2:92:25:79:47:54: 37:89:94:f7:5a:3d:92:f4:d1:34:35:3e:7b:d9:17: 83:ae:25:b7:09:c4:a2:d2:d5:f9:65:44:85:7d:26: 88:d3:1a:40:36:16:c6:ce:92:7f:4c:21:6e:55:1c: 08:d1:4d:df:7d:c0:c1:19:48:d1:58:a5:e8:4c:71: 49:00:83:ec:f6:de:9c:e6:63:4e:19:c5:53:0b:32: 04:5c:44:6f:04:28:50:38:ad:b8:15:2f:77:ea:b4: 48:bc:c9:8b:a3:d6:34:6f:43:d8:cd:c1:b3:5d:47: b3:c4:fb:b3:0f:40:d4:14:01:0d:f8:e9:82:36:cd: 10:c3:07:41:2d:42:b8:1b:39:c5:a6:77:ce:02:24: de:a9:7d:97:ea:9c:cf:b0:e9:ca:34:13:7a:42:8f: a2:a8:b9:bf:a2:fa:25:e0:de:94:99:98:b8:a9:7b: 48:dd:e4:37:89:7d:0f:80:c8:0f:f5:6f:01:d9:69: 34:cf:4a:d6:ff:68:ec:73:31:76:8f:ea:77:89:da: 2b:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:AC:21:F1:E9:B7:05:9B:E5:F7:7E:F5:DB:EC:C3:42:77:A8:C9:FF X509v3 Authority Key Identifier: keyid:6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5d:c9:46:3e:50:43:fa:f6:27:d3:4a:c9:22:44:55:f4:89:3a: 96:1c:53:89:4e:aa:5d:d2:73:b9:e6:1b:c7:be:c2:d9:5c:1d: 0d:f2:25:89:02:c3:5e:cb:8b:a6:49:26:07:cb:6d:64:92:86: 5a:fe:e7:12:6c:11:62:76:74:42:7a:a0:80:ae:d2:7c:e3:4c: 8c:b6:fc:97:f3:96:7b:3c:06:78:3b:58:5b:3d:08:a7:0f:21: 12:ee:37:13:d7:9f:35:04:d4:11:38:55:ae:cc:f5:00:65:90: 74:58:ee:5f:03:22:62:f9:b7:18:1d:6c:10:2c:d8:02:4d:fa: 7c:90:94:e3:bb:b7:db:a1:88:5e:ba:ab:a0:b6:52:d9:bb:5c: 71:ba:61:d3:8d:bb:46:2c:eb:c5:ed:ed:29:d9:39:8f:28:5f: fa:2d:f5:a6:af:4e:89:e8:f1:c5:dd:5e:b6:66:b2:4c:50:5d: 76:51:2f:b7:70:23:3f:7f:a2:48:3b:9f:6d:d2:3a:5a:a1:20: 80:e1:42:5b:35:86:9b:00:00:6e:07:5b:57:69:11:c4:27:4f: 2f:5f:ee:99:53:79:fd:18:f1:93:70:29:67:b0:76:3d:93:e5: b0:7e:32:37:ba:a3:40:0d:56:7e:3c:93:ba:2a:66:3d:88:01: af:e4:8e:43 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr2HNq+MgiWhnE4kaTtn5m/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkMjBkZGQzOThkYWM4ZjYyY2MxMjUyNjMyNWYxODIxZmI3 MjRmNzUwHhcNMjUxMjA3MDAwMTE3WhcNMjUxMjA4MDAwMTE3WjAzMTEwLwYDVQQD EygwNGFjMjFmMWU5YjcwNTliZTVmNzdlZjVkYmVjYzM0Mjc3YThjOWZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApDWB0vBTC/j4ZlOkD601HOKejerZ xdOIppbELYlK8Mc1fBMs2s1jwssAhDyHWjd2p04RBPvCkiV5R1Q3iZT3Wj2S9NE0 NT572ReDriW3CcSi0tX5ZUSFfSaI0xpANhbGzpJ/TCFuVRwI0U3ffcDBGUjRWKXo THFJAIPs9t6c5mNOGcVTCzIEXERvBChQOK24FS936rRIvMmLo9Y0b0PYzcGzXUez xPuzD0DUFAEN+OmCNs0QwwdBLUK4GznFpnfOAiTeqX2X6pzPsOnKNBN6Qo+iqLm/ ovol4N6UmZi4qXtI3eQ3iX0PgMgP9W8B2Wk0z0rW/2jsczF2j+p3idoroQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFASsIfHptwWb5fd+9dvsw0J3qMn/MB8GA1UdIwQY MBaAFG0g3dOY2sj2LMElJjJfGCH7ck91MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS9hMWE4OGYtMWRmZi00ZWZmLTgyNmIt MzZkZTY1NzIzMmJlLzEvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMS9hMWE4OGYtMWRmZi00ZWZmLTgyNmItMzZkZTY1NzIzMmJl LzEvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXclGPlBD +vYn00rJIkRV9Ik6lhxTiU6qXdJzueYbx77C2VwdDfIliQLDXsuLpkkmB8ttZJKG Wv7nEmwRYnZ0QnqggK7SfONMjLb8l/OWezwGeDtYWz0Ipw8hEu43E9efNQTUEThV rsz1AGWQdFjuXwMiYvm3GB1sECzYAk36fJCU47u326GIXrqroLZS2btccbph0427 Rizrxe3tKdk5jyhf+i31pq9Oiejxxd1etmayTFBddlEvt3AjP3+iSDufbdI6WqEg gOFCWzWGmwAAbgdbV2kRxCdPL1/umVN5/Rjxk3ApZ7B2PZPlsH4yN7qjQA1WfjyT uipmPYgBr+SOQw== -----END CERTIFICATE-----Generated at Sun Dec 7 02:09:57 2025 by rpki-client