This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/6451c1-2bcd-4463-a700-d442c4f9e9bd/1/BwSD09YvGcCDV0bctyHIgyw7eSY.mft File: BwSD09YvGcCDV0bctyHIgyw7eSY.mft (raw, json) Hash identifier: HAmqRGy8Xd257gvzikeqsOtuy4JARyPh3da6xcalJzY= Subject key identifier: 53:4F:FE:26:70:EE:5F:CF:F7:73:87:ED:52:44:FF:90:06:7A:C0:F2 Authority key identifier: 07:04:83:D3:D6:2F:19:C0:83:57:46:DC:B7:21:C8:83:2C:3B:79:26 Certificate issuer: /CN=070483d3d62f19c0835746dcb721c8832c3b7926 Certificate serial: 019AF4D28E96958E092EA3C5A53562F09660 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BwSD09YvGcCDV0bctyHIgyw7eSY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/6451c1-2bcd-4463-a700-d442c4f9e9bd/1/BwSD09YvGcCDV0bctyHIgyw7eSY.mft Manifest number: 12FA Signing time: Sat 06 Dec 2025 18:00:31 +0000 Manifest this update: Sat 06 Dec 2025 18:00:31 +0000 Manifest next update: Sun 07 Dec 2025 18:00:31 +0000 Files and hashes: 1: 5cY3Kx8b4j0KVaTDpMJ_p3MHXDQ.roa (hash: 4/U5L2WjP5zopAp031RJ3xCbWwHur60QbESkZzzy6YQ=) 2: B5vrhwWeN1u04JarSN4IYCbo8Xc.roa (hash: t+R3zUYIJ8xs8XX0sngECa4QZBYlpNaidayI3GIo934=) 3: BwSD09YvGcCDV0bctyHIgyw7eSY.crl (hash: joOOOe/yDYkKTJJOIfgsK0II+AN2p77KFp40+tMf+MI=) 4: t-7ng9wcZ6DSPMgkeLgJ9AF--O4.roa (hash: DgVk1B4aExECpWEcAT+MKrSw8s1OZ50aoeFXQKO0kng=) 5: vgi1Ey_E7uF9NU90F_N6bB-tCrA.roa (hash: Vylgp4eMLnfNvxtlSE6QqW4iZbJBkmSUXI0mGatE/98=) 6: y2rXYGdhCjEkmnUl0PeolJbzOaM.roa (hash: 6XOn8STp7Q+kEa8OhXzoVLxtQnq0lIv634Hfc+Qy5eE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/6451c1-2bcd-4463-a700-d442c4f9e9bd/1/BwSD09YvGcCDV0bctyHIgyw7eSY.crl rsync://rpki.ripe.net/repository/DEFAULT/19/6451c1-2bcd-4463-a700-d442c4f9e9bd/1/BwSD09YvGcCDV0bctyHIgyw7eSY.mft rsync://rpki.ripe.net/repository/DEFAULT/BwSD09YvGcCDV0bctyHIgyw7eSY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 18:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:d2:8e:96:95:8e:09:2e:a3:c5:a5:35:62:f0:96:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=070483d3d62f19c0835746dcb721c8832c3b7926 Validity Not Before: Dec 6 18:00:31 2025 GMT Not After : Dec 7 18:00:31 2025 GMT Subject: CN=534ffe2670ee5fcff77387ed5244ff90067ac0f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:7f:c4:3d:95:c7:44:8f:15:68:b8:1c:a0:fd: a1:55:21:ec:05:b7:6f:aa:9a:1b:1f:01:e5:bf:04: 9f:2d:d4:b5:b6:6a:46:62:e0:79:15:12:e0:f0:a9: 48:44:91:1b:73:56:a5:b2:db:b4:4c:f0:f9:96:de: cd:3f:d3:40:d8:4f:59:a4:8a:67:a5:70:3e:e9:c7: e5:a8:d3:b6:e7:27:54:50:95:8f:53:8f:42:09:4b: 44:65:32:93:41:11:01:ca:54:06:12:33:b2:c3:09: b6:8e:0f:98:61:9d:36:f3:9b:46:5b:05:b2:4a:44: b0:24:ab:b8:92:8a:f0:b9:2b:8d:29:fb:33:0e:a5: 57:ec:d9:28:ca:ad:21:c3:c0:ab:ec:e9:e6:ac:70: 8e:07:1e:97:dc:8f:ca:2c:e1:06:16:89:2d:26:fd: a4:38:1e:b1:30:13:f6:da:0c:87:09:98:d7:9c:38: d1:23:c4:2a:3f:4f:67:04:00:4b:dd:d5:03:c5:46: 36:e7:e6:46:fe:0e:09:34:53:95:3a:36:f0:89:1f: d6:d9:5d:c7:69:68:60:07:1a:36:af:15:10:99:b8: 23:70:0a:c5:64:43:b5:e4:28:0e:10:61:e4:f8:82: 64:62:fe:2d:7c:19:76:6c:4e:da:2b:97:f6:e0:8a: b6:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:4F:FE:26:70:EE:5F:CF:F7:73:87:ED:52:44:FF:90:06:7A:C0:F2 X509v3 Authority Key Identifier: keyid:07:04:83:D3:D6:2F:19:C0:83:57:46:DC:B7:21:C8:83:2C:3B:79:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BwSD09YvGcCDV0bctyHIgyw7eSY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/6451c1-2bcd-4463-a700-d442c4f9e9bd/1/BwSD09YvGcCDV0bctyHIgyw7eSY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/19/6451c1-2bcd-4463-a700-d442c4f9e9bd/1/BwSD09YvGcCDV0bctyHIgyw7eSY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:bd:26:1a:8f:81:dc:aa:a4:e4:ef:7d:aa:0c:e3:ca:b9:cc: ac:37:a5:ef:01:4f:31:7c:01:6e:96:36:96:e6:80:84:d2:ea: f9:91:a5:ac:0e:09:4a:84:ec:c7:f9:2d:e8:ed:6c:1f:99:9a: e6:3e:7d:d1:66:29:dc:a6:44:89:5f:fd:d7:db:9a:87:72:16: 49:48:19:27:f0:ba:94:ab:f5:27:ff:f5:bd:7f:25:4c:1a:d1: b8:e7:60:39:4f:60:99:a6:39:b1:81:74:54:6f:1d:31:15:68: 2c:1e:63:ad:cc:5b:32:66:25:38:a8:af:b6:48:af:8a:dd:f0: 8e:f7:0f:27:de:c3:26:83:eb:b9:93:f0:df:78:c3:21:3e:c0: f7:26:ef:cc:72:5a:80:ff:9b:60:b7:4d:9a:ad:e7:76:77:41: 0a:c7:e2:e8:ee:83:1a:87:1a:0e:a3:71:b9:15:7a:91:5b:81: c9:7a:f1:67:37:72:fc:30:d6:9f:be:8b:bf:b9:00:81:1c:89: 8a:8d:78:0b:64:96:7f:eb:25:99:9d:41:00:77:ce:10:e2:88: a4:e4:de:4d:71:7d:13:2c:41:fd:46:d7:24:be:f6:c0:90:c6: df:dc:bf:c4:19:ea:3a:17:03:f4:3f:1f:ac:fe:fe:6e:72:e6: a0:1d:46:88 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr00o6WlY4JLqPFpTVi8JZgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA3MDQ4M2QzZDYyZjE5YzA4MzU3NDZkY2I3MjFjODgzMmMz Yjc5MjYwHhcNMjUxMjA2MTgwMDMxWhcNMjUxMjA3MTgwMDMxWjAzMTEwLwYDVQQD Eyg1MzRmZmUyNjcwZWU1ZmNmZjc3Mzg3ZWQ1MjQ0ZmY5MDA2N2FjMGYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApX/EPZXHRI8VaLgcoP2hVSHsBbdv qpobHwHlvwSfLdS1tmpGYuB5FRLg8KlIRJEbc1alstu0TPD5lt7NP9NA2E9ZpIpn pXA+6cflqNO25ydUUJWPU49CCUtEZTKTQREBylQGEjOywwm2jg+YYZ0285tGWwWy SkSwJKu4korwuSuNKfszDqVX7Nkoyq0hw8Cr7OnmrHCOBx6X3I/KLOEGFoktJv2k OB6xMBP22gyHCZjXnDjRI8QqP09nBABL3dUDxUY25+ZG/g4JNFOVOjbwiR/W2V3H aWhgBxo2rxUQmbgjcArFZEO15CgOEGHk+IJkYv4tfBl2bE7aK5f24Iq2VwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFNP/iZw7l/P93OH7VJE/5AGesDyMB8GA1UdIwQY MBaAFAcEg9PWLxnAg1dG3LchyIMsO3kmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQndTRDA5WXZHY0NEVjBiY3R5SElneXc3ZVNZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS82NDUxYzEtMmJjZC00NDYzLWE3MDAt ZDQ0MmM0ZjllOWJkLzEvQndTRDA5WXZHY0NEVjBiY3R5SElneXc3ZVNZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOS82NDUxYzEtMmJjZC00NDYzLWE3MDAtZDQ0MmM0ZjllOWJk LzEvQndTRDA5WXZHY0NEVjBiY3R5SElneXc3ZVNZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJb0mGo+B 3Kqk5O99qgzjyrnMrDel7wFPMXwBbpY2luaAhNLq+ZGlrA4JSoTsx/kt6O1sH5ma 5j590WYp3KZEiV/919uah3IWSUgZJ/C6lKv1J//1vX8lTBrRuOdgOU9gmaY5sYF0 VG8dMRVoLB5jrcxbMmYlOKivtkivit3wjvcPJ97DJoPruZPw33jDIT7A9ybvzHJa gP+bYLdNmq3ndndBCsfi6O6DGocaDqNxuRV6kVuByXrxZzdy/DDWn76Lv7kAgRyJ io14C2SWf+slmZ1BAHfOEOKIpOTeTXF9EyxB/UbXJL72wJDG39y/xBnqOhcD9D8f rP7+bnLmoB1GiA== -----END CERTIFICATE-----Generated at Sun Dec 7 01:31:00 2025 by rpki-client