This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.mft File: bs1crU0zBsT3LEKvwG5c0fuv46M.mft (raw, json) Hash identifier: doE63KXCdcxUwVix+W7I1BQvdBQQDTBgaZjKA9YA8cg= Subject key identifier: 2D:48:1F:FE:9D:BB:AE:5A:F0:75:33:23:70:58:F3:CF:B6:5F:04:F3 Authority key identifier: 6E:CD:5C:AD:4D:33:06:C4:F7:2C:42:AF:C0:6E:5C:D1:FB:AF:E3:A3 Certificate issuer: /CN=6ecd5cad4d3306c4f72c42afc06e5cd1fbafe3a3 Certificate serial: 019B1D2A217D82030F71D8045A6902A3D2C7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bs1crU0zBsT3LEKvwG5c0fuv46M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.mft Manifest number: 177C Signing time: Sun 14 Dec 2025 14:00:58 +0000 Manifest this update: Sun 14 Dec 2025 14:00:58 +0000 Manifest next update: Mon 15 Dec 2025 14:00:58 +0000 Files and hashes: 1: IVWLNAUIsWDuNfRfR17vH-v5XfI.roa (hash: OmbLmtXQG4MyTcSNnTCa+QZsFqNmOgdwU2G3Jors4PA=) 2: bs1crU0zBsT3LEKvwG5c0fuv46M.crl (hash: zEE7KCN2HWK6m8rBFSanB43577hfd/bMpn8/NiL4KPU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.crl rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.mft rsync://rpki.ripe.net/repository/DEFAULT/bs1crU0zBsT3LEKvwG5c0fuv46M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 11:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1d:2a:21:7d:82:03:0f:71:d8:04:5a:69:02:a3:d2:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ecd5cad4d3306c4f72c42afc06e5cd1fbafe3a3 Validity Not Before: Dec 14 14:00:58 2025 GMT Not After : Dec 15 14:00:58 2025 GMT Subject: CN=2d481ffe9dbbae5af07533237058f3cfb65f04f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:6d:72:4c:e1:2b:b0:93:59:68:4b:75:10:81: 36:34:89:b6:e3:6e:aa:19:c5:d3:1c:e8:e5:a0:96: 35:1e:d8:f2:6f:18:1b:da:73:c0:22:d5:a7:8b:f6: 94:7a:16:86:1b:d8:59:62:37:c5:c0:41:b3:15:b3: a3:c6:50:8d:72:c0:1c:b0:8f:28:63:95:82:cc:b8: d8:43:fd:ac:c7:2c:c8:dc:92:32:aa:e7:00:5c:38: 68:a9:1a:fe:d9:2a:c1:f7:8b:36:56:5b:7a:31:11: 09:4a:40:57:d0:cc:a5:be:ee:e3:a8:2a:52:66:30: 32:ca:a8:4a:f1:42:53:76:a7:cc:b0:83:14:af:21: 80:df:e0:f0:92:35:c7:0a:05:5e:44:60:2f:d0:b3: 01:af:f3:4b:50:c5:32:8b:3a:32:ba:63:96:fb:bc: 4d:cf:a9:ac:ee:21:c6:5d:f5:bf:b6:da:9a:8c:a0: ec:41:0d:4e:17:71:1f:36:de:8a:10:36:2a:b6:5b: b6:b6:da:16:d4:9c:27:7e:99:af:24:0b:d5:28:77: 82:1e:41:19:c5:a2:18:dc:ea:94:c6:7d:cc:3f:8a: d9:cd:b5:9a:77:15:69:52:75:f0:bc:39:85:12:d4: e0:d9:5e:d5:68:48:83:54:67:50:8f:d4:fd:f2:96: 36:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:48:1F:FE:9D:BB:AE:5A:F0:75:33:23:70:58:F3:CF:B6:5F:04:F3 X509v3 Authority Key Identifier: keyid:6E:CD:5C:AD:4D:33:06:C4:F7:2C:42:AF:C0:6E:5C:D1:FB:AF:E3:A3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bs1crU0zBsT3LEKvwG5c0fuv46M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8c:67:06:d8:25:28:d1:f0:54:63:de:84:a4:47:fc:90:5b:1c: 5f:f6:1e:b0:c6:36:70:83:4f:4b:1c:e4:e7:64:8e:bc:f9:a3: e9:85:11:7c:89:2a:c7:51:fb:f1:7d:55:b0:cc:f3:59:e7:fa: 43:fe:dc:e2:f7:a8:d3:30:f0:b1:23:ef:0b:98:7b:73:41:49: e3:a1:eb:cd:cd:38:cb:6f:39:c6:f1:7a:e4:2c:0b:b1:85:a7: 72:73:ab:83:d8:23:30:78:0a:0a:6d:7e:41:d1:d2:74:d1:14: 11:a5:50:4c:f5:54:83:8e:fb:44:8d:f8:72:cc:0b:9c:74:bf: 62:bd:91:7a:0e:7f:91:63:46:e3:01:8e:62:6f:95:98:b8:f4: 33:54:80:d5:96:65:b9:f6:64:ec:26:4c:53:b1:7c:e9:2c:b9: 7f:16:36:0c:97:71:ca:55:db:66:a1:5e:2e:d7:f0:5b:1e:da: d5:15:04:7e:83:53:ef:ad:3a:36:59:84:0c:d7:5b:d0:a6:01: 4b:56:0d:41:e6:ec:fd:2d:04:42:7a:21:1a:a5:8c:66:6e:a6: 38:b1:67:54:57:c0:70:90:89:75:58:a3:ff:e2:38:0c:d7:ee: d3:87:2b:5b:8a:92:41:7c:2d:55:de:60:a9:7a:f6:71:51:0d: 06:5f:ed:88 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsdKiF9ggMPcdgEWmkCo9LHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZlY2Q1Y2FkNGQzMzA2YzRmNzJjNDJhZmMwNmU1Y2QxZmJh ZmUzYTMwHhcNMjUxMjE0MTQwMDU4WhcNMjUxMjE1MTQwMDU4WjAzMTEwLwYDVQQD EygyZDQ4MWZmZTlkYmJhZTVhZjA3NTMzMjM3MDU4ZjNjZmI2NWYwNGYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvG1yTOErsJNZaEt1EIE2NIm2426q GcXTHOjloJY1Htjybxgb2nPAItWni/aUehaGG9hZYjfFwEGzFbOjxlCNcsAcsI8o Y5WCzLjYQ/2sxyzI3JIyqucAXDhoqRr+2SrB94s2Vlt6MREJSkBX0Mylvu7jqCpS ZjAyyqhK8UJTdqfMsIMUryGA3+DwkjXHCgVeRGAv0LMBr/NLUMUyizoyumOW+7xN z6ms7iHGXfW/ttqajKDsQQ1OF3EfNt6KEDYqtlu2ttoW1JwnfpmvJAvVKHeCHkEZ xaIY3OqUxn3MP4rZzbWadxVpUnXwvDmFEtTg2V7VaEiDVGdQj9T98pY2RQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC1IH/6du65a8HUzI3BY88+2XwTzMB8GA1UdIwQY MBaAFG7NXK1NMwbE9yxCr8BuXNH7r+OjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYnMxY3JVMHpCc1QzTEVLdndHNWMwZnV2NDZNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi80OTY1MjUtMmMwZC00M2U0LTgxODgt NWZiYzIzMGFiZGMyLzEvYnMxY3JVMHpCc1QzTEVLdndHNWMwZnV2NDZNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYi80OTY1MjUtMmMwZC00M2U0LTgxODgtNWZiYzIzMGFiZGMy LzEvYnMxY3JVMHpCc1QzTEVLdndHNWMwZnV2NDZNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjGcG2CUo 0fBUY96EpEf8kFscX/YesMY2cINPSxzk52SOvPmj6YURfIkqx1H78X1VsMzzWef6 Q/7c4veo0zDwsSPvC5h7c0FJ46Hrzc04y285xvF65CwLsYWncnOrg9gjMHgKCm1+ QdHSdNEUEaVQTPVUg477RI34cswLnHS/Yr2Reg5/kWNG4wGOYm+VmLj0M1SA1ZZl ufZk7CZMU7F86Sy5fxY2DJdxylXbZqFeLtfwWx7a1RUEfoNT7606NlmEDNdb0KYB S1YNQebs/S0EQnohGqWMZm6mOLFnVFfAcJCJdVij/+I4DNfu04crW4qSQXwtVd5g qXr2cVENBl/tiA== -----END CERTIFICATE-----Generated at Sun Dec 14 19:32:16 2025 by rpki-client