This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.mft
File:                     BpLF8WMTZTQlvEZxBYdeOil8_5s.mft (raw, json)
Hash identifier:          x/3peCgeFI8ck/LqMzt07ysZi0lk8EmPhjlaJI5ogZg=
Subject key identifier:   61:7A:E5:5B:05:8D:B4:02:6A:F0:C1:41:E8:E6:DE:D3:77:9A:BF:7E
Authority key identifier: 06:92:C5:F1:63:13:65:34:25:BC:46:71:05:87:5E:3A:29:7C:FF:9B
Certificate issuer:       /CN=0692c5f16313653425bc467105875e3a297cff9b
Certificate serial:       019B35D71CFF09C8B70FD8D4208FBFD90422
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/BpLF8WMTZTQlvEZxBYdeOil8_5s.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.mft
Manifest number:          0A5B
Signing time:             Fri 19 Dec 2025 09:00:48 +0000
Manifest this update:     Fri 19 Dec 2025 09:00:48 +0000
Manifest next update:     Sat 20 Dec 2025 09:00:48 +0000
Files and hashes:         1: 6m4iBU1uV9OjtT-yI0kHDyi4gLg.roa (hash: N5jGzrk7sta0axX9QvqTjHgaFwV4arIObuPbt2KJNnM=)
                          2: 7tTZk2wCmakp5M5T1YuiU8TuWxw.roa (hash: 8JeqZuwRL8gNhmaq+aEKdQ907Eg7DEpF3/RheOxRpLQ=)
                          3: 84TrX0qs1Y4yZ95W-q51Grc9rH0.roa (hash: sAIYXtIgwoe7qa6SiMh9Mq7V0vDYEf6NPqM5EjqisbM=)
                          4: BpLF8WMTZTQlvEZxBYdeOil8_5s.crl (hash: aLYQ2ni6F7j5tXdcriFm8APY2OGeDtVK71UPpyfJrpA=)
                          5: DH2KmHptf0XCrxVYDl8SWJ6n_OU.roa (hash: 1p3/Uw0Hzg9UQAF7EIOu+m40aaRU5MBeT7UYxTAJl5M=)
                          6: I0lZ-wnGmJHIeWk4JSccdYLGI-0.roa (hash: LnR75ICh/pu9YTgE61/TkYN/sNwF0ls7eWnRXUdZNeI=)
                          7: Qgkw5GtNRcsOFSShf-z0xF_tI6I.roa (hash: mZ0NWqp/jNCXFtNZo5WbQ6xy8wKTYFTecNdM8OwQcds=)
                          8: ZuApx1lJ6PZTaa1PSofxEZnETW8.roa (hash: i6ZjtL8jp8h1GWVt1Wew7Qku5Nc6QBUB0tBwDCSGXU8=)
                          9: _6aivCsAWH-kqctPZhR5amDxfsA.roa (hash: nWAJSN6GSWrgvbg0VuNNKDg0OVs+juuAy8NmC7uqE34=)
                          10: acXjyXZbDzNfFna5ZWRHDz6K5YE.roa (hash: sm9lkJZIavBC2tJvS1A50JKwZEAycxeog0lweVtHcXM=)
                          11: e31KG_8dad-8ny4PFtbT297H7Sw.roa (hash: GQmunQnH91NAJBx06ug5Vq/w7qs39J3e7sMnlc2OutE=)
                          12: ej-rBCJmnu-miAXBE5PIqlt8TFo.roa (hash: Z10wztRjBSEGOvVc7tXz4TILdxZp89J4+J08gFrTvVU=)
                          13: gcpaoxI47uAbfYR_M1Dl9LctMNk.roa (hash: hG0WyItsQE7UjKos3HOIuobdbMTAqgbbv6pzl/cN/6g=)
                          14: pSbX-PyBbCbb6sLnIu1jAWYX5ak.roa (hash: GoC5K97gl9mRDyYEwiwyowaJojmTfgrX+bjBIRbHQpg=)
                          15: xe-KS40JXwA4DSnnilL2aYekU18.roa (hash: trUq9aYHMLBwRD59FTvYVzHcchsIZi2f2vJplQh7+rM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/BpLF8WMTZTQlvEZxBYdeOil8_5s.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 20 Dec 2025 09:00:48 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9b:35:d7:1c:ff:09:c8:b7:0f:d8:d4:20:8f:bf:d9:04:22
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0692c5f16313653425bc467105875e3a297cff9b
        Validity
            Not Before: Dec 19 09:00:48 2025 GMT
            Not After : Dec 20 09:00:48 2025 GMT
        Subject: CN=617ae55b058db4026af0c141e8e6ded3779abf7e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:e0:52:9a:39:e4:4b:87:54:af:aa:aa:c1:d5:
                    f6:23:18:5d:29:b2:82:9e:cb:ff:86:e3:11:b5:7b:
                    c3:b7:53:48:74:6e:23:83:b0:76:2b:d0:68:bb:43:
                    fd:5a:f9:a5:e2:b9:ce:a1:fb:9e:3e:1c:c3:ac:ab:
                    ca:f6:fa:a8:a7:54:de:54:a0:e4:ae:3c:21:4c:62:
                    ef:47:02:e1:24:64:bf:4c:d2:9f:7d:8e:fe:11:e7:
                    5a:10:e1:62:4f:60:4d:7e:00:b2:ad:e6:5d:60:02:
                    28:7a:09:22:86:f7:3c:f9:55:d0:b8:f8:be:b2:a1:
                    5d:1d:7f:e7:87:c7:b1:53:c9:a6:b6:ea:56:fa:15:
                    0d:43:19:41:6d:4f:ec:95:23:a1:90:4c:10:5f:5c:
                    2f:bb:8a:48:f3:8c:a5:81:87:90:ff:db:ed:63:89:
                    9f:85:d4:fe:a3:57:c5:50:f1:55:d5:fe:5f:9e:06:
                    ed:0f:c3:08:75:ea:6a:74:da:dc:0f:d0:ac:e6:50:
                    e3:dd:ae:2b:a9:8f:16:83:91:02:e1:50:1a:95:07:
                    70:ec:2b:ef:60:a1:16:5b:42:a6:b3:4a:0d:09:7b:
                    cf:25:9b:de:7a:2e:e4:e6:47:88:c4:97:27:f1:b8:
                    36:46:84:4a:63:24:e5:d9:3b:24:1d:b5:32:f1:92:
                    ca:95
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                61:7A:E5:5B:05:8D:B4:02:6A:F0:C1:41:E8:E6:DE:D3:77:9A:BF:7E
            X509v3 Authority Key Identifier:
                keyid:06:92:C5:F1:63:13:65:34:25:BC:46:71:05:87:5E:3A:29:7C:FF:9B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BpLF8WMTZTQlvEZxBYdeOil8_5s.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a2:47:44:42:42:e7:c3:57:7f:5a:06:91:06:a6:f1:1d:b9:65:
         44:35:ba:1b:f7:ff:cf:d8:6d:31:03:ed:5b:ec:24:e1:37:4c:
         ca:b6:3a:70:0c:ba:ac:30:0d:06:47:2f:6f:c3:b2:db:ae:b3:
         a3:3a:36:39:bc:3a:9c:eb:14:ae:72:f0:cc:70:5f:23:91:c7:
         05:04:ae:be:a1:61:2d:70:ad:9d:a6:84:e4:37:ee:d3:fa:41:
         cd:53:8d:16:48:69:d1:6a:f9:34:d0:7d:85:5e:54:93:5a:5f:
         b4:09:50:de:af:b4:f9:8a:3c:25:82:7c:bf:01:4f:a5:c3:ae:
         c5:a4:0c:73:38:60:a2:cb:1c:98:4e:18:ac:9e:b2:9b:e2:b6:
         34:68:b6:9b:22:5d:50:c5:87:34:4a:1f:df:f6:7e:3e:77:92:
         a2:b8:9c:24:65:b8:99:e8:37:86:42:ea:15:9a:ca:0e:3b:93:
         70:ef:3f:3f:7c:77:34:03:62:76:df:58:44:84:c8:d8:3e:55:
         ab:4a:8f:eb:ff:18:ca:07:a9:05:84:10:37:4c:01:bc:a9:c8:
         a9:11:88:3e:db:ff:dd:d5:0e:04:5f:4e:dd:10:35:47:fa:c2:
         f6:05:67:3d:77:99:a1:5e:fb:5b:b5:76:e6:78:d9:ba:53:85:
         d6:1c:36:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----