This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft File: BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft (raw, json) Hash identifier: l5xEXfy922Ayo2PTKrQbO42D/+GHlifWmHOrPJfOOVM= Subject key identifier: CC:A9:59:B8:04:F9:DA:23:E1:FA:A1:29:F8:3B:65:30:58:4E:DC:75 Authority key identifier: 04:E3:2C:43:F9:69:BA:41:7B:A3:6D:07:21:B1:D9:D5:06:24:C4:0F Certificate issuer: /CN=04e32c43f969ba417ba36d0721b1d9d50624c40f Certificate serial: 019B5A8837C1DA51D2704A8209A2187A2D3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft Manifest number: 0942 Signing time: Fri 26 Dec 2025 12:00:35 +0000 Manifest this update: Fri 26 Dec 2025 12:00:35 +0000 Manifest next update: Sat 27 Dec 2025 12:00:35 +0000 Files and hashes: 1: BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl (hash: /bzTvSBQ25s3XqMsrOB6Lvv+Mc47RA+MVU5tb52vneo=) 2: nHuVyjc3KMoSX7dk6oCcJzZC7yI.roa (hash: 8kNlY4DAN29iBV2YoNVORKEQ7cx+NbbKiFTFq2jo6ec=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:88:37:c1:da:51:d2:70:4a:82:09:a2:18:7a:2d:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04e32c43f969ba417ba36d0721b1d9d50624c40f Validity Not Before: Dec 26 12:00:35 2025 GMT Not After : Dec 27 12:00:35 2025 GMT Subject: CN=cca959b804f9da23e1faa129f83b6530584edc75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:a3:d8:41:44:d5:40:eb:b9:d1:13:e0:49:7b: 06:4a:62:3c:6b:5e:90:ad:1a:87:13:de:38:a4:fb: 30:12:50:a4:7d:ee:3a:41:27:2a:ec:7b:2a:47:18: a8:0e:72:f4:81:cf:3e:92:b6:03:20:b4:f1:fc:ae: ed:41:88:1b:3b:f5:ab:28:1e:54:04:5d:9d:ae:c1: b5:01:d5:5b:2a:f2:24:ac:4b:56:bd:99:34:a4:35: c2:f1:b2:e2:70:ec:dc:09:11:69:55:2a:77:67:ef: 93:26:13:cb:65:ba:5f:89:aa:cf:b4:57:ea:2c:35: 19:db:2d:90:93:d7:b6:cf:5e:ce:ea:d6:ce:13:8f: 18:20:9f:82:38:f5:5b:6d:c7:09:77:ab:e4:80:92: 86:0c:10:2a:72:ae:96:eb:f8:d8:d1:6b:87:8d:1d: ad:dc:68:f9:b8:0b:02:04:b1:72:dc:38:2a:a7:4c: 81:f5:5c:36:46:c3:e8:dd:55:17:a8:74:ac:e3:33: 50:af:c6:43:12:5e:56:96:fc:cd:ff:9a:06:3e:b7: d0:95:c2:f9:48:9e:5a:b0:fe:9d:fe:82:8e:b3:e1: c4:67:6c:0d:5e:35:5a:5d:80:50:a9:c7:25:0f:c1: a5:95:86:9e:c6:94:82:e5:b6:53:f0:cb:fa:57:5a: 03:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:A9:59:B8:04:F9:DA:23:E1:FA:A1:29:F8:3B:65:30:58:4E:DC:75 X509v3 Authority Key Identifier: keyid:04:E3:2C:43:F9:69:BA:41:7B:A3:6D:07:21:B1:D9:D5:06:24:C4:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d0:0d:b7:e9:b4:a9:06:54:7c:1c:7e:29:7c:d1:a4:58:64:29: ab:a4:eb:53:fe:66:dd:73:30:9a:d7:b0:a7:c7:09:30:f3:84: 76:f7:b0:c5:1f:9d:e2:8a:43:a9:43:08:ca:6a:e8:88:b1:0c: 03:23:bc:a8:3f:87:91:dd:11:3e:8f:d8:c0:9d:ab:fd:47:42: db:29:76:66:28:95:28:79:e9:79:31:29:44:70:e9:d9:21:20: d1:ce:ea:c9:9d:6b:72:f1:14:a0:63:20:c8:0b:de:1c:2a:7d: 3a:27:8b:b0:b4:ad:67:7d:45:bc:34:bb:31:47:6b:bc:fa:2b: 79:58:e2:cf:7e:7e:1c:6e:73:48:96:8b:c2:e4:92:3c:23:16: 5a:f8:4c:dd:9d:12:f5:f5:c3:10:fd:51:f3:dd:77:6b:64:87: b8:98:f5:23:87:39:78:95:93:34:48:8d:a2:93:e7:89:0f:d2: 9b:6f:f6:11:1d:b0:35:7c:b1:40:5d:65:d9:0e:9f:1a:a0:3e: 1b:3c:e3:cb:84:13:a5:a0:a6:44:72:ba:ed:93:1c:dc:82:ae: e5:a9:a2:f9:3a:5f:7a:5b:66:39:24:b5:00:d9:61:5a:44:51: 19:8e:0c:45:d9:62:cf:b5:c5:e0:7c:b2:cb:9f:9c:60:db:cd: fc:ac:b0:2e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtaiDfB2lHScEqCCaIYei06MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA0ZTMyYzQzZjk2OWJhNDE3YmEzNmQwNzIxYjFkOWQ1MDYy NGM0MGYwHhcNMjUxMjI2MTIwMDM1WhcNMjUxMjI3MTIwMDM1WjAzMTEwLwYDVQQD EyhjY2E5NTliODA0ZjlkYTIzZTFmYWExMjlmODNiNjUzMDU4NGVkYzc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx6PYQUTVQOu50RPgSXsGSmI8a16Q rRqHE944pPswElCkfe46QScq7HsqRxioDnL0gc8+krYDILTx/K7tQYgbO/WrKB5U BF2drsG1AdVbKvIkrEtWvZk0pDXC8bLicOzcCRFpVSp3Z++TJhPLZbpfiarPtFfq LDUZ2y2Qk9e2z17O6tbOE48YIJ+COPVbbccJd6vkgJKGDBAqcq6W6/jY0WuHjR2t 3Gj5uAsCBLFy3Dgqp0yB9Vw2RsPo3VUXqHSs4zNQr8ZDEl5WlvzN/5oGPrfQlcL5 SJ5asP6d/oKOs+HEZ2wNXjVaXYBQqcclD8GllYaexpSC5bZT8Mv6V1oDBwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMypWbgE+doj4fqhKfg7ZTBYTtx1MB8GA1UdIwQY MBaAFATjLEP5abpBe6NtByGx2dUGJMQPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQk9Nc1FfbHB1a0Y3bzIwSEliSFoxUVlreEE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi8zMTZmMTUtYmNiNS00MjJjLTkyYTAt ODI2YTQ4ZWVmZDk2LzEvQk9Nc1FfbHB1a0Y3bzIwSEliSFoxUVlreEE4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Mi8zMTZmMTUtYmNiNS00MjJjLTkyYTAtODI2YTQ4ZWVmZDk2 LzEvQk9Nc1FfbHB1a0Y3bzIwSEliSFoxUVlreEE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA0A236bSp BlR8HH4pfNGkWGQpq6TrU/5m3XMwmtewp8cJMPOEdvewxR+d4opDqUMIymroiLEM AyO8qD+Hkd0RPo/YwJ2r/UdC2yl2ZiiVKHnpeTEpRHDp2SEg0c7qyZ1rcvEUoGMg yAveHCp9OieLsLStZ31FvDS7MUdrvPoreVjiz35+HG5zSJaLwuSSPCMWWvhM3Z0S 9fXDEP1R8913a2SHuJj1I4c5eJWTNEiNopPniQ/Sm2/2ER2wNXyxQF1l2Q6fGqA+ Gzzjy4QTpaCmRHK67ZMc3IKu5ami+TpfeltmOSS1ANlhWkRRGY4MRdliz7XF4Hyy y5+cYNvN/KywLg== -----END CERTIFICATE-----Generated at Fri Dec 26 14:18:17 2025 by rpki-client