This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/2590fb-b05e-4441-add1-f8355b78db24/1/biw-HNO4VNZu9GxWd-9y0sWjZpc.mft File: biw-HNO4VNZu9GxWd-9y0sWjZpc.mft (raw, json) Hash identifier: m9+pg8JwwPEwxKvh/5N9fgX7+OWXfJhWgQEyy8qyGiY= Subject key identifier: D6:15:2F:85:DD:03:28:87:D3:3F:EB:E3:56:3B:F9:0A:BC:87:0E:38 Authority key identifier: 6E:2C:3E:1C:D3:B8:54:D6:6E:F4:6C:56:77:EF:72:D2:C5:A3:66:97 Certificate issuer: /CN=6e2c3e1cd3b854d66ef46c5677ef72d2c5a36697 Certificate serial: 019B2098A5487AAC4C7F5A5610CA7D06ACCB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/biw-HNO4VNZu9GxWd-9y0sWjZpc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/2590fb-b05e-4441-add1-f8355b78db24/1/biw-HNO4VNZu9GxWd-9y0sWjZpc.mft Manifest number: 0933 Signing time: Mon 15 Dec 2025 06:00:33 +0000 Manifest this update: Mon 15 Dec 2025 06:00:33 +0000 Manifest next update: Tue 16 Dec 2025 06:00:33 +0000 Files and hashes: 1: biw-HNO4VNZu9GxWd-9y0sWjZpc.crl (hash: AWYEnhReqqAWWKHMkK3A9TrpEyNIAnEyFsFnfscE8Po=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/2590fb-b05e-4441-add1-f8355b78db24/1/biw-HNO4VNZu9GxWd-9y0sWjZpc.crl rsync://rpki.ripe.net/repository/DEFAULT/68/2590fb-b05e-4441-add1-f8355b78db24/1/biw-HNO4VNZu9GxWd-9y0sWjZpc.mft rsync://rpki.ripe.net/repository/DEFAULT/biw-HNO4VNZu9GxWd-9y0sWjZpc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 06:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:20:98:a5:48:7a:ac:4c:7f:5a:56:10:ca:7d:06:ac:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6e2c3e1cd3b854d66ef46c5677ef72d2c5a36697 Validity Not Before: Dec 15 06:00:33 2025 GMT Not After : Dec 16 06:00:33 2025 GMT Subject: CN=d6152f85dd032887d33febe3563bf90abc870e38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:a0:f8:68:b5:e8:f9:20:76:f3:07:69:d6:01: 92:bf:b3:0f:c3:a8:e4:8b:e5:21:b0:90:8d:7a:98: c6:f0:35:36:4a:c0:13:26:db:c4:6e:a3:50:e3:6f: 65:85:9c:0b:79:f9:77:ef:24:7f:a5:93:ba:24:82: 2c:71:7d:da:f2:8b:d4:1d:9a:f4:4a:44:93:1a:49: 5c:74:08:33:71:10:c8:f2:07:fc:30:91:65:db:1d: 2a:95:8d:f9:05:a9:af:7d:9f:04:fb:53:99:b8:0a: e5:a5:97:d4:89:44:67:41:29:fc:25:bb:77:ab:82: fb:03:b9:81:7c:70:6d:8e:12:ca:80:08:24:fa:c1: fc:86:e4:ba:9b:01:92:51:44:5c:f8:06:36:02:31: 68:70:1c:b7:59:70:9a:de:b4:56:cc:81:9b:32:55: 7e:65:84:3d:dd:eb:15:7b:e2:9e:74:fc:f5:59:22: 77:9d:c0:26:58:7f:3a:57:d6:6c:fc:c6:7e:e4:28: ba:cc:b4:71:03:cd:47:4a:19:86:8c:db:2a:49:36: 1d:e8:29:69:08:7e:35:ed:6f:f8:46:dc:95:39:45: 93:11:13:9c:09:65:68:cf:a1:b2:f4:87:6c:70:c2: 94:89:d6:43:31:da:ac:a0:b4:93:fc:5a:3a:67:ab: 28:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:15:2F:85:DD:03:28:87:D3:3F:EB:E3:56:3B:F9:0A:BC:87:0E:38 X509v3 Authority Key Identifier: keyid:6E:2C:3E:1C:D3:B8:54:D6:6E:F4:6C:56:77:EF:72:D2:C5:A3:66:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/biw-HNO4VNZu9GxWd-9y0sWjZpc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2590fb-b05e-4441-add1-f8355b78db24/1/biw-HNO4VNZu9GxWd-9y0sWjZpc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2590fb-b05e-4441-add1-f8355b78db24/1/biw-HNO4VNZu9GxWd-9y0sWjZpc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:7e:89:a7:d6:34:67:37:6e:c3:37:0b:f3:fe:cf:90:27:00: 1e:65:1c:d1:f3:f1:a2:93:71:05:07:5c:14:1d:82:2b:37:64: f1:4f:6f:db:d5:1a:8c:81:f4:28:b1:b5:65:d7:73:c2:51:66: d8:1a:89:52:c1:b7:61:69:ef:ad:7c:23:64:a6:bf:67:f2:06: 99:2a:e3:3c:ac:c4:48:97:f0:c8:88:a2:ba:12:86:91:56:2f: b5:5d:96:9d:2a:a1:6f:fa:fc:9f:ea:42:31:69:9b:c6:ab:96: 93:8d:a7:3f:76:32:0e:36:cd:32:57:b8:0f:0c:a5:9b:c3:46: 1e:99:aa:d2:e5:6a:3f:a1:88:de:bd:eb:bf:65:6c:5d:30:59: 3f:a2:25:52:ed:dd:ca:89:2c:c5:d0:c1:2d:45:1e:2f:db:9e: 75:6f:da:4b:96:00:8c:ce:a5:26:c4:78:1c:41:f8:f2:5e:eb: 91:56:b7:09:ad:7f:c2:c3:b2:aa:d4:b2:5e:27:47:6e:87:f2: ce:da:6c:e8:c4:77:dd:df:e5:6f:31:d8:8e:ce:9e:e7:b2:5b: 76:0b:b2:2b:c5:c1:64:b3:6f:d4:65:a5:53:8a:e5:f9:25:1c: 3f:25:e7:97:89:ad:a9:3e:2d:d3:df:c5:28:ae:ef:1a:97:40: 01:9e:d4:65 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsgmKVIeqxMf1pWEMp9BqzLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZlMmMzZTFjZDNiODU0ZDY2ZWY0NmM1Njc3ZWY3MmQyYzVh MzY2OTcwHhcNMjUxMjE1MDYwMDMzWhcNMjUxMjE2MDYwMDMzWjAzMTEwLwYDVQQD EyhkNjE1MmY4NWRkMDMyODg3ZDMzZmViZTM1NjNiZjkwYWJjODcwZTM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6KD4aLXo+SB28wdp1gGSv7MPw6jk i+UhsJCNepjG8DU2SsATJtvEbqNQ429lhZwLefl37yR/pZO6JIIscX3a8ovUHZr0 SkSTGklcdAgzcRDI8gf8MJFl2x0qlY35BamvfZ8E+1OZuArlpZfUiURnQSn8Jbt3 q4L7A7mBfHBtjhLKgAgk+sH8huS6mwGSUURc+AY2AjFocBy3WXCa3rRWzIGbMlV+ ZYQ93esVe+KedPz1WSJ3ncAmWH86V9Zs/MZ+5Ci6zLRxA81HShmGjNsqSTYd6Clp CH417W/4RtyVOUWTEROcCWVoz6Gy9IdscMKUidZDMdqsoLST/Fo6Z6soKwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNYVL4XdAyiH0z/r41Y7+Qq8hw44MB8GA1UdIwQY MBaAFG4sPhzTuFTWbvRsVnfvctLFo2aXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYml3LUhOTzRWTlp1OUd4V2QtOXkwc1dqWnBjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC8yNTkwZmItYjA1ZS00NDQxLWFkZDEt ZjgzNTViNzhkYjI0LzEvYml3LUhOTzRWTlp1OUd4V2QtOXkwc1dqWnBjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OC8yNTkwZmItYjA1ZS00NDQxLWFkZDEtZjgzNTViNzhkYjI0 LzEvYml3LUhOTzRWTlp1OUd4V2QtOXkwc1dqWnBjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATn6Jp9Y0 ZzduwzcL8/7PkCcAHmUc0fPxopNxBQdcFB2CKzdk8U9v29UajIH0KLG1ZddzwlFm 2BqJUsG3YWnvrXwjZKa/Z/IGmSrjPKzESJfwyIiiuhKGkVYvtV2WnSqhb/r8n+pC MWmbxquWk42nP3YyDjbNMle4Dwylm8NGHpmq0uVqP6GI3r3rv2VsXTBZP6IlUu3d yoksxdDBLUUeL9uedW/aS5YAjM6lJsR4HEH48l7rkVa3Ca1/wsOyqtSyXidHbofy ztps6MR33d/lbzHYjs6e57JbdguyK8XBZLNv1GWlU4rl+SUcPyXnl4mtqT4t09/F KK7vGpdAAZ7UZQ== -----END CERTIFICATE-----Generated at Mon Dec 15 13:17:26 2025 by rpki-client