This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft File: bG9jkROWOM74MYEUEyzPJuFn06Q.mft (raw, json) Hash identifier: Rrvy3Om8Y775D1bmZNvS52YQIoURKxU/SPvtJYHT3lM= Subject key identifier: B3:96:94:EB:4B:48:BE:37:A5:E8:EF:8E:BD:C7:BB:A8:DB:9C:BF:0A Authority key identifier: 6C:6F:63:91:13:96:38:CE:F8:31:81:14:13:2C:CF:26:E1:67:D3:A4 Certificate issuer: /CN=6c6f6391139638cef8318114132ccf26e167d3a4 Certificate serial: 019B59761159C521E9D8D5C2FA2E895AE9A7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bG9jkROWOM74MYEUEyzPJuFn06Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft Manifest number: 1470 Signing time: Fri 26 Dec 2025 07:01:08 +0000 Manifest this update: Fri 26 Dec 2025 07:01:08 +0000 Manifest next update: Sat 27 Dec 2025 07:01:08 +0000 Files and hashes: 1: _HGowDUCSG2pcAysO4ogxA6yosc.roa (hash: UPTC6ZbpFxK2iqUZ6z67RcYvcbR0/gldSq3kNUHLLJI=) 2: bG9jkROWOM74MYEUEyzPJuFn06Q.crl (hash: JjmtmWLmMiL6pY1G8fBHLd8eumw3ppwHDar1WggpnEY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.crl rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft rsync://rpki.ripe.net/repository/DEFAULT/bG9jkROWOM74MYEUEyzPJuFn06Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:76:11:59:c5:21:e9:d8:d5:c2:fa:2e:89:5a:e9:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6c6f6391139638cef8318114132ccf26e167d3a4 Validity Not Before: Dec 26 07:01:08 2025 GMT Not After : Dec 27 07:01:08 2025 GMT Subject: CN=b39694eb4b48be37a5e8ef8ebdc7bba8db9cbf0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a1:9a:c3:7b:0e:e9:e5:42:16:b5:41:a9:54: 36:4d:82:46:8b:54:3b:06:6f:f7:a2:69:a3:53:5d: 71:77:0e:a8:4d:89:7a:30:be:e5:f6:d0:28:be:92: e5:77:a9:a8:88:bd:d3:13:ee:63:f1:de:ad:e8:24: c9:b1:7b:c6:77:7b:cf:95:78:6e:be:94:84:78:e5: 48:12:dd:d3:28:5c:bb:93:b2:f7:48:26:24:94:05: 4d:cf:20:f9:24:c3:46:63:8e:49:da:40:92:aa:82: 53:4d:c6:e1:b5:11:ff:b9:9a:60:ab:3d:3b:37:0b: b2:b3:b5:6a:1b:62:0f:ef:eb:2b:40:9b:46:01:72: fd:3b:86:2e:74:0b:c4:46:c0:c5:c7:78:61:c2:14: 07:74:0c:e3:5f:cc:a7:f1:79:a0:51:47:1c:3e:2b: 6c:a9:6e:d0:96:26:42:31:b8:42:f0:1c:93:65:27: 8d:a3:e4:88:fc:c8:63:d1:69:92:22:07:0b:86:aa: 5e:2c:b4:cf:3f:cc:32:15:b9:2b:09:90:58:23:7a: cb:f7:bf:88:cf:3e:72:d7:5f:4d:57:3f:b7:5c:30: 4c:78:ad:92:9a:ce:b0:4a:17:ca:6a:d3:0e:cc:a2: 8a:80:e6:38:91:80:77:16:1f:68:4b:a3:99:77:72: 15:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:96:94:EB:4B:48:BE:37:A5:E8:EF:8E:BD:C7:BB:A8:DB:9C:BF:0A X509v3 Authority Key Identifier: keyid:6C:6F:63:91:13:96:38:CE:F8:31:81:14:13:2C:CF:26:E1:67:D3:A4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bG9jkROWOM74MYEUEyzPJuFn06Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:3a:39:57:7b:fe:a7:05:20:91:b5:0f:a1:f9:d7:b9:29:b2: cf:71:90:01:c0:5b:98:73:ff:10:57:1c:ea:92:68:32:92:a1: 8c:ca:57:dc:63:30:19:0c:cb:fb:47:47:d8:ba:db:c4:d3:06: 92:b9:13:01:ca:db:ae:68:16:07:08:5c:5e:83:c6:17:80:48: 1d:1e:d9:00:65:7d:cb:38:3e:d7:ce:16:f4:13:a8:ff:12:73: 00:5c:65:95:62:a2:b1:f2:11:fc:72:a4:e0:04:ad:54:57:89: 85:e0:bb:2f:69:ab:6e:3c:76:43:6b:a2:e7:4c:68:95:95:64: 3d:c8:8c:62:83:62:da:ec:a1:a7:52:cb:c6:0a:c2:2e:8f:7f: ed:1b:6e:39:74:3e:35:2c:a8:ab:63:ef:7c:a8:ab:19:7b:fe: df:1f:48:0e:4c:08:0a:40:e3:15:de:96:ab:21:d4:f1:64:d4: 06:93:60:08:dc:04:61:a6:f3:7f:b4:b0:91:4e:9a:85:d0:de: 50:47:0f:a3:e0:07:2f:b3:39:23:e6:73:46:92:b5:f6:1b:5e: c2:4c:eb:d3:9a:c4:53:69:44:d1:75:b7:65:95:86:8d:86:e1: 7f:1c:ef:72:ca:d0:76:58:8a:d0:bc:01:de:47:03:7b:85:60: aa:09:ac:28 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZdhFZxSHp2NXC+i6JWumnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZjNmY2MzkxMTM5NjM4Y2VmODMxODExNDEzMmNjZjI2ZTE2 N2QzYTQwHhcNMjUxMjI2MDcwMTA4WhcNMjUxMjI3MDcwMTA4WjAzMTEwLwYDVQQD EyhiMzk2OTRlYjRiNDhiZTM3YTVlOGVmOGViZGM3YmJhOGRiOWNiZjBhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqqGaw3sO6eVCFrVBqVQ2TYJGi1Q7 Bm/3ommjU11xdw6oTYl6ML7l9tAovpLld6moiL3TE+5j8d6t6CTJsXvGd3vPlXhu vpSEeOVIEt3TKFy7k7L3SCYklAVNzyD5JMNGY45J2kCSqoJTTcbhtRH/uZpgqz07 Nwuys7VqG2IP7+srQJtGAXL9O4YudAvERsDFx3hhwhQHdAzjX8yn8XmgUUccPits qW7QliZCMbhC8ByTZSeNo+SI/Mhj0WmSIgcLhqpeLLTPP8wyFbkrCZBYI3rL97+I zz5y119NVz+3XDBMeK2Sms6wShfKatMOzKKKgOY4kYB3Fh9oS6OZd3IVOwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLOWlOtLSL43pejvjr3Hu6jbnL8KMB8GA1UdIwQY MBaAFGxvY5ETljjO+DGBFBMszybhZ9OkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYkc5amtST1dPTTc0TVlFVUV5elBKdUZuMDZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS85NWE2ZjQtODIyMC00NmRjLWIyMzgt MzRhZDFjODUzNTk5LzEvYkc5amtST1dPTTc0TVlFVUV5elBKdUZuMDZRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OS85NWE2ZjQtODIyMC00NmRjLWIyMzgtMzRhZDFjODUzNTk5 LzEvYkc5amtST1dPTTc0TVlFVUV5elBKdUZuMDZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVzo5V3v+ pwUgkbUPofnXuSmyz3GQAcBbmHP/EFcc6pJoMpKhjMpX3GMwGQzL+0dH2LrbxNMG krkTAcrbrmgWBwhcXoPGF4BIHR7ZAGV9yzg+184W9BOo/xJzAFxllWKisfIR/HKk 4AStVFeJheC7L2mrbjx2Q2ui50xolZVkPciMYoNi2uyhp1LLxgrCLo9/7RtuOXQ+ NSyoq2PvfKirGXv+3x9IDkwICkDjFd6WqyHU8WTUBpNgCNwEYabzf7SwkU6ahdDe UEcPo+AHL7M5I+ZzRpK19htewkzr05rEU2lE0XW3ZZWGjYbhfxzvcsrQdliK0LwB 3kcDe4VgqgmsKA== -----END CERTIFICATE-----Generated at Fri Dec 26 14:18:17 2025 by rpki-client