This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/3a109a-9b32-45a8-9b0c-7a02517fd9d2/1/Bgl6cuSuQLa5kpty-B79ccUX3Zg.mft File: Bgl6cuSuQLa5kpty-B79ccUX3Zg.mft (raw, json) Hash identifier: 3C0vlR9y0/9ih7Nzt61OfXIgLDDqjJ9deQgzlX8arKs= Subject key identifier: EC:9F:0D:6C:01:88:41:20:A2:B7:8D:09:89:F8:8A:58:19:52:27:F0 Authority key identifier: 06:09:7A:72:E4:AE:40:B6:B9:92:9B:72:F8:1E:FD:71:C5:17:DD:98 Certificate issuer: /CN=06097a72e4ae40b6b9929b72f81efd71c517dd98 Certificate serial: 019B0D49906AEB375CE68005319B00F3C520 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Bgl6cuSuQLa5kpty-B79ccUX3Zg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/3a109a-9b32-45a8-9b0c-7a02517fd9d2/1/Bgl6cuSuQLa5kpty-B79ccUX3Zg.mft Manifest number: 0392 Signing time: Thu 11 Dec 2025 12:01:23 +0000 Manifest this update: Thu 11 Dec 2025 12:01:23 +0000 Manifest next update: Fri 12 Dec 2025 12:01:23 +0000 Files and hashes: 1: Bgl6cuSuQLa5kpty-B79ccUX3Zg.crl (hash: 1SpbBlQNDtRE8pynN/h+8qRt7jWvU1R6VNp8hVulnys=) 2: aTqNBiMtHyqY4sjo2vUby0yJMKk.roa (hash: 8tR80jRMgENDFDI+mB0B/a9/v+rAAXYdo53Fd7KchX0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/3a109a-9b32-45a8-9b0c-7a02517fd9d2/1/Bgl6cuSuQLa5kpty-B79ccUX3Zg.crl rsync://rpki.ripe.net/repository/DEFAULT/6b/3a109a-9b32-45a8-9b0c-7a02517fd9d2/1/Bgl6cuSuQLa5kpty-B79ccUX3Zg.mft rsync://rpki.ripe.net/repository/DEFAULT/Bgl6cuSuQLa5kpty-B79ccUX3Zg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 12:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0d:49:90:6a:eb:37:5c:e6:80:05:31:9b:00:f3:c5:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=06097a72e4ae40b6b9929b72f81efd71c517dd98 Validity Not Before: Dec 11 12:01:23 2025 GMT Not After : Dec 12 12:01:23 2025 GMT Subject: CN=ec9f0d6c01884120a2b78d0989f88a58195227f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:06:ff:e3:02:24:0c:75:3d:54:1b:7f:a9:1b: fb:39:59:5a:d0:d3:d8:bd:f2:34:1a:40:0c:a9:68: 43:7d:b7:21:b2:09:a4:00:1b:5c:6a:04:a8:18:df: 17:ec:41:45:d4:96:9d:15:8e:68:8d:00:a2:21:b8: f9:e1:da:d2:62:ee:4c:30:4e:7b:5f:e7:d9:7e:5c: 8e:6e:bc:e3:b4:21:f8:88:c0:8b:6e:b4:1e:3c:4f: 23:f3:47:d7:5e:c7:2d:0a:16:2e:a9:f5:f2:d7:18: 41:dc:aa:9c:d9:53:54:50:30:d9:98:5f:b6:a5:32: 87:34:6b:c9:69:04:c5:4f:07:44:c0:ce:d7:65:38: 1b:6d:b0:b5:6e:ab:a7:f4:79:25:a5:ce:25:8e:90: 6e:1f:77:2e:fc:d3:34:34:ea:d6:0d:ee:af:54:b8: 92:54:35:08:b7:9c:e5:f4:23:19:de:44:57:20:1e: 9a:62:a4:ee:4c:2e:da:87:3e:ff:18:ae:b4:52:1e: fe:4d:d1:c7:6f:b7:1d:05:ef:54:d1:15:1a:e9:05: e7:c3:fc:3f:49:42:e9:2a:1b:76:5f:cb:a8:f9:6c: 04:96:be:a6:a0:0b:40:72:ff:56:08:24:9b:e1:ce: b2:8d:8c:e3:3c:67:e8:b1:12:8a:73:84:af:dc:d4: 60:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:9F:0D:6C:01:88:41:20:A2:B7:8D:09:89:F8:8A:58:19:52:27:F0 X509v3 Authority Key Identifier: keyid:06:09:7A:72:E4:AE:40:B6:B9:92:9B:72:F8:1E:FD:71:C5:17:DD:98 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Bgl6cuSuQLa5kpty-B79ccUX3Zg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/3a109a-9b32-45a8-9b0c-7a02517fd9d2/1/Bgl6cuSuQLa5kpty-B79ccUX3Zg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/3a109a-9b32-45a8-9b0c-7a02517fd9d2/1/Bgl6cuSuQLa5kpty-B79ccUX3Zg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 24:49:70:0f:bc:f8:61:d8:e9:8d:13:32:a6:3c:b7:0d:2c:4d: 43:05:a8:a9:61:11:0d:94:46:d6:58:4b:09:35:98:5b:62:06: b3:03:fb:58:0e:e9:27:20:6a:14:91:19:6c:26:d5:71:04:a8: 74:fe:f4:e3:7a:5e:ef:5e:c7:94:24:fb:8e:41:87:01:eb:16: 35:75:2e:48:62:10:64:f1:d8:92:89:5d:ce:dc:ff:e0:2e:f7: 53:97:fb:f6:a3:0e:11:e6:94:55:fc:ce:40:67:5e:9c:c9:9c: 1e:d8:23:6d:66:02:4f:ee:34:53:e4:00:dd:2a:a7:4a:e6:15: 79:84:07:0d:62:ca:81:37:c0:49:4c:5f:f1:5d:27:e3:cd:8e: b2:91:31:36:1b:8e:8f:53:3f:00:aa:90:12:42:ef:0c:ef:17: 2b:b8:8e:c0:ee:28:6c:63:3a:73:74:1f:0d:38:f4:19:04:65: 97:ef:ad:1c:32:56:23:a2:28:2a:3d:60:32:49:2d:aa:67:3c: 96:a8:b6:36:fa:e3:12:47:28:7f:aa:a6:2b:82:f0:93:ee:2a: 26:32:43:91:32:08:c4:0c:b7:ad:6b:80:90:bc:50:a2:1f:69: 27:82:79:46:ea:cc:a4:6f:47:f4:1c:34:8f:45:7c:55:2e:74: 2e:ae:7a:d2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsNSZBq6zdc5oAFMZsA88UgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA2MDk3YTcyZTRhZTQwYjZiOTkyOWI3MmY4MWVmZDcxYzUx N2RkOTgwHhcNMjUxMjExMTIwMTIzWhcNMjUxMjEyMTIwMTIzWjAzMTEwLwYDVQQD EyhlYzlmMGQ2YzAxODg0MTIwYTJiNzhkMDk4OWY4OGE1ODE5NTIyN2YwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAswb/4wIkDHU9VBt/qRv7OVla0NPY vfI0GkAMqWhDfbchsgmkABtcagSoGN8X7EFF1JadFY5ojQCiIbj54drSYu5MME57 X+fZflyObrzjtCH4iMCLbrQePE8j80fXXsctChYuqfXy1xhB3Kqc2VNUUDDZmF+2 pTKHNGvJaQTFTwdEwM7XZTgbbbC1bqun9Hklpc4ljpBuH3cu/NM0NOrWDe6vVLiS VDUIt5zl9CMZ3kRXIB6aYqTuTC7ahz7/GK60Uh7+TdHHb7cdBe9U0RUa6QXnw/w/ SULpKht2X8uo+WwElr6moAtAcv9WCCSb4c6yjYzjPGfosRKKc4Sv3NRg5QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOyfDWwBiEEgoreNCYn4ilgZUifwMB8GA1UdIwQY MBaAFAYJenLkrkC2uZKbcvge/XHFF92YMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQmdsNmN1U3VRTGE1a3B0eS1CNzljY1VYM1pnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yi8zYTEwOWEtOWIzMi00NWE4LTliMGMt N2EwMjUxN2ZkOWQyLzEvQmdsNmN1U3VRTGE1a3B0eS1CNzljY1VYM1pnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Yi8zYTEwOWEtOWIzMi00NWE4LTliMGMtN2EwMjUxN2ZkOWQy LzEvQmdsNmN1U3VRTGE1a3B0eS1CNzljY1VYM1pnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJElwD7z4 YdjpjRMypjy3DSxNQwWoqWERDZRG1lhLCTWYW2IGswP7WA7pJyBqFJEZbCbVcQSo dP7043pe717HlCT7jkGHAesWNXUuSGIQZPHYkoldztz/4C73U5f79qMOEeaUVfzO QGdenMmcHtgjbWYCT+40U+QA3SqnSuYVeYQHDWLKgTfASUxf8V0n482OspExNhuO j1M/AKqQEkLvDO8XK7iOwO4obGM6c3QfDTj0GQRll++tHDJWI6IoKj1gMkktqmc8 lqi2NvrjEkcof6qmK4Lwk+4qJjJDkTIIxAy3rWuAkLxQoh9pJ4J5RurMpG9H9Bw0 j0V8VS50Lq560g== -----END CERTIFICATE-----Generated at Thu Dec 11 20:29:45 2025 by rpki-client