This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/9bfdb6-08b7-4b1d-8a88-926b34814130/1/bVcAkW-QmDvY6JzQX-Yp7Bg7-lQ.mft File: bVcAkW-QmDvY6JzQX-Yp7Bg7-lQ.mft (raw, json) Hash identifier: qB6zSS6J/js/8+wz2i3QLo8+saPJBXZgJH1wzqIKooA= Subject key identifier: C2:20:35:DB:40:3B:58:D1:AD:74:75:79:71:12:3A:1E:99:70:F0:F1 Authority key identifier: 6D:57:00:91:6F:90:98:3B:D8:E8:9C:D0:5F:E6:29:EC:18:3B:FA:54 Certificate issuer: /CN=6d5700916f90983bd8e89cd05fe629ec183bfa54 Certificate serial: 019B4816145DFEC09E804DC153C59E233B78 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bVcAkW-QmDvY6JzQX-Yp7Bg7-lQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/9bfdb6-08b7-4b1d-8a88-926b34814130/1/bVcAkW-QmDvY6JzQX-Yp7Bg7-lQ.mft Manifest number: 0BF8 Signing time: Mon 22 Dec 2025 22:02:45 +0000 Manifest this update: Mon 22 Dec 2025 22:02:45 +0000 Manifest next update: Tue 23 Dec 2025 22:02:45 +0000 Files and hashes: 1: bVcAkW-QmDvY6JzQX-Yp7Bg7-lQ.crl (hash: 0PDdMeRvHfRN6yjY/4hWylOls7W7Qaf4cXZlTG5AXoY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/9bfdb6-08b7-4b1d-8a88-926b34814130/1/bVcAkW-QmDvY6JzQX-Yp7Bg7-lQ.crl rsync://rpki.ripe.net/repository/DEFAULT/a6/9bfdb6-08b7-4b1d-8a88-926b34814130/1/bVcAkW-QmDvY6JzQX-Yp7Bg7-lQ.mft rsync://rpki.ripe.net/repository/DEFAULT/bVcAkW-QmDvY6JzQX-Yp7Bg7-lQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 22:02:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:48:16:14:5d:fe:c0:9e:80:4d:c1:53:c5:9e:23:3b:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6d5700916f90983bd8e89cd05fe629ec183bfa54 Validity Not Before: Dec 22 22:02:45 2025 GMT Not After : Dec 23 22:02:45 2025 GMT Subject: CN=c22035db403b58d1ad74757971123a1e9970f0f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:27:e8:1c:c5:40:13:10:0d:ef:95:a5:ac:01: 3e:38:1c:b6:4e:a6:84:1d:21:37:a0:9a:94:13:d7: 16:f6:cb:9c:6c:1f:a6:66:2d:d4:a0:9b:c4:19:8f: a2:9c:e1:0b:8a:ad:a4:1e:cf:e3:7e:13:ba:66:87: b0:65:f3:00:e9:76:68:15:1c:1b:ad:fe:7a:30:21: 0e:f9:5a:c3:de:62:29:7e:6e:4a:7b:f1:f5:97:bf: f0:f6:a0:ae:6f:95:c8:92:0e:50:cb:a7:8d:9c:0c: 1d:f8:d2:72:b4:9c:84:1a:70:dc:51:9a:15:c1:f9: 80:98:6c:76:82:ff:64:b3:9b:e2:be:e9:b5:01:b8: 25:56:96:eb:47:6a:4c:67:d4:5c:c0:e6:da:9f:e9: f3:e4:81:7e:f8:d7:9c:55:a4:b1:f2:05:03:e6:3a: 65:2b:05:20:cb:4b:2a:89:a2:bb:d9:e3:8a:ea:04: 73:a8:ed:db:a8:34:15:e0:da:9d:58:cb:0d:87:b9: 64:28:fe:35:b8:c1:61:5b:16:75:f1:7b:35:04:de: d5:36:b8:25:cf:92:14:ea:90:54:8e:e1:80:d1:ef: 59:8c:67:1e:47:cf:c1:e3:b8:19:d7:0f:f4:e4:b6: f3:24:2a:58:f6:d7:ee:52:13:f0:b5:5e:10:c7:66: 65:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:20:35:DB:40:3B:58:D1:AD:74:75:79:71:12:3A:1E:99:70:F0:F1 X509v3 Authority Key Identifier: keyid:6D:57:00:91:6F:90:98:3B:D8:E8:9C:D0:5F:E6:29:EC:18:3B:FA:54 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bVcAkW-QmDvY6JzQX-Yp7Bg7-lQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/9bfdb6-08b7-4b1d-8a88-926b34814130/1/bVcAkW-QmDvY6JzQX-Yp7Bg7-lQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/9bfdb6-08b7-4b1d-8a88-926b34814130/1/bVcAkW-QmDvY6JzQX-Yp7Bg7-lQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3a:b8:77:76:8a:53:65:d1:fa:85:34:ab:85:7c:b9:23:bb:b2: e6:52:b9:5e:af:17:80:d1:a2:63:e1:10:64:52:22:7c:0e:b5: c7:72:b0:48:55:99:c8:cf:1f:a2:87:66:8a:07:5d:66:19:1c: e6:e3:b4:ce:de:03:e3:73:dc:3f:73:cf:18:8c:6b:e7:21:26: 6b:40:38:5f:0f:a3:0e:e4:3f:eb:20:b4:6b:4a:38:3e:a2:27: 50:0d:34:24:60:ba:bf:a5:72:fd:44:df:ab:7f:61:dd:96:1f: fc:77:fb:1b:ae:9c:c5:02:a8:2e:39:f0:63:58:c5:74:14:7c: 61:ae:06:93:cf:a7:52:44:86:a5:60:96:42:f9:d3:61:d4:2a: 05:11:cf:ed:32:0f:05:32:04:96:45:f6:a4:4c:b3:44:8b:b6: dc:e3:9d:da:61:e3:5f:15:ac:51:ea:f4:4b:94:d3:12:1e:76: b7:81:e7:83:08:1c:4f:aa:f6:bd:d2:08:d4:c4:41:4d:15:6f: 2a:80:d6:79:93:aa:fa:fb:b5:23:dc:5a:07:c8:08:b5:0b:41: 85:55:3b:57:65:2f:ff:bb:f6:27:03:a8:1f:8a:42:f1:18:b9: a9:5a:0e:cd:ee:9e:0c:03:a2:8a:70:3b:f9:28:52:f6:4e:3e: 19:a1:f7:59 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtIFhRd/sCegE3BU8WeIzt4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkNTcwMDkxNmY5MDk4M2JkOGU4OWNkMDVmZTYyOWVjMTgz YmZhNTQwHhcNMjUxMjIyMjIwMjQ1WhcNMjUxMjIzMjIwMjQ1WjAzMTEwLwYDVQQD EyhjMjIwMzVkYjQwM2I1OGQxYWQ3NDc1Nzk3MTEyM2ExZTk5NzBmMGYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtyfoHMVAExAN75WlrAE+OBy2TqaE HSE3oJqUE9cW9sucbB+mZi3UoJvEGY+inOELiq2kHs/jfhO6ZoewZfMA6XZoFRwb rf56MCEO+VrD3mIpfm5Ke/H1l7/w9qCub5XIkg5Qy6eNnAwd+NJytJyEGnDcUZoV wfmAmGx2gv9ks5vivum1AbglVpbrR2pMZ9RcwOban+nz5IF++NecVaSx8gUD5jpl KwUgy0sqiaK72eOK6gRzqO3bqDQV4NqdWMsNh7lkKP41uMFhWxZ18Xs1BN7VNrgl z5IU6pBUjuGA0e9ZjGceR8/B47gZ1w/05LbzJCpY9tfuUhPwtV4Qx2ZlDwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMIgNdtAO1jRrXR1eXESOh6ZcPDxMB8GA1UdIwQY MBaAFG1XAJFvkJg72Oic0F/mKewYO/pUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYlZjQWtXLVFtRHZZNkp6UVgtWXA3Qmc3LWxRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNi85YmZkYjYtMDhiNy00YjFkLThhODgt OTI2YjM0ODE0MTMwLzEvYlZjQWtXLVFtRHZZNkp6UVgtWXA3Qmc3LWxRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNi85YmZkYjYtMDhiNy00YjFkLThhODgtOTI2YjM0ODE0MTMw LzEvYlZjQWtXLVFtRHZZNkp6UVgtWXA3Qmc3LWxRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOrh3dopT ZdH6hTSrhXy5I7uy5lK5Xq8XgNGiY+EQZFIifA61x3KwSFWZyM8foodmigddZhkc 5uO0zt4D43PcP3PPGIxr5yEma0A4Xw+jDuQ/6yC0a0o4PqInUA00JGC6v6Vy/UTf q39h3ZYf/Hf7G66cxQKoLjnwY1jFdBR8Ya4Gk8+nUkSGpWCWQvnTYdQqBRHP7TIP BTIElkX2pEyzRIu23OOd2mHjXxWsUer0S5TTEh52t4HngwgcT6r2vdII1MRBTRVv KoDWeZOq+vu1I9xaB8gItQtBhVU7V2Uv/7v2JwOoH4pC8Ri5qVoOze6eDAOiinA7 +ShS9k4+GaH3WQ== -----END CERTIFICATE-----Generated at Tue Dec 23 04:09:32 2025 by rpki-client