This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft File: bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft (raw, json) Hash identifier: ommyzWdfMg9euC/kLxIpY2H7iJM5jdhmF4A+CAugJ2Y= Subject key identifier: CD:A8:3D:80:5B:2C:9A:71:65:61:49:22:B4:D4:A4:EE:4E:F9:3E:55 Authority key identifier: 6F:30:30:A4:B6:7F:95:C2:FE:D9:02:D5:66:57:FA:A2:49:4B:51:29 Certificate issuer: /CN=6f3030a4b67f95c2fed902d56657faa2494b5129 Certificate serial: 019B19BCFB5B7D03A0964D8EE68091AC652E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft Manifest number: 17FC Signing time: Sat 13 Dec 2025 22:02:54 +0000 Manifest this update: Sat 13 Dec 2025 22:02:54 +0000 Manifest next update: Sun 14 Dec 2025 22:02:54 +0000 Files and hashes: 1: GJGNGTLsLaPzo7RV9J9cGo7ZCKI.roa (hash: ycPiGraLR+oJB3cwW5Zn+sG2+Vx4fOUp8s3QYwjDHdY=) 2: JnX62VIezaaKWkcW4gBg92XEQXM.roa (hash: dATTafsuJ7WJOlZ8NSS+mLvuyWixoMb7Td/wFEnsYlk=) 3: LJGytq9N5LZAfsPYy6Q-7xTDnFQ.roa (hash: L8DANG0AVQkhh+LlhVF97AUo2a9H2Thg2+BhZTsZc9s=) 4: VdTIZg10bNsf97lJZgApyqs5rnw.roa (hash: JZmVNExP4W1uSJTEkKjxhG9IYISkRZKnN8IfaygiTvg=) 5: _RuQI5qt_gCJV8eSXJjHywGzAcM.roa (hash: DUnvGlvb0qBwrlu2PMIboP80gnaIA1d0Yg1mit2U5+4=) 6: _oIa1v5_qtgCStQ7Gr8CmdhmJJk.roa (hash: sBeGOfBKlFTzuSpkLUgZSpY0MFPhQu/DyIR2/KkHkUM=) 7: acsdEgh-dFdAGSqAE_lAYWdPdzo.roa (hash: lIvBIoA3FQRV1Et4CF8cBr7OP+IuEmQHKzZDW4s0Y6A=) 8: bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl (hash: G9+7OQh5E3KSnXK+ef641BMEVA5nZKCNiGMvnBLBiSQ=) 9: mJjHdX3SCVwj6yoNCT7Dpu7pXSo.roa (hash: ccP3x4XUmUaf8il9YXiD7LEPdeAv9/EZKZYCHAVZnrA=) 10: uXeorQ0KraTFvVQlrxOSwyrTRt8.roa (hash: p6Mox6CbN3FoG5SSiyHeNVnPtI+94QgKaVPxEdmTl2o=) 11: yE8yGiOSM9_WiLeRkIg-dqNW2to.roa (hash: lSz5irzOf2/kcuzlFP5VLqCVP2LHBpJf2WHVunZKvMQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 17:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:19:bc:fb:5b:7d:03:a0:96:4d:8e:e6:80:91:ac:65:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f3030a4b67f95c2fed902d56657faa2494b5129 Validity Not Before: Dec 13 22:02:54 2025 GMT Not After : Dec 14 22:02:54 2025 GMT Subject: CN=cda83d805b2c9a7165614922b4d4a4ee4ef93e55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d5:6f:e2:29:fe:ce:01:5c:34:a7:d4:bd:58: f1:91:b6:f2:0b:fd:91:83:f8:29:13:de:f4:1d:41: 3d:a9:55:96:49:4d:ab:4a:a2:27:9e:00:77:38:61: 14:7c:aa:d0:da:40:a4:86:7d:79:9f:18:56:a3:bd: 62:90:9c:ed:61:80:3b:f4:a5:74:d4:3c:bf:72:d4: 20:c9:9f:89:8d:86:34:a5:c9:08:66:1b:6a:c3:27: 7d:5c:bc:4f:34:e2:63:50:70:90:2b:24:fa:da:4c: 05:e6:01:6a:4e:d9:bf:ca:04:15:70:cd:a0:40:0e: e9:79:91:e3:9b:95:68:d3:f8:65:35:3c:8f:08:4c: 18:00:5b:48:56:65:35:bf:43:d5:93:44:fd:b2:08: 37:e4:ce:65:42:2d:65:15:de:77:46:cd:7e:51:95: 1e:f8:c1:3c:42:4c:54:a7:43:06:36:80:7e:03:79: 16:c4:06:20:e5:ed:90:eb:de:8e:eb:9b:c2:67:a0: 8c:c3:b6:c6:f6:9e:d6:cc:1a:33:cf:c3:93:ff:f6: bc:f1:da:71:21:7d:77:40:4d:ae:1c:30:83:9a:69: 52:bd:37:04:d8:21:47:20:2c:9a:40:ea:44:d2:bc: f5:00:d9:ba:7f:89:a9:2b:11:2d:01:3f:38:15:0e: f6:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:A8:3D:80:5B:2C:9A:71:65:61:49:22:B4:D4:A4:EE:4E:F9:3E:55 X509v3 Authority Key Identifier: keyid:6F:30:30:A4:B6:7F:95:C2:FE:D9:02:D5:66:57:FA:A2:49:4B:51:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7e:fb:f5:d2:cd:8b:a4:81:ad:f2:68:80:68:b8:ed:13:89:c6: 2f:ae:fe:4a:b4:2d:f4:39:15:1b:1e:6a:a3:f4:ce:f4:16:73: 6f:3e:03:3a:4f:09:07:f5:91:7d:80:85:27:aa:94:0e:00:40: 95:8a:01:e1:5d:10:3a:95:7f:09:7e:f2:ac:81:5a:81:ce:07: 63:dd:01:c8:9f:5a:e5:53:39:9b:49:d3:16:cd:41:d0:68:ba: 34:fb:ba:ec:99:9c:e2:c7:35:40:0a:0b:0a:ea:20:c4:9d:a7: 6d:84:cf:b8:5a:63:91:69:17:88:b7:a6:56:ec:2c:c4:6a:e6: c5:3a:92:e2:07:93:8e:6e:a2:04:67:df:ee:18:b8:f2:d3:46: 88:40:eb:95:12:62:25:34:70:e9:ed:12:03:7d:f6:6e:c7:ad: 4d:0d:9c:7e:27:34:65:24:d4:17:23:4b:91:c2:7f:9f:d1:36: 25:98:b0:e0:53:8d:ed:72:c1:91:55:09:c5:db:dc:c6:c8:23: 02:e7:60:52:cd:b7:6e:41:26:bc:31:b4:62:0b:51:3e:a1:6e: c3:2a:1f:66:74:00:fe:37:97:b3:db:b1:c4:06:96:00:d3:42: c1:6d:0b:92:23:91:30:ef:28:7b:83:86:d6:6c:4a:fd:d9:d5: 26:db:6f:94 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsZvPtbfQOglk2O5oCRrGUuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmMzAzMGE0YjY3Zjk1YzJmZWQ5MDJkNTY2NTdmYWEyNDk0 YjUxMjkwHhcNMjUxMjEzMjIwMjU0WhcNMjUxMjE0MjIwMjU0WjAzMTEwLwYDVQQD EyhjZGE4M2Q4MDViMmM5YTcxNjU2MTQ5MjJiNGQ0YTRlZTRlZjkzZTU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxtVv4in+zgFcNKfUvVjxkbbyC/2R g/gpE970HUE9qVWWSU2rSqInngB3OGEUfKrQ2kCkhn15nxhWo71ikJztYYA79KV0 1Dy/ctQgyZ+JjYY0pckIZhtqwyd9XLxPNOJjUHCQKyT62kwF5gFqTtm/ygQVcM2g QA7peZHjm5Vo0/hlNTyPCEwYAFtIVmU1v0PVk0T9sgg35M5lQi1lFd53Rs1+UZUe +ME8QkxUp0MGNoB+A3kWxAYg5e2Q696O65vCZ6CMw7bG9p7WzBozz8OT//a88dpx IX13QE2uHDCDmmlSvTcE2CFHICyaQOpE0rz1ANm6f4mpKxEtAT84FQ72gwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM2oPYBbLJpxZWFJIrTUpO5O+T5VMB8GA1UdIwQY MBaAFG8wMKS2f5XC/tkC1WZX+qJJS1EpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy8yYjk5YTMtZGQ1Zi00ZmZlLTgyZWYt YmYzYjIxYTI3MGYyLzEvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy8yYjk5YTMtZGQ1Zi00ZmZlLTgyZWYtYmYzYjIxYTI3MGYy LzEvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfvv10s2L pIGt8miAaLjtE4nGL67+SrQt9DkVGx5qo/TO9BZzbz4DOk8JB/WRfYCFJ6qUDgBA lYoB4V0QOpV/CX7yrIFagc4HY90ByJ9a5VM5m0nTFs1B0Gi6NPu67Jmc4sc1QAoL CuogxJ2nbYTPuFpjkWkXiLemVuwsxGrmxTqS4geTjm6iBGff7hi48tNGiEDrlRJi JTRw6e0SA332bsetTQ2cfic0ZSTUFyNLkcJ/n9E2JZiw4FON7XLBkVUJxdvcxsgj AudgUs23bkEmvDG0YgtRPqFuwyofZnQA/jeXs9uxxAaWANNCwW0LkiORMO8oe4OG 1mxK/dnVJttvlA== -----END CERTIFICATE-----Generated at Sun Dec 14 01:52:33 2025 by rpki-client