This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft File: bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft (raw, json) Hash identifier: 3cS/L76XltUYwxx10DRWaUgZdZjUbPaBqGKbom/yxPU= Subject key identifier: 0F:50:3C:00:4D:B4:E7:20:F9:38:45:0F:4A:0D:4D:F6:F2:B1:08:C2 Authority key identifier: 6F:30:30:A4:B6:7F:95:C2:FE:D9:02:D5:66:57:FA:A2:49:4B:51:29 Certificate issuer: /CN=6f3030a4b67f95c2fed902d56657faa2494b5129 Certificate serial: 019B0E25F7E8006EE681D747E4C931E74066 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft Manifest number: 17F6 Signing time: Thu 11 Dec 2025 16:02:07 +0000 Manifest this update: Thu 11 Dec 2025 16:02:07 +0000 Manifest next update: Fri 12 Dec 2025 16:02:07 +0000 Files and hashes: 1: GJGNGTLsLaPzo7RV9J9cGo7ZCKI.roa (hash: ycPiGraLR+oJB3cwW5Zn+sG2+Vx4fOUp8s3QYwjDHdY=) 2: JnX62VIezaaKWkcW4gBg92XEQXM.roa (hash: dATTafsuJ7WJOlZ8NSS+mLvuyWixoMb7Td/wFEnsYlk=) 3: LJGytq9N5LZAfsPYy6Q-7xTDnFQ.roa (hash: L8DANG0AVQkhh+LlhVF97AUo2a9H2Thg2+BhZTsZc9s=) 4: VdTIZg10bNsf97lJZgApyqs5rnw.roa (hash: JZmVNExP4W1uSJTEkKjxhG9IYISkRZKnN8IfaygiTvg=) 5: _RuQI5qt_gCJV8eSXJjHywGzAcM.roa (hash: DUnvGlvb0qBwrlu2PMIboP80gnaIA1d0Yg1mit2U5+4=) 6: _oIa1v5_qtgCStQ7Gr8CmdhmJJk.roa (hash: sBeGOfBKlFTzuSpkLUgZSpY0MFPhQu/DyIR2/KkHkUM=) 7: acsdEgh-dFdAGSqAE_lAYWdPdzo.roa (hash: lIvBIoA3FQRV1Et4CF8cBr7OP+IuEmQHKzZDW4s0Y6A=) 8: bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl (hash: sLcY4EdOhsJUmvcjDEiGKJzl3/0bqOwgkWqUi0TNK54=) 9: mJjHdX3SCVwj6yoNCT7Dpu7pXSo.roa (hash: ccP3x4XUmUaf8il9YXiD7LEPdeAv9/EZKZYCHAVZnrA=) 10: uXeorQ0KraTFvVQlrxOSwyrTRt8.roa (hash: p6Mox6CbN3FoG5SSiyHeNVnPtI+94QgKaVPxEdmTl2o=) 11: yE8yGiOSM9_WiLeRkIg-dqNW2to.roa (hash: lSz5irzOf2/kcuzlFP5VLqCVP2LHBpJf2WHVunZKvMQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 14:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0e:25:f7:e8:00:6e:e6:81:d7:47:e4:c9:31:e7:40:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f3030a4b67f95c2fed902d56657faa2494b5129 Validity Not Before: Dec 11 16:02:07 2025 GMT Not After : Dec 12 16:02:07 2025 GMT Subject: CN=0f503c004db4e720f938450f4a0d4df6f2b108c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:fe:87:84:98:4c:bd:ca:7a:21:ea:29:ba:04: b2:a6:57:3c:ea:6d:4c:f3:09:e0:1a:14:0e:e4:e5: 8b:86:b1:83:41:28:42:58:df:04:9c:82:10:c6:58: b0:3e:25:b3:ba:9a:86:dd:1a:41:1f:3c:25:03:4f: db:18:ad:b8:73:f0:63:99:fa:27:b0:4b:b2:94:8a: b2:22:13:db:7d:9d:51:7a:4c:74:65:72:de:10:36: e8:5c:77:36:2a:66:17:a7:4c:1f:75:b2:b1:3d:38: 01:d4:c9:0f:3f:bf:2e:91:03:86:a9:a7:e3:10:59: 38:81:f5:c2:f6:b1:ee:83:d9:0a:6e:13:c1:25:e3: fd:e2:4d:82:2e:3b:8c:6e:f2:86:4b:d7:1e:26:26: fc:80:18:f4:69:de:99:04:dd:98:7c:6a:54:75:ce: a6:63:88:57:96:b8:53:4f:7c:8c:99:b8:85:43:53: 80:9a:57:68:25:e1:e5:47:b2:eb:6c:33:3a:87:2c: e3:63:cd:af:37:da:db:5e:3f:8d:05:a8:31:bd:26: 07:7f:0a:d7:58:7c:74:42:0b:a3:4c:42:9e:ee:9c: 59:dc:00:06:e7:a7:d6:b8:21:fd:ca:b3:d9:17:66: 7d:43:53:e6:e3:ea:c8:60:4a:5c:db:e7:92:29:41: e7:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:50:3C:00:4D:B4:E7:20:F9:38:45:0F:4A:0D:4D:F6:F2:B1:08:C2 X509v3 Authority Key Identifier: keyid:6F:30:30:A4:B6:7F:95:C2:FE:D9:02:D5:66:57:FA:A2:49:4B:51:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ad:50:4f:4f:7d:93:8e:e4:69:bf:f8:f1:39:da:07:28:5e:ab: ea:25:3b:33:99:62:b6:7e:be:de:37:37:42:01:9d:76:4a:39: 6f:76:36:13:87:fd:cd:29:aa:c8:5d:5a:f6:40:e3:70:39:7e: 2d:9b:52:c3:4a:11:0b:c4:3c:83:fa:19:d5:a4:09:c0:0e:d3: e3:76:fa:23:f1:30:cc:9b:c8:74:d8:61:03:f4:41:fe:45:1a: 58:1e:9c:bb:24:a0:cf:e6:f0:53:5c:6e:a3:2b:89:3e:6e:64: b4:3b:19:a9:b3:f5:11:64:ab:47:07:e4:6a:dc:79:56:0a:64: fd:a8:03:30:b1:73:d2:8f:55:7a:f8:ec:2f:e4:ca:5f:af:9e: a6:6f:67:9a:71:10:75:c1:c8:87:43:39:cd:15:9d:50:c7:02: 3c:5b:dc:a7:93:48:17:75:4c:30:f0:5d:39:55:d6:31:c6:87: 06:4e:8c:d7:0e:d8:70:5a:f3:2f:f4:01:f1:8a:ae:3c:be:86: e4:f2:42:2c:55:a5:cf:56:db:c0:36:8b:0f:9d:a9:15:af:99: 70:8b:15:5d:6b:a9:04:64:23:f3:49:0b:b1:e7:1e:da:e5:63: 66:1a:14:b2:5f:ab:da:3c:a4:63:12:ed:80:95:56:a9:2b:c6: b9:32:cd:ca -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsOJffoAG7mgddH5Mkx50BmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmMzAzMGE0YjY3Zjk1YzJmZWQ5MDJkNTY2NTdmYWEyNDk0 YjUxMjkwHhcNMjUxMjExMTYwMjA3WhcNMjUxMjEyMTYwMjA3WjAzMTEwLwYDVQQD EygwZjUwM2MwMDRkYjRlNzIwZjkzODQ1MGY0YTBkNGRmNmYyYjEwOGMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8P6HhJhMvcp6IeopugSyplc86m1M 8wngGhQO5OWLhrGDQShCWN8EnIIQxliwPiWzupqG3RpBHzwlA0/bGK24c/Bjmfon sEuylIqyIhPbfZ1Rekx0ZXLeEDboXHc2KmYXp0wfdbKxPTgB1MkPP78ukQOGqafj EFk4gfXC9rHug9kKbhPBJeP94k2CLjuMbvKGS9ceJib8gBj0ad6ZBN2YfGpUdc6m Y4hXlrhTT3yMmbiFQ1OAmldoJeHlR7LrbDM6hyzjY82vN9rbXj+NBagxvSYHfwrX WHx0QgujTEKe7pxZ3AAG56fWuCH9yrPZF2Z9Q1Pm4+rIYEpc2+eSKUHnOQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA9QPABNtOcg+ThFD0oNTfbysQjCMB8GA1UdIwQY MBaAFG8wMKS2f5XC/tkC1WZX+qJJS1EpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy8yYjk5YTMtZGQ1Zi00ZmZlLTgyZWYt YmYzYjIxYTI3MGYyLzEvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy8yYjk5YTMtZGQ1Zi00ZmZlLTgyZWYtYmYzYjIxYTI3MGYy LzEvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArVBPT32T juRpv/jxOdoHKF6r6iU7M5litn6+3jc3QgGddko5b3Y2E4f9zSmqyF1a9kDjcDl+ LZtSw0oRC8Q8g/oZ1aQJwA7T43b6I/EwzJvIdNhhA/RB/kUaWB6cuySgz+bwU1xu oyuJPm5ktDsZqbP1EWSrRwfkatx5Vgpk/agDMLFz0o9VevjsL+TKX6+epm9nmnEQ dcHIh0M5zRWdUMcCPFvcp5NIF3VMMPBdOVXWMcaHBk6M1w7YcFrzL/QB8YquPL6G 5PJCLFWlz1bbwDaLD52pFa+ZcIsVXWupBGQj80kLsece2uVjZhoUsl+r2jykYxLt gJVWqSvGuTLNyg== -----END CERTIFICATE-----Generated at Thu Dec 11 19:27:05 2025 by rpki-client