This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/e62879-2c69-40c3-b116-0e46875d45fd/1/BgOecctxUgSoPMJTgi3CmmLHmeY.mft File: BgOecctxUgSoPMJTgi3CmmLHmeY.mft (raw, json) Hash identifier: Ct7Oo2zjdJXt1zjk8GigYRJcMigg2X5JBWdt6b2bnCk= Subject key identifier: D3:04:B2:21:09:E5:6E:62:38:0C:5A:F7:8B:F3:D4:1E:45:E7:CB:24 Authority key identifier: 06:03:9E:71:CB:71:52:04:A8:3C:C2:53:82:2D:C2:9A:62:C7:99:E6 Certificate issuer: /CN=06039e71cb715204a83cc253822dc29a62c799e6 Certificate serial: 019B32D61EA661720714E1746A7F632BC8E7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BgOecctxUgSoPMJTgi3CmmLHmeY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/e62879-2c69-40c3-b116-0e46875d45fd/1/BgOecctxUgSoPMJTgi3CmmLHmeY.mft Manifest number: 0894 Signing time: Thu 18 Dec 2025 19:00:51 +0000 Manifest this update: Thu 18 Dec 2025 19:00:51 +0000 Manifest next update: Fri 19 Dec 2025 19:00:51 +0000 Files and hashes: 1: AzSimOOUCBaH0nGWbesdL3p-c-Y.roa (hash: tmnAHG5c86gcxksbrSaGyYNVU434mmJFa3fZgdZ+AZw=) 2: BgOecctxUgSoPMJTgi3CmmLHmeY.crl (hash: OEXczQqvSV6niW/Ebr1UoAIHYN54JhblStNXJAMUaHs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/e62879-2c69-40c3-b116-0e46875d45fd/1/BgOecctxUgSoPMJTgi3CmmLHmeY.crl rsync://rpki.ripe.net/repository/DEFAULT/b2/e62879-2c69-40c3-b116-0e46875d45fd/1/BgOecctxUgSoPMJTgi3CmmLHmeY.mft rsync://rpki.ripe.net/repository/DEFAULT/BgOecctxUgSoPMJTgi3CmmLHmeY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 19:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:32:d6:1e:a6:61:72:07:14:e1:74:6a:7f:63:2b:c8:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=06039e71cb715204a83cc253822dc29a62c799e6 Validity Not Before: Dec 18 19:00:51 2025 GMT Not After : Dec 19 19:00:51 2025 GMT Subject: CN=d304b22109e56e62380c5af78bf3d41e45e7cb24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:64:eb:60:5b:09:c3:eb:a7:6e:a5:ac:fd:42: ac:8f:23:b0:8c:ae:4b:6b:d2:7c:9e:82:b7:82:dd: 69:36:04:fb:e8:e3:66:fd:5b:cd:da:f1:9d:2e:20: c2:dd:13:9a:f0:a2:60:ef:38:16:c0:03:05:8b:fb: 86:25:be:ba:c9:51:16:f0:13:66:6c:b5:ae:e5:37: 9f:8b:a1:43:57:08:31:53:3f:13:45:34:84:83:4c: ca:33:e2:25:1d:88:a1:10:a0:74:d4:49:eb:73:68: 26:00:bc:da:a2:2b:cb:c9:f1:19:db:6f:ba:8f:c9: c5:cd:55:dc:40:31:a7:bd:c4:15:15:fc:11:20:4d: 32:99:a5:8a:d4:c5:08:5a:fb:fc:7b:24:da:cf:95: f6:6a:24:40:38:52:71:8f:98:a2:dd:ce:9c:bc:07: a1:19:75:19:3f:74:7a:7f:49:ae:da:df:89:0f:a1: 2b:75:e6:cc:6c:6c:63:5c:4c:9b:49:9d:b9:55:ec: c7:17:b8:83:e9:ac:3a:b0:42:58:6a:67:23:ec:d6: 5d:fc:92:17:05:4a:34:d8:3a:71:14:95:c3:d6:69: 65:00:dc:0e:c0:43:35:51:c3:a5:8b:5b:17:2c:28: 43:80:81:01:c5:c0:7a:4f:2e:5b:4c:ed:e1:7b:bb: 37:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:04:B2:21:09:E5:6E:62:38:0C:5A:F7:8B:F3:D4:1E:45:E7:CB:24 X509v3 Authority Key Identifier: keyid:06:03:9E:71:CB:71:52:04:A8:3C:C2:53:82:2D:C2:9A:62:C7:99:E6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BgOecctxUgSoPMJTgi3CmmLHmeY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/e62879-2c69-40c3-b116-0e46875d45fd/1/BgOecctxUgSoPMJTgi3CmmLHmeY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/e62879-2c69-40c3-b116-0e46875d45fd/1/BgOecctxUgSoPMJTgi3CmmLHmeY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 27:e1:cd:a7:32:9a:d2:e8:17:99:21:87:1b:c3:b6:9f:4f:c3: ea:3f:32:67:af:67:94:15:5d:f2:fd:5d:21:f1:eb:65:6c:d0: b5:bc:47:f6:98:11:3c:f9:d4:58:2e:bb:b0:c8:0c:ea:18:6f: 2b:a9:29:25:be:4f:83:26:56:82:a1:a3:13:9e:a5:7e:65:64: 32:07:ac:2c:af:b0:cc:c7:85:ef:cf:88:03:44:a3:90:4e:6b: 0f:62:23:0b:e7:04:a6:4a:61:d2:2b:e6:b9:b2:1c:a2:3e:ad: 28:17:ba:e8:23:da:64:02:ea:57:09:0a:43:e6:69:18:07:ca: f2:9a:73:f9:dc:66:89:ca:d6:d2:60:26:8b:9a:50:35:0c:40: 69:b7:07:4a:21:cf:6f:f7:62:83:dd:1d:50:f0:65:f3:25:c4: 1f:a2:45:f3:a4:40:19:27:c5:17:45:6b:70:59:c7:eb:af:ce: 39:2b:a9:b5:dd:19:69:4c:77:92:76:d8:29:65:3f:3d:43:3b: a1:63:aa:e8:47:58:f8:b4:85:c7:99:ea:ae:78:01:93:98:be: ef:a3:22:4d:20:2a:85:36:8d:70:15:20:08:35:56:30:bc:a9: 78:7f:70:05:50:1c:18:cc:44:29:b1:d8:7f:89:1f:9f:79:a7: 14:6a:ee:25 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsy1h6mYXIHFOF0an9jK8jnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA2MDM5ZTcxY2I3MTUyMDRhODNjYzI1MzgyMmRjMjlhNjJj Nzk5ZTYwHhcNMjUxMjE4MTkwMDUxWhcNMjUxMjE5MTkwMDUxWjAzMTEwLwYDVQQD EyhkMzA0YjIyMTA5ZTU2ZTYyMzgwYzVhZjc4YmYzZDQxZTQ1ZTdjYjI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy2TrYFsJw+unbqWs/UKsjyOwjK5L a9J8noK3gt1pNgT76ONm/VvN2vGdLiDC3ROa8KJg7zgWwAMFi/uGJb66yVEW8BNm bLWu5Tefi6FDVwgxUz8TRTSEg0zKM+IlHYihEKB01Enrc2gmALzaoivLyfEZ22+6 j8nFzVXcQDGnvcQVFfwRIE0ymaWK1MUIWvv8eyTaz5X2aiRAOFJxj5ii3c6cvAeh GXUZP3R6f0mu2t+JD6ErdebMbGxjXEybSZ25VezHF7iD6aw6sEJYamcj7NZd/JIX BUo02DpxFJXD1mllANwOwEM1UcOli1sXLChDgIEBxcB6Ty5bTO3he7s3AwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNMEsiEJ5W5iOAxa94vz1B5F58skMB8GA1UdIwQY MBaAFAYDnnHLcVIEqDzCU4Itwppix5nmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQmdPZWNjdHhVZ1NvUE1KVGdpM0NtbUxIbWVZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi9lNjI4NzktMmM2OS00MGMzLWIxMTYt MGU0Njg3NWQ0NWZkLzEvQmdPZWNjdHhVZ1NvUE1KVGdpM0NtbUxIbWVZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMi9lNjI4NzktMmM2OS00MGMzLWIxMTYtMGU0Njg3NWQ0NWZk LzEvQmdPZWNjdHhVZ1NvUE1KVGdpM0NtbUxIbWVZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJ+HNpzKa 0ugXmSGHG8O2n0/D6j8yZ69nlBVd8v1dIfHrZWzQtbxH9pgRPPnUWC67sMgM6hhv K6kpJb5PgyZWgqGjE56lfmVkMgesLK+wzMeF78+IA0SjkE5rD2IjC+cEpkph0ivm ubIcoj6tKBe66CPaZALqVwkKQ+ZpGAfK8ppz+dxmicrW0mAmi5pQNQxAabcHSiHP b/dig90dUPBl8yXEH6JF86RAGSfFF0VrcFnH66/OOSuptd0ZaUx3knbYKWU/PUM7 oWOq6EdY+LSFx5nqrngBk5i+76MiTSAqhTaNcBUgCDVWMLypeH9wBVAcGMxEKbHY f4kfn3mnFGruJQ== -----END CERTIFICATE-----Generated at Thu Dec 18 23:33:40 2025 by rpki-client