This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/deef22-2624-49b6-a23b-aa01dcd3dfa7/1/B9oDycgmha5taz0h1oS7z0aL91s.mft File: B9oDycgmha5taz0h1oS7z0aL91s.mft (raw, json) Hash identifier: +iiTz0zQ9K4pIZHs2SMbJgCK1goaQC9VJddbR+pc6WI= Subject key identifier: 58:A9:F1:A5:80:C5:B9:78:25:04:AB:D0:07:27:F5:D2:2C:E6:D2:EB Authority key identifier: 07:DA:03:C9:C8:26:85:AE:6D:6B:3D:21:D6:84:BB:CF:46:8B:F7:5B Certificate issuer: /CN=07da03c9c82685ae6d6b3d21d684bbcf468bf75b Certificate serial: 019B59ACD9583894BECEF1EE8AEE2981561F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B9oDycgmha5taz0h1oS7z0aL91s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/deef22-2624-49b6-a23b-aa01dcd3dfa7/1/B9oDycgmha5taz0h1oS7z0aL91s.mft Manifest number: 1797 Signing time: Fri 26 Dec 2025 08:00:58 +0000 Manifest this update: Fri 26 Dec 2025 08:00:58 +0000 Manifest next update: Sat 27 Dec 2025 08:00:58 +0000 Files and hashes: 1: B9oDycgmha5taz0h1oS7z0aL91s.crl (hash: WOweHxsSYqthSGI5PjRxZqjOpoQtnF0INIsVifFF2OQ=) 2: S-uH2YCKKsWBJelfJrxohaQfZ4s.roa (hash: 7xEZvOLMz8mmv0R7hpmF8/cEimpEVrW14AuQipAjIzk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/deef22-2624-49b6-a23b-aa01dcd3dfa7/1/B9oDycgmha5taz0h1oS7z0aL91s.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/deef22-2624-49b6-a23b-aa01dcd3dfa7/1/B9oDycgmha5taz0h1oS7z0aL91s.mft rsync://rpki.ripe.net/repository/DEFAULT/B9oDycgmha5taz0h1oS7z0aL91s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:ac:d9:58:38:94:be:ce:f1:ee:8a:ee:29:81:56:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=07da03c9c82685ae6d6b3d21d684bbcf468bf75b Validity Not Before: Dec 26 08:00:58 2025 GMT Not After : Dec 27 08:00:58 2025 GMT Subject: CN=58a9f1a580c5b9782504abd00727f5d22ce6d2eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:84:c3:38:ef:d8:2c:ba:c4:aa:15:05:5a:6c: 2e:f0:da:89:d4:2e:1d:86:9e:6c:fd:bd:cf:86:49: ee:10:73:fd:50:7b:4e:c4:ce:a7:11:26:32:af:c3: 54:a4:22:67:96:53:1d:1f:74:5e:2a:12:c7:e1:57: a4:b7:30:f4:7c:29:16:32:a6:02:14:65:18:f9:2c: f6:86:1b:e9:e3:e9:78:a7:86:e3:93:73:55:79:60: ab:29:fd:63:75:b9:37:5d:74:f1:81:b2:05:03:07: ea:9a:a0:4e:71:1c:34:ae:e1:d5:32:ea:c6:0f:03: f0:92:6b:be:8b:e6:0f:ae:44:1d:8b:4f:95:30:f9: 56:7b:df:df:6f:a0:66:e6:35:b5:d0:78:6c:98:48: e8:86:a9:06:4d:62:39:92:18:f1:e0:29:cf:85:c1: 9c:9c:93:9f:92:ec:48:82:87:89:e6:02:0a:e3:36: 53:66:5a:2e:3f:d9:24:55:38:5e:4e:18:85:d7:1f: 8e:6d:2a:4f:7b:4b:9f:1f:d2:16:ef:2a:89:8b:6d: 24:c0:e4:be:51:91:9f:d8:44:50:50:03:7c:1b:e7: 33:3d:e2:e2:59:45:f0:e6:e8:9d:e1:2c:c6:86:34: f7:f4:3d:f4:50:0d:36:92:13:f5:ef:24:df:b1:43: 95:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:A9:F1:A5:80:C5:B9:78:25:04:AB:D0:07:27:F5:D2:2C:E6:D2:EB X509v3 Authority Key Identifier: keyid:07:DA:03:C9:C8:26:85:AE:6D:6B:3D:21:D6:84:BB:CF:46:8B:F7:5B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B9oDycgmha5taz0h1oS7z0aL91s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/deef22-2624-49b6-a23b-aa01dcd3dfa7/1/B9oDycgmha5taz0h1oS7z0aL91s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/deef22-2624-49b6-a23b-aa01dcd3dfa7/1/B9oDycgmha5taz0h1oS7z0aL91s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a5:98:98:18:c9:22:fa:ab:e8:ed:63:18:05:e5:a5:97:cb:57: 06:d0:f8:10:f1:86:7b:d2:91:45:62:aa:41:66:ec:d4:3e:c9: df:9a:32:6c:d4:c1:67:d0:8d:c8:55:fd:a5:9e:4c:31:48:7f: 3d:26:7b:3d:a1:3a:ab:8c:fa:2c:b7:fa:3b:bb:37:42:94:64: 63:e6:7b:2f:55:b2:05:b3:6b:0e:e5:89:ef:f8:9e:b3:4a:01: 3d:7a:4d:4d:69:8c:d4:a5:eb:0a:a3:76:39:85:d5:b0:bd:98: 2d:b9:ac:53:7c:aa:7e:6e:40:cd:cb:6b:08:0d:ff:d6:0f:a8: 60:4c:b3:72:58:86:ba:ee:dc:b5:1f:27:58:1a:bf:1c:2e:4d: 90:39:f2:c2:f8:39:3b:cf:ad:7b:0a:6c:ad:7b:d6:54:82:56: 9b:7a:9e:61:75:b0:43:43:ca:44:77:6a:17:7c:9a:93:ad:0d: 2f:77:f7:8b:cd:d7:bf:1a:67:71:76:98:ed:e6:63:bb:3c:a1: f1:31:cd:a9:b1:51:cf:26:ed:97:7c:26:d4:ce:1f:39:85:44: 52:f6:16:a5:6a:86:73:ef:f4:03:05:76:d4:f6:9d:db:5d:5c: ef:5a:cd:e4:66:ac:a7:ac:b8:94:e5:21:20:aa:25:a3:bc:da: 85:f1:53:8a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZrNlYOJS+zvHuiu4pgVYfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA3ZGEwM2M5YzgyNjg1YWU2ZDZiM2QyMWQ2ODRiYmNmNDY4 YmY3NWIwHhcNMjUxMjI2MDgwMDU4WhcNMjUxMjI3MDgwMDU4WjAzMTEwLwYDVQQD Eyg1OGE5ZjFhNTgwYzViOTc4MjUwNGFiZDAwNzI3ZjVkMjJjZTZkMmViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzoTDOO/YLLrEqhUFWmwu8NqJ1C4d hp5s/b3PhknuEHP9UHtOxM6nESYyr8NUpCJnllMdH3ReKhLH4VektzD0fCkWMqYC FGUY+Sz2hhvp4+l4p4bjk3NVeWCrKf1jdbk3XXTxgbIFAwfqmqBOcRw0ruHVMurG DwPwkmu+i+YPrkQdi0+VMPlWe9/fb6Bm5jW10HhsmEjohqkGTWI5khjx4CnPhcGc nJOfkuxIgoeJ5gIK4zZTZlouP9kkVTheThiF1x+ObSpPe0ufH9IW7yqJi20kwOS+ UZGf2ERQUAN8G+czPeLiWUXw5uid4SzGhjT39D30UA02khP17yTfsUOVswIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFip8aWAxbl4JQSr0Acn9dIs5tLrMB8GA1UdIwQY MBaAFAfaA8nIJoWubWs9IdaEu89Gi/dbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQjlvRHljZ21oYTV0YXowaDFvUzd6MGFMOTFzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi9kZWVmMjItMjYyNC00OWI2LWEyM2It YWEwMWRjZDNkZmE3LzEvQjlvRHljZ21oYTV0YXowaDFvUzd6MGFMOTFzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi9kZWVmMjItMjYyNC00OWI2LWEyM2ItYWEwMWRjZDNkZmE3 LzEvQjlvRHljZ21oYTV0YXowaDFvUzd6MGFMOTFzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApZiYGMki +qvo7WMYBeWll8tXBtD4EPGGe9KRRWKqQWbs1D7J35oybNTBZ9CNyFX9pZ5MMUh/ PSZ7PaE6q4z6LLf6O7s3QpRkY+Z7L1WyBbNrDuWJ7/ies0oBPXpNTWmM1KXrCqN2 OYXVsL2YLbmsU3yqfm5AzctrCA3/1g+oYEyzcliGuu7ctR8nWBq/HC5NkDnywvg5 O8+tewpsrXvWVIJWm3qeYXWwQ0PKRHdqF3yak60NL3f3i83XvxpncXaY7eZjuzyh 8THNqbFRzybtl3wm1M4fOYVEUvYWpWqGc+/0AwV21Pad211c71rN5Gasp6y4lOUh IKolo7zahfFTig== -----END CERTIFICATE-----Generated at Fri Dec 26 16:00:56 2025 by rpki-client