This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/dd3fc8-47dc-4a36-8734-45d84da39874/1/bJHX1fXOV5JskDlz7L8RK_rhUw0.mft File: bJHX1fXOV5JskDlz7L8RK_rhUw0.mft (raw, json) Hash identifier: DTMg05JwwX/9wxGEgawuQJtYTxMG9ihdYAumXEXXq1U= Subject key identifier: 2F:C3:28:2D:15:F1:86:3E:2B:BE:00:D8:0A:C2:F9:89:8B:2A:E1:1F Authority key identifier: 6C:91:D7:D5:F5:CE:57:92:6C:90:39:73:EC:BF:11:2B:FA:E1:53:0D Certificate issuer: /CN=6c91d7d5f5ce57926c903973ecbf112bfae1530d Certificate serial: 019B3645355262116A84CF705F078BFA7A0A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bJHX1fXOV5JskDlz7L8RK_rhUw0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/dd3fc8-47dc-4a36-8734-45d84da39874/1/bJHX1fXOV5JskDlz7L8RK_rhUw0.mft Manifest number: 1785 Signing time: Fri 19 Dec 2025 11:01:03 +0000 Manifest this update: Fri 19 Dec 2025 11:01:03 +0000 Manifest next update: Sat 20 Dec 2025 11:01:03 +0000 Files and hashes: 1: bJHX1fXOV5JskDlz7L8RK_rhUw0.crl (hash: ItWhU7jOYV0+RHUL/jajSt+T/l3HsxIfsp0aV+I5zuA=) 2: eEvrSYjLUGg5GhW7JvZI3HWYfcI.roa (hash: GMSu0KMyD4SKyVpe+o1Z3AHIVpLBmKGk+5TuUmweIis=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/dd3fc8-47dc-4a36-8734-45d84da39874/1/bJHX1fXOV5JskDlz7L8RK_rhUw0.crl rsync://rpki.ripe.net/repository/DEFAULT/c4/dd3fc8-47dc-4a36-8734-45d84da39874/1/bJHX1fXOV5JskDlz7L8RK_rhUw0.mft rsync://rpki.ripe.net/repository/DEFAULT/bJHX1fXOV5JskDlz7L8RK_rhUw0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 11:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:36:45:35:52:62:11:6a:84:cf:70:5f:07:8b:fa:7a:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6c91d7d5f5ce57926c903973ecbf112bfae1530d Validity Not Before: Dec 19 11:01:03 2025 GMT Not After : Dec 20 11:01:03 2025 GMT Subject: CN=2fc3282d15f1863e2bbe00d80ac2f9898b2ae11f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ec:71:bc:ca:09:ac:6c:1a:98:7f:89:32:4c: 40:d5:44:c3:c6:3f:ea:25:0f:a1:4c:5b:76:8d:06: 2a:fa:69:e2:45:20:89:7d:37:46:ab:f6:34:ac:f4: 71:ee:41:5e:ea:7b:fc:9c:a7:c1:52:7e:ee:13:c3: 1c:d5:04:a9:5b:7a:a9:d5:e8:c5:f8:47:18:fc:71: dd:c0:d8:bc:cb:ce:24:79:59:59:9c:7b:05:c8:1f: 67:e0:9d:d6:6f:0a:03:c3:ae:70:26:df:e5:33:5a: ae:fc:b7:6d:d5:32:6f:f7:08:fe:ff:7f:16:3d:fc: 31:f3:fb:74:a5:27:df:b1:0c:2c:42:39:26:c2:24: 9f:be:c4:0b:42:40:e9:f7:4c:10:3f:71:72:7e:67: 23:d1:84:15:df:50:f7:ce:12:6a:bd:24:24:dd:6f: b6:46:e7:62:47:b5:c6:70:94:84:5d:5b:dd:f6:dd: 36:3a:3d:7c:4b:0a:1c:6a:22:02:ce:df:ee:e8:3e: e2:70:f1:31:e4:02:67:4c:a1:6f:ad:b8:56:ca:78: 38:a0:a5:8c:e6:31:8b:f4:5c:ec:26:63:f7:d0:1c: 0c:ed:dc:36:0b:86:01:ce:28:bf:ee:09:c8:42:c9: 48:52:04:06:af:05:c4:77:a7:1b:59:c8:28:9f:fe: 17:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:C3:28:2D:15:F1:86:3E:2B:BE:00:D8:0A:C2:F9:89:8B:2A:E1:1F X509v3 Authority Key Identifier: keyid:6C:91:D7:D5:F5:CE:57:92:6C:90:39:73:EC:BF:11:2B:FA:E1:53:0D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bJHX1fXOV5JskDlz7L8RK_rhUw0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/dd3fc8-47dc-4a36-8734-45d84da39874/1/bJHX1fXOV5JskDlz7L8RK_rhUw0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/dd3fc8-47dc-4a36-8734-45d84da39874/1/bJHX1fXOV5JskDlz7L8RK_rhUw0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 13:5f:ea:7d:fa:2e:14:f4:bc:5e:de:e8:60:19:ed:d1:5b:54: 55:1f:09:07:c2:a8:3d:fb:4c:e2:7f:33:5a:9a:73:2b:0c:b7: ec:d0:f2:e6:aa:b2:6a:d7:dc:0c:7d:98:ac:b7:a5:1e:59:f9: 30:6a:a9:f1:24:b6:c7:b3:ae:00:41:3d:da:a5:d4:12:eb:34: e0:16:84:a7:aa:84:bc:3f:e8:38:81:fc:03:db:3b:43:d9:d4: f0:dc:85:6b:13:46:68:ad:43:53:8c:a7:24:18:cd:b6:cc:d5: 69:5d:c1:a7:4b:2f:ab:25:aa:1e:b2:27:c4:29:58:53:fc:36: 22:f5:d2:aa:a1:a9:15:46:87:8d:1b:22:2c:2f:a0:fd:4e:05: 1f:bb:1f:3a:a9:da:c2:6a:20:cf:92:85:b3:b2:09:31:44:c9: be:88:4b:30:42:2a:c3:16:a0:b4:81:ec:47:0a:79:8c:0d:80: a0:8b:08:33:a1:56:b5:da:e0:0a:d4:63:57:4a:11:f8:b9:4c: c0:59:43:53:da:3a:46:e2:ab:8b:25:3c:82:ad:cb:11:ed:84: ad:b8:7f:da:4d:fd:97:50:e5:d5:85:6a:18:45:ac:65:b8:d4: b7:99:15:4f:79:cc:2f:5b:03:44:06:07:43:1e:a1:78:11:08: 63:af:b5:c5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs2RTVSYhFqhM9wXweL+noKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZjOTFkN2Q1ZjVjZTU3OTI2YzkwMzk3M2VjYmYxMTJiZmFl MTUzMGQwHhcNMjUxMjE5MTEwMTAzWhcNMjUxMjIwMTEwMTAzWjAzMTEwLwYDVQQD EygyZmMzMjgyZDE1ZjE4NjNlMmJiZTAwZDgwYWMyZjk4OThiMmFlMTFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvuxxvMoJrGwamH+JMkxA1UTDxj/q JQ+hTFt2jQYq+mniRSCJfTdGq/Y0rPRx7kFe6nv8nKfBUn7uE8Mc1QSpW3qp1ejF +EcY/HHdwNi8y84keVlZnHsFyB9n4J3WbwoDw65wJt/lM1qu/Ldt1TJv9wj+/38W Pfwx8/t0pSffsQwsQjkmwiSfvsQLQkDp90wQP3Fyfmcj0YQV31D3zhJqvSQk3W+2 RudiR7XGcJSEXVvd9t02Oj18SwocaiICzt/u6D7icPEx5AJnTKFvrbhWyng4oKWM 5jGL9FzsJmP30BwM7dw2C4YBzii/7gnIQslIUgQGrwXEd6cbWcgon/4XJQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC/DKC0V8YY+K74A2ArC+YmLKuEfMB8GA1UdIwQY MBaAFGyR19X1zleSbJA5c+y/ESv64VMNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYkpIWDFmWE9WNUpza0RsejdMOFJLX3JoVXcwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC9kZDNmYzgtNDdkYy00YTM2LTg3MzQt NDVkODRkYTM5ODc0LzEvYkpIWDFmWE9WNUpza0RsejdMOFJLX3JoVXcwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNC9kZDNmYzgtNDdkYy00YTM2LTg3MzQtNDVkODRkYTM5ODc0 LzEvYkpIWDFmWE9WNUpza0RsejdMOFJLX3JoVXcwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE1/qffou FPS8Xt7oYBnt0VtUVR8JB8KoPftM4n8zWppzKwy37NDy5qqyatfcDH2YrLelHln5 MGqp8SS2x7OuAEE92qXUEus04BaEp6qEvD/oOIH8A9s7Q9nU8NyFaxNGaK1DU4yn JBjNtszVaV3Bp0svqyWqHrInxClYU/w2IvXSqqGpFUaHjRsiLC+g/U4FH7sfOqna wmogz5KFs7IJMUTJvohLMEIqwxagtIHsRwp5jA2AoIsIM6FWtdrgCtRjV0oR+LlM wFlDU9o6RuKriyU8gq3LEe2Erbh/2k39l1Dl1YVqGEWsZbjUt5kVT3nML1sDRAYH Qx6heBEIY6+1xQ== -----END CERTIFICATE-----Generated at Fri Dec 19 20:32:45 2025 by rpki-client