This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/9b5e26-0148-4f9f-a46a-bc8425c60604/1/BgPfkU3wTkf1a9li8vncPwQ0pdM.mft File: BgPfkU3wTkf1a9li8vncPwQ0pdM.mft (raw, json) Hash identifier: 3HslQ7ludaTRlKk1qCPnoEQW+RMRXMwTrXRpSgDU69E= Subject key identifier: 41:A4:0D:C9:E2:CB:1E:E2:5D:B0:DF:69:5A:82:C5:E8:0A:45:39:01 Authority key identifier: 06:03:DF:91:4D:F0:4E:47:F5:6B:D9:62:F2:F9:DC:3F:04:34:A5:D3 Certificate issuer: /CN=0603df914df04e47f56bd962f2f9dc3f0434a5d3 Certificate serial: 019B1A29315A2A66FD8A3EBB6B24C03F0E04 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BgPfkU3wTkf1a9li8vncPwQ0pdM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/9b5e26-0148-4f9f-a46a-bc8425c60604/1/BgPfkU3wTkf1a9li8vncPwQ0pdM.mft Manifest number: 09C1 Signing time: Sun 14 Dec 2025 00:01:05 +0000 Manifest this update: Sun 14 Dec 2025 00:01:05 +0000 Manifest next update: Mon 15 Dec 2025 00:01:05 +0000 Files and hashes: 1: BgPfkU3wTkf1a9li8vncPwQ0pdM.crl (hash: FrJPFS6D+ivXUZzyuMBPfexgLXkGTgdNdt00z1cxfr4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c9/9b5e26-0148-4f9f-a46a-bc8425c60604/1/BgPfkU3wTkf1a9li8vncPwQ0pdM.crl rsync://rpki.ripe.net/repository/DEFAULT/c9/9b5e26-0148-4f9f-a46a-bc8425c60604/1/BgPfkU3wTkf1a9li8vncPwQ0pdM.mft rsync://rpki.ripe.net/repository/DEFAULT/BgPfkU3wTkf1a9li8vncPwQ0pdM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 00:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1a:29:31:5a:2a:66:fd:8a:3e:bb:6b:24:c0:3f:0e:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0603df914df04e47f56bd962f2f9dc3f0434a5d3 Validity Not Before: Dec 14 00:01:05 2025 GMT Not After : Dec 15 00:01:05 2025 GMT Subject: CN=41a40dc9e2cb1ee25db0df695a82c5e80a453901 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:0b:80:b4:05:a0:d0:4f:5a:b0:69:09:5e:3f: c7:63:5d:62:3f:d4:f8:37:44:b9:3a:e5:e0:30:08: 5a:40:72:9f:b7:3c:a4:07:d1:1c:86:4a:86:f4:64: 51:12:9d:3d:e2:cc:ac:10:63:46:4a:95:e0:3f:f2: e3:c3:3e:bb:b2:cf:cf:c8:c6:b4:96:29:ae:b4:ab: 87:14:b6:c4:28:7b:43:28:73:57:d6:46:76:e0:f4: bb:2d:90:9b:6d:5d:3a:c5:76:0b:da:cc:88:9d:be: fc:fa:7a:a7:4f:34:33:0e:02:93:3e:71:9c:08:f8: 73:85:c8:d0:32:b6:dd:66:d6:eb:40:b9:58:7b:88: 2e:1a:0d:ef:7f:89:96:5e:0f:54:a1:b5:0a:0b:a3: e3:91:8e:36:63:74:68:88:9d:95:e3:6a:9f:c0:c3: 47:78:a7:d2:40:95:1c:3e:61:79:b5:54:94:ec:5c: 48:11:b9:52:70:3b:2d:93:b6:3b:ca:ae:a7:0c:87: e4:ab:12:64:de:6b:85:e9:9a:0e:fa:0e:a2:ba:56: 9f:6e:d1:90:94:ba:7d:5c:32:cd:23:43:54:77:a6: e4:74:1d:f1:1b:b7:39:1a:f5:c7:d4:10:ac:3e:da: 6b:ae:cd:b3:01:9f:d2:5a:46:2e:90:0c:14:2e:9e: 31:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:A4:0D:C9:E2:CB:1E:E2:5D:B0:DF:69:5A:82:C5:E8:0A:45:39:01 X509v3 Authority Key Identifier: keyid:06:03:DF:91:4D:F0:4E:47:F5:6B:D9:62:F2:F9:DC:3F:04:34:A5:D3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BgPfkU3wTkf1a9li8vncPwQ0pdM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/9b5e26-0148-4f9f-a46a-bc8425c60604/1/BgPfkU3wTkf1a9li8vncPwQ0pdM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/9b5e26-0148-4f9f-a46a-bc8425c60604/1/BgPfkU3wTkf1a9li8vncPwQ0pdM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:28:6e:81:4e:6d:6b:9d:95:bc:ce:34:7d:c8:f2:90:0a:13: 4e:00:cf:35:ea:f1:0d:ab:f4:11:11:8e:bd:92:92:21:9a:e6: b9:c1:69:6a:19:6a:34:e4:b8:73:04:54:6f:ce:62:6d:28:07: d2:1a:9e:37:37:26:60:81:13:16:78:8f:58:14:e4:8b:64:99: 07:da:10:0b:fe:c5:60:06:77:0f:48:48:b0:2a:3c:89:93:ed: 0e:c6:fe:f1:d2:b0:42:f8:0b:c0:a2:a1:24:2d:71:9c:59:77: 5c:7b:db:32:a8:3f:83:bf:52:0d:ea:f2:1c:92:cf:1a:2f:95: d8:5b:31:e0:96:9e:bd:7f:59:5d:b9:34:f9:5e:4f:bc:a4:31: 35:09:9e:1d:24:02:93:77:4c:c9:7d:3c:db:3e:d6:b1:f3:b5: dd:9b:db:8c:07:91:92:80:80:77:e2:1e:cb:2f:03:a1:91:c9: 20:c6:45:58:9d:4b:5e:dd:16:d2:35:9f:b3:4e:1c:5e:ce:87: 99:2e:0b:6b:d3:b3:e7:6b:43:86:dd:6f:d8:f6:ee:e6:83:e6: be:7e:82:2d:d7:7d:59:18:cc:2f:a9:4b:ac:91:09:17:0f:12: db:ea:a7:42:49:3d:e1:84:f2:19:0d:13:67:ea:e6:39:f2:15: 3e:37:a6:87 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsaKTFaKmb9ij67ayTAPw4EMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA2MDNkZjkxNGRmMDRlNDdmNTZiZDk2MmYyZjlkYzNmMDQz NGE1ZDMwHhcNMjUxMjE0MDAwMTA1WhcNMjUxMjE1MDAwMTA1WjAzMTEwLwYDVQQD Eyg0MWE0MGRjOWUyY2IxZWUyNWRiMGRmNjk1YTgyYzVlODBhNDUzOTAxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxAuAtAWg0E9asGkJXj/HY11iP9T4 N0S5OuXgMAhaQHKftzykB9EchkqG9GRREp094sysEGNGSpXgP/Ljwz67ss/PyMa0 limutKuHFLbEKHtDKHNX1kZ24PS7LZCbbV06xXYL2syInb78+nqnTzQzDgKTPnGc CPhzhcjQMrbdZtbrQLlYe4guGg3vf4mWXg9UobUKC6PjkY42Y3RoiJ2V42qfwMNH eKfSQJUcPmF5tVSU7FxIEblScDstk7Y7yq6nDIfkqxJk3muF6ZoO+g6iulafbtGQ lLp9XDLNI0NUd6bkdB3xG7c5GvXH1BCsPtprrs2zAZ/SWkYukAwULp4xCwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEGkDcniyx7iXbDfaVqCxegKRTkBMB8GA1UdIwQY MBaAFAYD35FN8E5H9WvZYvL53D8ENKXTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQmdQZmtVM3dUa2YxYTlsaTh2bmNQd1EwcGRNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOS85YjVlMjYtMDE0OC00ZjlmLWE0NmEt YmM4NDI1YzYwNjA0LzEvQmdQZmtVM3dUa2YxYTlsaTh2bmNQd1EwcGRNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOS85YjVlMjYtMDE0OC00ZjlmLWE0NmEtYmM4NDI1YzYwNjA0 LzEvQmdQZmtVM3dUa2YxYTlsaTh2bmNQd1EwcGRNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjihugU5t a52VvM40fcjykAoTTgDPNerxDav0ERGOvZKSIZrmucFpahlqNOS4cwRUb85ibSgH 0hqeNzcmYIETFniPWBTki2SZB9oQC/7FYAZ3D0hIsCo8iZPtDsb+8dKwQvgLwKKh JC1xnFl3XHvbMqg/g79SDeryHJLPGi+V2Fsx4JaevX9ZXbk0+V5PvKQxNQmeHSQC k3dMyX082z7WsfO13ZvbjAeRkoCAd+Ieyy8DoZHJIMZFWJ1LXt0W0jWfs04cXs6H mS4La9Oz52tDht1v2Pbu5oPmvn6CLdd9WRjML6lLrJEJFw8S2+qnQkk94YTyGQ0T Z+rmOfIVPjemhw== -----END CERTIFICATE-----Generated at Sun Dec 14 07:44:32 2025 by rpki-client