This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/ebf169-be17-4ce9-9275-081786ab0748/1/bchbZ4jkUMBUE0row2V0iyP3Qmc.mft File: bchbZ4jkUMBUE0row2V0iyP3Qmc.mft (raw, json) Hash identifier: Jvg51AbPfwOysh5s5IE7Yy5PmwojIZ1s44Mst/iefuQ= Subject key identifier: 1F:01:3C:35:54:99:64:17:B0:F2:17:C8:E5:80:05:5D:DA:13:F5:76 Authority key identifier: 6D:C8:5B:67:88:E4:50:C0:54:13:4A:E8:C3:65:74:8B:23:F7:42:67 Certificate issuer: /CN=6dc85b6788e450c054134ae8c365748b23f74267 Certificate serial: 019B330D4FB6C945747DF0F47A74CA3C0CCD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bchbZ4jkUMBUE0row2V0iyP3Qmc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/ebf169-be17-4ce9-9275-081786ab0748/1/bchbZ4jkUMBUE0row2V0iyP3Qmc.mft Manifest number: 08FD Signing time: Thu 18 Dec 2025 20:01:08 +0000 Manifest this update: Thu 18 Dec 2025 20:01:08 +0000 Manifest next update: Fri 19 Dec 2025 20:01:08 +0000 Files and hashes: 1: HuuruuJUnyizGG7iC01ujDUd5zE.roa (hash: zJUuXbnFQXiP5Cz81qdrVSNYrr0dHAG+T0ZkZ/sUgdY=) 2: bchbZ4jkUMBUE0row2V0iyP3Qmc.crl (hash: XPtQwaLd0pIA6P49AvQ1DIr1sIc7gjVb5Ukv2s2vuW4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/ebf169-be17-4ce9-9275-081786ab0748/1/bchbZ4jkUMBUE0row2V0iyP3Qmc.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/ebf169-be17-4ce9-9275-081786ab0748/1/bchbZ4jkUMBUE0row2V0iyP3Qmc.mft rsync://rpki.ripe.net/repository/DEFAULT/bchbZ4jkUMBUE0row2V0iyP3Qmc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 20:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:33:0d:4f:b6:c9:45:74:7d:f0:f4:7a:74:ca:3c:0c:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6dc85b6788e450c054134ae8c365748b23f74267 Validity Not Before: Dec 18 20:01:08 2025 GMT Not After : Dec 19 20:01:08 2025 GMT Subject: CN=1f013c3554996417b0f217c8e580055dda13f576 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:05:4d:5b:56:f7:1f:9e:a5:17:79:29:d1:e9: 5b:34:bb:cf:8a:a8:e5:0d:46:c2:57:eb:24:08:1f: 8c:70:17:28:36:e2:6a:a8:2f:12:ac:3f:81:88:d4: 84:7c:c5:bf:d2:4d:d7:29:19:2f:9c:51:a7:63:9d: 8a:57:c6:ed:67:a3:66:4c:ce:c4:ea:fe:23:be:1b: 55:1d:b2:9f:bf:7c:8c:ba:9c:34:da:7d:80:31:52: ef:16:67:33:e6:7d:0f:32:4d:2d:a2:bd:a2:fb:bc: f2:05:ce:93:49:83:62:f8:2a:8d:ec:35:c2:5f:f8: a6:cf:9a:a4:ac:20:03:5d:77:28:e3:16:f4:5a:64: 7f:f6:12:37:a3:da:fa:bb:ec:a9:9e:d3:99:bb:36: 13:db:60:b9:bc:af:f2:66:7a:b2:df:03:37:10:eb: 38:be:1e:1b:1f:f9:ec:1a:54:06:54:b6:b1:5c:4e: 37:0e:0d:e2:3e:63:ca:69:14:20:8e:d4:01:53:db: b9:7f:eb:34:a0:cc:40:82:b3:9a:60:24:51:be:a2: d1:9c:55:87:e3:69:0c:28:fd:d2:63:26:ca:55:9d: 36:84:37:be:9e:4b:3c:6a:31:5a:bc:2f:95:de:8c: 1c:4e:e3:ac:32:eb:64:77:6d:92:7e:3c:8b:72:7a: a0:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:01:3C:35:54:99:64:17:B0:F2:17:C8:E5:80:05:5D:DA:13:F5:76 X509v3 Authority Key Identifier: keyid:6D:C8:5B:67:88:E4:50:C0:54:13:4A:E8:C3:65:74:8B:23:F7:42:67 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bchbZ4jkUMBUE0row2V0iyP3Qmc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/ebf169-be17-4ce9-9275-081786ab0748/1/bchbZ4jkUMBUE0row2V0iyP3Qmc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/ebf169-be17-4ce9-9275-081786ab0748/1/bchbZ4jkUMBUE0row2V0iyP3Qmc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9a:ca:39:4a:5f:45:e7:ad:08:a0:b9:94:00:5e:09:23:cb:fb: 2f:fb:15:57:58:15:f3:4e:c7:ae:23:1e:7d:6a:e9:fb:a8:30: e9:c2:ef:84:57:24:26:86:93:89:7e:fc:bd:e0:57:5e:cc:1a: ac:03:4d:79:0c:ba:e1:e6:29:95:e3:31:a9:9b:75:2f:45:14: f2:c6:c1:81:cf:4a:67:2c:18:af:73:57:66:63:38:73:67:c5: 5a:39:10:8b:8f:01:5c:82:02:de:6f:6b:bc:02:12:ad:5c:f9: b1:58:71:60:67:26:c9:85:87:72:4d:48:f5:8b:61:e6:bc:71: cc:9d:5e:ea:d1:e6:84:43:84:34:17:57:42:6a:b5:a3:03:89: c9:53:e8:a2:38:8e:8a:04:51:3c:55:ae:42:bd:0d:06:36:73: 33:4d:dd:1a:10:d7:0f:19:28:bd:28:ff:20:a1:08:a8:36:5d: 31:26:ab:30:f1:98:62:19:74:ba:41:ec:3a:ba:67:1a:e8:15: b7:da:ed:75:4a:9b:85:1a:4c:ca:f3:28:ba:a9:e6:25:0e:9a: 7f:fd:03:c8:53:bb:ea:76:a2:54:16:3b:2e:35:d6:65:17:3a: 38:09:3a:fe:27:37:c7:61:d8:4a:24:6e:8f:9f:e7:db:ad:4e: b9:24:67:08 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZszDU+2yUV0ffD0enTKPAzNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkYzg1YjY3ODhlNDUwYzA1NDEzNGFlOGMzNjU3NDhiMjNm NzQyNjcwHhcNMjUxMjE4MjAwMTA4WhcNMjUxMjE5MjAwMTA4WjAzMTEwLwYDVQQD EygxZjAxM2MzNTU0OTk2NDE3YjBmMjE3YzhlNTgwMDU1ZGRhMTNmNTc2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7QVNW1b3H56lF3kp0elbNLvPiqjl DUbCV+skCB+McBcoNuJqqC8SrD+BiNSEfMW/0k3XKRkvnFGnY52KV8btZ6NmTM7E 6v4jvhtVHbKfv3yMupw02n2AMVLvFmcz5n0PMk0tor2i+7zyBc6TSYNi+CqN7DXC X/imz5qkrCADXXco4xb0WmR/9hI3o9r6u+ypntOZuzYT22C5vK/yZnqy3wM3EOs4 vh4bH/nsGlQGVLaxXE43Dg3iPmPKaRQgjtQBU9u5f+s0oMxAgrOaYCRRvqLRnFWH 42kMKP3SYybKVZ02hDe+nks8ajFavC+V3owcTuOsMutkd22SfjyLcnqgOwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB8BPDVUmWQXsPIXyOWABV3aE/V2MB8GA1UdIwQY MBaAFG3IW2eI5FDAVBNK6MNldIsj90JnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYmNoYlo0amtVTUJVRTByb3cyVjBpeVAzUW1jLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS9lYmYxNjktYmUxNy00Y2U5LTkyNzUt MDgxNzg2YWIwNzQ4LzEvYmNoYlo0amtVTUJVRTByb3cyVjBpeVAzUW1jLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS9lYmYxNjktYmUxNy00Y2U5LTkyNzUtMDgxNzg2YWIwNzQ4 LzEvYmNoYlo0amtVTUJVRTByb3cyVjBpeVAzUW1jLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmso5Sl9F 560IoLmUAF4JI8v7L/sVV1gV807HriMefWrp+6gw6cLvhFckJoaTiX78veBXXswa rANNeQy64eYpleMxqZt1L0UU8sbBgc9KZywYr3NXZmM4c2fFWjkQi48BXIIC3m9r vAISrVz5sVhxYGcmyYWHck1I9Yth5rxxzJ1e6tHmhEOENBdXQmq1owOJyVPoojiO igRRPFWuQr0NBjZzM03dGhDXDxkovSj/IKEIqDZdMSarMPGYYhl0ukHsOrpnGugV t9rtdUqbhRpMyvMouqnmJQ6af/0DyFO76naiVBY7LjXWZRc6OAk6/ic3x2HYSiRu j5/n261OuSRnCA== -----END CERTIFICATE-----Generated at Fri Dec 19 04:55:53 2025 by rpki-client