This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.mft File: BfWa7cKCluKRck95N954jichZAg.mft (raw, json) Hash identifier: XUbcHvKYa/IDL5YFc6w1S3CFdnbXI0bYbsDgY9aik4I= Subject key identifier: A6:DF:10:F2:AB:FE:C7:60:FE:86:D4:13:04:FC:25:9C:70:07:2B:D4 Authority key identifier: 05:F5:9A:ED:C2:82:96:E2:91:72:4F:79:37:DE:78:8E:27:21:64:08 Certificate issuer: /CN=05f59aedc28296e291724f7937de788e27216408 Certificate serial: 019B34C61EA5F46973D2869537286733EA93 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BfWa7cKCluKRck95N954jichZAg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.mft Manifest number: 16A1 Signing time: Fri 19 Dec 2025 04:02:37 +0000 Manifest this update: Fri 19 Dec 2025 04:02:37 +0000 Manifest next update: Sat 20 Dec 2025 04:02:37 +0000 Files and hashes: 1: BfWa7cKCluKRck95N954jichZAg.crl (hash: 3Ddb+A1inRZ8vk8G7NHAedDn17aioF3ub7FLbV4fBg4=) 2: u4-8TJgeQH4fa-D9xZl4ZB3jNoQ.roa (hash: tT+Wu4e7mtchTUuSJdCNjA8Yykw8lNY7Bv1xK7SFPsU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.crl rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.mft rsync://rpki.ripe.net/repository/DEFAULT/BfWa7cKCluKRck95N954jichZAg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:34:c6:1e:a5:f4:69:73:d2:86:95:37:28:67:33:ea:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05f59aedc28296e291724f7937de788e27216408 Validity Not Before: Dec 19 04:02:37 2025 GMT Not After : Dec 20 04:02:37 2025 GMT Subject: CN=a6df10f2abfec760fe86d41304fc259c70072bd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:46:60:eb:d3:a7:aa:2a:b8:d4:24:4f:5d:96: c4:f6:ba:35:87:d6:33:16:73:98:00:a9:c3:2a:1b: 3f:0b:97:e0:25:22:67:29:5a:60:cd:7d:cf:b5:f7: c5:cf:ca:61:44:74:e3:a4:66:cc:66:3c:9e:a2:c4: 40:14:a8:e0:91:e7:9e:fc:9b:92:3b:26:c6:9a:e7: 5b:b2:37:0d:8e:63:d4:f4:6f:7a:18:69:9a:6a:d7: 84:09:74:19:3a:f0:56:62:f7:19:5a:91:41:ec:d5: 48:a6:2d:2a:5d:d0:78:3a:c6:33:45:96:65:d7:55: 98:21:f9:55:75:ab:db:f4:e0:2b:d7:1c:0e:3e:8c: 14:24:01:9a:53:36:cd:6b:99:c0:b2:53:d5:92:cd: d0:41:e4:d5:a6:9f:5c:d0:2d:77:c8:ad:f9:bd:09: d1:d6:da:df:4e:e1:26:ca:43:b7:7a:d1:2d:e3:05: 51:2c:e9:15:5c:49:20:6d:6a:b5:23:d2:ac:a4:3a: f7:6a:42:2c:0f:fd:c2:7f:b1:5a:f7:f0:0d:a6:f4: 03:ea:70:ea:01:eb:52:39:31:63:2c:90:48:37:c0: b4:b1:ef:5c:32:72:28:95:26:cc:eb:a5:34:c5:a0: b2:d0:fd:4c:ba:50:e9:37:fb:fc:68:5e:d6:22:27: 9b:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:DF:10:F2:AB:FE:C7:60:FE:86:D4:13:04:FC:25:9C:70:07:2B:D4 X509v3 Authority Key Identifier: keyid:05:F5:9A:ED:C2:82:96:E2:91:72:4F:79:37:DE:78:8E:27:21:64:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BfWa7cKCluKRck95N954jichZAg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/5e1d42-3575-4ec1-bc7c-d64368208131/1/BfWa7cKCluKRck95N954jichZAg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9e:44:58:c3:7a:30:82:b6:bf:b9:bb:26:0e:40:da:86:75:c9: c4:1b:37:9d:af:5b:f3:1d:cc:2c:9d:bb:7b:c6:de:e8:b2:f3: 7f:f9:31:6f:54:1f:00:1b:f1:22:46:2f:49:a7:f6:ca:38:a1: 94:a2:20:0a:0e:7c:e9:36:b3:6e:d9:ee:2b:26:0a:ba:de:4e: 2a:26:35:c1:6b:52:3b:d6:75:22:d7:53:3e:ee:cc:e9:d9:a6: 65:13:52:ee:2d:2d:ff:a3:35:9a:79:10:28:24:88:b0:c2:cf: 6d:54:86:ac:b5:a9:55:43:a9:0e:98:55:c1:ee:4d:72:93:30: 67:5f:4a:ab:15:bb:d0:80:92:ba:0e:ec:3e:13:b2:8c:75:8a: f0:59:3f:82:a5:14:0e:d6:ec:51:a2:51:8f:64:e0:2e:40:d9: 1d:8d:c4:ab:0a:66:5a:c6:2d:8b:35:1f:70:8e:a6:57:65:b6: 51:5a:85:87:93:47:25:81:90:77:8d:c8:38:31:41:9a:8a:8a: 86:91:ec:c1:6c:b4:b7:cc:d8:98:ac:58:96:e0:5b:87:50:b6: 37:c8:07:24:09:eb:fa:6b:b1:18:69:20:b9:26:b1:a8:ad:bf: 38:70:27:ce:3e:c4:1e:ca:55:94:71:55:0b:8f:92:73:24:f7: 7e:03:1b:30 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs0xh6l9Glz0oaVNyhnM+qTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1ZjU5YWVkYzI4Mjk2ZTI5MTcyNGY3OTM3ZGU3ODhlMjcy MTY0MDgwHhcNMjUxMjE5MDQwMjM3WhcNMjUxMjIwMDQwMjM3WjAzMTEwLwYDVQQD EyhhNmRmMTBmMmFiZmVjNzYwZmU4NmQ0MTMwNGZjMjU5YzcwMDcyYmQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyUZg69Onqiq41CRPXZbE9ro1h9Yz FnOYAKnDKhs/C5fgJSJnKVpgzX3PtffFz8phRHTjpGbMZjyeosRAFKjgkeee/JuS OybGmudbsjcNjmPU9G96GGmaateECXQZOvBWYvcZWpFB7NVIpi0qXdB4OsYzRZZl 11WYIflVdavb9OAr1xwOPowUJAGaUzbNa5nAslPVks3QQeTVpp9c0C13yK35vQnR 1trfTuEmykO3etEt4wVRLOkVXEkgbWq1I9KspDr3akIsD/3Cf7Fa9/ANpvQD6nDq AetSOTFjLJBIN8C0se9cMnIolSbM66U0xaCy0P1MulDpN/v8aF7WIiebkwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKbfEPKr/sdg/obUEwT8JZxwByvUMB8GA1UdIwQY MBaAFAX1mu3CgpbikXJPeTfeeI4nIWQIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQmZXYTdjS0NsdUtSY2s5NU45NTRqaWNoWkFnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi81ZTFkNDItMzU3NS00ZWMxLWJjN2Mt ZDY0MzY4MjA4MTMxLzEvQmZXYTdjS0NsdUtSY2s5NU45NTRqaWNoWkFnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi81ZTFkNDItMzU3NS00ZWMxLWJjN2MtZDY0MzY4MjA4MTMx LzEvQmZXYTdjS0NsdUtSY2s5NU45NTRqaWNoWkFnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnkRYw3ow gra/ubsmDkDahnXJxBs3na9b8x3MLJ27e8be6LLzf/kxb1QfABvxIkYvSaf2yjih lKIgCg586TazbtnuKyYKut5OKiY1wWtSO9Z1ItdTPu7M6dmmZRNS7i0t/6M1mnkQ KCSIsMLPbVSGrLWpVUOpDphVwe5NcpMwZ19KqxW70ICSug7sPhOyjHWK8Fk/gqUU DtbsUaJRj2TgLkDZHY3EqwpmWsYtizUfcI6mV2W2UVqFh5NHJYGQd43IODFBmoqK hpHswWy0t8zYmKxYluBbh1C2N8gHJAnr+muxGGkguSaxqK2/OHAnzj7EHspVlHFV C4+ScyT3fgMbMA== -----END CERTIFICATE-----Generated at Fri Dec 19 07:49:58 2025 by rpki-client