This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/52ef7c-9a36-4362-8e7f-6394214a122c/1/bn-6EaMdOqkN48e7i1bTzQbmvnU.mft File: bn-6EaMdOqkN48e7i1bTzQbmvnU.mft (raw, json) Hash identifier: R2u625+Cy3gZohKFzsfTweCZGNxfQIbW3p9FDsbdTvI= Subject key identifier: FD:4A:BF:2B:6E:D1:99:3A:F0:C5:DF:32:F8:CB:15:02:28:BE:33:16 Authority key identifier: 6E:7F:BA:11:A3:1D:3A:A9:0D:E3:C7:BB:8B:56:D3:CD:06:E6:BE:75 Certificate issuer: /CN=6e7fba11a31d3aa90de3c7bb8b56d3cd06e6be75 Certificate serial: 019B405C406279CA52AE3ABCD5D6656F2974 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bn-6EaMdOqkN48e7i1bTzQbmvnU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/52ef7c-9a36-4362-8e7f-6394214a122c/1/bn-6EaMdOqkN48e7i1bTzQbmvnU.mft Manifest number: 1770 Signing time: Sun 21 Dec 2025 10:02:25 +0000 Manifest this update: Sun 21 Dec 2025 10:02:25 +0000 Manifest next update: Mon 22 Dec 2025 10:02:25 +0000 Files and hashes: 1: bn-6EaMdOqkN48e7i1bTzQbmvnU.crl (hash: pN4ZygdJb2pzaw61ljNoliNizJyGl9gxUUw8YgQdYNk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/52ef7c-9a36-4362-8e7f-6394214a122c/1/bn-6EaMdOqkN48e7i1bTzQbmvnU.crl rsync://rpki.ripe.net/repository/DEFAULT/e2/52ef7c-9a36-4362-8e7f-6394214a122c/1/bn-6EaMdOqkN48e7i1bTzQbmvnU.mft rsync://rpki.ripe.net/repository/DEFAULT/bn-6EaMdOqkN48e7i1bTzQbmvnU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 10:02:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:40:5c:40:62:79:ca:52:ae:3a:bc:d5:d6:65:6f:29:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6e7fba11a31d3aa90de3c7bb8b56d3cd06e6be75 Validity Not Before: Dec 21 10:02:25 2025 GMT Not After : Dec 22 10:02:25 2025 GMT Subject: CN=fd4abf2b6ed1993af0c5df32f8cb150228be3316 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:1a:87:d1:ed:9d:20:80:cb:31:fd:7c:91:77: 93:e0:f1:86:38:48:bf:44:9c:66:55:53:21:1b:3c: fe:5c:15:00:9e:05:f2:ef:16:7a:eb:82:2b:a8:39: 7c:6f:8c:c5:f8:5a:86:3c:b7:96:dd:7f:10:f3:97: c8:16:ab:91:ad:8a:f4:01:34:22:69:45:64:4b:e9: a7:53:ea:a8:46:3d:c3:b3:89:bb:f3:05:c4:62:23: 9b:d5:a5:8d:f4:65:a7:50:9c:9f:a9:82:b0:4b:d6: 66:15:3d:9f:ed:39:96:aa:79:55:0d:49:0a:49:a7: c8:65:d8:d7:c9:63:bc:d8:8f:a1:01:42:40:6d:5c: d2:d6:b6:0e:2d:bd:1f:03:4a:3c:92:ca:6d:1e:3c: 8c:55:93:57:7c:60:92:f0:88:94:30:12:41:ba:50: 7d:8f:2f:9d:d2:2a:44:01:02:fb:50:1c:9e:8f:64: ab:fa:cd:fc:99:95:04:e8:af:2c:3a:f6:fd:07:64: 27:74:03:de:57:e8:d6:df:1d:96:c1:f5:11:5d:87: a8:c6:67:6a:0a:ab:a9:73:07:5b:d2:ff:65:9c:fd: 48:c6:64:81:72:ad:3f:20:61:df:83:58:9e:c9:41: 1b:94:6d:99:36:86:e9:ad:f9:69:1f:87:cc:ef:b0: e7:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:4A:BF:2B:6E:D1:99:3A:F0:C5:DF:32:F8:CB:15:02:28:BE:33:16 X509v3 Authority Key Identifier: keyid:6E:7F:BA:11:A3:1D:3A:A9:0D:E3:C7:BB:8B:56:D3:CD:06:E6:BE:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bn-6EaMdOqkN48e7i1bTzQbmvnU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/52ef7c-9a36-4362-8e7f-6394214a122c/1/bn-6EaMdOqkN48e7i1bTzQbmvnU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/52ef7c-9a36-4362-8e7f-6394214a122c/1/bn-6EaMdOqkN48e7i1bTzQbmvnU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5a:c0:9f:d2:e0:82:30:a7:e4:b4:7a:db:b5:63:36:c4:0d:96: ab:79:ed:50:dc:52:a8:7e:b1:93:92:7e:67:53:17:5c:f2:6c: f7:7f:9b:f8:3d:32:13:5b:cd:36:2a:91:8e:44:fe:23:dd:7c: 05:16:a1:f7:12:7f:92:46:ec:17:79:37:06:b7:f8:22:8a:e8: 1b:d3:9f:de:79:b3:a3:33:b4:a9:2d:93:dd:a0:b2:26:d9:2d: 53:dd:c2:c7:a2:fa:a6:77:28:8f:df:56:0b:a5:14:0c:74:63: 41:1c:90:b8:b2:3d:01:a4:94:c0:6c:55:61:40:ea:ff:67:3a: b3:18:5b:c4:3e:a1:ca:45:6a:61:2f:92:2a:2e:f5:7d:2c:54: 0c:da:a2:09:4b:6e:60:9a:2b:f6:46:2c:ad:5c:56:80:03:51: 2b:08:6a:0a:53:fc:a9:07:ba:ee:77:17:72:7a:8a:5a:ee:df: ff:5d:cd:b7:ca:aa:bc:32:01:07:49:25:15:8b:19:d0:c3:e9: 9b:0a:dc:d4:fa:62:83:64:f7:95:2f:40:82:d8:f2:b7:32:ea: ed:c0:ff:83:63:d7:17:6e:0b:58:96:54:38:6a:8b:0d:aa:c6: c7:12:ee:82:af:b7:b6:ee:0a:a4:42:3c:3c:de:90:3b:3d:ae: 7a:5a:41:f4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtAXEBiecpSrjq81dZlbyl0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZlN2ZiYTExYTMxZDNhYTkwZGUzYzdiYjhiNTZkM2NkMDZl NmJlNzUwHhcNMjUxMjIxMTAwMjI1WhcNMjUxMjIyMTAwMjI1WjAzMTEwLwYDVQQD EyhmZDRhYmYyYjZlZDE5OTNhZjBjNWRmMzJmOGNiMTUwMjI4YmUzMzE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuhqH0e2dIIDLMf18kXeT4PGGOEi/ RJxmVVMhGzz+XBUAngXy7xZ664IrqDl8b4zF+FqGPLeW3X8Q85fIFquRrYr0ATQi aUVkS+mnU+qoRj3Ds4m78wXEYiOb1aWN9GWnUJyfqYKwS9ZmFT2f7TmWqnlVDUkK SafIZdjXyWO82I+hAUJAbVzS1rYOLb0fA0o8ksptHjyMVZNXfGCS8IiUMBJBulB9 jy+d0ipEAQL7UByej2Sr+s38mZUE6K8sOvb9B2QndAPeV+jW3x2WwfURXYeoxmdq Cqupcwdb0v9lnP1IxmSBcq0/IGHfg1ieyUEblG2ZNobprflpH4fM77DnLQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP1Kvytu0Zk68MXfMvjLFQIovjMWMB8GA1UdIwQY MBaAFG5/uhGjHTqpDePHu4tW080G5r51MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYm4tNkVhTWRPcWtONDhlN2kxYlR6UWJtdm5VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi81MmVmN2MtOWEzNi00MzYyLThlN2Yt NjM5NDIxNGExMjJjLzEvYm4tNkVhTWRPcWtONDhlN2kxYlR6UWJtdm5VLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMi81MmVmN2MtOWEzNi00MzYyLThlN2YtNjM5NDIxNGExMjJj LzEvYm4tNkVhTWRPcWtONDhlN2kxYlR6UWJtdm5VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWsCf0uCC MKfktHrbtWM2xA2Wq3ntUNxSqH6xk5J+Z1MXXPJs93+b+D0yE1vNNiqRjkT+I918 BRah9xJ/kkbsF3k3Brf4IoroG9Of3nmzozO0qS2T3aCyJtktU93Cx6L6pncoj99W C6UUDHRjQRyQuLI9AaSUwGxVYUDq/2c6sxhbxD6hykVqYS+SKi71fSxUDNqiCUtu YJor9kYsrVxWgANRKwhqClP8qQe67ncXcnqKWu7f/13Nt8qqvDIBB0klFYsZ0MPp mwrc1Ppig2T3lS9AgtjytzLq7cD/g2PXF24LWJZUOGqLDarGxxLugq+3tu4KpEI8 PN6QOz2uelpB9A== -----END CERTIFICATE-----Generated at Sun Dec 21 15:37:59 2025 by rpki-client