This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.mft File: bf7PoOZpJZXPvqUmYHbo5T79lGE.mft (raw, json) Hash identifier: oe23OW34p+lZkr2UFj5UTY0VYnoZ16d4fCreJhg2spM= Subject key identifier: 90:68:94:7E:86:55:5B:65:CC:B5:25:45:0C:7E:A9:92:49:F8:A1:A0 Authority key identifier: 6D:FE:CF:A0:E6:69:25:95:CF:BE:A5:26:60:76:E8:E5:3E:FD:94:61 Certificate issuer: /CN=6dfecfa0e6692595cfbea5266076e8e53efd9461 Certificate serial: 019B1ACDE2A69738E54BBC806240A5948B81 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bf7PoOZpJZXPvqUmYHbo5T79lGE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.mft Manifest number: 1013 Signing time: Sun 14 Dec 2025 03:00:59 +0000 Manifest this update: Sun 14 Dec 2025 03:00:59 +0000 Manifest next update: Mon 15 Dec 2025 03:00:59 +0000 Files and hashes: 1: 3nKPvfyefhBBthk-LrRdD-jfvW0.roa (hash: 1vR7bznA03xVBTq7D8itXQ6xNZUvjtjklTS5nPcHTr0=) 2: 8JVtNiH742v8cd9f6HB8HsLnHqc.roa (hash: en+F0ICvUKwr0qrq9ILAxUcATJZUAoxaoEpiR8+7A9M=) 3: GzE_PF4lRurN113fXZhaZRzDRYM.roa (hash: b8RRWDnlm3gv9H+fLurnrwDRk5Rn7Ig722jB2SuqPOg=) 4: O1rsJf608w55c6uzax6qELf-V10.roa (hash: eTLBCFWFUORcPgLfQZK3GxMskhs+vxERoSr/SRYqzwQ=) 5: W0ytEpzp3PGLQgQDEe1kmGvhrx8.roa (hash: Rx2fPbh4hFdhpWyNIm7FiwaS49uoStv5r5BjlCfRWrA=) 6: bf7PoOZpJZXPvqUmYHbo5T79lGE.crl (hash: rvqKWeL7rf/nUP0cfKVF4Ay4F5N6C2ClJRAcI3ytO8k=) 7: gnZzs6ma6bupZv_QFfeHC2w5vfs.roa (hash: tmmh6VOJ4XQ6zqxdY06hmFVr0WRGDB+DoX6nJefrwl4=) 8: qdAA7q69Q1-iHrB71QL2uIwgL4w.roa (hash: iSApU3MrBQxUv9YTKIjLYJmrBm6GZCpJuQa46wrbtrQ=) 9: qfLtpL022R2vNSfmfA6qR_jq_6k.roa (hash: 99hvsDHWBX451/OxAu/FvLR5vG5KLyjpmEGTCKGnQ6c=) 10: s5XW1sPa3LVHkVbaHF8KM4lyi3k.roa (hash: kYlioc7r4tkKKuXQwZeSGnhgTGO7wN8mLbsZJSv0XnU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.crl rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.mft rsync://rpki.ripe.net/repository/DEFAULT/bf7PoOZpJZXPvqUmYHbo5T79lGE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1a:cd:e2:a6:97:38:e5:4b:bc:80:62:40:a5:94:8b:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6dfecfa0e6692595cfbea5266076e8e53efd9461 Validity Not Before: Dec 14 03:00:59 2025 GMT Not After : Dec 15 03:00:59 2025 GMT Subject: CN=9068947e86555b65ccb525450c7ea99249f8a1a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:a1:55:f3:db:37:c3:2b:6a:fe:69:a4:ac:0d: 86:86:5b:48:0d:64:fe:20:83:0b:e0:8f:16:88:de: c2:9b:16:90:e7:da:1a:d8:c8:e5:45:4a:41:da:9e: 23:8a:b9:e4:e6:d8:5b:a8:94:25:d9:fe:8c:f3:41: fe:09:43:3b:a2:5b:6c:32:3f:84:52:b8:02:1a:14: 89:8c:33:57:4b:85:dd:7a:6f:c4:c6:4e:f1:4e:bd: 58:bf:76:39:9e:fc:ad:be:7d:2a:19:4d:20:de:32: 8d:ad:84:5d:d4:07:84:0a:de:2b:e9:4b:3e:7c:75: b6:9e:dc:71:2b:76:c2:e2:a2:7c:64:bd:bb:7c:15: c3:02:56:e6:ef:91:fa:ea:04:59:a0:53:9b:92:8a: 3a:00:8e:29:f5:d7:40:52:56:db:63:91:87:cc:7a: 72:c9:92:f4:34:b6:f4:45:7d:84:3a:a8:d6:d2:fc: 45:a6:3d:aa:f6:a7:39:f4:61:f6:8f:a2:3d:7e:39: 22:75:bb:0c:6e:e7:6a:03:62:7a:31:b8:63:2a:2a: a8:f1:8a:67:30:e5:2d:29:df:ee:f0:1c:ec:ad:3b: 72:90:0e:16:56:2b:8f:9d:00:52:9d:80:17:03:40: e4:32:86:e3:04:7c:cd:a5:03:0a:7e:66:d9:5b:33: 37:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:68:94:7E:86:55:5B:65:CC:B5:25:45:0C:7E:A9:92:49:F8:A1:A0 X509v3 Authority Key Identifier: keyid:6D:FE:CF:A0:E6:69:25:95:CF:BE:A5:26:60:76:E8:E5:3E:FD:94:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf7PoOZpJZXPvqUmYHbo5T79lGE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3e:f1:fc:39:f8:83:06:34:da:3e:fb:d0:07:bc:6e:6c:1a:eb: 46:19:1d:fe:a9:df:ab:4e:c7:c5:a1:a0:b6:be:5c:87:77:00: 8c:c3:36:ea:d3:cb:aa:d0:94:25:da:d1:b3:09:51:28:67:8d: 51:fa:92:56:b6:05:be:ce:19:03:63:5c:c0:65:02:b5:af:ad: 7c:aa:5d:a4:41:61:a0:fd:fb:b5:cc:1c:21:3b:6d:de:3c:b3: b7:9b:96:2e:aa:a7:0b:f9:a7:10:1f:f1:d0:11:9a:3a:9f:24: 01:98:36:fc:53:d5:15:bb:ec:49:46:42:aa:d8:b6:39:20:86: e7:15:fd:06:37:c5:85:bc:92:01:9b:98:04:84:d0:f1:ce:f1: ce:9c:ac:38:e4:43:2f:63:f6:ee:21:06:b2:41:aa:1c:34:11: f1:62:45:67:fe:aa:6c:1b:d8:b6:b7:dc:3d:97:29:6a:74:ac: d8:48:87:99:6e:41:80:79:df:cb:0a:c5:61:22:c3:ba:fd:46: 36:14:08:9d:b0:e5:5b:45:4f:a3:28:2d:73:00:c5:97:5c:0e: b6:4d:95:0b:26:e5:81:01:ab:e9:92:f4:eb:55:4b:ff:d0:af: dd:38:56:86:85:c3:b8:b1:f9:e4:4d:88:c6:6c:4e:b3:ce:3a: 8b:73:8c:5b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsazeKmlzjlS7yAYkCllIuBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkZmVjZmEwZTY2OTI1OTVjZmJlYTUyNjYwNzZlOGU1M2Vm ZDk0NjEwHhcNMjUxMjE0MDMwMDU5WhcNMjUxMjE1MDMwMDU5WjAzMTEwLwYDVQQD Eyg5MDY4OTQ3ZTg2NTU1YjY1Y2NiNTI1NDUwYzdlYTk5MjQ5ZjhhMWEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3KFV89s3wytq/mmkrA2GhltIDWT+ IIML4I8WiN7CmxaQ59oa2MjlRUpB2p4jirnk5thbqJQl2f6M80H+CUM7oltsMj+E UrgCGhSJjDNXS4Xdem/Exk7xTr1Yv3Y5nvytvn0qGU0g3jKNrYRd1AeECt4r6Us+ fHW2ntxxK3bC4qJ8ZL27fBXDAlbm75H66gRZoFObkoo6AI4p9ddAUlbbY5GHzHpy yZL0NLb0RX2EOqjW0vxFpj2q9qc59GH2j6I9fjkidbsMbudqA2J6MbhjKiqo8Ypn MOUtKd/u8BzsrTtykA4WViuPnQBSnYAXA0DkMobjBHzNpQMKfmbZWzM36QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJBolH6GVVtlzLUlRQx+qZJJ+KGgMB8GA1UdIwQY MBaAFG3+z6DmaSWVz76lJmB26OU+/ZRhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYmY3UG9PWnBKWlhQdnFVbVlIYm81VDc5bEdFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy9mY2ZlYzctZDZjMy00YjQwLWJhMmMt Zjk4OGQ0OGU1MWU4LzEvYmY3UG9PWnBKWlhQdnFVbVlIYm81VDc5bEdFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNy9mY2ZlYzctZDZjMy00YjQwLWJhMmMtZjk4OGQ0OGU1MWU4 LzEvYmY3UG9PWnBKWlhQdnFVbVlIYm81VDc5bEdFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPvH8OfiD BjTaPvvQB7xubBrrRhkd/qnfq07HxaGgtr5ch3cAjMM26tPLqtCUJdrRswlRKGeN UfqSVrYFvs4ZA2NcwGUCta+tfKpdpEFhoP37tcwcITtt3jyzt5uWLqqnC/mnEB/x 0BGaOp8kAZg2/FPVFbvsSUZCqti2OSCG5xX9BjfFhbySAZuYBITQ8c7xzpysOORD L2P27iEGskGqHDQR8WJFZ/6qbBvYtrfcPZcpanSs2EiHmW5BgHnfywrFYSLDuv1G NhQInbDlW0VPoygtcwDFl1wOtk2VCyblgQGr6ZL061VL/9Cv3ThWhoXDuLH55E2I xmxOs846i3OMWw== -----END CERTIFICATE-----Generated at Sun Dec 14 12:12:38 2025 by rpki-client