This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/b30ea1-5bff-4575-84e3-14fb48ed454d/1/B2yh-gAAa6SP7plAIRY6koqhgE4.mft File: B2yh-gAAa6SP7plAIRY6koqhgE4.mft (raw, json) Hash identifier: pGYdjZDag+RIh8DTHjaMivQRtpWdGi5N6H3aaZojzBA= Subject key identifier: BE:AF:3C:35:C6:9F:F1:40:2E:62:38:41:73:10:93:8F:38:80:AB:CB Authority key identifier: 07:6C:A1:FA:00:00:6B:A4:8F:EE:99:40:21:16:3A:92:8A:A1:80:4E Certificate issuer: /CN=076ca1fa00006ba48fee994021163a928aa1804e Certificate serial: 019B597788FA8C99BE58F81CA57DD9856167 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B2yh-gAAa6SP7plAIRY6koqhgE4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/b30ea1-5bff-4575-84e3-14fb48ed454d/1/B2yh-gAAa6SP7plAIRY6koqhgE4.mft Manifest number: 58 Signing time: Fri 26 Dec 2025 07:02:44 +0000 Manifest this update: Fri 26 Dec 2025 07:02:44 +0000 Manifest next update: Sat 27 Dec 2025 07:02:44 +0000 Files and hashes: 1: B2yh-gAAa6SP7plAIRY6koqhgE4.crl (hash: Qw44+RxSCqRFd/XwciZr3VOf8z4pY0jwIvbqwTNcjhc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/b30ea1-5bff-4575-84e3-14fb48ed454d/1/B2yh-gAAa6SP7plAIRY6koqhgE4.crl rsync://rpki.ripe.net/repository/DEFAULT/e9/b30ea1-5bff-4575-84e3-14fb48ed454d/1/B2yh-gAAa6SP7plAIRY6koqhgE4.mft rsync://rpki.ripe.net/repository/DEFAULT/B2yh-gAAa6SP7plAIRY6koqhgE4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:77:88:fa:8c:99:be:58:f8:1c:a5:7d:d9:85:61:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=076ca1fa00006ba48fee994021163a928aa1804e Validity Not Before: Dec 26 07:02:44 2025 GMT Not After : Dec 27 07:02:44 2025 GMT Subject: CN=beaf3c35c69ff1402e6238417310938f3880abcb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:4e:69:3e:ec:5b:4e:a2:16:45:68:da:ab:f9: 65:7b:19:c0:ff:95:fa:9e:ca:08:25:e0:6d:f2:b1: b2:dc:3d:a6:94:1e:62:ba:62:c6:cb:ff:17:0b:55: ef:1e:8a:4c:ea:7d:f6:4e:bd:80:fb:e7:b4:2c:02: 25:a1:4c:57:47:5c:4e:71:6a:d9:34:c3:10:09:07: c3:cf:44:be:53:1b:cc:9a:2e:cf:e9:5e:52:78:a3: 7b:04:e6:52:db:9d:c9:35:82:58:d8:51:ec:b1:1f: a2:c6:19:36:1d:98:a2:39:f5:b5:56:16:e3:db:81: 9a:93:8f:eb:32:70:94:52:b1:0f:52:9d:36:ec:4f: 25:b9:ab:ec:57:fa:6d:a9:34:a5:d2:af:1f:ca:15: 8d:27:70:dd:36:ac:1b:5d:c6:dc:96:6b:e3:e2:d4: 38:a8:3d:3e:e4:f7:d7:a3:2e:b0:6b:65:a7:1d:ea: 69:98:08:69:62:fa:38:c9:b3:34:b3:83:14:2f:60: 73:d7:02:fd:83:77:a4:7c:ec:14:ce:d2:f7:db:ea: a9:8e:38:14:c7:97:5c:8d:33:78:f9:59:89:ec:a3: 79:44:a6:87:d3:3f:66:bc:3d:79:0e:ce:e5:d2:d8: b7:04:c2:d2:dc:9f:d3:67:ac:67:69:00:b0:f1:85: 4f:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:AF:3C:35:C6:9F:F1:40:2E:62:38:41:73:10:93:8F:38:80:AB:CB X509v3 Authority Key Identifier: keyid:07:6C:A1:FA:00:00:6B:A4:8F:EE:99:40:21:16:3A:92:8A:A1:80:4E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B2yh-gAAa6SP7plAIRY6koqhgE4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/b30ea1-5bff-4575-84e3-14fb48ed454d/1/B2yh-gAAa6SP7plAIRY6koqhgE4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/b30ea1-5bff-4575-84e3-14fb48ed454d/1/B2yh-gAAa6SP7plAIRY6koqhgE4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bf:24:31:df:c4:ee:0a:1e:cf:92:8d:25:7d:9e:a1:b6:fb:5b: fc:62:7b:9f:75:d5:bf:a9:a6:bc:b7:5d:48:0c:27:30:a4:e7: c1:a3:71:63:28:c2:eb:29:54:5d:5e:85:c5:e3:5d:86:2f:0a: 17:72:f8:60:d0:64:74:84:7a:02:8b:c4:01:d6:a0:a0:2b:d4: d7:49:f4:f0:6e:e6:2c:cf:0a:9a:0a:b9:c2:2e:c4:1d:9a:3b: 66:5c:13:ec:fb:5a:40:fc:d5:3f:d4:e2:6a:48:39:83:f9:db: e2:c2:ea:e3:b6:03:07:80:2f:56:be:29:7d:f0:b2:39:86:d6: 75:b9:cb:2a:f4:95:cb:f5:dc:b4:b8:5d:f3:53:5c:73:0a:74: 25:d5:e9:5d:3e:a2:92:ab:bc:df:71:45:1c:d5:8f:a5:16:8a: 5a:d3:55:af:0b:2a:ae:44:41:7c:74:d8:9e:06:48:e0:ad:e7: 7a:c8:11:06:c1:c2:7b:2a:3d:b6:16:d3:ad:25:f7:cf:c3:2e: eb:e1:90:7a:fa:81:ea:4e:d7:fc:2e:f3:73:78:7b:dd:ea:e9: b6:0c:f5:1b:b9:2c:74:96:ab:c8:da:68:f9:dd:73:14:7c:f9: 22:22:e0:67:c8:7e:50:ec:6b:e6:7a:9d:c5:3c:46:4e:81:75: ae:49:9a:31 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZd4j6jJm+WPgcpX3ZhWFnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA3NmNhMWZhMDAwMDZiYTQ4ZmVlOTk0MDIxMTYzYTkyOGFh MTgwNGUwHhcNMjUxMjI2MDcwMjQ0WhcNMjUxMjI3MDcwMjQ0WjAzMTEwLwYDVQQD EyhiZWFmM2MzNWM2OWZmMTQwMmU2MjM4NDE3MzEwOTM4ZjM4ODBhYmNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA405pPuxbTqIWRWjaq/llexnA/5X6 nsoIJeBt8rGy3D2mlB5iumLGy/8XC1XvHopM6n32Tr2A++e0LAIloUxXR1xOcWrZ NMMQCQfDz0S+UxvMmi7P6V5SeKN7BOZS253JNYJY2FHssR+ixhk2HZiiOfW1Vhbj 24Gak4/rMnCUUrEPUp027E8luavsV/ptqTSl0q8fyhWNJ3DdNqwbXcbclmvj4tQ4 qD0+5PfXoy6wa2WnHeppmAhpYvo4ybM0s4MUL2Bz1wL9g3ekfOwUztL32+qpjjgU x5dcjTN4+VmJ7KN5RKaH0z9mvD15Ds7l0ti3BMLS3J/TZ6xnaQCw8YVPMQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL6vPDXGn/FALmI4QXMQk484gKvLMB8GA1UdIwQY MBaAFAdsofoAAGukj+6ZQCEWOpKKoYBOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQjJ5aC1nQUFhNlNQN3BsQUlSWTZrb3FoZ0U0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS9iMzBlYTEtNWJmZi00NTc1LTg0ZTMt MTRmYjQ4ZWQ0NTRkLzEvQjJ5aC1nQUFhNlNQN3BsQUlSWTZrb3FoZ0U0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOS9iMzBlYTEtNWJmZi00NTc1LTg0ZTMtMTRmYjQ4ZWQ0NTRk LzEvQjJ5aC1nQUFhNlNQN3BsQUlSWTZrb3FoZ0U0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvyQx38Tu Ch7Pko0lfZ6htvtb/GJ7n3XVv6mmvLddSAwnMKTnwaNxYyjC6ylUXV6FxeNdhi8K F3L4YNBkdIR6AovEAdagoCvU10n08G7mLM8Kmgq5wi7EHZo7ZlwT7PtaQPzVP9Ti akg5g/nb4sLq47YDB4AvVr4pffCyOYbWdbnLKvSVy/XctLhd81Nccwp0JdXpXT6i kqu833FFHNWPpRaKWtNVrwsqrkRBfHTYngZI4K3nesgRBsHCeyo9thbTrSX3z8Mu 6+GQevqB6k7X/C7zc3h73erptgz1G7ksdJaryNpo+d1zFHz5IiLgZ8h+UOxr5nqd xTxGToF1rkmaMQ== -----END CERTIFICATE-----Generated at Fri Dec 26 15:43:19 2025 by rpki-client