This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft File: Brft72GFhyPErevj7lqJ9wBY1f4.mft (raw, json) Hash identifier: G5FFbD1CtnZOqKqNDMK0/B1Mkq64x7NiNp1x4VqKHfk= Subject key identifier: 0F:41:67:F1:74:EA:8C:F5:51:65:49:3D:23:17:AA:05:DD:51:73:10 Authority key identifier: 06:B7:ED:EF:61:85:87:23:C4:AD:EB:E3:EE:5A:89:F7:00:58:D5:FE Certificate issuer: /CN=06b7edef61858723c4adebe3ee5a89f70058d5fe Certificate serial: 019B390FC204E46056EF3F1BC2D8FDC96C85 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft Manifest number: 1787 Signing time: Sat 20 Dec 2025 00:01:32 +0000 Manifest this update: Sat 20 Dec 2025 00:01:32 +0000 Manifest next update: Sun 21 Dec 2025 00:01:32 +0000 Files and hashes: 1: Brft72GFhyPErevj7lqJ9wBY1f4.crl (hash: ygntycHuJT4C+TcrBDmVRJzDi2s2gFq0mdOtyB3hf8s=) 2: UkP4jKKKyGHBawn8RPGOoI0g86k.roa (hash: t1NCQU9kIDrxSOL+gI05c500j4/UZOaC1oFaRb7Gluw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.crl rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 00:01:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:39:0f:c2:04:e4:60:56:ef:3f:1b:c2:d8:fd:c9:6c:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=06b7edef61858723c4adebe3ee5a89f70058d5fe Validity Not Before: Dec 20 00:01:32 2025 GMT Not After : Dec 21 00:01:32 2025 GMT Subject: CN=0f4167f174ea8cf55165493d2317aa05dd517310 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:9c:47:0d:a8:d7:8f:c6:96:3f:64:ad:f0:cb: f4:9f:a0:4d:2f:13:7d:5d:2e:9c:df:05:94:38:82: 6a:62:23:7c:c3:da:9e:fa:af:51:7b:72:de:87:1b: 57:8b:82:7f:59:17:ab:32:69:65:38:14:9e:2b:75: ae:2d:07:c9:74:d9:49:e5:84:a6:7b:aa:1c:12:d6: 7b:de:26:7e:1a:43:97:52:29:4d:76:b8:af:61:ba: 86:c5:19:9e:77:a2:bd:5c:f2:30:a7:68:06:10:13: 07:b5:73:4b:b8:88:d8:ae:06:7a:a8:31:4f:57:82: ce:0f:5e:6d:6e:06:2e:71:66:84:fb:10:92:00:07: b9:e0:ff:fb:30:b5:87:47:4a:3d:68:5d:3d:5a:99: a3:c5:23:85:3e:26:74:e7:c6:c3:58:fe:14:86:bd: 76:eb:2c:26:b2:7b:5e:eb:df:d8:2c:e0:b0:7e:52: f5:ac:10:47:78:7d:35:0b:d9:b9:93:ed:12:76:c8: 9c:ba:78:28:2f:4a:04:40:09:c8:7f:d5:0c:10:43: 5f:8d:f5:28:15:ae:5f:89:f9:bf:fe:4c:9c:9b:c5: 44:da:0d:51:e0:e8:10:1e:e9:f2:40:5c:f2:dc:5f: 87:ff:24:5b:9d:8f:97:97:54:18:f8:e8:a7:5f:e3: 26:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:41:67:F1:74:EA:8C:F5:51:65:49:3D:23:17:AA:05:DD:51:73:10 X509v3 Authority Key Identifier: keyid:06:B7:ED:EF:61:85:87:23:C4:AD:EB:E3:EE:5A:89:F7:00:58:D5:FE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption db:d2:f0:2b:4b:de:97:f5:ce:42:ff:d3:39:86:5a:c8:29:e8: ca:14:93:b1:72:d4:af:1c:08:9a:7a:85:66:78:0e:c3:10:fe: f3:16:fe:98:6b:a8:b9:2b:fb:e0:29:c9:d6:51:06:0d:cd:01: 3d:e7:5a:bc:f0:de:34:78:97:ca:c5:64:db:5d:7a:6a:92:fc: 57:c9:c4:f3:d5:e2:08:0e:bd:72:a5:69:7e:b6:0c:54:a7:a9: 87:65:10:f1:c6:6e:8a:dc:0d:21:2a:f4:23:38:61:60:28:b0: f7:4b:4e:57:0e:c1:39:d1:59:f4:d5:10:9b:55:76:b4:1d:78: c2:83:b1:f6:66:41:a7:8c:d4:b5:c8:b3:2d:6a:3b:55:d0:ef: 90:c1:e7:60:7c:3f:89:92:d9:0b:93:f8:ad:67:42:76:a2:27: 3b:28:ac:9f:0d:cd:1a:02:11:12:3f:4b:e6:1e:de:78:32:65: 27:7d:3b:12:09:f3:ac:13:96:9c:02:c6:55:2c:83:66:c9:2b: 0b:ee:eb:f7:fa:f6:f7:41:00:03:68:d1:32:1c:91:35:55:b3: 99:a2:74:c8:d6:52:f6:da:98:00:bb:16:71:2c:2b:cf:c3:04: 1e:ed:53:a5:5b:9c:e2:9b:b2:df:0e:8a:01:bf:c8:6e:51:65: 9d:9b:34:bd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs5D8IE5GBW7z8bwtj9yWyFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA2YjdlZGVmNjE4NTg3MjNjNGFkZWJlM2VlNWE4OWY3MDA1 OGQ1ZmUwHhcNMjUxMjIwMDAwMTMyWhcNMjUxMjIxMDAwMTMyWjAzMTEwLwYDVQQD EygwZjQxNjdmMTc0ZWE4Y2Y1NTE2NTQ5M2QyMzE3YWEwNWRkNTE3MzEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxpxHDajXj8aWP2St8Mv0n6BNLxN9 XS6c3wWUOIJqYiN8w9qe+q9Re3LehxtXi4J/WRerMmllOBSeK3WuLQfJdNlJ5YSm e6ocEtZ73iZ+GkOXUilNdrivYbqGxRmed6K9XPIwp2gGEBMHtXNLuIjYrgZ6qDFP V4LOD15tbgYucWaE+xCSAAe54P/7MLWHR0o9aF09WpmjxSOFPiZ058bDWP4Uhr12 6ywmsnte69/YLOCwflL1rBBHeH01C9m5k+0SdsicungoL0oEQAnIf9UMEENfjfUo Fa5fifm//kycm8VE2g1R4OgQHunyQFzy3F+H/yRbnY+Xl1QY+OinX+MmbwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA9BZ/F06oz1UWVJPSMXqgXdUXMQMB8GA1UdIwQY MBaAFAa37e9hhYcjxK3r4+5aifcAWNX+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQnJmdDcyR0ZoeVBFcmV2ajdscUo5d0JZMWY0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi8wMTBjYTEtNWIzMC00YmFmLTgzMWUt ODk1NTFlOGNjZTEyLzEvQnJmdDcyR0ZoeVBFcmV2ajdscUo5d0JZMWY0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZi8wMTBjYTEtNWIzMC00YmFmLTgzMWUtODk1NTFlOGNjZTEy LzEvQnJmdDcyR0ZoeVBFcmV2ajdscUo5d0JZMWY0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA29LwK0ve l/XOQv/TOYZayCnoyhSTsXLUrxwImnqFZngOwxD+8xb+mGuouSv74CnJ1lEGDc0B PedavPDeNHiXysVk2116apL8V8nE89XiCA69cqVpfrYMVKeph2UQ8cZuitwNISr0 IzhhYCiw90tOVw7BOdFZ9NUQm1V2tB14woOx9mZBp4zUtcizLWo7VdDvkMHnYHw/ iZLZC5P4rWdCdqInOyisnw3NGgIREj9L5h7eeDJlJ307EgnzrBOWnALGVSyDZskr C+7r9/r290EAA2jRMhyRNVWzmaJ0yNZS9tqYALsWcSwrz8MEHu1TpVuc4puy3w6K Ab/IblFlnZs0vQ== -----END CERTIFICATE-----Generated at Sat Dec 20 07:40:05 2025 by rpki-client