This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/ffc3c6-f64f-4090-8292-e95e2d3d23e0/1/bZOet0q7zSInwhkqoqN-bcuJjlM.mft File: bZOet0q7zSInwhkqoqN-bcuJjlM.mft (raw, json) Hash identifier: ocogRhiOY6duUmFU6Vgez25puSlBeqNAaDP6cfqbT90= Subject key identifier: DA:8F:37:29:1E:D8:5D:99:6A:8E:07:47:68:92:65:00:A1:B5:25:1F Authority key identifier: 6D:93:9E:B7:4A:BB:CD:22:27:C2:19:2A:A2:A3:7E:6D:CB:89:8E:53 Certificate issuer: /CN=6d939eb74abbcd2227c2192aa2a37e6dcb898e53 Certificate serial: 019B262CF92A128C7AE916144EE7CEFA6AA1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bZOet0q7zSInwhkqoqN-bcuJjlM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/ffc3c6-f64f-4090-8292-e95e2d3d23e0/1/bZOet0q7zSInwhkqoqN-bcuJjlM.mft Manifest number: 177C Signing time: Tue 16 Dec 2025 08:00:40 +0000 Manifest this update: Tue 16 Dec 2025 08:00:40 +0000 Manifest next update: Wed 17 Dec 2025 08:00:40 +0000 Files and hashes: 1: O1oreHXoGfE0x_DduepnzXbv1jQ.roa (hash: YJRrGXYLhqb/8S1lAURaXg16hfYVh9EAfo6ckQiEqy0=) 2: bZOet0q7zSInwhkqoqN-bcuJjlM.crl (hash: MwOAa9FMGhwUH+d9KQYLAn76HXD1MeJpXCQvmKh4arQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/ffc3c6-f64f-4090-8292-e95e2d3d23e0/1/bZOet0q7zSInwhkqoqN-bcuJjlM.crl rsync://rpki.ripe.net/repository/DEFAULT/f8/ffc3c6-f64f-4090-8292-e95e2d3d23e0/1/bZOet0q7zSInwhkqoqN-bcuJjlM.mft rsync://rpki.ripe.net/repository/DEFAULT/bZOet0q7zSInwhkqoqN-bcuJjlM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 08:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:26:2c:f9:2a:12:8c:7a:e9:16:14:4e:e7:ce:fa:6a:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6d939eb74abbcd2227c2192aa2a37e6dcb898e53 Validity Not Before: Dec 16 08:00:40 2025 GMT Not After : Dec 17 08:00:40 2025 GMT Subject: CN=da8f37291ed85d996a8e074768926500a1b5251f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:6b:f4:db:17:18:16:d4:e2:0d:e7:3c:d0:1a: 5c:d3:02:10:b5:18:ef:9c:6d:c7:34:49:c0:3e:66: b2:f1:ab:89:02:b0:b0:56:e5:90:f0:53:76:25:54: 8e:32:cc:da:7f:90:ef:20:d6:04:94:de:13:2f:d9: ed:0a:a4:61:8d:e1:a0:80:d0:af:eb:fa:20:ab:4e: 74:f1:e5:22:8a:da:f8:cc:1f:9e:29:1b:78:ab:0e: 6c:33:f7:f2:3a:c6:5f:28:3f:fc:fc:7a:80:2d:34: ac:7b:1d:74:99:0b:90:a9:20:e5:31:24:d2:bc:8e: 81:f0:5d:5f:5c:34:b9:c1:c9:31:f5:5d:b9:3a:ac: 12:3e:f0:c8:a5:07:d5:4d:2c:3b:dc:72:f6:28:2b: 1c:db:54:7b:34:59:d0:3a:c5:4e:f2:19:c2:6d:e2: 27:76:a9:7a:3f:ef:33:1e:a7:5e:50:23:c5:50:78: ef:49:aa:ae:6f:d9:9a:55:db:98:9f:20:9c:44:1e: 72:cb:e9:a1:c5:0f:10:70:c7:03:5b:21:d8:67:5f: ff:99:0d:19:f0:b0:41:ab:2b:e4:4a:e5:ec:05:f4: b9:57:5a:aa:bc:dc:de:61:ae:b1:2a:e6:5d:f2:14: 6d:f7:26:53:b9:3b:08:4b:b4:97:ce:fd:46:71:c5: 18:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:8F:37:29:1E:D8:5D:99:6A:8E:07:47:68:92:65:00:A1:B5:25:1F X509v3 Authority Key Identifier: keyid:6D:93:9E:B7:4A:BB:CD:22:27:C2:19:2A:A2:A3:7E:6D:CB:89:8E:53 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bZOet0q7zSInwhkqoqN-bcuJjlM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/ffc3c6-f64f-4090-8292-e95e2d3d23e0/1/bZOet0q7zSInwhkqoqN-bcuJjlM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/ffc3c6-f64f-4090-8292-e95e2d3d23e0/1/bZOet0q7zSInwhkqoqN-bcuJjlM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 85:32:14:94:06:5a:69:18:7e:59:61:81:3b:6a:4d:0d:aa:cc: 25:1c:41:7b:d2:e0:14:44:c0:5d:cb:6e:45:86:4f:13:54:ee: a0:c4:e8:4a:d7:39:6a:df:f9:ce:94:b2:e4:a0:1c:9b:d8:54: b4:59:0f:be:59:30:fa:dc:d8:46:7e:d7:4e:d2:86:c9:85:34: 8e:51:97:cf:12:5e:ee:29:6f:86:dc:a1:cf:fa:87:c1:77:37: 4f:63:03:62:cd:97:50:1b:10:dd:8f:09:34:33:39:59:dc:b1: 06:11:bd:f5:47:36:7f:98:1d:04:8c:5a:4d:43:46:ad:1a:66: 79:16:75:eb:4f:52:4b:02:2a:6e:f3:97:10:f7:80:49:48:e4: b0:d1:30:05:2c:49:97:0a:a5:30:82:95:e8:22:d2:54:46:79: 88:25:d3:4c:f9:cf:77:60:38:af:38:1e:5f:6d:6f:c0:16:13: f0:7c:0a:95:ba:46:bd:75:9c:57:66:f8:7e:73:d2:bb:7a:61: ea:76:a0:a3:1e:45:68:4a:27:4c:01:8f:42:7c:ac:60:cd:ce: d6:f2:d5:8b:4c:51:71:cf:68:bb:2e:94:dd:38:47:c9:cc:db: ac:d0:b9:1c:7b:c6:5b:e7:c4:4d:98:4c:89:a2:0a:67:a5:7d: 9f:29:07:76 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsmLPkqEox66RYUTufO+mqhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkOTM5ZWI3NGFiYmNkMjIyN2MyMTkyYWEyYTM3ZTZkY2I4 OThlNTMwHhcNMjUxMjE2MDgwMDQwWhcNMjUxMjE3MDgwMDQwWjAzMTEwLwYDVQQD EyhkYThmMzcyOTFlZDg1ZDk5NmE4ZTA3NDc2ODkyNjUwMGExYjUyNTFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsWv02xcYFtTiDec80Bpc0wIQtRjv nG3HNEnAPmay8auJArCwVuWQ8FN2JVSOMszaf5DvINYElN4TL9ntCqRhjeGggNCv 6/ogq0508eUiitr4zB+eKRt4qw5sM/fyOsZfKD/8/HqALTSsex10mQuQqSDlMSTS vI6B8F1fXDS5wckx9V25OqwSPvDIpQfVTSw73HL2KCsc21R7NFnQOsVO8hnCbeIn dql6P+8zHqdeUCPFUHjvSaqub9maVduYnyCcRB5yy+mhxQ8QcMcDWyHYZ1//mQ0Z 8LBBqyvkSuXsBfS5V1qqvNzeYa6xKuZd8hRt9yZTuTsIS7SXzv1GccUYNwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNqPNyke2F2Zao4HR2iSZQChtSUfMB8GA1UdIwQY MBaAFG2TnrdKu80iJ8IZKqKjfm3LiY5TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYlpPZXQwcTd6U0lud2hrcW9xTi1iY3VKamxNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC9mZmMzYzYtZjY0Zi00MDkwLTgyOTIt ZTk1ZTJkM2QyM2UwLzEvYlpPZXQwcTd6U0lud2hrcW9xTi1iY3VKamxNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOC9mZmMzYzYtZjY0Zi00MDkwLTgyOTItZTk1ZTJkM2QyM2Uw LzEvYlpPZXQwcTd6U0lud2hrcW9xTi1iY3VKamxNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhTIUlAZa aRh+WWGBO2pNDarMJRxBe9LgFETAXctuRYZPE1TuoMToStc5at/5zpSy5KAcm9hU tFkPvlkw+tzYRn7XTtKGyYU0jlGXzxJe7ilvhtyhz/qHwXc3T2MDYs2XUBsQ3Y8J NDM5WdyxBhG99Uc2f5gdBIxaTUNGrRpmeRZ1609SSwIqbvOXEPeASUjksNEwBSxJ lwqlMIKV6CLSVEZ5iCXTTPnPd2A4rzgeX21vwBYT8HwKlbpGvXWcV2b4fnPSu3ph 6nagox5FaEonTAGPQnysYM3O1vLVi0xRcc9ouy6U3ThHyczbrNC5HHvGW+fETZhM iaIKZ6V9nykHdg== -----END CERTIFICATE-----Generated at Tue Dec 16 12:47:54 2025 by rpki-client