This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/5bf30d-69eb-41a4-a90d-21b9f12d22f3/1/ZpT1sPq1_tLflTXiqcAp8YfVVAQ.mft File: ZpT1sPq1_tLflTXiqcAp8YfVVAQ.mft (raw, json) Hash identifier: h2aV82UzAWP+Za5uC4LB8uyYgC06c1sCKRok8Z3IAWg= Subject key identifier: 2E:F0:A0:B7:9B:88:7F:3E:4B:F9:EA:6F:98:B9:0B:F8:C7:9D:08:3B Authority key identifier: 66:94:F5:B0:FA:B5:FE:D2:DF:95:35:E2:A9:C0:29:F1:87:D5:54:04 Certificate issuer: /CN=6694f5b0fab5fed2df9535e2a9c029f187d55404 Certificate serial: 019B19163594E3F0691CEF0734C334BF037D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZpT1sPq1_tLflTXiqcAp8YfVVAQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/5bf30d-69eb-41a4-a90d-21b9f12d22f3/1/ZpT1sPq1_tLflTXiqcAp8YfVVAQ.mft Manifest number: 0895 Signing time: Sat 13 Dec 2025 19:00:44 +0000 Manifest this update: Sat 13 Dec 2025 19:00:44 +0000 Manifest next update: Sun 14 Dec 2025 19:00:44 +0000 Files and hashes: 1: 1s99Tw3afz1xnVyZeR8lNzEPEk8.roa (hash: b6Tn8In4pLbU3Aif4BcpGyzCXnOKH3eVjkyvFPcCx0s=) 2: ZpT1sPq1_tLflTXiqcAp8YfVVAQ.crl (hash: RKYOHVHM1kBDZUajkxTtWUDyyqZkKMHSp9jurDVY0xo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/5bf30d-69eb-41a4-a90d-21b9f12d22f3/1/ZpT1sPq1_tLflTXiqcAp8YfVVAQ.crl rsync://rpki.ripe.net/repository/DEFAULT/02/5bf30d-69eb-41a4-a90d-21b9f12d22f3/1/ZpT1sPq1_tLflTXiqcAp8YfVVAQ.mft rsync://rpki.ripe.net/repository/DEFAULT/ZpT1sPq1_tLflTXiqcAp8YfVVAQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 17:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:19:16:35:94:e3:f0:69:1c:ef:07:34:c3:34:bf:03:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6694f5b0fab5fed2df9535e2a9c029f187d55404 Validity Not Before: Dec 13 19:00:44 2025 GMT Not After : Dec 14 19:00:44 2025 GMT Subject: CN=2ef0a0b79b887f3e4bf9ea6f98b90bf8c79d083b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:3f:2d:fd:92:46:75:f0:40:b4:fe:cd:68:03: 5d:a1:8d:6a:d4:6b:24:1a:a1:43:5a:e7:03:ec:a6: 4e:02:79:81:64:7f:fe:7a:79:d8:87:62:03:f8:91: 11:80:6e:78:3a:a8:a5:1e:f8:40:c9:73:a3:1e:58: ee:40:22:6a:82:24:d9:82:f4:b7:43:13:92:ad:e8: f7:15:5f:0f:f4:4d:9e:d0:0e:25:69:9e:a8:dc:2b: b7:99:58:2f:f7:d4:0d:43:7e:e9:18:b7:e4:4b:82: 1e:cf:9f:f0:fe:e3:17:11:32:d5:e5:49:04:cf:c7: 0b:20:b0:e4:51:e8:13:ae:b6:8a:87:ac:ce:46:f8: 4a:80:ed:33:da:36:0a:7b:90:ce:6d:7f:22:15:93: 2c:45:8b:d4:cc:04:ba:04:4a:55:d4:e5:dd:61:ab: 20:e7:64:c2:36:2a:d3:b9:8f:53:21:86:83:0c:e0: 33:81:a5:4d:d9:34:eb:d2:bd:81:4d:35:8a:c3:5c: c5:32:0e:bd:42:9a:89:b7:1e:25:ac:34:1f:18:0b: 64:17:a1:01:19:b7:36:a9:31:92:32:8c:10:e9:8c: 67:00:17:b9:7a:be:45:14:81:ed:36:d2:11:93:91: 13:d1:fc:cc:8f:91:ec:a0:78:d6:5e:0d:2b:d3:d8: 0d:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:F0:A0:B7:9B:88:7F:3E:4B:F9:EA:6F:98:B9:0B:F8:C7:9D:08:3B X509v3 Authority Key Identifier: keyid:66:94:F5:B0:FA:B5:FE:D2:DF:95:35:E2:A9:C0:29:F1:87:D5:54:04 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZpT1sPq1_tLflTXiqcAp8YfVVAQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/5bf30d-69eb-41a4-a90d-21b9f12d22f3/1/ZpT1sPq1_tLflTXiqcAp8YfVVAQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/5bf30d-69eb-41a4-a90d-21b9f12d22f3/1/ZpT1sPq1_tLflTXiqcAp8YfVVAQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:c4:11:5e:31:3a:8a:4b:82:f7:d1:de:4b:d9:e1:e9:2b:24: 32:5d:eb:d3:c5:56:72:18:ba:64:61:55:b6:32:eb:81:7b:e0: a0:a0:73:9f:28:d6:81:33:14:5b:79:f5:c1:bc:59:d8:5b:ce: e6:80:26:ba:c7:29:b3:52:a7:a7:94:96:9b:27:c3:db:87:a9: 68:be:1e:bb:b9:96:40:05:79:0c:45:7c:a1:18:09:00:3d:1d: 8d:8f:46:c9:fd:ed:d7:3b:53:ce:4c:be:0b:73:c9:d2:cf:dd: 2f:bd:4f:00:9b:1c:c3:86:85:2d:86:8b:ac:3b:00:5d:86:c4: f9:07:8c:46:22:ab:2e:1d:49:17:c8:b8:af:60:18:57:80:66: 47:05:d0:f9:9c:31:78:40:86:dd:e6:46:ad:06:92:7c:e3:cc: 27:28:4e:12:e0:64:61:17:07:46:ed:d8:16:6c:5d:f7:50:c5: 5d:b5:90:a1:05:fe:07:5c:fc:14:bb:bf:fc:bd:bd:b7:2c:b3: 22:52:2a:40:25:b5:f9:15:85:09:07:85:c6:a9:5c:9f:8e:6a: c2:e6:6d:73:f6:9d:02:77:77:36:7a:be:8b:ad:f5:b9:09:56: 0a:05:24:88:3a:91:9e:59:ba:58:51:2e:cd:59:33:ca:4d:2c: 04:2f:bb:db -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsZFjWU4/BpHO8HNMM0vwN9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY2OTRmNWIwZmFiNWZlZDJkZjk1MzVlMmE5YzAyOWYxODdk NTU0MDQwHhcNMjUxMjEzMTkwMDQ0WhcNMjUxMjE0MTkwMDQ0WjAzMTEwLwYDVQQD EygyZWYwYTBiNzliODg3ZjNlNGJmOWVhNmY5OGI5MGJmOGM3OWQwODNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArT8t/ZJGdfBAtP7NaANdoY1q1Gsk GqFDWucD7KZOAnmBZH/+ennYh2ID+JERgG54OqilHvhAyXOjHljuQCJqgiTZgvS3 QxOSrej3FV8P9E2e0A4laZ6o3Cu3mVgv99QNQ37pGLfkS4Iez5/w/uMXETLV5UkE z8cLILDkUegTrraKh6zORvhKgO0z2jYKe5DObX8iFZMsRYvUzAS6BEpV1OXdYasg 52TCNirTuY9TIYaDDOAzgaVN2TTr0r2BTTWKw1zFMg69QpqJtx4lrDQfGAtkF6EB Gbc2qTGSMowQ6YxnABe5er5FFIHtNtIRk5ET0fzMj5HsoHjWXg0r09gNzQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC7woLebiH8+S/nqb5i5C/jHnQg7MB8GA1UdIwQY MBaAFGaU9bD6tf7S35U14qnAKfGH1VQEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWnBUMXNQcTFfdExmbFRYaXFjQXA4WWZWVkFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi81YmYzMGQtNjllYi00MWE0LWE5MGQt MjFiOWYxMmQyMmYzLzEvWnBUMXNQcTFfdExmbFRYaXFjQXA4WWZWVkFRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi81YmYzMGQtNjllYi00MWE0LWE5MGQtMjFiOWYxMmQyMmYz LzEvWnBUMXNQcTFfdExmbFRYaXFjQXA4WWZWVkFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVsQRXjE6 ikuC99HeS9nh6SskMl3r08VWchi6ZGFVtjLrgXvgoKBznyjWgTMUW3n1wbxZ2FvO 5oAmuscps1Knp5SWmyfD24epaL4eu7mWQAV5DEV8oRgJAD0djY9Gyf3t1ztTzky+ C3PJ0s/dL71PAJscw4aFLYaLrDsAXYbE+QeMRiKrLh1JF8i4r2AYV4BmRwXQ+Zwx eECG3eZGrQaSfOPMJyhOEuBkYRcHRu3YFmxd91DFXbWQoQX+B1z8FLu//L29tyyz IlIqQCW1+RWFCQeFxqlcn45qwuZtc/adAnd3Nnq+i631uQlWCgUkiDqRnlm6WFEu zVkzyk0sBC+72w== -----END CERTIFICATE-----Generated at Sun Dec 14 03:32:21 2025 by rpki-client