This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/51885b-5693-4892-a1d4-1a19792a1d26/1/zS0OOdePxiAiVaW0rbVFg9ne3c4.mft File: zS0OOdePxiAiVaW0rbVFg9ne3c4.mft (raw, json) Hash identifier: e4hVUW1BfDsuWD5tFBxZI6DygMltdRLut8RdvcPqMlI= Subject key identifier: 83:DB:BE:8B:01:47:A0:8D:CF:DF:D6:20:B3:71:F1:18:59:4C:DC:AD Authority key identifier: CD:2D:0E:39:D7:8F:C6:20:22:55:A5:B4:AD:B5:45:83:D9:DE:DD:CE Certificate issuer: /CN=cd2d0e39d78fc6202255a5b4adb54583d9deddce Certificate serial: 019B10EEC062635C74114A862FB100AF1856 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zS0OOdePxiAiVaW0rbVFg9ne3c4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/51885b-5693-4892-a1d4-1a19792a1d26/1/zS0OOdePxiAiVaW0rbVFg9ne3c4.mft Manifest number: 0A95 Signing time: Fri 12 Dec 2025 05:00:40 +0000 Manifest this update: Fri 12 Dec 2025 05:00:40 +0000 Manifest next update: Sat 13 Dec 2025 05:00:40 +0000 Files and hashes: 1: 3EEDSMX4c2BQtUFlexj7ViVaNFg.roa (hash: i/HEM5WN4SpMsFYFUufkSvdwrDOTS979dTw2WJmTqxo=) 2: zS0OOdePxiAiVaW0rbVFg9ne3c4.crl (hash: Vz7ZMY96WMfDvmPeHjmQswlJIXxzmoBVKmr/yCfeESc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/51885b-5693-4892-a1d4-1a19792a1d26/1/zS0OOdePxiAiVaW0rbVFg9ne3c4.crl rsync://rpki.ripe.net/repository/DEFAULT/05/51885b-5693-4892-a1d4-1a19792a1d26/1/zS0OOdePxiAiVaW0rbVFg9ne3c4.mft rsync://rpki.ripe.net/repository/DEFAULT/zS0OOdePxiAiVaW0rbVFg9ne3c4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:10:ee:c0:62:63:5c:74:11:4a:86:2f:b1:00:af:18:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cd2d0e39d78fc6202255a5b4adb54583d9deddce Validity Not Before: Dec 12 05:00:40 2025 GMT Not After : Dec 13 05:00:40 2025 GMT Subject: CN=83dbbe8b0147a08dcfdfd620b371f118594cdcad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:44:e4:bd:8b:57:ac:40:18:74:a3:59:49:ca: 5e:8c:61:cf:32:3e:c2:78:9c:35:d8:68:4b:4f:57: d4:ef:10:15:b8:f2:45:d0:c7:62:13:60:90:c5:a4: 6d:37:1a:0a:a4:ab:fe:5c:e5:de:72:6a:9f:10:49: 27:9f:8e:62:9a:55:4b:8e:bd:0c:1b:ab:41:c7:ce: 34:d6:9e:f9:4b:8a:5f:04:96:91:b5:43:50:d0:df: 37:dc:e9:36:1f:1b:a5:b6:ea:49:33:ec:ba:5c:f0: e5:6e:00:ec:98:e2:cf:08:2b:4a:32:0c:2c:2d:8e: 6b:64:ca:f3:25:54:8a:02:76:a2:7f:9d:7e:28:f1: 85:ed:72:c5:18:a0:93:3c:48:58:8f:b6:ab:83:a4: a8:33:fa:3b:fd:90:f0:79:0a:41:89:db:0d:29:58: 49:4a:ba:8c:6a:0b:2f:14:f8:94:5c:d7:82:e0:da: 7c:5d:4f:53:46:1e:08:11:cb:0c:55:3a:0c:0d:58: a8:ae:db:23:ef:e0:b1:40:bc:27:6f:a8:d9:db:aa: 35:8b:e4:6f:d5:99:e1:de:89:48:26:f5:dc:42:8b: 76:2e:da:21:f8:f7:8e:cd:f8:46:a3:40:ec:ef:6c: a2:fd:88:72:a4:8b:1e:ca:db:34:90:1e:ea:3e:cc: cd:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:DB:BE:8B:01:47:A0:8D:CF:DF:D6:20:B3:71:F1:18:59:4C:DC:AD X509v3 Authority Key Identifier: keyid:CD:2D:0E:39:D7:8F:C6:20:22:55:A5:B4:AD:B5:45:83:D9:DE:DD:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zS0OOdePxiAiVaW0rbVFg9ne3c4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/51885b-5693-4892-a1d4-1a19792a1d26/1/zS0OOdePxiAiVaW0rbVFg9ne3c4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/05/51885b-5693-4892-a1d4-1a19792a1d26/1/zS0OOdePxiAiVaW0rbVFg9ne3c4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 52:07:4c:1c:af:23:d1:e3:9d:ad:e6:b8:0a:68:18:dd:d6:39: aa:60:1a:62:0c:56:51:f5:fe:7c:14:bf:fc:f2:22:57:57:a0: d4:8c:6a:f2:4f:e5:ec:96:7b:f9:64:37:f0:c1:15:bb:41:39: 45:dc:e3:1e:28:52:ff:55:39:54:b0:ce:89:72:44:2b:de:cc: 52:ee:89:a8:b8:f0:00:e4:b3:4d:ab:eb:30:c3:3e:ce:bf:66: 09:b3:2f:64:4a:24:0a:56:32:ee:fe:00:b7:f6:d3:d9:cc:53: cb:dd:e5:df:37:fc:9a:f1:af:07:18:b1:a0:fa:9d:9e:ab:b5: ce:fc:d3:6a:b2:d3:98:bf:a1:8c:e8:52:fa:d6:9d:db:d2:d9: f4:78:c2:7f:a0:15:f7:fd:a0:e6:af:4f:2b:ee:1a:72:ce:bf: 25:e2:1b:28:6c:fc:c7:37:6d:d5:8d:3c:68:08:13:e6:ad:f7: ee:f6:21:0e:88:c0:92:8d:7d:d6:f6:9c:01:0d:7c:de:11:34: af:fc:8d:5a:e4:47:94:b1:f6:f5:96:db:72:a2:75:0b:2b:f9: f6:a7:09:2e:a8:79:79:a6:50:61:1f:f6:45:23:1d:84:e9:e4: 7b:af:2d:f3:af:75:23:74:5d:07:7d:10:e2:2e:b7:f0:0b:04: ac:65:fb:55 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsQ7sBiY1x0EUqGL7EArxhWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkMmQwZTM5ZDc4ZmM2MjAyMjU1YTViNGFkYjU0NTgzZDlk ZWRkY2UwHhcNMjUxMjEyMDUwMDQwWhcNMjUxMjEzMDUwMDQwWjAzMTEwLwYDVQQD Eyg4M2RiYmU4YjAxNDdhMDhkY2ZkZmQ2MjBiMzcxZjExODU5NGNkY2FkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4kTkvYtXrEAYdKNZScpejGHPMj7C eJw12GhLT1fU7xAVuPJF0MdiE2CQxaRtNxoKpKv+XOXecmqfEEknn45imlVLjr0M G6tBx8401p75S4pfBJaRtUNQ0N833Ok2HxultupJM+y6XPDlbgDsmOLPCCtKMgws LY5rZMrzJVSKAnaif51+KPGF7XLFGKCTPEhYj7arg6SoM/o7/ZDweQpBidsNKVhJ SrqMagsvFPiUXNeC4Np8XU9TRh4IEcsMVToMDViortsj7+CxQLwnb6jZ26o1i+Rv 1Znh3olIJvXcQot2Ltoh+PeOzfhGo0Ds72yi/YhypIseyts0kB7qPszN/wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIPbvosBR6CNz9/WILNx8RhZTNytMB8GA1UdIwQY MBaAFM0tDjnXj8YgIlWltK21RYPZ3t3OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvelMwT09kZVB4aUFpVmFXMHJiVkZnOW5lM2M0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS81MTg4NWItNTY5My00ODkyLWExZDQt MWExOTc5MmExZDI2LzEvelMwT09kZVB4aUFpVmFXMHJiVkZnOW5lM2M0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNS81MTg4NWItNTY5My00ODkyLWExZDQtMWExOTc5MmExZDI2 LzEvelMwT09kZVB4aUFpVmFXMHJiVkZnOW5lM2M0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUgdMHK8j 0eOdrea4CmgY3dY5qmAaYgxWUfX+fBS//PIiV1eg1Ixq8k/l7JZ7+WQ38MEVu0E5 RdzjHihS/1U5VLDOiXJEK97MUu6JqLjwAOSzTavrMMM+zr9mCbMvZEokClYy7v4A t/bT2cxTy93l3zf8mvGvBxixoPqdnqu1zvzTarLTmL+hjOhS+tad29LZ9HjCf6AV 9/2g5q9PK+4acs6/JeIbKGz8xzdt1Y08aAgT5q337vYhDojAko191vacAQ183hE0 r/yNWuRHlLH29ZbbcqJ1Cyv59qcJLqh5eaZQYR/2RSMdhOnke68t8691I3RdB30Q 4i638AsErGX7VQ== -----END CERTIFICATE-----Generated at Fri Dec 12 08:02:26 2025 by rpki-client