This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/0f24dd-ef4a-4dbf-b20d-b039c24b99ca/1/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.mft File: ZK7IAkyqEDqEEmlsfnL3eAPNhpU.mft (raw, json) Hash identifier: ZrdSEbCXAxlo4hZyoikkb5pC0pMpwx6c3KC8nNoh37Y= Subject key identifier: 43:E1:04:69:26:83:45:28:ED:71:80:DA:B2:FE:77:FA:3E:80:6F:20 Authority key identifier: 64:AE:C8:02:4C:AA:10:3A:84:12:69:6C:7E:72:F7:78:03:CD:86:95 Certificate issuer: /CN=64aec8024caa103a8412696c7e72f77803cd8695 Certificate serial: 019B36B2AD3A2C8749ECE0284D27489E34E5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/0f24dd-ef4a-4dbf-b20d-b039c24b99ca/1/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.mft Manifest number: 11C5 Signing time: Fri 19 Dec 2025 13:00:37 +0000 Manifest this update: Fri 19 Dec 2025 13:00:37 +0000 Manifest next update: Sat 20 Dec 2025 13:00:37 +0000 Files and hashes: 1: ZK7IAkyqEDqEEmlsfnL3eAPNhpU.crl (hash: EbbeWCiX/7Ae3HF9cxsgvypWAkxW0zOnbFM2V+Cx8x0=) 2: jPXJlh-t4_XYR3J0eKKhQRTzmMQ.roa (hash: LCBAN0N7xGJeaqTX5AAQMXZtcLuwBKPNcwcKiOcd8Dc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/0f24dd-ef4a-4dbf-b20d-b039c24b99ca/1/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.crl rsync://rpki.ripe.net/repository/DEFAULT/11/0f24dd-ef4a-4dbf-b20d-b039c24b99ca/1/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.mft rsync://rpki.ripe.net/repository/DEFAULT/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 07:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:36:b2:ad:3a:2c:87:49:ec:e0:28:4d:27:48:9e:34:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=64aec8024caa103a8412696c7e72f77803cd8695 Validity Not Before: Dec 19 13:00:37 2025 GMT Not After : Dec 20 13:00:37 2025 GMT Subject: CN=43e1046926834528ed7180dab2fe77fa3e806f20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ec:0e:27:3b:6b:19:d0:fe:9d:41:e2:dd:e0: aa:a0:4f:ea:53:a2:a7:43:94:9f:e8:67:e3:1a:31: be:90:6c:dc:aa:08:f5:77:38:52:d0:fe:3d:ed:4f: 6b:c2:e1:23:2b:b4:45:7e:7e:80:50:d7:5b:d9:43: 16:68:4b:b3:1c:d5:05:10:5c:c2:68:c2:a4:a5:72: 59:ed:d0:74:f4:02:92:20:1d:d7:0d:0f:2e:01:8e: 0b:c2:bc:08:6b:05:fc:bf:52:1e:f7:71:de:95:c3: 23:96:9a:7a:46:93:16:43:c8:2a:c7:ae:31:ad:98: 1e:82:60:55:4f:99:06:3d:6c:4b:2d:af:e4:61:28: 26:de:f5:a4:42:28:b9:9b:d2:dd:06:2a:f4:c0:a1: f3:88:2d:a1:26:08:7a:6a:a8:d0:aa:d8:61:07:ac: e9:da:f4:2f:d9:5c:24:12:6b:4d:e9:43:27:dc:e5: 4f:40:d2:05:7f:40:1e:06:a0:98:50:99:d0:a8:8e: 0f:56:76:c0:b3:27:0f:17:62:74:10:73:2c:78:4f: 22:05:69:93:ec:7d:82:2e:f4:de:ed:a6:9b:27:22: 73:f4:26:e7:6a:1d:07:72:01:40:87:2d:7b:70:79: 42:27:1f:32:4a:de:02:57:bc:63:4b:9f:0d:9a:b4: d6:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:E1:04:69:26:83:45:28:ED:71:80:DA:B2:FE:77:FA:3E:80:6F:20 X509v3 Authority Key Identifier: keyid:64:AE:C8:02:4C:AA:10:3A:84:12:69:6C:7E:72:F7:78:03:CD:86:95 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/0f24dd-ef4a-4dbf-b20d-b039c24b99ca/1/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/0f24dd-ef4a-4dbf-b20d-b039c24b99ca/1/ZK7IAkyqEDqEEmlsfnL3eAPNhpU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 05:4f:e9:a5:5b:82:de:f4:54:d0:f6:43:93:4c:af:a4:eb:35: 3b:80:3d:c7:c9:f8:96:93:f6:b6:33:06:4e:5f:89:60:6e:1d: bc:75:2d:7b:3a:4c:06:2c:1c:63:f9:28:de:cd:16:db:54:ca: 73:67:99:5b:56:31:16:ca:0b:be:a0:22:eb:ff:fd:ec:89:b4: 72:8b:ef:e9:1b:7f:b0:09:fd:bf:56:fe:24:c9:d6:73:df:b8: 19:6b:18:c2:a6:0a:3c:6a:c0:52:80:90:e7:07:f3:cc:6b:24: b2:1e:fb:4f:93:e1:59:2f:d1:cb:c9:4f:ce:ec:04:98:ba:ee: 8c:b0:31:d6:12:4a:2b:06:22:ee:66:fa:5e:c8:09:b6:76:c3: e5:21:ee:6d:a0:7a:d9:4c:26:83:e0:c4:10:99:54:29:8b:d9: c9:47:ae:d6:92:9f:cc:ac:c2:e9:d4:b3:72:14:ef:05:33:f3: 59:d4:27:df:26:6c:48:14:f4:54:c8:9c:7a:ad:0d:7e:6b:98: 0d:b1:27:37:de:d0:a7:4c:78:ba:7a:cf:7a:b5:7b:d7:c0:f8: 55:82:2f:d5:f6:f4:a3:c0:53:e6:d3:d5:5a:14:ea:30:15:ac: 3c:2c:2c:d5:0d:35:99:fd:0f:7d:55:f3:b0:2e:cc:d2:61:39: 4f:68:9e:f0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs2sq06LIdJ7OAoTSdInjTlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY0YWVjODAyNGNhYTEwM2E4NDEyNjk2YzdlNzJmNzc4MDNj ZDg2OTUwHhcNMjUxMjE5MTMwMDM3WhcNMjUxMjIwMTMwMDM3WjAzMTEwLwYDVQQD Eyg0M2UxMDQ2OTI2ODM0NTI4ZWQ3MTgwZGFiMmZlNzdmYTNlODA2ZjIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu+wOJztrGdD+nUHi3eCqoE/qU6Kn Q5Sf6GfjGjG+kGzcqgj1dzhS0P497U9rwuEjK7RFfn6AUNdb2UMWaEuzHNUFEFzC aMKkpXJZ7dB09AKSIB3XDQ8uAY4LwrwIawX8v1Ie93HelcMjlpp6RpMWQ8gqx64x rZgegmBVT5kGPWxLLa/kYSgm3vWkQii5m9LdBir0wKHziC2hJgh6aqjQqthhB6zp 2vQv2VwkEmtN6UMn3OVPQNIFf0AeBqCYUJnQqI4PVnbAsycPF2J0EHMseE8iBWmT 7H2CLvTe7aabJyJz9Cbnah0HcgFAhy17cHlCJx8ySt4CV7xjS58NmrTWNQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEPhBGkmg0Uo7XGA2rL+d/o+gG8gMB8GA1UdIwQY MBaAFGSuyAJMqhA6hBJpbH5y93gDzYaVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWks3SUFreXFFRHFFRW1sc2ZuTDNlQVBOaHBVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS8wZjI0ZGQtZWY0YS00ZGJmLWIyMGQt YjAzOWMyNGI5OWNhLzEvWks3SUFreXFFRHFFRW1sc2ZuTDNlQVBOaHBVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS8wZjI0ZGQtZWY0YS00ZGJmLWIyMGQtYjAzOWMyNGI5OWNh LzEvWks3SUFreXFFRHFFRW1sc2ZuTDNlQVBOaHBVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABU/ppVuC 3vRU0PZDk0yvpOs1O4A9x8n4lpP2tjMGTl+JYG4dvHUtezpMBiwcY/ko3s0W21TK c2eZW1YxFsoLvqAi6//97Im0covv6Rt/sAn9v1b+JMnWc9+4GWsYwqYKPGrAUoCQ 5wfzzGsksh77T5PhWS/Ry8lPzuwEmLrujLAx1hJKKwYi7mb6XsgJtnbD5SHubaB6 2Uwmg+DEEJlUKYvZyUeu1pKfzKzC6dSzchTvBTPzWdQn3yZsSBT0VMiceq0NfmuY DbEnN97Qp0x4unrPerV718D4VYIv1fb0o8BT5tPVWhTqMBWsPCws1Q01mf0PfVXz sC7M0mE5T2ie8A== -----END CERTIFICATE-----Generated at Fri Dec 19 15:28:04 2025 by rpki-client