This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/0d006d-ab7a-41c9-97f3-995c369da672/1/skz59tA09Gdg9PWbFzneEnuK3_M.mft File: skz59tA09Gdg9PWbFzneEnuK3_M.mft (raw, json) Hash identifier: 2iGag9oLpZ8oD29+vDCJK/Rmu0w6SYIhmZ7/TnhSIgU= Subject key identifier: E3:5A:E5:2E:B6:C3:F0:91:2A:DE:E9:F9:E1:AB:97:BD:2D:FA:0D:04 Authority key identifier: B2:4C:F9:F6:D0:34:F4:67:60:F4:F5:9B:17:39:DE:12:7B:8A:DF:F3 Certificate issuer: /CN=b24cf9f6d034f46760f4f59b1739de127b8adff3 Certificate serial: 019B597719E5845BD387FBB96AAC8E1C05F1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/skz59tA09Gdg9PWbFzneEnuK3_M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/0d006d-ab7a-41c9-97f3-995c369da672/1/skz59tA09Gdg9PWbFzneEnuK3_M.mft Manifest number: 0C7B Signing time: Fri 26 Dec 2025 07:02:16 +0000 Manifest this update: Fri 26 Dec 2025 07:02:16 +0000 Manifest next update: Sat 27 Dec 2025 07:02:16 +0000 Files and hashes: 1: Y5LyyYUOXTFEg08dRczspK_kl2Y.roa (hash: ttMluHxYVIHmrZ73+Be4i0HFe1udkGlrlxsl6kstfvI=) 2: skz59tA09Gdg9PWbFzneEnuK3_M.crl (hash: MJQWhf1cGCcr/YAFwSicu8ilm94ifSaLKuVEJBLGctc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/0d006d-ab7a-41c9-97f3-995c369da672/1/skz59tA09Gdg9PWbFzneEnuK3_M.crl rsync://rpki.ripe.net/repository/DEFAULT/12/0d006d-ab7a-41c9-97f3-995c369da672/1/skz59tA09Gdg9PWbFzneEnuK3_M.mft rsync://rpki.ripe.net/repository/DEFAULT/skz59tA09Gdg9PWbFzneEnuK3_M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:77:19:e5:84:5b:d3:87:fb:b9:6a:ac:8e:1c:05:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b24cf9f6d034f46760f4f59b1739de127b8adff3 Validity Not Before: Dec 26 07:02:16 2025 GMT Not After : Dec 27 07:02:16 2025 GMT Subject: CN=e35ae52eb6c3f0912adee9f9e1ab97bd2dfa0d04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:29:91:e1:f7:8e:96:5c:77:54:31:39:6a:e6: 1f:81:d8:7a:f1:d0:84:7a:37:74:2f:fa:6f:ea:d8: 61:17:59:ff:f0:b0:52:91:0c:6a:88:81:7c:69:35: c4:51:77:fa:25:d2:c0:08:1d:83:b2:17:64:b4:32: 4b:8b:38:f6:64:9f:7b:8b:a4:3c:c3:18:fb:3a:73: 08:5a:43:15:c0:2c:49:44:d1:8d:68:e4:86:e8:e2: 7d:6a:6c:7f:47:10:85:c7:9e:4b:80:10:5d:bc:0c: 5d:0a:9d:49:4c:6d:f4:13:7c:f0:c6:6e:8f:71:3b: fb:3d:bb:b3:7d:01:88:d3:3b:93:87:53:93:0a:f5: 68:03:f8:3f:48:a8:00:66:57:2e:bb:f6:2c:27:38: 4b:19:c6:03:f4:7c:21:bf:06:0b:e7:ab:c9:c8:a9: e1:bf:51:47:0b:dc:22:2f:51:86:5f:d6:d5:5b:26: 69:30:31:01:05:ab:83:5d:87:67:b0:b3:9e:44:12: e1:1a:48:03:39:b1:eb:ac:46:5b:15:61:ec:e7:ab: a6:cd:c8:34:d8:9e:0f:04:d2:71:c0:22:da:34:00: e8:87:7c:ba:60:18:72:9c:9c:89:c6:2c:5f:63:18: 0b:28:6c:dc:93:f5:f9:91:f3:43:03:0b:c5:55:b1: 24:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:5A:E5:2E:B6:C3:F0:91:2A:DE:E9:F9:E1:AB:97:BD:2D:FA:0D:04 X509v3 Authority Key Identifier: keyid:B2:4C:F9:F6:D0:34:F4:67:60:F4:F5:9B:17:39:DE:12:7B:8A:DF:F3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/skz59tA09Gdg9PWbFzneEnuK3_M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/0d006d-ab7a-41c9-97f3-995c369da672/1/skz59tA09Gdg9PWbFzneEnuK3_M.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/0d006d-ab7a-41c9-97f3-995c369da672/1/skz59tA09Gdg9PWbFzneEnuK3_M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:92:d5:01:b7:bc:74:ff:12:31:c1:c3:85:1f:bc:d9:89:03: 39:28:08:32:55:22:b0:8f:a5:0d:ec:23:65:8e:a5:86:27:c6: 03:64:10:1c:ad:8a:63:1d:48:39:23:c4:48:4f:23:84:3d:bc: 11:07:7f:da:00:8d:c9:d4:58:59:e8:ad:8b:55:3b:d7:3e:fc: e1:3f:96:6a:de:41:a3:14:3e:d0:e9:a5:60:2e:67:35:c1:92: 0c:54:46:2a:50:62:56:b2:43:21:d5:ff:3b:c6:19:f3:e9:0f: 79:98:3c:f1:4f:62:c8:af:cb:26:3d:1a:b3:a1:04:a8:3a:24: fa:b9:07:61:9f:56:c6:8a:0e:65:cf:04:b9:13:e3:31:18:ed: ee:76:57:93:e4:0a:be:e3:07:69:c5:d9:69:06:a8:1e:56:38: 92:e3:89:af:b6:ec:e3:ea:dd:1b:14:f8:a0:2b:d2:e4:1e:a9: 5c:aa:f7:07:62:22:77:f8:32:39:c1:08:a6:a4:95:ec:b1:d6: b8:d7:09:72:6b:a3:77:01:cf:6d:b9:60:d0:7d:6b:d1:db:50: 93:da:9c:91:3c:ee:c6:ac:67:9d:f8:0d:d7:5f:9a:24:62:9c: 18:64:a6:c0:74:fb:f5:4e:bc:30:6c:c3:9f:3e:9a:c9:5e:87: 47:52:05:74 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZdxnlhFvTh/u5aqyOHAXxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyNGNmOWY2ZDAzNGY0Njc2MGY0ZjU5YjE3MzlkZTEyN2I4 YWRmZjMwHhcNMjUxMjI2MDcwMjE2WhcNMjUxMjI3MDcwMjE2WjAzMTEwLwYDVQQD EyhlMzVhZTUyZWI2YzNmMDkxMmFkZWU5ZjllMWFiOTdiZDJkZmEwZDA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuCmR4feOllx3VDE5auYfgdh68dCE ejd0L/pv6thhF1n/8LBSkQxqiIF8aTXEUXf6JdLACB2DshdktDJLizj2ZJ97i6Q8 wxj7OnMIWkMVwCxJRNGNaOSG6OJ9amx/RxCFx55LgBBdvAxdCp1JTG30E3zwxm6P cTv7PbuzfQGI0zuTh1OTCvVoA/g/SKgAZlcuu/YsJzhLGcYD9HwhvwYL56vJyKnh v1FHC9wiL1GGX9bVWyZpMDEBBauDXYdnsLOeRBLhGkgDObHrrEZbFWHs56umzcg0 2J4PBNJxwCLaNADoh3y6YBhynJyJxixfYxgLKGzck/X5kfNDAwvFVbEkVwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFONa5S62w/CRKt7p+eGrl70t+g0EMB8GA1UdIwQY MBaAFLJM+fbQNPRnYPT1mxc53hJ7it/zMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2t6NTl0QTA5R2RnOVBXYkZ6bmVFbnVLM19NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi8wZDAwNmQtYWI3YS00MWM5LTk3ZjMt OTk1YzM2OWRhNjcyLzEvc2t6NTl0QTA5R2RnOVBXYkZ6bmVFbnVLM19NLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi8wZDAwNmQtYWI3YS00MWM5LTk3ZjMtOTk1YzM2OWRhNjcy LzEvc2t6NTl0QTA5R2RnOVBXYkZ6bmVFbnVLM19NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX5LVAbe8 dP8SMcHDhR+82YkDOSgIMlUisI+lDewjZY6lhifGA2QQHK2KYx1IOSPESE8jhD28 EQd/2gCNydRYWeiti1U71z784T+Wat5BoxQ+0OmlYC5nNcGSDFRGKlBiVrJDIdX/ O8YZ8+kPeZg88U9iyK/LJj0as6EEqDok+rkHYZ9WxooOZc8EuRPjMRjt7nZXk+QK vuMHacXZaQaoHlY4kuOJr7bs4+rdGxT4oCvS5B6pXKr3B2Iid/gyOcEIpqSV7LHW uNcJcmujdwHPbblg0H1r0dtQk9qckTzuxqxnnfgN11+aJGKcGGSmwHT79U68MGzD nz6ayV6HR1IFdA== -----END CERTIFICATE-----Generated at Fri Dec 26 14:18:26 2025 by rpki-client