This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/91548b-bab5-454c-b60b-19f2a1d16033/1/ZqHRoBeALlxX2ll4VE_FN0A9pzo.mft File: ZqHRoBeALlxX2ll4VE_FN0A9pzo.mft (raw, json) Hash identifier: td4HA+Arm89vkEeQIa5IrJqpOj6489EuaaH450c4e94= Subject key identifier: 51:31:2E:67:07:CD:5F:3A:AE:CD:D7:64:FC:16:DF:79:53:5A:A9:0B Authority key identifier: 66:A1:D1:A0:17:80:2E:5C:57:DA:59:78:54:4F:C5:37:40:3D:A7:3A Certificate issuer: /CN=66a1d1a017802e5c57da5978544fc537403da73a Certificate serial: 019B329EDD78D036647B0C9006CACD83F141 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZqHRoBeALlxX2ll4VE_FN0A9pzo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/91548b-bab5-454c-b60b-19f2a1d16033/1/ZqHRoBeALlxX2ll4VE_FN0A9pzo.mft Manifest number: 0A9B Signing time: Thu 18 Dec 2025 18:00:30 +0000 Manifest this update: Thu 18 Dec 2025 18:00:30 +0000 Manifest next update: Fri 19 Dec 2025 18:00:30 +0000 Files and hashes: 1: ZqHRoBeALlxX2ll4VE_FN0A9pzo.crl (hash: +kT85yDXHkpir7OjKCOOjtfFzk230eA8dFcSam9RFxs=) 2: kKgi-TtCN3ONXzc5dOLgjXmeD4Y.roa (hash: ThrWPeEKYfxXyDvqo92XPXVjCuwCt73viQ6BGTVTHKs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/91548b-bab5-454c-b60b-19f2a1d16033/1/ZqHRoBeALlxX2ll4VE_FN0A9pzo.crl rsync://rpki.ripe.net/repository/DEFAULT/35/91548b-bab5-454c-b60b-19f2a1d16033/1/ZqHRoBeALlxX2ll4VE_FN0A9pzo.mft rsync://rpki.ripe.net/repository/DEFAULT/ZqHRoBeALlxX2ll4VE_FN0A9pzo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 13:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:32:9e:dd:78:d0:36:64:7b:0c:90:06:ca:cd:83:f1:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66a1d1a017802e5c57da5978544fc537403da73a Validity Not Before: Dec 18 18:00:30 2025 GMT Not After : Dec 19 18:00:30 2025 GMT Subject: CN=51312e6707cd5f3aaecdd764fc16df79535aa90b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:d0:7d:0f:eb:14:c1:0e:ea:be:2a:20:48:9a: 92:91:51:47:c4:46:5a:82:a1:fa:c1:54:56:14:a1: f5:65:19:5f:91:5d:32:d2:ec:04:ec:db:8e:71:b7: bd:ce:eb:a5:10:95:6b:a9:45:c5:b9:48:46:8f:48: 31:b6:35:aa:61:0d:c7:02:34:8d:87:28:80:c2:bf: cf:bf:c2:9e:3d:5b:df:d9:f6:79:04:68:fe:a1:74: bf:0c:90:55:4b:bb:af:a0:9d:da:16:c0:6b:ca:c7: c8:d6:64:cc:a0:25:8a:fe:f0:9b:48:b7:ef:92:c3: bb:6c:83:f0:43:c2:01:21:f2:70:5c:8a:17:41:80: 19:c8:ae:5b:6a:dd:b1:51:01:98:62:98:d7:d1:32: 50:ab:f7:e5:39:5a:69:20:e3:3b:e1:4b:f0:51:e4: c2:26:9a:24:e6:d8:57:b4:05:50:ab:a8:7e:aa:ef: 4a:f2:37:1f:30:bf:e5:13:f0:70:d8:34:ac:f9:19: d0:65:c0:1d:35:f7:15:e0:9d:35:0b:75:ae:28:60: 6f:46:1b:89:35:c5:f8:a7:f0:2e:e5:f7:ba:92:aa: c1:5a:14:17:45:af:5c:87:f3:2b:72:ac:1f:b4:ec: 22:a9:b2:96:a3:60:2c:22:e4:24:18:55:21:96:06: b0:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:31:2E:67:07:CD:5F:3A:AE:CD:D7:64:FC:16:DF:79:53:5A:A9:0B X509v3 Authority Key Identifier: keyid:66:A1:D1:A0:17:80:2E:5C:57:DA:59:78:54:4F:C5:37:40:3D:A7:3A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZqHRoBeALlxX2ll4VE_FN0A9pzo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/91548b-bab5-454c-b60b-19f2a1d16033/1/ZqHRoBeALlxX2ll4VE_FN0A9pzo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/91548b-bab5-454c-b60b-19f2a1d16033/1/ZqHRoBeALlxX2ll4VE_FN0A9pzo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 61:9e:2a:52:9d:53:fa:aa:bf:07:04:34:5e:b5:c8:65:d7:69: 42:ca:86:6a:18:9e:4a:04:ea:de:18:ab:5d:32:a7:a9:6d:f1: 2e:2f:22:ff:bc:f6:04:37:1a:44:28:71:f1:57:76:24:4d:4c: 35:0b:83:68:db:a5:e6:39:a3:57:c2:a1:79:f0:13:4c:b1:e2: b5:f0:cd:f7:ad:28:8b:30:ef:22:32:f8:c8:2f:56:0b:11:46: 4b:5e:85:2d:dc:e6:6f:6a:2b:f9:61:4b:56:b7:d8:e7:1b:bf: e2:1e:ae:bd:86:ad:f5:7f:00:58:5b:4b:22:7f:9f:52:d4:30: de:58:14:5a:9e:6f:4c:ae:3e:cc:70:5f:03:79:f4:96:8a:6d: 2e:29:c5:93:d2:15:9e:76:c8:e7:6f:fa:7b:29:2c:30:40:7d: 22:58:c2:cc:9f:da:7e:52:96:6a:42:d0:5b:b4:8e:55:4f:70: b2:75:8e:ca:69:e3:b5:80:5f:23:3b:bd:bd:1a:99:f2:2e:80: 6a:bb:2c:17:cf:15:c0:8d:eb:02:e2:71:a5:8b:92:40:0b:ad: ba:ce:57:ff:60:81:1e:b8:24:db:68:9b:ca:3c:ed:1c:c4:f9: 8b:95:a2:60:68:57:45:df:b4:69:37:4d:6a:3f:28:44:67:08: a8:98:16:3d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsynt140DZkewyQBsrNg/FBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY2YTFkMWEwMTc4MDJlNWM1N2RhNTk3ODU0NGZjNTM3NDAz ZGE3M2EwHhcNMjUxMjE4MTgwMDMwWhcNMjUxMjE5MTgwMDMwWjAzMTEwLwYDVQQD Eyg1MTMxMmU2NzA3Y2Q1ZjNhYWVjZGQ3NjRmYzE2ZGY3OTUzNWFhOTBiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA29B9D+sUwQ7qviogSJqSkVFHxEZa gqH6wVRWFKH1ZRlfkV0y0uwE7NuOcbe9zuulEJVrqUXFuUhGj0gxtjWqYQ3HAjSN hyiAwr/Pv8KePVvf2fZ5BGj+oXS/DJBVS7uvoJ3aFsBrysfI1mTMoCWK/vCbSLfv ksO7bIPwQ8IBIfJwXIoXQYAZyK5bat2xUQGYYpjX0TJQq/flOVppIOM74UvwUeTC Jpok5thXtAVQq6h+qu9K8jcfML/lE/Bw2DSs+RnQZcAdNfcV4J01C3WuKGBvRhuJ NcX4p/Au5fe6kqrBWhQXRa9ch/MrcqwftOwiqbKWo2AsIuQkGFUhlgawvwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFExLmcHzV86rs3XZPwW33lTWqkLMB8GA1UdIwQY MBaAFGah0aAXgC5cV9pZeFRPxTdAPac6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWnFIUm9CZUFMbHhYMmxsNFZFX0ZOMEE5cHpvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS85MTU0OGItYmFiNS00NTRjLWI2MGIt MTlmMmExZDE2MDMzLzEvWnFIUm9CZUFMbHhYMmxsNFZFX0ZOMEE5cHpvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS85MTU0OGItYmFiNS00NTRjLWI2MGItMTlmMmExZDE2MDMz LzEvWnFIUm9CZUFMbHhYMmxsNFZFX0ZOMEE5cHpvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYZ4qUp1T +qq/BwQ0XrXIZddpQsqGahieSgTq3hirXTKnqW3xLi8i/7z2BDcaRChx8Vd2JE1M NQuDaNul5jmjV8KhefATTLHitfDN960oizDvIjL4yC9WCxFGS16FLdzmb2or+WFL VrfY5xu/4h6uvYat9X8AWFtLIn+fUtQw3lgUWp5vTK4+zHBfA3n0loptLinFk9IV nnbI52/6eyksMEB9IljCzJ/aflKWakLQW7SOVU9wsnWOymnjtYBfIzu9vRqZ8i6A arssF88VwI3rAuJxpYuSQAutus5X/2CBHrgk22ibyjztHMT5i5WiYGhXRd+0aTdN aj8oRGcIqJgWPQ== -----END CERTIFICATE-----Generated at Thu Dec 18 22:38:06 2025 by rpki-client