This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/2c2d33-a367-449b-9c47-171db4690c0a/1/ZmNPFFhuOZzTgC2ciLHmfY3bA6g.mft File: ZmNPFFhuOZzTgC2ciLHmfY3bA6g.mft (raw, json) Hash identifier: d8b4WrifAZ0RvNpN8ll68Fg549n9th+Nx7CTXnGgibc= Subject key identifier: CC:89:45:6A:5A:A7:FC:77:5E:31:D0:42:5C:FE:D0:FE:96:2B:8E:E6 Authority key identifier: 66:63:4F:14:58:6E:39:9C:D3:80:2D:9C:88:B1:E6:7D:8D:DB:03:A8 Certificate issuer: /CN=66634f14586e399cd3802d9c88b1e67d8ddb03a8 Certificate serial: 019B2D0BA3EA25ED5074B7C504DD89BD563C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZmNPFFhuOZzTgC2ciLHmfY3bA6g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/2c2d33-a367-449b-9c47-171db4690c0a/1/ZmNPFFhuOZzTgC2ciLHmfY3bA6g.mft Manifest number: 1781 Signing time: Wed 17 Dec 2025 16:01:36 +0000 Manifest this update: Wed 17 Dec 2025 16:01:36 +0000 Manifest next update: Thu 18 Dec 2025 16:01:36 +0000 Files and hashes: 1: 0eX0y1ByZozFyvqGz0EfmzMn6QQ.roa (hash: 9RKCNhJsqijEbBv8dV32/+CAVglgcAVrqc5Rx6tHl+s=) 2: PrLRWGrkGlOz391B_d1bhvHtRdM.roa (hash: Zq1F0wSxITxrY6z9+vuv+6+JvubiotTrHBEnZAFhoq4=) 3: ZmNPFFhuOZzTgC2ciLHmfY3bA6g.crl (hash: jMZgC4cNzPJZoJIm9GY49CgGa9QVu18wbYMvACT8Xw0=) 4: d-rt9f-dKC8oZEWyOv7rd6kbEo8.roa (hash: K8bXuYuwS4X0pfixId+iunQp5n4hsy6zV6Ye+pRdYtA=) 5: yIea70mz68MEWf7MSufqGinRRfw.roa (hash: C1KZ935qcqSwGSABodTKIPq8sxOye3X7esfEPyg6lGw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/2c2d33-a367-449b-9c47-171db4690c0a/1/ZmNPFFhuOZzTgC2ciLHmfY3bA6g.crl rsync://rpki.ripe.net/repository/DEFAULT/3f/2c2d33-a367-449b-9c47-171db4690c0a/1/ZmNPFFhuOZzTgC2ciLHmfY3bA6g.mft rsync://rpki.ripe.net/repository/DEFAULT/ZmNPFFhuOZzTgC2ciLHmfY3bA6g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 16:01:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2d:0b:a3:ea:25:ed:50:74:b7:c5:04:dd:89:bd:56:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66634f14586e399cd3802d9c88b1e67d8ddb03a8 Validity Not Before: Dec 17 16:01:36 2025 GMT Not After : Dec 18 16:01:36 2025 GMT Subject: CN=cc89456a5aa7fc775e31d0425cfed0fe962b8ee6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:b0:49:23:36:ea:77:44:4a:fd:a7:b7:7e:2d: 5d:e1:1b:e5:ec:60:2a:c7:53:a6:20:22:2a:6b:e1: 7c:7e:4d:0d:c0:1d:4f:a2:2c:19:5a:d6:09:8a:45: d6:7c:d3:28:f6:7c:2d:88:87:af:14:1d:13:20:58: c0:91:f5:80:10:4e:4d:dc:3f:8d:b9:b4:8a:7a:46: d2:8c:04:55:04:0d:d8:59:d7:b2:04:3a:d8:dc:e7: ce:13:f6:d6:85:ec:7c:55:9c:c1:9b:8a:bc:3f:b3: 41:38:24:3d:0c:3a:4d:cf:66:c8:7b:2a:cf:67:77: 6a:0f:e0:d9:b8:1f:d9:63:e8:40:83:2f:cf:07:77: df:af:12:88:0c:fe:b1:23:b2:52:5e:29:45:8f:26: 1b:c3:c6:42:4a:0c:4e:21:d0:e3:99:d4:90:3f:23: e0:56:b6:83:fb:55:5a:71:51:7a:d7:e6:06:f0:58: 0a:29:4e:88:51:a4:ac:59:a4:53:04:12:49:bd:cd: dd:50:e2:79:77:cc:f9:e7:dd:dd:71:c8:37:ed:08: ad:4c:70:5f:82:33:b1:82:b9:3a:ac:59:dd:27:4a: ae:41:14:b4:ef:f0:c1:9b:39:2f:51:84:6b:f5:83: 57:45:f3:70:f5:b8:23:87:7f:a9:49:b0:63:bf:29: 6a:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:89:45:6A:5A:A7:FC:77:5E:31:D0:42:5C:FE:D0:FE:96:2B:8E:E6 X509v3 Authority Key Identifier: keyid:66:63:4F:14:58:6E:39:9C:D3:80:2D:9C:88:B1:E6:7D:8D:DB:03:A8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZmNPFFhuOZzTgC2ciLHmfY3bA6g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/2c2d33-a367-449b-9c47-171db4690c0a/1/ZmNPFFhuOZzTgC2ciLHmfY3bA6g.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/2c2d33-a367-449b-9c47-171db4690c0a/1/ZmNPFFhuOZzTgC2ciLHmfY3bA6g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 33:37:02:b1:4e:85:78:a1:48:ea:7b:78:4b:27:20:19:79:bf: 77:4f:e2:3e:c6:c2:35:09:bf:1c:6a:43:72:d2:08:cb:80:fc: 35:25:72:64:94:1b:fe:00:d4:01:f3:32:b2:bc:8a:3f:08:81: e0:29:87:db:64:d2:f1:59:1f:89:2a:86:39:c2:5d:18:cf:18: 7d:e9:a7:54:94:8a:67:bf:d8:af:f1:2f:b5:64:8a:ed:fc:2c: e8:3d:f1:64:b0:e7:14:cb:c7:9b:ba:c9:1e:20:e3:12:36:e0: ca:20:3c:ea:85:43:6f:95:5b:d0:b2:77:cd:8f:98:f7:6c:83: c1:2b:67:42:f4:0b:12:b2:96:57:31:a9:e3:fb:d3:07:fc:8c: 7d:d9:ea:f1:96:9c:d7:f0:39:79:c6:06:3b:4d:ac:b5:52:88: cb:f4:1d:d0:fe:67:b7:8f:62:c6:3d:af:c9:5d:dc:30:02:85: d6:8b:a4:14:5f:3e:7a:27:94:2d:e5:17:2d:5c:92:ba:41:bf: 83:d8:66:8b:1f:18:15:e1:b4:60:2b:85:e5:2c:78:c8:59:12: 07:ea:25:e6:c8:04:88:99:69:b3:90:ab:65:75:bf:09:61:4f: 6b:e7:17:0e:86:13:14:b7:18:00:97:bc:e6:09:6d:15:18:c6: a2:c4:4b:65 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZstC6PqJe1QdLfFBN2JvVY8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY2NjM0ZjE0NTg2ZTM5OWNkMzgwMmQ5Yzg4YjFlNjdkOGRk YjAzYTgwHhcNMjUxMjE3MTYwMTM2WhcNMjUxMjE4MTYwMTM2WjAzMTEwLwYDVQQD EyhjYzg5NDU2YTVhYTdmYzc3NWUzMWQwNDI1Y2ZlZDBmZTk2MmI4ZWU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnLBJIzbqd0RK/ae3fi1d4Rvl7GAq x1OmICIqa+F8fk0NwB1PoiwZWtYJikXWfNMo9nwtiIevFB0TIFjAkfWAEE5N3D+N ubSKekbSjARVBA3YWdeyBDrY3OfOE/bWhex8VZzBm4q8P7NBOCQ9DDpNz2bIeyrP Z3dqD+DZuB/ZY+hAgy/PB3ffrxKIDP6xI7JSXilFjyYbw8ZCSgxOIdDjmdSQPyPg VraD+1VacVF61+YG8FgKKU6IUaSsWaRTBBJJvc3dUOJ5d8z5593dccg37QitTHBf gjOxgrk6rFndJ0quQRS07/DBmzkvUYRr9YNXRfNw9bgjh3+pSbBjvylqZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMyJRWpap/x3XjHQQlz+0P6WK47mMB8GA1UdIwQY MBaAFGZjTxRYbjmc04AtnIix5n2N2wOoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWm1OUEZGaHVPWnpUZ0MyY2lMSG1mWTNiQTZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi8yYzJkMzMtYTM2Ny00NDliLTljNDct MTcxZGI0NjkwYzBhLzEvWm1OUEZGaHVPWnpUZ0MyY2lMSG1mWTNiQTZnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZi8yYzJkMzMtYTM2Ny00NDliLTljNDctMTcxZGI0NjkwYzBh LzEvWm1OUEZGaHVPWnpUZ0MyY2lMSG1mWTNiQTZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMzcCsU6F eKFI6nt4SycgGXm/d0/iPsbCNQm/HGpDctIIy4D8NSVyZJQb/gDUAfMysryKPwiB 4CmH22TS8VkfiSqGOcJdGM8YfemnVJSKZ7/Yr/EvtWSK7fws6D3xZLDnFMvHm7rJ HiDjEjbgyiA86oVDb5Vb0LJ3zY+Y92yDwStnQvQLErKWVzGp4/vTB/yMfdnq8Zac 1/A5ecYGO02stVKIy/Qd0P5nt49ixj2vyV3cMAKF1oukFF8+eieULeUXLVySukG/ g9hmix8YFeG0YCuF5Sx4yFkSB+ol5sgEiJlps5CrZXW/CWFPa+cXDoYTFLcYAJe8 5gltFRjGosRLZQ== -----END CERTIFICATE-----Generated at Wed Dec 17 23:27:53 2025 by rpki-client