This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft File: ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft (raw, json) Hash identifier: 0KccGJRDDjiVDh0ATyro9EiK1G9GHI2Id9zgqZmQR0w= Subject key identifier: 19:96:D3:52:FF:FC:35:E1:A5:E8:83:39:26:24:A8:97:16:D1:16:71 Authority key identifier: 66:08:99:13:33:29:FA:A5:B5:71:6B:1C:95:FB:AF:93:02:1F:BC:61 Certificate issuer: /CN=660899133329faa5b5716b1c95fbaf93021fbc61 Certificate serial: 019B0FA5CDDF6F819865B89239A8CB10905A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft Manifest number: 0E55 Signing time: Thu 11 Dec 2025 23:01:22 +0000 Manifest this update: Thu 11 Dec 2025 23:01:22 +0000 Manifest next update: Fri 12 Dec 2025 23:01:22 +0000 Files and hashes: 1: RA9kR943QDfswVQ2De2E5cFSYaU.roa (hash: jCT5nXHXTc0Nn3QbV8+Qje22n9CHMzdTyZ/tDlKS5Ck=) 2: ZgiZEzMp-qW1cWsclfuvkwIfvGE.crl (hash: syoXkz5koq0YIjdw7R1kLrMFsfD2VlhttY/sBZRVJgU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.crl rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0f:a5:cd:df:6f:81:98:65:b8:92:39:a8:cb:10:90:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=660899133329faa5b5716b1c95fbaf93021fbc61 Validity Not Before: Dec 11 23:01:22 2025 GMT Not After : Dec 12 23:01:22 2025 GMT Subject: CN=1996d352fffc35e1a5e883392624a89716d11671 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:8d:c6:89:78:b5:bb:0f:67:e8:31:93:27:4a: 7f:13:ac:c9:95:36:0f:72:86:de:be:c6:34:7b:68: cc:25:ae:05:c8:4e:8e:21:e4:ff:b2:4d:99:01:e5: 36:26:2c:ff:6d:01:c3:0a:f4:24:32:82:76:1c:06: 91:1b:3c:49:a7:43:67:be:a9:5a:9c:24:32:14:84: 0e:31:95:72:85:e4:14:b6:11:e8:a0:47:46:d4:cc: c3:0f:b2:12:5a:b6:0d:b2:95:23:a8:33:6c:e8:98: da:a5:6b:df:ea:b1:a9:56:99:a2:ae:88:e8:79:3e: fe:b9:d2:ce:83:a0:a4:07:43:b8:7a:8b:61:ab:53: f1:fc:52:50:f3:e5:72:48:cc:c7:6e:7a:9c:1b:1f: 4a:78:46:86:87:cc:7a:71:0b:13:c9:0b:70:6b:25: 9b:94:fb:d8:0b:c0:b9:67:0b:cd:a6:20:6c:85:95: a1:b4:26:24:90:c4:f8:cd:5f:5c:e7:01:89:1d:ac: 20:95:0a:cc:0e:b3:5a:4c:db:e9:d3:02:59:d5:f8: 75:11:6e:6f:e4:d9:97:0c:f6:92:98:63:b8:6d:60: f1:8f:0e:c9:8c:8a:8b:eb:f1:85:b0:d4:89:05:a4: 34:01:7e:dc:ab:09:cf:a4:51:f7:77:1b:c5:0e:88: 24:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:96:D3:52:FF:FC:35:E1:A5:E8:83:39:26:24:A8:97:16:D1:16:71 X509v3 Authority Key Identifier: keyid:66:08:99:13:33:29:FA:A5:B5:71:6B:1C:95:FB:AF:93:02:1F:BC:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5d:68:b7:6c:27:52:8b:a0:9a:0e:fe:a3:c6:19:b2:4c:fe:62: f7:31:ae:75:2e:65:4e:83:8f:86:e4:38:dd:66:03:e6:f6:e8: 96:ba:fd:52:30:16:02:e2:6e:f0:1c:70:4f:e4:03:a7:c6:ad: b7:02:5b:db:8a:83:e7:a1:c0:16:3a:e6:2b:4d:01:50:4f:39: 0a:22:db:26:a9:d2:56:29:08:76:f6:35:1d:1b:53:b1:0e:1a: 38:87:2a:5a:e7:e5:2e:6a:fb:c8:80:1b:43:58:50:8e:c0:a2: cd:c6:a0:a3:29:4c:3e:9d:cb:ab:b5:9e:c7:51:94:e9:49:25: d0:86:b3:56:43:82:9d:2f:ec:2b:83:84:8b:a7:e2:cb:2e:24: f5:59:e2:94:cd:d3:e8:e8:85:17:6c:63:83:88:52:3b:fe:33: 25:c4:42:fa:a3:32:93:23:ae:b9:fe:71:fc:fd:13:0e:3c:75: 7e:67:41:c1:6c:44:d6:74:33:72:2b:6a:1e:65:7e:cb:19:d0: 57:c4:b4:0d:79:d6:4f:ed:83:06:10:32:34:35:bd:bd:e7:3d: 79:c5:b1:89:7e:1c:1a:92:96:3b:ea:f2:e6:ab:b4:b7:ac:8d: 79:88:d6:08:2b:4c:4f:c2:7f:e8:88:0b:47:19:b8:c0:c7:ce: 9d:74:69:29 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsPpc3fb4GYZbiSOajLEJBaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY2MDg5OTEzMzMyOWZhYTViNTcxNmIxYzk1ZmJhZjkzMDIx ZmJjNjEwHhcNMjUxMjExMjMwMTIyWhcNMjUxMjEyMjMwMTIyWjAzMTEwLwYDVQQD EygxOTk2ZDM1MmZmZmMzNWUxYTVlODgzMzkyNjI0YTg5NzE2ZDExNjcxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxY3GiXi1uw9n6DGTJ0p/E6zJlTYP cobevsY0e2jMJa4FyE6OIeT/sk2ZAeU2Jiz/bQHDCvQkMoJ2HAaRGzxJp0Nnvqla nCQyFIQOMZVyheQUthHooEdG1MzDD7ISWrYNspUjqDNs6JjapWvf6rGpVpmirojo eT7+udLOg6CkB0O4eothq1Px/FJQ8+VySMzHbnqcGx9KeEaGh8x6cQsTyQtwayWb lPvYC8C5ZwvNpiBshZWhtCYkkMT4zV9c5wGJHawglQrMDrNaTNvp0wJZ1fh1EW5v 5NmXDPaSmGO4bWDxjw7JjIqL6/GFsNSJBaQ0AX7cqwnPpFH3dxvFDogkBwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBmW01L//DXhpeiDOSYkqJcW0RZxMB8GA1UdIwQY MBaAFGYImRMzKfqltXFrHJX7r5MCH7xhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWmdpWkV6TXAtcVcxY1dzY2xmdXZrd0lmdkdFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS9iZDc1YjEtMTc0Yi00MTdjLTg3NTAt ZWI4YTQ1M2JjNTZlLzEvWmdpWkV6TXAtcVcxY1dzY2xmdXZrd0lmdkdFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MS9iZDc1YjEtMTc0Yi00MTdjLTg3NTAtZWI4YTQ1M2JjNTZl LzEvWmdpWkV6TXAtcVcxY1dzY2xmdXZrd0lmdkdFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXWi3bCdS i6CaDv6jxhmyTP5i9zGudS5lToOPhuQ43WYD5vbolrr9UjAWAuJu8BxwT+QDp8at twJb24qD56HAFjrmK00BUE85CiLbJqnSVikIdvY1HRtTsQ4aOIcqWuflLmr7yIAb Q1hQjsCizcagoylMPp3Lq7Wex1GU6Ukl0IazVkOCnS/sK4OEi6fiyy4k9VnilM3T 6OiFF2xjg4hSO/4zJcRC+qMykyOuuf5x/P0TDjx1fmdBwWxE1nQzcitqHmV+yxnQ V8S0DXnWT+2DBhAyNDW9vec9ecWxiX4cGpKWO+ry5qu0t6yNeYjWCCtMT8J/6IgL Rxm4wMfOnXRpKQ== -----END CERTIFICATE-----Generated at Fri Dec 12 06:40:09 2025 by rpki-client