This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft File: Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft (raw, json) Hash identifier: PTSZveoo1A+wPpR+/40+tdrbyc3WqSxU/AKbg+K0wqU= Subject key identifier: 98:12:F2:79:34:C9:CC:FB:69:F0:14:2F:BB:4D:0C:3E:8A:03:8D:8B Authority key identifier: 4B:3E:59:6A:24:D4:36:50:CB:60:E8:FC:C9:E4:4D:6F:8C:92:9D:35 Certificate issuer: /CN=4b3e596a24d43650cb60e8fcc9e44d6f8c929d35 Certificate serial: 019B0F00A9BC6F126118B0D201A7D6B7781A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft Manifest number: 0799 Signing time: Thu 11 Dec 2025 20:01:00 +0000 Manifest this update: Thu 11 Dec 2025 20:01:00 +0000 Manifest next update: Fri 12 Dec 2025 20:01:00 +0000 Files and hashes: 1: 69EZo_UvSYLCIwLzPyqCblCyZzI.roa (hash: 2naW8CuEgpZKAi+BoeweFMMKRLa2fsvkiMt8udbwEtM=) 2: Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl (hash: cti3zJOEe8vxERN1Kfre3L7GOvpTq+VWTqq18nVW+uY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 14:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0f:00:a9:bc:6f:12:61:18:b0:d2:01:a7:d6:b7:78:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4b3e596a24d43650cb60e8fcc9e44d6f8c929d35 Validity Not Before: Dec 11 20:01:00 2025 GMT Not After : Dec 12 20:01:00 2025 GMT Subject: CN=9812f27934c9ccfb69f0142fbb4d0c3e8a038d8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:60:76:15:a4:da:fe:90:0c:08:29:d7:3d:3a: 05:33:03:bb:3e:c9:f3:76:ad:ad:c6:91:6a:5c:48: 80:5d:d1:5a:bf:d5:28:ed:75:75:04:83:a1:2f:a6: b7:56:a6:d1:44:a2:bd:13:08:f0:74:d7:2b:f8:b9: ac:25:05:75:75:cc:37:9d:b4:62:7f:cd:59:c8:de: f7:9e:6e:a7:69:37:ba:f0:0f:29:e4:32:bd:4c:55: 4b:fc:66:dd:24:fc:2c:97:97:d3:60:f7:ce:83:f8: f3:00:b5:a4:6a:fc:cf:30:3b:0d:61:c4:53:c7:41: 57:67:a7:9b:06:c0:b4:d1:29:b0:a6:77:dc:3d:cf: 9e:8d:a6:47:a5:d5:e3:6b:e8:82:ea:17:8b:12:61: 82:b1:e6:a9:64:8a:59:19:af:7a:fa:82:db:d9:39: dc:a0:9f:09:27:b9:5a:fe:af:c7:2e:42:bb:b9:b6: 23:f2:5e:f4:12:1e:6d:0e:0c:ed:71:98:51:19:b5: 29:c9:da:6e:72:e2:b9:12:2e:13:f5:ec:ce:0b:b0: 95:ae:4a:b0:34:f4:30:b6:d3:2e:65:a0:ad:db:39: 94:a5:8a:cb:a4:9c:c8:5d:c4:88:79:ac:e0:0f:e3: 79:2d:1f:24:18:bb:6e:dc:86:95:cc:33:0b:da:4c: 14:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:12:F2:79:34:C9:CC:FB:69:F0:14:2F:BB:4D:0C:3E:8A:03:8D:8B X509v3 Authority Key Identifier: keyid:4B:3E:59:6A:24:D4:36:50:CB:60:E8:FC:C9:E4:4D:6F:8C:92:9D:35 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1f:4e:ed:34:ff:60:8e:dc:80:7f:dc:e9:cb:e4:04:d2:e8:06: 39:f3:11:b0:71:b3:e8:96:d2:57:8f:a2:6e:0c:b1:e9:83:8c: 94:02:2b:e3:27:b2:4e:35:70:93:8e:1e:e0:67:9f:aa:b7:7c: 63:26:b6:e7:49:52:bb:65:d3:d1:17:34:20:be:bb:58:71:b0: 9c:ea:4e:f3:79:0f:6d:1a:97:77:f7:54:23:20:28:f5:13:79: 3e:13:9e:fa:16:64:a4:67:b2:6a:1d:cd:1a:46:ed:08:e3:db: 53:ae:c2:95:e7:0d:98:85:01:1b:34:08:da:47:c3:1c:78:f8: d5:72:9c:23:8c:bd:ba:3f:38:a3:f8:4f:bc:6c:0a:6b:a1:ca: 4c:11:0b:5e:66:b4:2b:ec:35:f0:62:8b:a2:68:05:6e:ef:94: fe:6a:c7:8a:c7:0c:4d:27:90:3b:f9:b5:ed:55:ab:a6:15:db: 82:31:1c:44:49:e1:95:23:e2:f0:b4:b1:4c:de:36:58:17:dc: b9:48:df:a6:09:e3:c1:b2:53:1e:f5:cd:fe:f0:08:16:cc:80: b4:9c:f5:2e:74:cf:fd:6c:c5:9f:72:ea:a8:b7:d4:11:ce:43: 16:aa:59:ce:63:fe:fb:3d:0e:34:24:9b:5e:ce:d0:0a:a4:1f: 7c:7a:fe:19 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsPAKm8bxJhGLDSAafWt3gaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRiM2U1OTZhMjRkNDM2NTBjYjYwZThmY2M5ZTQ0ZDZmOGM5 MjlkMzUwHhcNMjUxMjExMjAwMTAwWhcNMjUxMjEyMjAwMTAwWjAzMTEwLwYDVQQD Eyg5ODEyZjI3OTM0YzljY2ZiNjlmMDE0MmZiYjRkMGMzZThhMDM4ZDhiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxGB2FaTa/pAMCCnXPToFMwO7Psnz dq2txpFqXEiAXdFav9Uo7XV1BIOhL6a3VqbRRKK9EwjwdNcr+LmsJQV1dcw3nbRi f81ZyN73nm6naTe68A8p5DK9TFVL/GbdJPwsl5fTYPfOg/jzALWkavzPMDsNYcRT x0FXZ6ebBsC00SmwpnfcPc+ejaZHpdXja+iC6heLEmGCseapZIpZGa96+oLb2Tnc oJ8JJ7la/q/HLkK7ubYj8l70Eh5tDgztcZhRGbUpydpucuK5Ei4T9ezOC7CVrkqw NPQwttMuZaCt2zmUpYrLpJzIXcSIeazgD+N5LR8kGLtu3IaVzDML2kwUxwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJgS8nk0ycz7afAUL7tNDD6KA42LMB8GA1UdIwQY MBaAFEs+WWok1DZQy2Do/MnkTW+Mkp01MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU3o1WmFpVFVObERMWU9qOHllUk5iNHlTblRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My80YjJmYjItYzBhYi00ZWVjLThkMDEt MzNkMThiZjZkZjU1LzEvU3o1WmFpVFVObERMWU9qOHllUk5iNHlTblRVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My80YjJmYjItYzBhYi00ZWVjLThkMDEtMzNkMThiZjZkZjU1 LzEvU3o1WmFpVFVObERMWU9qOHllUk5iNHlTblRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAH07tNP9g jtyAf9zpy+QE0ugGOfMRsHGz6JbSV4+ibgyx6YOMlAIr4yeyTjVwk44e4Gefqrd8 Yya250lSu2XT0Rc0IL67WHGwnOpO83kPbRqXd/dUIyAo9RN5PhOe+hZkpGeyah3N GkbtCOPbU67ClecNmIUBGzQI2kfDHHj41XKcI4y9uj84o/hPvGwKa6HKTBELXma0 K+w18GKLomgFbu+U/mrHiscMTSeQO/m17VWrphXbgjEcREnhlSPi8LSxTN42WBfc uUjfpgnjwbJTHvXN/vAIFsyAtJz1LnTP/WzFn3LqqLfUEc5DFqpZzmP++z0ONCSb Xs7QCqQffHr+GQ== -----END CERTIFICATE-----Generated at Thu Dec 11 23:54:35 2025 by rpki-client