This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a52f6f-14f8-419c-99d9-a59d1350deec/1/ZtH4-2rdJytGxAaxiFyTKVsfS4w.mft File: ZtH4-2rdJytGxAaxiFyTKVsfS4w.mft (raw, json) Hash identifier: Fa7u5IL9bnCmTICp4bJ42LIdqUJ4AMmHkzeemOkEOf8= Subject key identifier: 6E:E8:B6:41:44:75:67:E8:86:F4:AB:F4:0F:53:6A:85:0C:EB:78:CE Authority key identifier: 66:D1:F8:FB:6A:DD:27:2B:46:C4:06:B1:88:5C:93:29:5B:1F:4B:8C Certificate issuer: /CN=66d1f8fb6add272b46c406b1885c93295b1f4b8c Certificate serial: 019B0C6D9368927504B2B61DA99FF8B0C50D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZtH4-2rdJytGxAaxiFyTKVsfS4w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a52f6f-14f8-419c-99d9-a59d1350deec/1/ZtH4-2rdJytGxAaxiFyTKVsfS4w.mft Manifest number: 0DBC Signing time: Thu 11 Dec 2025 08:01:06 +0000 Manifest this update: Thu 11 Dec 2025 08:01:06 +0000 Manifest next update: Fri 12 Dec 2025 08:01:06 +0000 Files and hashes: 1: 6uraY0RUo083dp6VRDIhaMr-XOw.roa (hash: 84hQ/Wr95yt1TasjhyzEMQBsJDQIG0TsCg+7NafRezY=) 2: ZtH4-2rdJytGxAaxiFyTKVsfS4w.crl (hash: IDmaoub4qw8esdfjGPRnN+UUn6290g1XU74Pi/TeujM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/a52f6f-14f8-419c-99d9-a59d1350deec/1/ZtH4-2rdJytGxAaxiFyTKVsfS4w.crl rsync://rpki.ripe.net/repository/DEFAULT/4b/a52f6f-14f8-419c-99d9-a59d1350deec/1/ZtH4-2rdJytGxAaxiFyTKVsfS4w.mft rsync://rpki.ripe.net/repository/DEFAULT/ZtH4-2rdJytGxAaxiFyTKVsfS4w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 08:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0c:6d:93:68:92:75:04:b2:b6:1d:a9:9f:f8:b0:c5:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66d1f8fb6add272b46c406b1885c93295b1f4b8c Validity Not Before: Dec 11 08:01:06 2025 GMT Not After : Dec 12 08:01:06 2025 GMT Subject: CN=6ee8b641447567e886f4abf40f536a850ceb78ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:14:33:dd:93:c3:1b:23:3b:70:f6:4d:86:f6: f4:25:b6:8d:74:f1:58:84:43:52:5b:25:d0:59:94: bb:f0:58:af:e3:c1:b9:61:12:2c:f3:0b:ae:52:9a: 20:eb:40:4c:e6:cb:9a:8b:70:f2:10:df:5c:46:3a: 45:0c:a3:39:e7:f2:0d:e0:ae:49:51:5d:c4:f1:bb: cc:ae:b9:19:9d:e8:d4:14:63:bb:14:27:32:fb:2c: d0:e3:e1:7a:e7:ae:b5:4c:8b:04:2d:59:7e:42:cc: b5:01:84:ea:75:61:fa:92:cf:2e:49:44:35:24:e8: 34:b3:b4:28:2f:51:c7:47:8d:f9:4e:b6:56:a0:7a: ca:0d:ea:f8:6f:70:a5:e7:2a:30:8c:2f:3d:ed:e3: 0d:c5:58:c5:02:32:94:b5:f0:16:da:02:7f:99:7e: a3:8a:88:a0:42:a3:69:77:f9:df:07:84:99:d2:6d: 87:f1:ec:9a:e3:ad:e2:fa:57:ef:d8:43:32:34:0e: b5:47:9c:46:1c:95:73:44:e8:f6:6a:b1:02:06:83: 36:13:f4:80:6c:58:67:a7:58:ab:fb:f0:12:e0:9a: 1d:c9:c4:04:4f:24:b5:47:ec:b5:1d:d1:6b:17:ee: f0:cb:38:4a:77:5e:44:13:78:6a:45:21:3e:f8:83: 9b:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:E8:B6:41:44:75:67:E8:86:F4:AB:F4:0F:53:6A:85:0C:EB:78:CE X509v3 Authority Key Identifier: keyid:66:D1:F8:FB:6A:DD:27:2B:46:C4:06:B1:88:5C:93:29:5B:1F:4B:8C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZtH4-2rdJytGxAaxiFyTKVsfS4w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a52f6f-14f8-419c-99d9-a59d1350deec/1/ZtH4-2rdJytGxAaxiFyTKVsfS4w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a52f6f-14f8-419c-99d9-a59d1350deec/1/ZtH4-2rdJytGxAaxiFyTKVsfS4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2e:77:e7:bf:c2:80:52:d5:74:9f:9b:7d:92:95:6f:be:3f:cb: 08:66:d2:85:35:3b:8c:87:59:a1:1d:1d:d2:2e:03:44:21:8b: f8:90:d8:4e:3d:46:d0:b5:52:79:e6:a4:91:85:50:c8:65:eb: 9c:e3:7e:b1:25:06:bb:38:d3:c2:89:8c:24:16:55:92:08:c3: b3:68:99:3e:67:ba:f2:28:6b:b3:d8:6d:42:fe:31:2b:d0:e7: 36:47:00:68:e3:5f:9d:d0:3d:93:b8:ff:3f:a2:39:ce:4e:d0: fb:f9:6b:f9:09:24:ea:e8:3c:92:c5:bf:36:cd:d7:01:af:92: 1b:48:13:1d:f7:0e:6a:3e:1b:c9:df:e6:63:27:13:c7:ae:63: c1:7d:f4:c9:46:d5:91:99:6f:d6:16:cb:0f:34:f7:62:5c:11: e9:c0:25:0c:64:8e:1c:73:86:37:86:dc:a6:8c:da:fc:ef:a2: 4a:62:f5:c3:d4:9a:08:63:83:e5:9d:5b:30:bd:53:58:1f:4f: 8d:17:dc:2e:38:c0:02:cd:ef:ae:29:20:66:9e:cc:d1:1a:44: d4:b5:50:6c:17:19:c2:c6:8f:61:77:12:a9:98:79:e1:f3:b4: ea:25:e6:62:c7:e6:d0:16:50:5d:e8:3f:a2:83:f3:cd:d0:ae: e2:53:8a:3f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsMbZNoknUEsrYdqZ/4sMUNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY2ZDFmOGZiNmFkZDI3MmI0NmM0MDZiMTg4NWM5MzI5NWIx ZjRiOGMwHhcNMjUxMjExMDgwMTA2WhcNMjUxMjEyMDgwMTA2WjAzMTEwLwYDVQQD Eyg2ZWU4YjY0MTQ0NzU2N2U4ODZmNGFiZjQwZjUzNmE4NTBjZWI3OGNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArRQz3ZPDGyM7cPZNhvb0JbaNdPFY hENSWyXQWZS78Fiv48G5YRIs8wuuUpog60BM5suai3DyEN9cRjpFDKM55/IN4K5J UV3E8bvMrrkZnejUFGO7FCcy+yzQ4+F65661TIsELVl+Qsy1AYTqdWH6ks8uSUQ1 JOg0s7QoL1HHR435TrZWoHrKDer4b3Cl5yowjC897eMNxVjFAjKUtfAW2gJ/mX6j ioigQqNpd/nfB4SZ0m2H8eya463i+lfv2EMyNA61R5xGHJVzROj2arECBoM2E/SA bFhnp1ir+/AS4JodycQETyS1R+y1HdFrF+7wyzhKd15EE3hqRSE++IObIQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG7otkFEdWfohvSr9A9TaoUM63jOMB8GA1UdIwQY MBaAFGbR+Ptq3ScrRsQGsYhckylbH0uMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWnRINC0ycmRKeXRHeEFheGlGeVRLVnNmUzR3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi9hNTJmNmYtMTRmOC00MTljLTk5ZDkt YTU5ZDEzNTBkZWVjLzEvWnRINC0ycmRKeXRHeEFheGlGeVRLVnNmUzR3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yi9hNTJmNmYtMTRmOC00MTljLTk5ZDktYTU5ZDEzNTBkZWVj LzEvWnRINC0ycmRKeXRHeEFheGlGeVRLVnNmUzR3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALnfnv8KA UtV0n5t9kpVvvj/LCGbShTU7jIdZoR0d0i4DRCGL+JDYTj1G0LVSeeakkYVQyGXr nON+sSUGuzjTwomMJBZVkgjDs2iZPme68ihrs9htQv4xK9DnNkcAaONfndA9k7j/ P6I5zk7Q+/lr+Qkk6ug8ksW/Ns3XAa+SG0gTHfcOaj4byd/mYycTx65jwX30yUbV kZlv1hbLDzT3YlwR6cAlDGSOHHOGN4bcpoza/O+iSmL1w9SaCGOD5Z1bML1TWB9P jRfcLjjAAs3vrikgZp7M0RpE1LVQbBcZwsaPYXcSqZh54fO06iXmYsfm0BZQXeg/ ooPzzdCu4lOKPw== -----END CERTIFICATE-----Generated at Thu Dec 11 15:09:03 2025 by rpki-client