This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/2e4f3f-5526-4520-8313-16ff723af335/1/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.mft File: Z9BFwTwD3LNz0qfYXR4BtuCsfhw.mft (raw, json) Hash identifier: +P/fSmpHRsCX8KkweGruikn8efyuNuKPF27JN87yKFU= Subject key identifier: 16:CC:D2:55:4F:D8:F1:E0:3F:14:32:F0:18:32:31:46:E1:03:84:DD Authority key identifier: 67:D0:45:C1:3C:03:DC:B3:73:D2:A7:D8:5D:1E:01:B6:E0:AC:7E:1C Certificate issuer: /CN=67d045c13c03dcb373d2a7d85d1e01b6e0ac7e1c Certificate serial: 019B3532143445A4EF9A82B801A36680D0FB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/2e4f3f-5526-4520-8313-16ff723af335/1/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.mft Manifest number: 0E78 Signing time: Fri 19 Dec 2025 06:00:32 +0000 Manifest this update: Fri 19 Dec 2025 06:00:32 +0000 Manifest next update: Sat 20 Dec 2025 06:00:32 +0000 Files and hashes: 1: QSFoTY-rZFAhWSMN9-_p_o-BDiU.roa (hash: 3LADFmQvbHE7KoUBEivUP2jD8vxc2/ZNRnufgFEmEsE=) 2: Z9BFwTwD3LNz0qfYXR4BtuCsfhw.crl (hash: 1ObdsAFIruIJYE7i9JtRcsD2T6bvt5z2SNcpE7OHW9s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/2e4f3f-5526-4520-8313-16ff723af335/1/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.crl rsync://rpki.ripe.net/repository/DEFAULT/4d/2e4f3f-5526-4520-8313-16ff723af335/1/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.mft rsync://rpki.ripe.net/repository/DEFAULT/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 06:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:35:32:14:34:45:a4:ef:9a:82:b8:01:a3:66:80:d0:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67d045c13c03dcb373d2a7d85d1e01b6e0ac7e1c Validity Not Before: Dec 19 06:00:32 2025 GMT Not After : Dec 20 06:00:32 2025 GMT Subject: CN=16ccd2554fd8f1e03f1432f018323146e10384dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a4:60:cb:d6:f2:29:74:f5:f7:89:22:08:73: 25:dc:ea:c8:99:c9:08:3a:83:17:0d:f0:a0:11:3d: 9b:2b:93:7c:23:43:d7:91:88:f1:64:ce:de:5f:ea: 75:06:c9:8a:a1:35:ec:7d:80:82:9e:7e:4b:7e:68: 5d:e9:35:68:c6:22:77:0f:62:56:06:39:0c:c6:fd: af:73:f7:57:87:0a:bb:4e:73:4e:bc:54:9d:ac:f7: eb:9d:df:93:22:c7:20:d7:9d:dc:15:43:ca:ab:aa: 2a:7e:fb:0a:f5:32:b3:65:8c:1a:89:dc:5f:a4:f5: e9:9a:d7:66:d5:ec:61:f6:88:d9:05:1d:68:24:61: f9:64:65:5d:06:ef:91:b0:ce:b5:39:19:15:5e:da: cc:c5:35:4e:17:c8:ee:bd:a4:9a:8b:3a:43:9d:2a: 79:4f:7e:e2:0e:bb:75:6e:31:50:57:df:f7:8d:ae: 49:6a:4e:1d:f7:76:d7:c2:87:03:a9:12:e3:b1:e2: 5e:2d:a1:6b:9b:27:e5:55:8e:7b:10:05:78:2c:e2: c0:74:bd:f5:26:5c:40:40:1f:40:19:a1:9f:9e:59: e4:cc:87:31:2c:e4:33:da:1d:2b:87:94:ed:fd:bc: d4:52:06:ff:3b:01:77:a5:d0:43:e3:9d:76:80:91: b1:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:CC:D2:55:4F:D8:F1:E0:3F:14:32:F0:18:32:31:46:E1:03:84:DD X509v3 Authority Key Identifier: keyid:67:D0:45:C1:3C:03:DC:B3:73:D2:A7:D8:5D:1E:01:B6:E0:AC:7E:1C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2e4f3f-5526-4520-8313-16ff723af335/1/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2e4f3f-5526-4520-8313-16ff723af335/1/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6f:8d:e5:1d:a5:f3:4b:98:08:9a:f5:68:86:94:06:a8:aa:85: db:df:c0:65:1b:f4:4e:47:ae:53:86:bf:72:ab:e8:79:5b:23: 34:0d:a6:78:b8:86:35:24:13:e4:0d:35:63:2c:2d:ac:e4:41: 54:15:dd:cb:c9:cd:b0:93:13:75:95:31:13:e9:ab:09:5f:e4: cd:aa:27:44:38:9f:47:10:81:5d:c1:69:96:85:87:70:b9:e5: d7:4a:b4:81:dd:91:5a:54:60:f2:5d:5f:93:bb:cd:10:29:1d: b0:58:1f:d7:b7:74:b5:28:95:a7:30:a7:58:13:ff:29:a4:43: ee:19:a7:44:8d:e3:af:f1:e4:77:a5:65:45:82:83:62:99:3e: 53:12:fe:6d:46:f2:65:76:bd:2e:57:ee:37:08:cd:64:47:24: e5:b3:84:67:31:ef:0e:83:24:c9:ec:80:9b:ed:c0:b7:9e:df: 2b:fc:25:e9:c7:76:24:d4:f6:e2:bc:bd:9b:e8:60:4c:f4:9e: f9:ef:47:62:61:3a:d8:d7:f6:df:cc:b7:0e:6b:d7:66:b6:ea: d3:4a:08:fd:3c:b0:45:7a:5c:2d:32:bf:b9:72:a9:ca:18:6a: 3a:df:d9:f5:fe:42:eb:9f:bf:c5:d4:4b:85:ed:db:8f:cb:69: 23:56:21:b7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs1MhQ0RaTvmoK4AaNmgND7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY3ZDA0NWMxM2MwM2RjYjM3M2QyYTdkODVkMWUwMWI2ZTBh YzdlMWMwHhcNMjUxMjE5MDYwMDMyWhcNMjUxMjIwMDYwMDMyWjAzMTEwLwYDVQQD EygxNmNjZDI1NTRmZDhmMWUwM2YxNDMyZjAxODMyMzE0NmUxMDM4NGRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvaRgy9byKXT194kiCHMl3OrImckI OoMXDfCgET2bK5N8I0PXkYjxZM7eX+p1BsmKoTXsfYCCnn5Lfmhd6TVoxiJ3D2JW BjkMxv2vc/dXhwq7TnNOvFSdrPfrnd+TIscg153cFUPKq6oqfvsK9TKzZYwaidxf pPXpmtdm1exh9ojZBR1oJGH5ZGVdBu+RsM61ORkVXtrMxTVOF8juvaSaizpDnSp5 T37iDrt1bjFQV9/3ja5Jak4d93bXwocDqRLjseJeLaFrmyflVY57EAV4LOLAdL31 JlxAQB9AGaGfnlnkzIcxLOQz2h0rh5Tt/bzUUgb/OwF3pdBD4512gJGxhQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBbM0lVP2PHgPxQy8BgyMUbhA4TdMB8GA1UdIwQY MBaAFGfQRcE8A9yzc9Kn2F0eAbbgrH4cMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWjlCRndUd0QzTE56MHFmWVhSNEJ0dUNzZmh3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC8yZTRmM2YtNTUyNi00NTIwLTgzMTMt MTZmZjcyM2FmMzM1LzEvWjlCRndUd0QzTE56MHFmWVhSNEJ0dUNzZmh3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZC8yZTRmM2YtNTUyNi00NTIwLTgzMTMtMTZmZjcyM2FmMzM1 LzEvWjlCRndUd0QzTE56MHFmWVhSNEJ0dUNzZmh3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAb43lHaXz S5gImvVohpQGqKqF29/AZRv0TkeuU4a/cqvoeVsjNA2meLiGNSQT5A01YywtrORB VBXdy8nNsJMTdZUxE+mrCV/kzaonRDifRxCBXcFploWHcLnl10q0gd2RWlRg8l1f k7vNECkdsFgf17d0tSiVpzCnWBP/KaRD7hmnRI3jr/Hkd6VlRYKDYpk+UxL+bUby ZXa9LlfuNwjNZEck5bOEZzHvDoMkyeyAm+3At57fK/wl6cd2JNT24ry9m+hgTPSe +e9HYmE62Nf238y3DmvXZrbq00oI/TywRXpcLTK/uXKpyhhqOt/Z9f5C65+/xdRL he3bj8tpI1Yhtw== -----END CERTIFICATE-----Generated at Fri Dec 19 14:35:47 2025 by rpki-client