This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft File: Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft (raw, json) Hash identifier: ufIN9jJNr2Ypuw5lX4rZqxtJWx29bWIq7x42H/E5uJY= Subject key identifier: E3:74:70:3A:71:5A:F4:F1:39:D2:C2:3F:C5:BF:C4:B7:C9:0A:B9:7C Authority key identifier: 67:0E:C5:30:68:39:3D:90:DB:60:1E:C2:95:E4:29:08:52:5E:10:C2 Certificate issuer: /CN=670ec53068393d90db601ec295e42908525e10c2 Certificate serial: 019B085ABD12F139E02671F4849E6F1E7134 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zw7FMGg5PZDbYB7CleQpCFJeEMI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft Manifest number: 0E57 Signing time: Wed 10 Dec 2025 13:02:02 +0000 Manifest this update: Wed 10 Dec 2025 13:02:02 +0000 Manifest next update: Thu 11 Dec 2025 13:02:02 +0000 Files and hashes: 1: Zw7FMGg5PZDbYB7CleQpCFJeEMI.crl (hash: T/3MvM864Wr0tmE8roOSgA2VmCfWEAfuOzQxMkqCFfY=) 2: g-_eT5ct7bDp65zymgf5llHzTKc.roa (hash: 6qrqxL/Wtd1D30D40m2/VyQoFXL4FQNDdMtRsZ56brc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.crl rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft rsync://rpki.ripe.net/repository/DEFAULT/Zw7FMGg5PZDbYB7CleQpCFJeEMI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 11 Dec 2025 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:08:5a:bd:12:f1:39:e0:26:71:f4:84:9e:6f:1e:71:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=670ec53068393d90db601ec295e42908525e10c2 Validity Not Before: Dec 10 13:02:02 2025 GMT Not After : Dec 11 13:02:02 2025 GMT Subject: CN=e374703a715af4f139d2c23fc5bfc4b7c90ab97c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:60:91:8a:ee:7c:8a:dd:72:1b:f2:11:ba:25: 06:cf:a2:ab:d0:63:3d:04:c7:49:33:93:99:89:30: 28:e9:4b:a0:ae:24:b4:f8:18:ac:08:91:a9:87:cc: f5:7d:dc:71:2e:6e:1a:b4:65:aa:d1:63:af:05:9a: cf:84:0e:cf:de:be:59:29:b1:1b:d1:9b:15:11:2f: ae:58:2d:19:42:fa:bc:01:18:d9:88:c0:ce:95:f8: c5:1a:e1:97:df:5c:fd:ea:23:4f:d2:68:a6:88:bd: 24:45:41:6d:63:c4:20:2c:46:26:46:76:ed:a8:b8: 4c:fa:46:e3:5f:ab:f4:76:92:39:c1:77:92:2e:df: e7:d5:c7:16:49:55:5c:68:fd:73:88:37:7a:bf:9b: b9:29:3d:4c:76:0b:92:34:28:3c:47:3e:0b:ce:ed: 78:0e:ba:94:c2:04:0f:33:b5:05:5a:2a:6b:3f:2a: 03:0b:07:8f:8a:ef:45:c1:c4:fa:a5:d7:40:6f:a1: 8f:8d:2c:f9:0c:4c:6b:dc:b3:54:a9:36:95:7d:17: 19:a9:93:27:e1:70:19:82:67:e8:b0:7a:aa:79:90: c9:c5:be:e0:18:25:0c:63:ce:fe:17:da:4b:91:08: a4:e5:36:52:dc:cc:24:f6:09:50:03:dc:34:71:dd: cf:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:74:70:3A:71:5A:F4:F1:39:D2:C2:3F:C5:BF:C4:B7:C9:0A:B9:7C X509v3 Authority Key Identifier: keyid:67:0E:C5:30:68:39:3D:90:DB:60:1E:C2:95:E4:29:08:52:5E:10:C2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zw7FMGg5PZDbYB7CleQpCFJeEMI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 14:a9:e7:d5:30:de:e7:0f:d8:f8:e0:bb:ee:b9:84:bc:a1:30: e2:31:1b:5c:b4:57:54:60:27:de:5a:fe:ee:d6:39:2a:8e:21: e3:4d:ef:cb:47:8a:17:ac:59:96:3d:de:02:1f:a9:91:80:65: 01:5d:3d:a9:ae:2a:1a:bc:84:36:d1:3e:6a:21:19:17:ba:76: 68:11:02:72:0f:25:96:bf:45:b7:f9:01:0b:ce:b5:e5:53:f4: 41:31:92:cd:d8:14:41:00:66:ef:54:d0:90:ee:3c:4b:0c:5b: 1e:ca:96:f8:6b:20:1a:fa:7a:2d:e5:59:05:c7:ec:f6:3f:e8: d8:9d:a0:50:c3:b1:2f:18:6a:e0:44:65:93:de:30:e4:bf:53: d7:18:c8:16:82:ad:ab:77:5c:da:aa:54:4e:31:7b:37:cc:34: 24:5e:62:44:93:c1:19:47:2a:ff:53:97:f8:bd:44:64:85:37: 4e:6f:8b:a1:9d:73:4c:b8:ae:c8:3a:b2:96:2e:3f:f7:e2:8b: 96:51:90:32:64:8d:37:6a:b4:ce:92:d7:75:b0:f5:2b:42:47: 87:83:00:d3:1b:41:86:a8:ad:b6:08:e0:dc:1d:d6:e6:ef:58: 4d:08:3c:7e:7a:5f:a4:fa:3e:4d:48:9b:14:60:5f:27:45:d6: 0c:6f:67:8d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsIWr0S8TngJnH0hJ5vHnE0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY3MGVjNTMwNjgzOTNkOTBkYjYwMWVjMjk1ZTQyOTA4NTI1 ZTEwYzIwHhcNMjUxMjEwMTMwMjAyWhcNMjUxMjExMTMwMjAyWjAzMTEwLwYDVQQD EyhlMzc0NzAzYTcxNWFmNGYxMzlkMmMyM2ZjNWJmYzRiN2M5MGFiOTdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs2CRiu58it1yG/IRuiUGz6Kr0GM9 BMdJM5OZiTAo6UugriS0+BisCJGph8z1fdxxLm4atGWq0WOvBZrPhA7P3r5ZKbEb 0ZsVES+uWC0ZQvq8ARjZiMDOlfjFGuGX31z96iNP0mimiL0kRUFtY8QgLEYmRnbt qLhM+kbjX6v0dpI5wXeSLt/n1ccWSVVcaP1ziDd6v5u5KT1MdguSNCg8Rz4Lzu14 DrqUwgQPM7UFWiprPyoDCwePiu9FwcT6pddAb6GPjSz5DExr3LNUqTaVfRcZqZMn 4XAZgmfosHqqeZDJxb7gGCUMY87+F9pLkQik5TZS3Mwk9glQA9w0cd3POwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFON0cDpxWvTxOdLCP8W/xLfJCrl8MB8GA1UdIwQY MBaAFGcOxTBoOT2Q22AewpXkKQhSXhDCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWnc3Rk1HZzVQWkRiWUI3Q2xlUXBDRkplRU1JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My9jNDI0ZDEtMjdmZC00ZjQ3LWJiNzEt NzNkMjE4YTQ5MDNlLzEvWnc3Rk1HZzVQWkRiWUI3Q2xlUXBDRkplRU1JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81My9jNDI0ZDEtMjdmZC00ZjQ3LWJiNzEtNzNkMjE4YTQ5MDNl LzEvWnc3Rk1HZzVQWkRiWUI3Q2xlUXBDRkplRU1JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFKnn1TDe 5w/Y+OC77rmEvKEw4jEbXLRXVGAn3lr+7tY5Ko4h403vy0eKF6xZlj3eAh+pkYBl AV09qa4qGryENtE+aiEZF7p2aBECcg8llr9Ft/kBC8615VP0QTGSzdgUQQBm71TQ kO48SwxbHsqW+GsgGvp6LeVZBcfs9j/o2J2gUMOxLxhq4ERlk94w5L9T1xjIFoKt q3dc2qpUTjF7N8w0JF5iRJPBGUcq/1OX+L1EZIU3Tm+LoZ1zTLiuyDqyli4/9+KL llGQMmSNN2q0zpLXdbD1K0JHh4MA0xtBhqittgjg3B3W5u9YTQg8fnpfpPo+TUib FGBfJ0XWDG9njQ== -----END CERTIFICATE-----Generated at Wed Dec 10 18:24:43 2025 by rpki-client