This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/207876-80b7-4443-9f0c-55f06f062ce0/1/z65GEYj_we8vOhR0VxqUOaVTdKw.mft File: z65GEYj_we8vOhR0VxqUOaVTdKw.mft (raw, json) Hash identifier: NWYFRhtCcM4o5ShIKAWp5S+UEdWJ8gLCLwWhbWox6MI= Subject key identifier: 0A:55:A9:0F:63:EF:36:2F:B8:5B:9F:00:6B:D3:59:D5:62:2C:63:D0 Authority key identifier: CF:AE:46:11:88:FF:C1:EF:2F:3A:14:74:57:1A:94:39:A5:53:74:AC Certificate issuer: /CN=cfae461188ffc1ef2f3a1474571a9439a55374ac Certificate serial: 019B59E3FC488E502DB409C70AD4D604B161 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z65GEYj_we8vOhR0VxqUOaVTdKw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/207876-80b7-4443-9f0c-55f06f062ce0/1/z65GEYj_we8vOhR0VxqUOaVTdKw.mft Manifest number: 04B0 Signing time: Fri 26 Dec 2025 09:01:11 +0000 Manifest this update: Fri 26 Dec 2025 09:01:11 +0000 Manifest next update: Sat 27 Dec 2025 09:01:11 +0000 Files and hashes: 1: 1k7B6OZhB1CFcx64eFikJ90IArY.roa (hash: BObzQX0NmXL+SkwyifLtayjL5iVc0jp/QAmHV8ZAgNM=) 2: z65GEYj_we8vOhR0VxqUOaVTdKw.crl (hash: 7b29SkhdriZxoFwiJB13v13ePUzbjIPrCAHZXLfCwNo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/207876-80b7-4443-9f0c-55f06f062ce0/1/z65GEYj_we8vOhR0VxqUOaVTdKw.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/207876-80b7-4443-9f0c-55f06f062ce0/1/z65GEYj_we8vOhR0VxqUOaVTdKw.mft rsync://rpki.ripe.net/repository/DEFAULT/z65GEYj_we8vOhR0VxqUOaVTdKw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:e3:fc:48:8e:50:2d:b4:09:c7:0a:d4:d6:04:b1:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cfae461188ffc1ef2f3a1474571a9439a55374ac Validity Not Before: Dec 26 09:01:11 2025 GMT Not After : Dec 27 09:01:11 2025 GMT Subject: CN=0a55a90f63ef362fb85b9f006bd359d5622c63d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:29:58:7f:2e:dd:b4:7f:bc:0b:34:f7:d5:26: db:41:7d:2c:54:03:94:89:62:40:80:4e:1d:7b:ab: 42:d8:d9:96:7d:30:f3:be:b8:8d:26:02:a5:8c:87: 8f:a3:79:64:27:f1:12:d3:76:43:fd:3c:4f:b5:c2: 95:59:db:69:91:37:af:d2:d3:e3:04:44:20:d6:b8: df:80:57:0c:95:68:d8:81:a3:74:05:77:4e:d2:42: f9:fc:79:72:cf:44:56:71:c4:97:70:46:8b:59:16: 66:3d:da:2a:a0:98:99:5e:e7:60:b8:56:62:08:8e: c1:10:68:35:1c:98:e3:d0:b6:53:c3:87:f7:64:99: 4b:bb:05:0e:63:e1:d1:29:20:c8:b3:42:14:8b:dd: a6:7a:b9:a7:a2:09:c7:ef:97:ed:92:58:22:96:7b: d9:d9:e8:a5:d9:fb:81:9b:dd:01:46:61:c6:9f:88: 92:d0:af:d1:ca:0c:7c:e7:c0:54:6c:24:d0:c0:26: 81:28:5f:0a:44:95:e2:05:d5:46:4d:78:88:31:51: 4a:32:5e:95:74:b4:ee:94:f7:77:da:d4:c0:6f:2b: df:2d:11:2c:19:e8:ef:a4:c0:05:c0:95:70:e3:24: b7:ef:5b:26:ec:5e:dd:85:d4:84:9f:d3:c1:2f:b4: 8f:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:55:A9:0F:63:EF:36:2F:B8:5B:9F:00:6B:D3:59:D5:62:2C:63:D0 X509v3 Authority Key Identifier: keyid:CF:AE:46:11:88:FF:C1:EF:2F:3A:14:74:57:1A:94:39:A5:53:74:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z65GEYj_we8vOhR0VxqUOaVTdKw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/207876-80b7-4443-9f0c-55f06f062ce0/1/z65GEYj_we8vOhR0VxqUOaVTdKw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/207876-80b7-4443-9f0c-55f06f062ce0/1/z65GEYj_we8vOhR0VxqUOaVTdKw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 55:b9:58:cc:5d:68:73:e2:22:9c:f2:3d:8e:8a:09:9e:04:0b: be:c1:82:f2:7a:10:ab:b3:ce:47:1b:e9:83:a3:96:f8:66:d5: 3d:22:25:ef:93:a7:43:8d:30:79:bd:37:b5:4a:18:f8:87:8b: 22:a9:f3:d5:c9:56:88:17:51:07:92:f9:31:2d:58:64:12:79: d4:51:23:1a:48:48:61:cb:73:2e:f3:17:f6:d5:01:2a:2f:c5: 07:34:c4:39:79:ff:b8:bb:e5:51:7b:1d:96:43:d2:87:c9:91: 96:91:e0:4e:bc:8a:b1:23:7f:4b:c2:2e:88:87:12:63:46:45: a9:4d:3b:d5:64:94:b1:7f:52:e2:52:66:ed:d9:b9:e8:7f:02: ff:ee:9a:7e:3d:b4:0f:8e:83:ec:86:ea:f8:63:88:b5:f5:09: f8:b4:54:b5:11:64:f4:0d:ef:7f:11:be:56:0d:8c:46:d1:aa: 59:6c:6c:1c:4c:48:8f:b8:76:bd:5b:86:eb:18:21:e4:22:76: 49:eb:d0:cc:e8:cc:df:28:6c:bc:db:25:d4:d2:11:fa:75:fc: c3:1c:0b:a4:af:bb:07:5f:cd:f5:3a:58:50:74:87:21:74:73: 0a:01:f9:bb:e3:aa:1f:d4:6f:20:ea:29:cc:61:8c:00:ac:01: 54:8a:18:80 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZ4/xIjlAttAnHCtTWBLFhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNmYWU0NjExODhmZmMxZWYyZjNhMTQ3NDU3MWE5NDM5YTU1 Mzc0YWMwHhcNMjUxMjI2MDkwMTExWhcNMjUxMjI3MDkwMTExWjAzMTEwLwYDVQQD EygwYTU1YTkwZjYzZWYzNjJmYjg1YjlmMDA2YmQzNTlkNTYyMmM2M2QwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxilYfy7dtH+8CzT31SbbQX0sVAOU iWJAgE4de6tC2NmWfTDzvriNJgKljIePo3lkJ/ES03ZD/TxPtcKVWdtpkTev0tPj BEQg1rjfgFcMlWjYgaN0BXdO0kL5/Hlyz0RWccSXcEaLWRZmPdoqoJiZXudguFZi CI7BEGg1HJjj0LZTw4f3ZJlLuwUOY+HRKSDIs0IUi92mermnognH75ftklgilnvZ 2eil2fuBm90BRmHGn4iS0K/Rygx858BUbCTQwCaBKF8KRJXiBdVGTXiIMVFKMl6V dLTulPd32tTAbyvfLREsGejvpMAFwJVw4yS371sm7F7dhdSEn9PBL7SPxwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFApVqQ9j7zYvuFufAGvTWdViLGPQMB8GA1UdIwQY MBaAFM+uRhGI/8HvLzoUdFcalDmlU3SsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvejY1R0VZal93ZTh2T2hSMFZ4cVVPYVZUZEt3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC8yMDc4NzYtODBiNy00NDQzLTlmMGMt NTVmMDZmMDYyY2UwLzEvejY1R0VZal93ZTh2T2hSMFZ4cVVPYVZUZEt3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC8yMDc4NzYtODBiNy00NDQzLTlmMGMtNTVmMDZmMDYyY2Uw LzEvejY1R0VZal93ZTh2T2hSMFZ4cVVPYVZUZEt3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVblYzF1o c+IinPI9jooJngQLvsGC8noQq7PORxvpg6OW+GbVPSIl75OnQ40web03tUoY+IeL Iqnz1clWiBdRB5L5MS1YZBJ51FEjGkhIYctzLvMX9tUBKi/FBzTEOXn/uLvlUXsd lkPSh8mRlpHgTryKsSN/S8IuiIcSY0ZFqU071WSUsX9S4lJm7dm56H8C/+6afj20 D46D7Ibq+GOItfUJ+LRUtRFk9A3vfxG+Vg2MRtGqWWxsHExIj7h2vVuG6xgh5CJ2 SevQzOjM3yhsvNsl1NIR+nX8wxwLpK+7B1/N9TpYUHSHIXRzCgH5u+OqH9RvIOop zGGMAKwBVIoYgA== -----END CERTIFICATE-----Generated at Fri Dec 26 14:18:19 2025 by rpki-client