This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/31dc10-5663-4555-a806-4e9305caf1a3/1/ZCOaUQhPGytcaEZDysFGIXx5-NE.mft File: ZCOaUQhPGytcaEZDysFGIXx5-NE.mft (raw, json) Hash identifier: uzlptDW25IO1x9wN7rtLORKgjhDpW4gFhWwhcOU+EpI= Subject key identifier: 15:70:9A:EB:BC:56:8D:B8:33:3B:F2:8C:8E:08:E7:99:99:DE:63:74 Authority key identifier: 64:23:9A:51:08:4F:1B:2B:5C:68:46:43:CA:C1:46:21:7C:79:F8:D1 Certificate issuer: /CN=64239a51084f1b2b5c684643cac146217c79f8d1 Certificate serial: 019B59E3D67FCE3508B4A6554884865F4281 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZCOaUQhPGytcaEZDysFGIXx5-NE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/31dc10-5663-4555-a806-4e9305caf1a3/1/ZCOaUQhPGytcaEZDysFGIXx5-NE.mft Manifest number: 0AD2 Signing time: Fri 26 Dec 2025 09:01:02 +0000 Manifest this update: Fri 26 Dec 2025 09:01:02 +0000 Manifest next update: Sat 27 Dec 2025 09:01:02 +0000 Files and hashes: 1: 1WnsILYxjGfpft24w4cU0Z9HVy0.roa (hash: mXH7nwV2vIU6tKBb8bErNfD249HtR3Br3nGu9VJRl4A=) 2: ZCOaUQhPGytcaEZDysFGIXx5-NE.crl (hash: Rs7vKnFjP45neEW631mwx0WmZHIRamVVcsgOiMTMSSU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/31dc10-5663-4555-a806-4e9305caf1a3/1/ZCOaUQhPGytcaEZDysFGIXx5-NE.crl rsync://rpki.ripe.net/repository/DEFAULT/5f/31dc10-5663-4555-a806-4e9305caf1a3/1/ZCOaUQhPGytcaEZDysFGIXx5-NE.mft rsync://rpki.ripe.net/repository/DEFAULT/ZCOaUQhPGytcaEZDysFGIXx5-NE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:e3:d6:7f:ce:35:08:b4:a6:55:48:84:86:5f:42:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=64239a51084f1b2b5c684643cac146217c79f8d1 Validity Not Before: Dec 26 09:01:02 2025 GMT Not After : Dec 27 09:01:02 2025 GMT Subject: CN=15709aebbc568db8333bf28c8e08e79999de6374 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d3:14:2e:54:52:01:9b:22:76:c0:46:46:79: a0:21:f9:c8:6b:4d:53:94:5e:df:7d:1f:1e:e7:3f: 7d:9b:dc:a6:0e:9b:2b:ed:df:91:80:ea:6e:16:fa: ce:ef:8d:2a:e6:5f:1c:07:76:b8:9c:78:68:93:10: 64:7d:46:83:41:db:95:29:f7:65:e7:9a:a7:d4:8d: 96:63:9e:1f:97:f1:1d:14:e5:17:0f:98:86:04:af: ff:c6:c8:a2:d1:15:1e:6c:04:79:ec:af:24:fa:71: c4:c4:3e:1e:7d:6e:6d:3c:71:2e:1c:eb:d1:fa:f8: 0c:78:31:a1:aa:e3:a0:22:ad:06:00:b5:4f:aa:6c: 83:a1:e8:12:4f:15:08:d8:43:65:82:2e:0f:8c:42: 6c:d4:30:3b:ba:21:43:86:3a:c0:87:78:50:45:e2: d0:4a:24:2b:9d:5b:aa:45:41:0c:5b:99:d9:56:21: 00:97:8d:21:7d:d5:73:59:b7:bd:57:9a:58:9a:cb: 3b:1c:36:48:70:3e:a2:c8:28:d6:a5:e9:fa:f4:06: f4:ed:3b:88:d3:c3:70:31:f3:8b:44:68:0d:26:0a: 36:2b:de:75:5d:2c:8c:2c:13:92:c4:36:d0:df:79: 00:c3:7e:24:f5:bf:08:ed:70:2a:62:c9:ff:db:72: 3a:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:70:9A:EB:BC:56:8D:B8:33:3B:F2:8C:8E:08:E7:99:99:DE:63:74 X509v3 Authority Key Identifier: keyid:64:23:9A:51:08:4F:1B:2B:5C:68:46:43:CA:C1:46:21:7C:79:F8:D1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZCOaUQhPGytcaEZDysFGIXx5-NE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/31dc10-5663-4555-a806-4e9305caf1a3/1/ZCOaUQhPGytcaEZDysFGIXx5-NE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/31dc10-5663-4555-a806-4e9305caf1a3/1/ZCOaUQhPGytcaEZDysFGIXx5-NE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0f:b0:87:93:64:93:37:ac:d7:58:d1:87:d4:80:a9:0f:87:46: d2:d2:bb:aa:6c:43:70:89:13:00:50:eb:be:54:a6:a6:83:94: af:ca:4e:23:8a:38:dc:f7:b9:35:30:d2:8f:74:8c:df:09:a0: 9e:4e:12:f0:63:97:45:9d:84:83:ba:1f:4d:0c:93:20:57:8d: 9f:73:9c:b0:d7:40:cc:ab:46:ff:cc:5d:9b:cb:df:d0:45:43: 27:93:cc:14:2f:51:a5:76:54:bd:24:00:0d:2a:b5:37:64:41: c7:18:59:81:1e:c0:83:85:81:a4:c2:8d:cf:3f:87:91:8f:a4: ff:04:19:cb:82:6c:91:db:2d:05:27:68:d1:54:92:8f:7b:6d: 93:d5:e3:ce:2f:2c:75:cf:3b:06:a3:01:e1:d4:4b:e6:e5:c2: bb:27:8d:eb:6c:2e:c0:6f:b3:06:96:0d:63:4b:ea:91:80:4e: 50:14:19:1a:ff:81:06:a8:75:ee:4a:e9:75:b7:f4:e2:c1:fd: 23:46:c3:66:74:54:9d:32:96:eb:68:fb:e3:13:84:65:d1:58: 42:e5:24:dd:ce:d1:56:e7:16:8c:2f:89:24:02:27:ab:1b:1d: e5:08:a8:a0:ee:dc:14:02:d6:43:c6:90:68:63:74:9f:63:6d: a5:57:c4:6e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZ49Z/zjUItKZVSISGX0KBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY0MjM5YTUxMDg0ZjFiMmI1YzY4NDY0M2NhYzE0NjIxN2M3 OWY4ZDEwHhcNMjUxMjI2MDkwMTAyWhcNMjUxMjI3MDkwMTAyWjAzMTEwLwYDVQQD EygxNTcwOWFlYmJjNTY4ZGI4MzMzYmYyOGM4ZTA4ZTc5OTk5ZGU2Mzc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAttMULlRSAZsidsBGRnmgIfnIa01T lF7ffR8e5z99m9ymDpsr7d+RgOpuFvrO740q5l8cB3a4nHhokxBkfUaDQduVKfdl 55qn1I2WY54fl/EdFOUXD5iGBK//xsii0RUebAR57K8k+nHExD4efW5tPHEuHOvR +vgMeDGhquOgIq0GALVPqmyDoegSTxUI2ENlgi4PjEJs1DA7uiFDhjrAh3hQReLQ SiQrnVuqRUEMW5nZViEAl40hfdVzWbe9V5pYmss7HDZIcD6iyCjWpen69Ab07TuI 08NwMfOLRGgNJgo2K951XSyMLBOSxDbQ33kAw34k9b8I7XAqYsn/23I6MwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBVwmuu8Vo24MzvyjI4I55mZ3mN0MB8GA1UdIwQY MBaAFGQjmlEITxsrXGhGQ8rBRiF8efjRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWkNPYVVRaFBHeXRjYUVaRHlzRkdJWHg1LU5FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi8zMWRjMTAtNTY2My00NTU1LWE4MDYt NGU5MzA1Y2FmMWEzLzEvWkNPYVVRaFBHeXRjYUVaRHlzRkdJWHg1LU5FLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Zi8zMWRjMTAtNTY2My00NTU1LWE4MDYtNGU5MzA1Y2FmMWEz LzEvWkNPYVVRaFBHeXRjYUVaRHlzRkdJWHg1LU5FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD7CHk2ST N6zXWNGH1ICpD4dG0tK7qmxDcIkTAFDrvlSmpoOUr8pOI4o43Pe5NTDSj3SM3wmg nk4S8GOXRZ2Eg7ofTQyTIFeNn3OcsNdAzKtG/8xdm8vf0EVDJ5PMFC9RpXZUvSQA DSq1N2RBxxhZgR7Ag4WBpMKNzz+HkY+k/wQZy4JskdstBSdo0VSSj3ttk9Xjzi8s dc87BqMB4dRL5uXCuyeN62wuwG+zBpYNY0vqkYBOUBQZGv+BBqh17krpdbf04sH9 I0bDZnRUnTKW62j74xOEZdFYQuUk3c7RVucWjC+JJAInqxsd5QiooO7cFALWQ8aQ aGN0n2NtpVfEbg== -----END CERTIFICATE-----Generated at Fri Dec 26 14:17:08 2025 by rpki-client