This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.mft File: Z0mVlaZaqwtTdo3vCAkeMQYenmU.mft (raw, json) Hash identifier: vpw07bOMf3vNe8kzMX2rB8Z+GVMQ3VDQ0/BIi5bnuy0= Subject key identifier: A1:92:B7:FA:90:26:43:5B:1C:59:42:52:CC:18:B2:85:07:11:F2:F6 Authority key identifier: 67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65 Certificate issuer: /CN=67499595a65aab0b53768def08091e31061e9e65 Certificate serial: 019AF68A646658C88E6556B969ABCAB6BE1A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.mft Manifest number: 0AC4 Signing time: Sun 07 Dec 2025 02:00:56 +0000 Manifest this update: Sun 07 Dec 2025 02:00:56 +0000 Manifest next update: Mon 08 Dec 2025 02:00:56 +0000 Files and hashes: 1: 0UnS-IxSrSbJu0LMwZGgrlOMQaY.roa (hash: RlE1mBt+QrDUuTHvHAH0++Dmsi2Z+uRQ/Byv5g9xWBY=) 2: 1-MsC5JIxdLnLZFyHuf6RgL5WGhc.roa (hash: pKBlmn1z+pps27wu7UmvO8rAolauod4xSkZZnJ9W1vs=) 3: 5iTlOOubPJODXH7vsUI7Wpq0ba8.roa (hash: VCwAilQGOK0VnPyRzIvdM0YYC7WGdN3kdeSa5Bw3IAA=) 4: AcjZPvLVEctq4aWtM9Se4g1Hez4.roa (hash: m4DjUNQ10CarUgcdKKVdQWZBHX6pVTG/J1Gv/VX/MoI=) 5: FMB-bLkFzuyKrNP2ugJeFR5FvcA.roa (hash: b4QarnLE9DJEtGHI3hEpn5pxBgsxCwePllqAAi4lx4c=) 6: GvpbXDZ3PvGHC6CRPFaBrB4OBOU.roa (hash: QK6+N1u3xwguItDTFCohthwXAVIsV2u4+FjHuAM9tAY=) 7: Pd7_BuMRngySvCOEXZzIMz9jyRk.roa (hash: sixeKX7UtbFferQNxLx2jnfuNmnIKZsouzMYORIygXY=) 8: U-0XoRYDV1K8NeLT79sQu_iy4t8.roa (hash: QAJ2fJtDmsN9XNVxW3a/dJEvqFcETnDiO1SCagG2pSk=) 9: X9nzYcXU9EgIVl_7ZZWxlGNl4g4.roa (hash: wL/WH3TZ58EyBKIgJ0ej+sAXqdnuotdQ0gWq1xiVtwU=) 10: XumlVyIVNMGHdK8sasVhYLHqWI0.roa (hash: sNAchm7qC5sJ8lucqaB2EFdUQUEmutQiLKjflZ2MgDg=) 11: Z0mVlaZaqwtTdo3vCAkeMQYenmU.crl (hash: mMo4k9ucSMbVptZ9YpUEn6TBbBSCbooWYNxXS/toAdU=) 12: aQ7JsCHnSB2G4dfY_3yHXhj3Wo8.roa (hash: jc74/wQHOsinC7epcPYWAUkOMi5kreIozg0B86UPDDA=) 13: a_6EfM_eUhmEh3H7meW3ObA4-Go.roa (hash: NcCAQGLpBENo3heEl3G42fQyl7X50upMygvTrvmVy/A=) 14: bXxx-llWekyrtBewA8UESiAygSk.roa (hash: CVAUCXJbLgxcc/u+sDImVr2cGi4Am9sXCXZAdGDnVHY=) 15: e7z0oRKCehd6Ea7tsIDH_CrT8g0.roa (hash: rqMdlglqnoJd6sqLsXF+uIqk3nINirrRe1Hs5mOfPEU=) 16: iCveD-Xjd5JabG_WX6frr5x6in0.roa (hash: 95l1uR3aj9xTQRq9TbMrNh9RKHM6w6gjilx0WBwNahE=) 17: lO_bhdVoi0rApHqZUYrR4e0dET0.roa (hash: L6ri99HTG/n8zl4aG6bBJmgMqEKOzJ8HTJ12NQEy2Ow=) 18: qOlRf_FFYvzJtrv5C1ObqUNVUzk.roa (hash: EfOedSZueUJgPg3V0RQ+mS3lngajdnN3iZ8o0TSNE3A=) 19: yH-qgMAP1a-ONlIbLyS-3YiA-v8.roa (hash: 5ALF18aBSR3V/0UBc56QwyH3CpaKIq6eI34/1+3sXLg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.crl rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.mft rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f6:8a:64:66:58:c8:8e:65:56:b9:69:ab:ca:b6:be:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67499595a65aab0b53768def08091e31061e9e65 Validity Not Before: Dec 7 02:00:56 2025 GMT Not After : Dec 8 02:00:56 2025 GMT Subject: CN=a192b7fa9026435b1c594252cc18b2850711f2f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:51:8e:05:f3:3a:25:20:a7:7b:62:b2:c2:a7: f3:1c:85:55:77:dc:a6:7a:b5:ff:6f:82:be:89:43: cc:fe:65:99:df:39:79:a3:6c:0f:2d:16:5c:a5:00: 3a:cd:2d:69:5b:b6:f3:6e:f9:e5:41:29:15:6f:19: 89:4d:af:81:8e:31:fa:e3:ea:18:7c:72:97:39:ae: f8:83:cd:1b:c8:cc:d9:24:d4:9d:12:cc:de:ab:f6: 33:b4:fd:ab:df:d5:f6:c1:54:6d:6e:26:bc:40:5e: bb:4e:71:11:ee:85:c2:20:65:4f:46:8f:87:ed:5d: fd:e1:d0:04:33:8c:17:68:f6:2d:39:a7:bf:48:41: 46:83:a4:05:d0:23:60:2c:27:b9:bd:39:84:fe:43: cf:7a:89:08:16:d2:2c:31:08:3d:e0:a8:03:96:dd: 27:01:65:3a:1d:f2:82:59:75:6b:0e:22:21:49:e3: 95:9f:3e:47:70:a4:11:be:e4:82:fa:a0:5a:07:2d: 64:44:fa:3c:ec:09:c6:7b:5b:a7:40:cb:23:54:c3: e6:21:39:bb:59:20:ea:6e:9e:49:eb:74:34:bc:af: eb:50:93:87:ff:04:fb:85:58:51:3f:f2:4d:21:03: 69:c6:0a:d0:a0:ec:ee:c5:94:68:b7:8a:7e:16:04: 7a:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:92:B7:FA:90:26:43:5B:1C:59:42:52:CC:18:B2:85:07:11:F2:F6 X509v3 Authority Key Identifier: keyid:67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 92:5b:95:7a:b0:7e:f7:03:64:7c:e7:df:77:ff:19:8d:18:56: 8f:00:07:95:03:64:58:4f:4c:b4:96:04:88:de:40:76:8e:55: bc:d9:36:04:74:f3:ef:e4:18:0d:20:4d:bc:88:88:67:3c:82: 3b:02:50:01:b4:74:9f:a5:3c:2a:73:f3:3b:fc:f6:33:68:62: 50:fd:40:29:78:bb:77:08:d2:ab:fe:22:06:c2:73:99:0a:06: 4c:0b:52:49:4b:31:e5:0f:79:e3:8b:73:be:fc:ae:76:e4:c6: 8d:39:4f:5a:3e:f2:4b:f9:4b:4b:c7:ed:60:7f:23:5c:03:42: ac:a4:d1:96:5c:40:2e:92:34:f9:a5:b7:2b:49:72:bb:03:b9: 98:7d:3d:da:bc:bb:97:06:d9:f9:31:ed:bb:9a:45:b0:7b:86: 07:39:73:aa:e7:b7:a5:8f:36:87:03:2b:a6:fb:d2:56:84:1a: 96:1c:1f:6c:a6:8c:61:f9:74:a7:53:20:9f:e1:a4:68:5d:b1: a6:dd:d2:d8:40:46:bd:17:f1:91:f9:39:e2:ee:b9:17:04:91: 5f:23:cc:0a:65:13:42:fa:a0:b6:1b:b4:24:48:6a:b4:ea:27: e2:1a:be:8f:6d:19:15:6a:d0:ad:8e:47:fc:0a:76:a7:90:41: cc:b1:9e:e7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr2imRmWMiOZVa5aavKtr4aMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY3NDk5NTk1YTY1YWFiMGI1Mzc2OGRlZjA4MDkxZTMxMDYx ZTllNjUwHhcNMjUxMjA3MDIwMDU2WhcNMjUxMjA4MDIwMDU2WjAzMTEwLwYDVQQD EyhhMTkyYjdmYTkwMjY0MzViMWM1OTQyNTJjYzE4YjI4NTA3MTFmMmY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzFGOBfM6JSCne2KywqfzHIVVd9ym erX/b4K+iUPM/mWZ3zl5o2wPLRZcpQA6zS1pW7bzbvnlQSkVbxmJTa+BjjH64+oY fHKXOa74g80byMzZJNSdEszeq/YztP2r39X2wVRtbia8QF67TnER7oXCIGVPRo+H 7V394dAEM4wXaPYtOae/SEFGg6QF0CNgLCe5vTmE/kPPeokIFtIsMQg94KgDlt0n AWU6HfKCWXVrDiIhSeOVnz5HcKQRvuSC+qBaBy1kRPo87AnGe1unQMsjVMPmITm7 WSDqbp5J63Q0vK/rUJOH/wT7hVhRP/JNIQNpxgrQoOzuxZRot4p+FgR6JQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKGSt/qQJkNbHFlCUswYsoUHEfL2MB8GA1UdIwQY MBaAFGdJlZWmWqsLU3aN7wgJHjEGHp5lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWjBtVmxhWmFxd3RUZG8zdkNBa2VNUVllbm1VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi9iNzQ0YjgtZjM5ZC00OTViLWIyMTct MzU1MDgwNDE2NTJkLzEvWjBtVmxhWmFxd3RUZG8zdkNBa2VNUVllbm1VLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Zi9iNzQ0YjgtZjM5ZC00OTViLWIyMTctMzU1MDgwNDE2NTJk LzEvWjBtVmxhWmFxd3RUZG8zdkNBa2VNUVllbm1VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkluVerB+ 9wNkfOffd/8ZjRhWjwAHlQNkWE9MtJYEiN5Ado5VvNk2BHTz7+QYDSBNvIiIZzyC OwJQAbR0n6U8KnPzO/z2M2hiUP1AKXi7dwjSq/4iBsJzmQoGTAtSSUsx5Q9544tz vvyuduTGjTlPWj7yS/lLS8ftYH8jXANCrKTRllxALpI0+aW3K0lyuwO5mH092ry7 lwbZ+THtu5pFsHuGBzlzque3pY82hwMrpvvSVoQalhwfbKaMYfl0p1Mgn+GkaF2x pt3S2EBGvRfxkfk54u65FwSRXyPMCmUTQvqgthu0JEhqtOon4hq+j20ZFWrQrY5H /Ap2p5BBzLGe5w== -----END CERTIFICATE-----Generated at Sun Dec 7 09:19:17 2025 by rpki-client