This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/af1f72-ce8e-42b1-be5a-a283c9048f0f/1/sZVJ1oMF4p37AAaaUtPU4fLFYEw.mft File: sZVJ1oMF4p37AAaaUtPU4fLFYEw.mft (raw, json) Hash identifier: pXs377HZk2gsOqSzo75TUhu0srOVjwtmCXaMVKxGHJc= Subject key identifier: 3B:CE:E1:BC:69:10:9D:6D:BE:A1:1B:40:F3:05:DB:89:56:5C:90:A6 Authority key identifier: B1:95:49:D6:83:05:E2:9D:FB:00:06:9A:52:D3:D4:E1:F2:C5:60:4C Certificate issuer: /CN=b19549d68305e29dfb00069a52d3d4e1f2c5604c Certificate serial: 019B59AD231ADE269D22FACF82B1AFB10D6E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sZVJ1oMF4p37AAaaUtPU4fLFYEw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/af1f72-ce8e-42b1-be5a-a283c9048f0f/1/sZVJ1oMF4p37AAaaUtPU4fLFYEw.mft Manifest number: 0C13 Signing time: Fri 26 Dec 2025 08:01:17 +0000 Manifest this update: Fri 26 Dec 2025 08:01:17 +0000 Manifest next update: Sat 27 Dec 2025 08:01:17 +0000 Files and hashes: 1: pp7YHiA9bCcV4n9KXbmtGvXw0Hw.roa (hash: xXtqKC6cCm9cF/kgqDQZlMKjBn2ULr5S39vUn/a3JHc=) 2: sZVJ1oMF4p37AAaaUtPU4fLFYEw.crl (hash: sItLGR7JnqfBtPlp0nZF3JCZN/eBg3FPLEXdVnUwYZg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/af1f72-ce8e-42b1-be5a-a283c9048f0f/1/sZVJ1oMF4p37AAaaUtPU4fLFYEw.crl rsync://rpki.ripe.net/repository/DEFAULT/64/af1f72-ce8e-42b1-be5a-a283c9048f0f/1/sZVJ1oMF4p37AAaaUtPU4fLFYEw.mft rsync://rpki.ripe.net/repository/DEFAULT/sZVJ1oMF4p37AAaaUtPU4fLFYEw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:ad:23:1a:de:26:9d:22:fa:cf:82:b1:af:b1:0d:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b19549d68305e29dfb00069a52d3d4e1f2c5604c Validity Not Before: Dec 26 08:01:17 2025 GMT Not After : Dec 27 08:01:17 2025 GMT Subject: CN=3bcee1bc69109d6dbea11b40f305db89565c90a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:fc:eb:61:7b:ae:11:4b:d4:6d:eb:39:58:da: e9:ee:a1:c1:37:d2:f4:eb:dd:85:f5:06:2c:ce:92: a2:7d:c5:b7:44:d4:5d:38:da:bd:9e:f3:33:83:8d: 87:40:ae:d1:d0:62:6a:74:d6:1f:c5:12:72:15:80: be:41:ef:af:cb:8f:18:6f:4c:97:b3:91:14:ff:51: ec:8f:b9:7e:11:69:6e:28:ba:33:6a:c1:bd:98:88: 34:d1:99:70:00:90:3c:cd:68:bb:ae:72:0d:89:89: 19:9f:b8:44:7d:41:48:1b:24:2d:44:23:c1:40:7f: 79:73:2e:52:28:2c:a9:07:b2:3a:dd:b9:40:78:0c: 8a:3a:08:cf:d0:dd:87:ff:ac:ca:40:1e:9b:b2:1b: e4:29:19:b4:2f:ca:e8:78:ec:dd:2b:d1:96:8a:0b: af:16:21:5c:27:b7:c3:32:0b:14:1f:71:d6:c1:b2: 77:c0:d7:ad:16:53:25:88:91:c2:3a:8e:f1:6f:7f: 17:2d:4d:5b:92:ca:57:8a:5a:ec:b0:2d:57:9d:8f: ac:4a:bf:41:18:ff:fe:4e:f3:de:b0:97:37:76:ce: f6:50:19:60:86:0a:b1:58:c3:0e:dd:4f:62:6f:cb: ef:f8:b9:a4:42:45:37:3c:6a:16:87:ab:ee:da:e1: fd:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:CE:E1:BC:69:10:9D:6D:BE:A1:1B:40:F3:05:DB:89:56:5C:90:A6 X509v3 Authority Key Identifier: keyid:B1:95:49:D6:83:05:E2:9D:FB:00:06:9A:52:D3:D4:E1:F2:C5:60:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sZVJ1oMF4p37AAaaUtPU4fLFYEw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/af1f72-ce8e-42b1-be5a-a283c9048f0f/1/sZVJ1oMF4p37AAaaUtPU4fLFYEw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/af1f72-ce8e-42b1-be5a-a283c9048f0f/1/sZVJ1oMF4p37AAaaUtPU4fLFYEw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 42:91:c5:66:62:32:fd:fa:2d:7b:d5:02:c3:02:8b:91:d6:bc: 97:df:56:4e:77:3b:be:81:0e:68:5e:1d:94:83:48:26:49:d3: d1:4e:6d:9a:c7:1c:55:ec:66:60:bb:b7:31:10:92:3c:40:dc: 04:dd:b6:f2:09:bd:e6:13:49:51:2e:09:9b:bf:58:0f:d5:08: 15:22:23:75:96:21:b1:6c:9c:13:50:4a:5f:ec:ae:57:09:3d: 66:8b:60:09:11:7e:50:7c:98:2d:20:ae:b5:72:02:c6:33:5f: 54:b9:b3:07:12:3d:68:da:6c:ed:6c:5e:9d:1b:4a:8f:2b:1a: 05:fb:c8:55:27:6e:66:95:29:3a:05:f2:f8:5b:a0:db:b9:12: db:69:5d:1e:4b:d8:6a:3b:d2:15:e6:05:db:ca:29:e6:06:08: 39:c7:c4:6c:ea:4b:e7:4c:85:c5:ca:ed:2b:55:bb:69:58:9d: 1d:10:a5:78:d9:82:43:f0:f3:53:77:00:32:df:89:d1:6e:01: 0d:4d:a1:4f:f5:11:b8:22:5e:8c:21:ba:81:c7:6b:18:68:85: 91:71:ab:e1:e5:fe:5c:47:67:01:dd:6d:69:f3:89:65:1c:0e: 97:84:21:47:c2:f5:35:65:50:d5:5f:81:26:15:ed:25:da:b5: 9f:10:93:d8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZrSMa3iadIvrPgrGvsQ1uMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxOTU0OWQ2ODMwNWUyOWRmYjAwMDY5YTUyZDNkNGUxZjJj NTYwNGMwHhcNMjUxMjI2MDgwMTE3WhcNMjUxMjI3MDgwMTE3WjAzMTEwLwYDVQQD EygzYmNlZTFiYzY5MTA5ZDZkYmVhMTFiNDBmMzA1ZGI4OTU2NWM5MGE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwvzrYXuuEUvUbes5WNrp7qHBN9L0 692F9QYszpKifcW3RNRdONq9nvMzg42HQK7R0GJqdNYfxRJyFYC+Qe+vy48Yb0yX s5EU/1Hsj7l+EWluKLozasG9mIg00ZlwAJA8zWi7rnINiYkZn7hEfUFIGyQtRCPB QH95cy5SKCypB7I63blAeAyKOgjP0N2H/6zKQB6bshvkKRm0L8roeOzdK9GWiguv FiFcJ7fDMgsUH3HWwbJ3wNetFlMliJHCOo7xb38XLU1bkspXilrssC1XnY+sSr9B GP/+TvPesJc3ds72UBlghgqxWMMO3U9ib8vv+LmkQkU3PGoWh6vu2uH9DwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDvO4bxpEJ1tvqEbQPMF24lWXJCmMB8GA1UdIwQY MBaAFLGVSdaDBeKd+wAGmlLT1OHyxWBMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc1pWSjFvTUY0cDM3QUFhYVV0UFU0ZkxGWUV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC9hZjFmNzItY2U4ZS00MmIxLWJlNWEt YTI4M2M5MDQ4ZjBmLzEvc1pWSjFvTUY0cDM3QUFhYVV0UFU0ZkxGWUV3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC9hZjFmNzItY2U4ZS00MmIxLWJlNWEtYTI4M2M5MDQ4ZjBm LzEvc1pWSjFvTUY0cDM3QUFhYVV0UFU0ZkxGWUV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQpHFZmIy /fote9UCwwKLkda8l99WTnc7voEOaF4dlINIJknT0U5tmsccVexmYLu3MRCSPEDc BN228gm95hNJUS4Jm79YD9UIFSIjdZYhsWycE1BKX+yuVwk9ZotgCRF+UHyYLSCu tXICxjNfVLmzBxI9aNps7WxenRtKjysaBfvIVSduZpUpOgXy+Fug27kS22ldHkvY ajvSFeYF28op5gYIOcfEbOpL50yFxcrtK1W7aVidHRCleNmCQ/DzU3cAMt+J0W4B DU2hT/URuCJejCG6gcdrGGiFkXGr4eX+XEdnAd1tafOJZRwOl4QhR8L1NWVQ1V+B JhXtJdq1nxCT2A== -----END CERTIFICATE-----Generated at Fri Dec 26 16:06:23 2025 by rpki-client