This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/fZK2dHUnB1UTaoo8qALKEsisfnc.mft File: fZK2dHUnB1UTaoo8qALKEsisfnc.mft (raw, json) Hash identifier: WVT0y2UE1Dh1bD0NU/b7vx0yaKagfHvTDrLmISy49X4= Subject key identifier: AD:BD:31:AE:77:C6:55:09:53:6D:B1:3A:C2:FF:D2:21:27:DE:5A:13 Authority key identifier: 7D:92:B6:74:75:27:07:55:13:6A:8A:3C:A8:02:CA:12:C8:AC:7E:77 Certificate issuer: /CN=7d92b67475270755136a8a3ca802ca12c8ac7e77 Certificate serial: 019B0E5BCB1DBCC57F49B136B7985CCE1E6F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fZK2dHUnB1UTaoo8qALKEsisfnc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/fZK2dHUnB1UTaoo8qALKEsisfnc.mft Manifest number: 0E97 Signing time: Thu 11 Dec 2025 17:00:55 +0000 Manifest this update: Thu 11 Dec 2025 17:00:55 +0000 Manifest next update: Fri 12 Dec 2025 17:00:55 +0000 Files and hashes: 1: 2CYNXB5qZHN7in7RGaGVmXvb7Xs.roa (hash: n74UAylTv760Shvrd+PI6ipCj4rV+2WaR3QnP3+8e6Y=) 2: fZK2dHUnB1UTaoo8qALKEsisfnc.crl (hash: 41E3X6Gv4CrtiaEJBh4TmaW5IH+kFp5ltTJp2PYCbuU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/fZK2dHUnB1UTaoo8qALKEsisfnc.crl rsync://rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/fZK2dHUnB1UTaoo8qALKEsisfnc.mft rsync://rpki.ripe.net/repository/DEFAULT/fZK2dHUnB1UTaoo8qALKEsisfnc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 14:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0e:5b:cb:1d:bc:c5:7f:49:b1:36:b7:98:5c:ce:1e:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7d92b67475270755136a8a3ca802ca12c8ac7e77 Validity Not Before: Dec 11 17:00:55 2025 GMT Not After : Dec 12 17:00:55 2025 GMT Subject: CN=adbd31ae77c65509536db13ac2ffd22127de5a13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:93:92:e8:c1:f6:13:c9:51:1e:44:29:44:a6: e9:0a:c5:7d:41:18:1f:fd:b7:b8:37:7b:3a:d1:61: 33:a7:52:37:93:64:42:bd:15:d6:c9:38:16:7a:e2: de:6b:58:27:e6:82:82:f6:35:b6:8b:09:fa:3f:80: e9:6f:1f:67:14:43:0a:0f:bc:4e:35:ed:a0:63:a4: 70:32:67:5b:64:44:27:6d:3e:36:e1:fb:9a:ba:59: b3:a6:6c:24:32:5a:3e:50:07:ac:08:28:3c:d3:18: b3:7d:52:c8:82:96:be:c2:66:08:e2:0a:cd:fe:44: 82:67:06:4c:8a:42:b5:aa:98:f2:49:c8:14:cb:1d: 39:df:08:14:83:f4:44:be:56:0c:bc:9f:ca:95:ba: 0d:74:fe:9f:38:bc:ea:76:3a:6c:e2:12:77:06:7a: 68:f1:e2:76:f3:de:3a:09:26:e9:d3:55:dc:43:17: 06:f5:9c:0d:58:d2:93:77:18:97:29:13:95:1b:73: 6a:10:81:ee:7f:e7:15:9a:14:fa:24:53:22:07:b6: 1d:36:93:a1:6c:e6:c9:5a:2b:c6:04:42:06:af:56: 55:fb:55:1e:32:6f:9e:e9:a8:0d:ac:5c:2b:92:0c: 55:e9:d6:43:93:13:b7:a5:be:6b:2e:fa:85:97:d6: 52:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:BD:31:AE:77:C6:55:09:53:6D:B1:3A:C2:FF:D2:21:27:DE:5A:13 X509v3 Authority Key Identifier: keyid:7D:92:B6:74:75:27:07:55:13:6A:8A:3C:A8:02:CA:12:C8:AC:7E:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fZK2dHUnB1UTaoo8qALKEsisfnc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/fZK2dHUnB1UTaoo8qALKEsisfnc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/05e814-cac4-41a8-875e-410c671e7577/1/fZK2dHUnB1UTaoo8qALKEsisfnc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2e:8f:4a:20:38:9f:8c:50:31:0c:5a:93:2d:19:19:31:b5:8b: c1:68:6d:61:a3:8f:7e:5f:f3:69:4a:b7:fd:c8:4e:d7:8a:2a: 56:20:8e:69:fc:41:a9:8f:64:2e:d9:1c:18:7a:77:f4:2a:c7: 83:e7:09:4d:c3:3d:d4:8c:10:ca:a9:35:11:63:ae:2d:ab:f3: fd:cc:bf:f6:28:70:96:2b:1a:33:f2:5e:92:96:77:cc:f3:5d: ba:a8:96:3d:a8:61:ff:ac:ec:43:26:fb:32:c8:b4:83:2c:59: 63:a8:d4:d1:0a:ad:33:a3:7c:bf:96:ec:81:17:dd:8a:8b:d7: 03:d7:7a:6a:e5:12:97:35:bd:05:f0:70:10:4b:7d:41:a3:65: 88:e8:2c:91:fa:13:b3:37:45:49:75:a9:53:17:94:3a:7c:c1: 3e:6f:c8:3e:df:47:9a:a7:c1:da:35:d8:d2:30:31:b1:aa:9c: 86:d1:0f:00:9b:71:57:24:57:e9:f7:7d:b3:05:94:f2:c8:7d: 91:d2:79:e8:01:a7:28:a0:e9:be:0b:af:1c:37:53:8c:4c:54: cd:63:f2:8a:0c:dc:a9:40:11:60:af:bf:87:08:df:40:99:bf: fb:8d:a7:7d:fd:5a:27:fd:69:28:cc:a9:5c:fb:1e:78:5e:70: dc:03:d6:28 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsOW8sdvMV/SbE2t5hczh5vMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdkOTJiNjc0NzUyNzA3NTUxMzZhOGEzY2E4MDJjYTEyYzhh YzdlNzcwHhcNMjUxMjExMTcwMDU1WhcNMjUxMjEyMTcwMDU1WjAzMTEwLwYDVQQD EyhhZGJkMzFhZTc3YzY1NTA5NTM2ZGIxM2FjMmZmZDIyMTI3ZGU1YTEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwpOS6MH2E8lRHkQpRKbpCsV9QRgf /be4N3s60WEzp1I3k2RCvRXWyTgWeuLea1gn5oKC9jW2iwn6P4Dpbx9nFEMKD7xO Ne2gY6RwMmdbZEQnbT424fuaulmzpmwkMlo+UAesCCg80xizfVLIgpa+wmYI4grN /kSCZwZMikK1qpjyScgUyx053wgUg/REvlYMvJ/KlboNdP6fOLzqdjps4hJ3Bnpo 8eJ28946CSbp01XcQxcG9ZwNWNKTdxiXKROVG3NqEIHuf+cVmhT6JFMiB7YdNpOh bObJWivGBEIGr1ZV+1UeMm+e6agNrFwrkgxV6dZDkxO3pb5rLvqFl9ZS4QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK29Ma53xlUJU22xOsL/0iEn3loTMB8GA1UdIwQY MBaAFH2StnR1JwdVE2qKPKgCyhLIrH53MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZlpLMmRIVW5CMVVUYW9vOHFBTEtFc2lzZm5jLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yy8wNWU4MTQtY2FjNC00MWE4LTg3NWUt NDEwYzY3MWU3NTc3LzEvZlpLMmRIVW5CMVVUYW9vOHFBTEtFc2lzZm5jLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Yy8wNWU4MTQtY2FjNC00MWE4LTg3NWUtNDEwYzY3MWU3NTc3 LzEvZlpLMmRIVW5CMVVUYW9vOHFBTEtFc2lzZm5jLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALo9KIDif jFAxDFqTLRkZMbWLwWhtYaOPfl/zaUq3/chO14oqViCOafxBqY9kLtkcGHp39CrH g+cJTcM91IwQyqk1EWOuLavz/cy/9ihwlisaM/JekpZ3zPNduqiWPahh/6zsQyb7 Msi0gyxZY6jU0QqtM6N8v5bsgRfdiovXA9d6auUSlzW9BfBwEEt9QaNliOgskfoT szdFSXWpUxeUOnzBPm/IPt9HmqfB2jXY0jAxsaqchtEPAJtxVyRX6fd9swWU8sh9 kdJ56AGnKKDpvguvHDdTjExUzWPyigzcqUARYK+/hwjfQJm/+42nff1aJ/1pKMyp XPseeF5w3APWKA== -----END CERTIFICATE-----Generated at Fri Dec 12 00:27:35 2025 by rpki-client