This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.mft File: ZrqNZOkBs5tQHtNpPsJ0MHE4huM.mft (raw, json) Hash identifier: MbgnsB/Rgo5bupomEFLITAzVHzy/qbAupFtzdFPZm4w= Subject key identifier: 8D:E1:77:73:98:B5:90:03:E9:61:49:73:76:A9:5A:C0:58:06:1B:4A Authority key identifier: 66:BA:8D:64:E9:01:B3:9B:50:1E:D3:69:3E:C2:74:30:71:38:86:E3 Certificate issuer: /CN=66ba8d64e901b39b501ed3693ec27430713886e3 Certificate serial: 019B33E8F50030EF84645536FCA890C745EE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.mft Manifest number: 10F1 Signing time: Fri 19 Dec 2025 00:01:03 +0000 Manifest this update: Fri 19 Dec 2025 00:01:03 +0000 Manifest next update: Sat 20 Dec 2025 00:01:03 +0000 Files and hashes: 1: Fg0QsDS_oIn0AHFloFbOWLXLPYw.roa (hash: PCZ0sNE5BS8dEXbU+ksvDG3w1iOi7xIBrn9yDW7TZ/U=) 2: ZrqNZOkBs5tQHtNpPsJ0MHE4huM.crl (hash: gOTZ4Z3Qg1NLhuCngYVr1dH3wJLc+60B29/Bt9t4sEg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.crl rsync://rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.mft rsync://rpki.ripe.net/repository/DEFAULT/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:33:e8:f5:00:30:ef:84:64:55:36:fc:a8:90:c7:45:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66ba8d64e901b39b501ed3693ec27430713886e3 Validity Not Before: Dec 19 00:01:03 2025 GMT Not After : Dec 20 00:01:03 2025 GMT Subject: CN=8de1777398b59003e961497376a95ac058061b4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ba:0a:c1:2d:31:e0:b9:24:34:6b:8f:db:10: 04:7e:a7:89:ee:1e:5b:7b:3a:92:d1:ab:de:54:fe: ac:13:81:75:d8:68:0c:7c:32:e6:0f:99:7d:9f:28: c5:99:4d:1e:a7:92:3a:bf:a4:b0:e4:14:39:88:42: 60:a0:f6:73:b0:8e:6b:14:14:4b:1f:14:53:bc:24: d3:ad:59:0c:d4:36:08:48:e3:55:9c:0a:d6:9a:a8: 8e:5e:7c:06:df:5a:60:63:0b:91:77:d8:54:30:03: f5:1c:f3:df:6e:b0:fa:82:b3:eb:44:46:51:bb:32: 34:68:13:c4:47:6c:d3:aa:10:00:cf:55:24:19:40: fc:a1:cd:f3:e2:e1:f2:51:e5:80:8d:8a:4f:40:52: 15:ec:0e:8e:b7:98:21:68:d6:d2:2c:3e:1e:2b:90: 79:71:b0:75:d5:57:31:c9:72:f4:0b:78:f9:fe:e8: e2:83:27:a1:e5:5b:db:4e:34:21:09:20:78:23:d2: 85:74:83:38:34:ec:38:07:3f:e1:18:79:da:0f:69: 7a:12:6f:07:2a:48:61:dd:be:b5:3d:5f:84:b4:b7: 3a:48:0b:6c:98:79:eb:84:3f:84:e9:fc:af:b3:ae: f9:ec:92:5e:00:38:af:78:b4:63:65:4d:f6:6f:b3: dd:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:E1:77:73:98:B5:90:03:E9:61:49:73:76:A9:5A:C0:58:06:1B:4A X509v3 Authority Key Identifier: keyid:66:BA:8D:64:E9:01:B3:9B:50:1E:D3:69:3E:C2:74:30:71:38:86:E3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/91/aa7e53-490f-4177-8b11-0b3e7ebe4ac2/1/ZrqNZOkBs5tQHtNpPsJ0MHE4huM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:b1:72:c1:ec:40:78:a8:4e:2c:77:81:12:d4:70:57:36:82: 86:05:93:04:89:c8:04:f0:bc:4b:32:2b:c9:8c:77:d9:b1:d1: 3e:b1:5c:db:db:bc:ec:b1:b5:4a:4c:da:22:aa:c5:b4:a8:98: ae:c6:8f:74:26:5f:96:c5:24:60:9f:0b:3d:e9:28:1c:56:b7: b2:55:53:cf:2d:03:54:4e:c4:48:ab:33:2f:1d:ab:2d:15:b4: bd:45:35:62:11:98:0a:fb:8a:59:9b:d7:3c:16:7c:01:09:b9: 2d:23:94:19:74:c4:e7:94:f7:af:a0:3d:b8:36:b6:4f:3b:81: 1d:c5:9e:96:c5:1a:03:29:71:04:c9:82:8d:6b:89:7a:7c:8b: 76:5f:0f:05:1a:8d:d1:ac:a4:0d:52:a8:5b:37:4f:79:12:99: e3:c6:14:1a:53:a5:99:78:cf:b8:2d:ea:cd:e5:0b:d3:58:9f: f7:68:f6:7a:16:8b:86:51:49:10:6e:1e:be:5b:c6:3b:6f:f8: 1b:09:ff:72:8c:b1:eb:65:d4:10:b2:9e:92:e7:63:1e:0a:02: 6e:5e:18:93:89:0f:03:ad:05:e8:d3:90:76:ac:43:05:9e:2a: f2:c5:52:13:6c:1a:92:ec:f4:7f:f3:e5:7d:9b:a8:29:72:d1: 4d:82:a9:01 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsz6PUAMO+EZFU2/KiQx0XuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY2YmE4ZDY0ZTkwMWIzOWI1MDFlZDM2OTNlYzI3NDMwNzEz ODg2ZTMwHhcNMjUxMjE5MDAwMTAzWhcNMjUxMjIwMDAwMTAzWjAzMTEwLwYDVQQD Eyg4ZGUxNzc3Mzk4YjU5MDAzZTk2MTQ5NzM3NmE5NWFjMDU4MDYxYjRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr7oKwS0x4LkkNGuP2xAEfqeJ7h5b ezqS0aveVP6sE4F12GgMfDLmD5l9nyjFmU0ep5I6v6Sw5BQ5iEJgoPZzsI5rFBRL HxRTvCTTrVkM1DYISONVnArWmqiOXnwG31pgYwuRd9hUMAP1HPPfbrD6grPrREZR uzI0aBPER2zTqhAAz1UkGUD8oc3z4uHyUeWAjYpPQFIV7A6Ot5ghaNbSLD4eK5B5 cbB11VcxyXL0C3j5/ujigyeh5VvbTjQhCSB4I9KFdIM4NOw4Bz/hGHnaD2l6Em8H Kkhh3b61PV+EtLc6SAtsmHnrhD+E6fyvs6757JJeADiveLRjZU32b7PdtwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI3hd3OYtZAD6WFJc3apWsBYBhtKMB8GA1UdIwQY MBaAFGa6jWTpAbObUB7TaT7CdDBxOIbjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWnJxTlpPa0JzNXRRSHROcFBzSjBNSEU0aHVNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MS9hYTdlNTMtNDkwZi00MTc3LThiMTEt MGIzZTdlYmU0YWMyLzEvWnJxTlpPa0JzNXRRSHROcFBzSjBNSEU0aHVNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MS9hYTdlNTMtNDkwZi00MTc3LThiMTEtMGIzZTdlYmU0YWMy LzEvWnJxTlpPa0JzNXRRSHROcFBzSjBNSEU0aHVNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARbFywexA eKhOLHeBEtRwVzaChgWTBInIBPC8SzIryYx32bHRPrFc29u87LG1SkzaIqrFtKiY rsaPdCZflsUkYJ8LPekoHFa3slVTzy0DVE7ESKszLx2rLRW0vUU1YhGYCvuKWZvX PBZ8AQm5LSOUGXTE55T3r6A9uDa2TzuBHcWelsUaAylxBMmCjWuJenyLdl8PBRqN 0aykDVKoWzdPeRKZ48YUGlOlmXjPuC3qzeUL01if92j2ehaLhlFJEG4evlvGO2/4 Gwn/coyx62XUELKekudjHgoCbl4Yk4kPA60F6NOQdqxDBZ4q8sVSE2wakuz0f/Pl fZuoKXLRTYKpAQ== -----END CERTIFICATE-----Generated at Fri Dec 19 04:54:07 2025 by rpki-client