This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/7e1b1c-f963-4e29-b8ec-788db09d0fe6/1/RzLsDpHbv5TdodZQRH0miXbWIJo.mft File: RzLsDpHbv5TdodZQRH0miXbWIJo.mft (raw, json) Hash identifier: sacmnLWHH8+gAde1GdUBgjKCUG5NbodZJ1PclsMKWlY= Subject key identifier: AB:8C:68:BE:44:85:90:CF:7A:15:03:EE:09:EC:D0:97:DF:2A:A9:5C Authority key identifier: 47:32:EC:0E:91:DB:BF:94:DD:A1:D6:50:44:7D:26:89:76:D6:20:9A Certificate issuer: /CN=4732ec0e91dbbf94dda1d650447d268976d6209a Certificate serial: 019B191617902FF06C39F04104939BEBAC10 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RzLsDpHbv5TdodZQRH0miXbWIJo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/7e1b1c-f963-4e29-b8ec-788db09d0fe6/1/RzLsDpHbv5TdodZQRH0miXbWIJo.mft Manifest number: 0C2C Signing time: Sat 13 Dec 2025 19:00:36 +0000 Manifest this update: Sat 13 Dec 2025 19:00:36 +0000 Manifest next update: Sun 14 Dec 2025 19:00:36 +0000 Files and hashes: 1: RzLsDpHbv5TdodZQRH0miXbWIJo.crl (hash: ahKlmYuDrUSmZpeBFB51s9vf7wdxO2smarq3YNPdduE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/7e1b1c-f963-4e29-b8ec-788db09d0fe6/1/RzLsDpHbv5TdodZQRH0miXbWIJo.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/7e1b1c-f963-4e29-b8ec-788db09d0fe6/1/RzLsDpHbv5TdodZQRH0miXbWIJo.mft rsync://rpki.ripe.net/repository/DEFAULT/RzLsDpHbv5TdodZQRH0miXbWIJo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 17:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:19:16:17:90:2f:f0:6c:39:f0:41:04:93:9b:eb:ac:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4732ec0e91dbbf94dda1d650447d268976d6209a Validity Not Before: Dec 13 19:00:36 2025 GMT Not After : Dec 14 19:00:36 2025 GMT Subject: CN=ab8c68be448590cf7a1503ee09ecd097df2aa95c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:98:6a:07:f3:06:a2:e9:85:d7:d9:c9:86:2d: e4:fa:25:d5:2f:17:9a:de:a4:63:ca:4e:ab:d4:87: bb:40:70:9a:5f:9a:32:a2:77:bd:3b:5c:85:a5:fa: e2:a9:31:35:8c:db:e4:90:06:1a:f3:53:7f:2c:3c: bb:4f:37:d3:40:77:15:cc:d7:07:fd:c3:c9:dc:d3: 92:eb:fc:d0:77:ef:5f:ea:3d:45:14:5b:ed:40:e9: 53:c9:86:e3:fd:b6:7a:40:47:46:82:23:41:d5:b5: 31:78:2e:5d:bf:77:78:38:c0:e9:5c:b9:14:22:9c: 31:6e:9c:90:48:4c:a6:ad:71:82:c5:96:49:9f:dd: 18:1b:91:54:21:38:c5:f6:64:c0:3c:f8:98:e6:5d: b5:33:4d:e5:e8:88:a7:67:17:02:46:a5:3e:93:dc: c0:13:dd:4e:10:78:b7:e1:c6:ba:2a:d3:ed:75:a0: d4:59:41:37:42:f8:88:7f:59:89:04:f4:a8:a7:f1: 59:d3:28:28:a2:33:db:10:45:5e:20:8a:0c:c9:b6: 40:cf:f7:c3:2d:37:af:7e:56:39:8b:60:b7:ce:70: 1d:6b:4f:94:52:04:63:b0:86:a3:03:10:2e:21:6c: a5:96:be:81:7d:42:a4:1b:63:f9:16:d9:1d:2b:5e: 57:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:8C:68:BE:44:85:90:CF:7A:15:03:EE:09:EC:D0:97:DF:2A:A9:5C X509v3 Authority Key Identifier: keyid:47:32:EC:0E:91:DB:BF:94:DD:A1:D6:50:44:7D:26:89:76:D6:20:9A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RzLsDpHbv5TdodZQRH0miXbWIJo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/7e1b1c-f963-4e29-b8ec-788db09d0fe6/1/RzLsDpHbv5TdodZQRH0miXbWIJo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/7e1b1c-f963-4e29-b8ec-788db09d0fe6/1/RzLsDpHbv5TdodZQRH0miXbWIJo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9e:32:54:8c:21:e6:f9:78:ff:4c:a4:ba:a7:aa:83:8a:f5:62: ed:27:b7:e9:e1:21:75:60:c8:4f:5f:75:22:ac:32:96:c7:28: cc:bc:ae:c5:34:6a:98:fc:c8:09:5e:91:88:d4:d7:f0:05:c8: 7f:6c:48:fb:78:77:d7:99:36:03:bd:df:7c:e6:3d:f2:14:d4: 55:08:e5:14:87:6d:ea:ec:8e:b3:30:a7:e8:bc:e1:2d:74:44: c1:dc:93:0c:42:d5:f8:30:69:08:94:86:32:fb:55:16:ac:a6: 49:e2:68:28:d4:59:c5:b8:38:86:51:38:89:07:ee:c8:a6:22: 6d:39:1c:69:4e:d0:4e:4c:84:f7:10:1e:cb:1b:d6:04:bf:48: a4:d2:e5:03:16:55:20:c5:80:ca:0a:79:bb:fe:87:92:53:6d: 7f:7b:78:63:f0:c9:68:5a:1b:ff:4c:e3:12:b1:11:85:aa:a7: e7:89:90:df:29:c0:ec:2c:03:be:d6:4c:78:19:03:52:24:4e: 5e:85:6c:00:9b:40:a5:ac:7b:61:d2:e9:1b:30:91:30:d5:d9: 07:10:9b:f5:db:16:2f:7d:3d:c8:4c:01:e5:88:73:f5:33:5e: 7b:0d:02:3d:61:3f:2a:db:c2:ee:ba:89:78:dc:80:66:05:52: bf:d2:9e:de -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsZFheQL/BsOfBBBJOb66wQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ3MzJlYzBlOTFkYmJmOTRkZGExZDY1MDQ0N2QyNjg5NzZk NjIwOWEwHhcNMjUxMjEzMTkwMDM2WhcNMjUxMjE0MTkwMDM2WjAzMTEwLwYDVQQD EyhhYjhjNjhiZTQ0ODU5MGNmN2ExNTAzZWUwOWVjZDA5N2RmMmFhOTVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtZhqB/MGoumF19nJhi3k+iXVLxea 3qRjyk6r1Ie7QHCaX5oyone9O1yFpfriqTE1jNvkkAYa81N/LDy7TzfTQHcVzNcH /cPJ3NOS6/zQd+9f6j1FFFvtQOlTyYbj/bZ6QEdGgiNB1bUxeC5dv3d4OMDpXLkU IpwxbpyQSEymrXGCxZZJn90YG5FUITjF9mTAPPiY5l21M03l6IinZxcCRqU+k9zA E91OEHi34ca6KtPtdaDUWUE3QviIf1mJBPSop/FZ0ygoojPbEEVeIIoMybZAz/fD LTevflY5i2C3znAda0+UUgRjsIajAxAuIWyllr6BfUKkG2P5FtkdK15XAwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKuMaL5EhZDPehUD7gns0JffKqlcMB8GA1UdIwQY MBaAFEcy7A6R27+U3aHWUER9Jol21iCaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUnpMc0RwSGJ2NVRkb2RaUVJIMG1pWGJXSUpvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy83ZTFiMWMtZjk2My00ZTI5LWI4ZWMt Nzg4ZGIwOWQwZmU2LzEvUnpMc0RwSGJ2NVRkb2RaUVJIMG1pWGJXSUpvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy83ZTFiMWMtZjk2My00ZTI5LWI4ZWMtNzg4ZGIwOWQwZmU2 LzEvUnpMc0RwSGJ2NVRkb2RaUVJIMG1pWGJXSUpvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnjJUjCHm +Xj/TKS6p6qDivVi7Se36eEhdWDIT191IqwylscozLyuxTRqmPzICV6RiNTX8AXI f2xI+3h315k2A73ffOY98hTUVQjlFIdt6uyOszCn6LzhLXREwdyTDELV+DBpCJSG MvtVFqymSeJoKNRZxbg4hlE4iQfuyKYibTkcaU7QTkyE9xAeyxvWBL9IpNLlAxZV IMWAygp5u/6HklNtf3t4Y/DJaFob/0zjErERhaqn54mQ3ynA7CwDvtZMeBkDUiRO XoVsAJtApax7YdLpGzCRMNXZBxCb9dsWL309yEwB5Yhz9TNeew0CPWE/KtvC7rqJ eNyAZgVSv9Ke3g== -----END CERTIFICATE-----Generated at Sun Dec 14 01:50:55 2025 by rpki-client