This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.mft File: pZyqKnNoBpiyyeGmyWQadPPOdug.mft (raw, json) Hash identifier: K5E/Xl25SoYFnqPrmCpZmoxXEdOcIIJgy9CfvlalJdQ= Subject key identifier: 37:35:66:92:BB:2C:C9:DB:78:DE:1D:EE:44:10:5C:3C:F3:A9:64:2D Authority key identifier: A5:9C:AA:2A:73:68:06:98:B2:C9:E1:A6:C9:64:1A:74:F3:CE:76:E8 Certificate issuer: /CN=a59caa2a73680698b2c9e1a6c9641a74f3ce76e8 Certificate serial: 019B5B2D296C12A26E0EFD6E9A34EC53606D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pZyqKnNoBpiyyeGmyWQadPPOdug.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.mft Manifest number: 0C2D Signing time: Fri 26 Dec 2025 15:00:44 +0000 Manifest this update: Fri 26 Dec 2025 15:00:44 +0000 Manifest next update: Sat 27 Dec 2025 15:00:44 +0000 Files and hashes: 1: _c_c0M25UwpZ7eHBk4pzeagMlVQ.roa (hash: 8jqy4hlWYt18GsvMo6F88//T4bDxnnNcBAAfWfrvPK8=) 2: pZyqKnNoBpiyyeGmyWQadPPOdug.crl (hash: POnwuHutQ9+x1YVRu4K7a6LlSoe2zW9VO6tWRU7D29s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.crl rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.mft rsync://rpki.ripe.net/repository/DEFAULT/pZyqKnNoBpiyyeGmyWQadPPOdug.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 15:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5b:2d:29:6c:12:a2:6e:0e:fd:6e:9a:34:ec:53:60:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a59caa2a73680698b2c9e1a6c9641a74f3ce76e8 Validity Not Before: Dec 26 15:00:44 2025 GMT Not After : Dec 27 15:00:44 2025 GMT Subject: CN=37356692bb2cc9db78de1dee44105c3cf3a9642d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:c8:c7:57:ad:e3:f2:df:dd:51:c6:46:59:d5: 13:4d:77:fd:72:92:29:a7:a7:7a:f7:fa:33:29:84: c4:54:c2:0d:21:41:a8:be:4c:45:bc:85:8d:e3:64: 8f:81:74:ed:05:16:4c:aa:c4:f0:24:ed:f0:7e:46: 84:d6:4a:11:b2:5b:78:a2:19:c9:8d:87:1f:07:52: 37:25:0a:81:ca:e6:c1:1b:b0:91:3e:7e:ab:af:00: 1b:75:eb:99:14:ae:e3:66:37:45:00:a5:34:d4:78: 94:2a:ba:2c:38:02:51:13:a6:90:08:08:5c:af:a7: 91:b0:67:a7:a2:ab:61:62:40:cf:06:42:3a:a6:b3: fc:2d:2b:f3:cd:99:c4:bb:66:d5:76:a3:eb:61:bf: db:4c:59:da:af:6c:15:01:54:79:b1:3f:ad:13:a2: ac:c7:ae:56:4e:42:c4:9f:67:00:4c:90:b2:9c:07: fd:87:a6:7c:38:47:c6:15:df:5d:07:21:bf:c1:59: 41:2c:4a:b6:f4:6b:a2:22:f6:23:d9:ce:21:e5:05: 8c:83:26:46:06:50:b8:c3:87:29:70:42:e3:4c:76: 06:37:68:53:7d:0f:a7:9e:a2:1c:94:cf:7f:20:6e: 57:69:c6:95:22:5f:02:ea:aa:19:c9:a0:cd:8b:aa: 73:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:35:66:92:BB:2C:C9:DB:78:DE:1D:EE:44:10:5C:3C:F3:A9:64:2D X509v3 Authority Key Identifier: keyid:A5:9C:AA:2A:73:68:06:98:B2:C9:E1:A6:C9:64:1A:74:F3:CE:76:E8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pZyqKnNoBpiyyeGmyWQadPPOdug.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 89:be:e1:90:6a:b7:2a:1e:ce:9a:84:0c:6f:39:ec:18:cd:a0: 9d:34:ad:92:ff:4a:33:14:9d:88:70:83:a1:2d:3c:f9:ab:27: 5d:c1:7e:b9:4a:6a:04:9f:cf:da:05:a6:f9:34:45:bd:7f:92: 2f:b8:5b:f0:55:35:c4:5d:6f:5f:a0:9c:d5:44:cf:c2:ae:fe: 30:1a:76:27:4a:6c:fe:c8:6f:af:40:14:dc:cb:0f:64:11:35: 13:7a:6d:8e:6e:54:da:bd:37:fc:47:22:7a:d2:bd:d7:30:a0: f1:ba:b3:53:a1:ca:7a:2f:6b:f3:88:88:01:f9:e7:fc:bb:1a: 5d:e9:1d:de:79:a9:67:a2:48:88:db:5f:4e:fd:fe:72:4f:e7: 88:b7:30:36:8e:21:e1:4a:ea:8f:ab:69:77:af:fd:14:60:5d: 1c:f2:d3:0d:e2:12:ce:61:82:a0:a7:ba:99:6c:86:85:b5:81: 5f:73:9f:22:7f:a0:25:3b:dd:e2:b5:22:1a:91:19:5c:b0:27: 22:c9:32:e4:34:c9:ca:f6:7a:4f:16:cc:14:c2:a8:f1:71:7b: 57:5b:69:be:06:b4:4f:af:c9:18:c3:76:78:4a:22:02:26:d4: a3:e0:8b:df:0d:d0:6f:72:ab:64:16:4e:d0:00:39:7b:23:01: 67:99:d0:22 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtbLSlsEqJuDv1umjTsU2BtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE1OWNhYTJhNzM2ODA2OThiMmM5ZTFhNmM5NjQxYTc0ZjNj ZTc2ZTgwHhcNMjUxMjI2MTUwMDQ0WhcNMjUxMjI3MTUwMDQ0WjAzMTEwLwYDVQQD EygzNzM1NjY5MmJiMmNjOWRiNzhkZTFkZWU0NDEwNWMzY2YzYTk2NDJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhMjHV63j8t/dUcZGWdUTTXf9cpIp p6d69/ozKYTEVMINIUGovkxFvIWN42SPgXTtBRZMqsTwJO3wfkaE1koRslt4ohnJ jYcfB1I3JQqByubBG7CRPn6rrwAbdeuZFK7jZjdFAKU01HiUKrosOAJRE6aQCAhc r6eRsGenoqthYkDPBkI6prP8LSvzzZnEu2bVdqPrYb/bTFnar2wVAVR5sT+tE6Ks x65WTkLEn2cATJCynAf9h6Z8OEfGFd9dByG/wVlBLEq29GuiIvYj2c4h5QWMgyZG BlC4w4cpcELjTHYGN2hTfQ+nnqIclM9/IG5XacaVIl8C6qoZyaDNi6pzwQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDc1ZpK7LMnbeN4d7kQQXDzzqWQtMB8GA1UdIwQY MBaAFKWcqipzaAaYssnhpslkGnTzznboMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcFp5cUtuTm9CcGl5eWVHbXlXUWFkUFBPZHVnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9kZDY3MmYtNTMzNi00ZjM1LWIzZWYt YWU5MWFiMzQyYmUxLzEvcFp5cUtuTm9CcGl5eWVHbXlXUWFkUFBPZHVnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOC9kZDY3MmYtNTMzNi00ZjM1LWIzZWYtYWU5MWFiMzQyYmUx LzEvcFp5cUtuTm9CcGl5eWVHbXlXUWFkUFBPZHVnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAib7hkGq3 Kh7OmoQMbznsGM2gnTStkv9KMxSdiHCDoS08+asnXcF+uUpqBJ/P2gWm+TRFvX+S L7hb8FU1xF1vX6Cc1UTPwq7+MBp2J0ps/shvr0AU3MsPZBE1E3ptjm5U2r03/Eci etK91zCg8bqzU6HKei9r84iIAfnn/LsaXekd3nmpZ6JIiNtfTv3+ck/niLcwNo4h 4Urqj6tpd6/9FGBdHPLTDeISzmGCoKe6mWyGhbWBX3OfIn+gJTvd4rUiGpEZXLAn Isky5DTJyvZ6TxbMFMKo8XF7V1tpvga0T6/JGMN2eEoiAibUo+CL3w3Qb3KrZBZO 0AA5eyMBZ5nQIg== -----END CERTIFICATE-----Generated at Sat Dec 27 00:16:34 2025 by rpki-client