This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/65bf1d-ec1d-40e6-849d-79790d66d7d3/1/fzP8QNLgMzu8e96rK9hZlUMBwPE.mft File: fzP8QNLgMzu8e96rK9hZlUMBwPE.mft (raw, json) Hash identifier: zIxYZn5tn03NLbgdVXyWcxuUuvIaoKML863T3Yn6mZI= Subject key identifier: 20:79:9F:AC:C8:34:95:73:26:DF:40:B3:5A:17:FB:6D:43:F6:C6:95 Authority key identifier: 7F:33:FC:40:D2:E0:33:3B:BC:7B:DE:AB:2B:D8:59:95:43:01:C0:F1 Certificate issuer: /CN=7f33fc40d2e0333bbc7bdeab2bd859954301c0f1 Certificate serial: 019B330CC2B67FE57E0F5C0B47769A49C4C8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fzP8QNLgMzu8e96rK9hZlUMBwPE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/65bf1d-ec1d-40e6-849d-79790d66d7d3/1/fzP8QNLgMzu8e96rK9hZlUMBwPE.mft Manifest number: 06CC Signing time: Thu 18 Dec 2025 20:00:32 +0000 Manifest this update: Thu 18 Dec 2025 20:00:32 +0000 Manifest next update: Fri 19 Dec 2025 20:00:32 +0000 Files and hashes: 1: f1ExHnnpEtCBbKoz7AnZOPhegIQ.roa (hash: tpDqxgdQcG2Fws3Zh018Pk/IwRSbsjhgaDj2i2YW1RE=) 2: fzP8QNLgMzu8e96rK9hZlUMBwPE.crl (hash: MNefzu5kZYkXEs/pxipFgX8esT3kBkatt6TerEcp7kY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/65bf1d-ec1d-40e6-849d-79790d66d7d3/1/fzP8QNLgMzu8e96rK9hZlUMBwPE.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/65bf1d-ec1d-40e6-849d-79790d66d7d3/1/fzP8QNLgMzu8e96rK9hZlUMBwPE.mft rsync://rpki.ripe.net/repository/DEFAULT/fzP8QNLgMzu8e96rK9hZlUMBwPE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 20:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:33:0c:c2:b6:7f:e5:7e:0f:5c:0b:47:76:9a:49:c4:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7f33fc40d2e0333bbc7bdeab2bd859954301c0f1 Validity Not Before: Dec 18 20:00:32 2025 GMT Not After : Dec 19 20:00:32 2025 GMT Subject: CN=20799facc834957326df40b35a17fb6d43f6c695 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:fd:8e:20:a2:1f:5f:4e:a0:ff:ee:cf:a1:6f: c5:d5:45:94:34:a9:ae:6c:21:4d:3b:47:da:ed:b9: dd:04:81:3f:b9:28:4a:49:e7:5e:c0:22:87:a3:3d: 3f:59:41:63:40:5a:a8:f2:ad:7c:46:a4:d3:bc:f7: 52:3b:98:f4:b4:02:a3:5d:4e:ce:a7:05:00:fd:15: 67:f1:7a:b5:8a:b2:5b:f4:98:03:b7:1d:94:6b:21: 0b:bd:4d:dd:d9:40:31:01:7f:cc:b1:68:d3:63:ac: d0:53:ea:57:3f:d1:91:7e:f7:41:21:bd:c9:78:48: e0:89:b2:29:3e:46:64:fe:f8:9c:10:c1:5b:57:e0: 5b:00:46:a3:09:06:8f:fb:99:9b:13:1d:b9:6a:59: 1b:0e:da:46:89:58:4f:a1:c6:3c:2c:87:35:d5:8f: 25:ae:51:00:32:82:ac:89:cd:be:68:8a:16:93:d8: 11:94:77:30:1d:cd:a7:56:01:f0:d2:e3:f8:f4:a6: 7b:c6:a1:1b:a0:d8:46:2e:03:3d:ff:3d:50:b7:06: cd:d9:94:9e:1a:e5:d3:00:1f:e0:87:ec:84:40:16: 72:85:f6:ed:52:77:76:ba:d8:e5:fd:29:c5:1a:e9: d0:8e:39:d5:3d:82:27:2f:13:02:17:85:cf:36:73: 54:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:79:9F:AC:C8:34:95:73:26:DF:40:B3:5A:17:FB:6D:43:F6:C6:95 X509v3 Authority Key Identifier: keyid:7F:33:FC:40:D2:E0:33:3B:BC:7B:DE:AB:2B:D8:59:95:43:01:C0:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fzP8QNLgMzu8e96rK9hZlUMBwPE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/65bf1d-ec1d-40e6-849d-79790d66d7d3/1/fzP8QNLgMzu8e96rK9hZlUMBwPE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/65bf1d-ec1d-40e6-849d-79790d66d7d3/1/fzP8QNLgMzu8e96rK9hZlUMBwPE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9d:6c:ad:a5:c3:9c:f6:ed:c5:23:2b:b4:16:3c:2d:73:58:58: a6:6e:5d:26:11:04:d8:9a:8a:08:1d:09:5e:da:2c:09:80:cc: b1:97:e0:90:af:93:4a:d0:a5:a6:00:94:0d:ff:61:ac:df:a6: 03:38:71:ee:f9:ec:ae:e0:31:6e:d2:7a:78:27:a0:65:0b:61: a5:a8:a0:a7:56:54:95:e6:6a:3a:31:60:17:a4:25:3a:6f:a9: 07:77:d3:19:8d:24:4f:17:2f:42:d6:cd:ce:2d:83:8f:3f:97: 70:3a:64:a4:63:80:41:f5:a1:0c:5e:ab:1e:6f:f9:b1:29:09: 45:61:9c:95:1a:d8:34:61:a9:70:cf:cb:a5:2e:da:aa:00:fe: ec:1e:2c:ca:85:03:ce:28:5a:b0:ac:6f:0e:4d:ca:5e:02:e3: 31:e7:8d:2a:16:31:1b:ef:bb:f9:76:57:74:31:cb:01:13:b6: 55:57:96:8b:53:04:7d:48:96:55:a4:e8:c2:87:84:0f:e6:ca: a4:b1:77:c3:db:b9:d9:8d:a7:8c:ee:03:c4:c3:b5:9f:c2:5d: 32:55:4b:c5:95:29:0b:ca:13:e5:f5:59:4c:0d:db:54:06:5b: 81:54:38:c6:b4:f1:2c:d9:13:98:88:e4:b6:46:4d:f5:ab:f8: d2:82:9d:37 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZszDMK2f+V+D1wLR3aaScTIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdmMzNmYzQwZDJlMDMzM2JiYzdiZGVhYjJiZDg1OTk1NDMw MWMwZjEwHhcNMjUxMjE4MjAwMDMyWhcNMjUxMjE5MjAwMDMyWjAzMTEwLwYDVQQD EygyMDc5OWZhY2M4MzQ5NTczMjZkZjQwYjM1YTE3ZmI2ZDQzZjZjNjk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh/2OIKIfX06g/+7PoW/F1UWUNKmu bCFNO0fa7bndBIE/uShKSedewCKHoz0/WUFjQFqo8q18RqTTvPdSO5j0tAKjXU7O pwUA/RVn8Xq1irJb9JgDtx2UayELvU3d2UAxAX/MsWjTY6zQU+pXP9GRfvdBIb3J eEjgibIpPkZk/vicEMFbV+BbAEajCQaP+5mbEx25alkbDtpGiVhPocY8LIc11Y8l rlEAMoKsic2+aIoWk9gRlHcwHc2nVgHw0uP49KZ7xqEboNhGLgM9/z1QtwbN2ZSe GuXTAB/gh+yEQBZyhfbtUnd2utjl/SnFGunQjjnVPYInLxMCF4XPNnNU9wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCB5n6zINJVzJt9As1oX+21D9saVMB8GA1UdIwQY MBaAFH8z/EDS4DM7vHveqyvYWZVDAcDxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZnpQOFFOTGdNenU4ZTk2cks5aFpsVU1Cd1BFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC82NWJmMWQtZWMxZC00MGU2LTg0OWQt Nzk3OTBkNjZkN2QzLzEvZnpQOFFOTGdNenU4ZTk2cks5aFpsVU1Cd1BFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC82NWJmMWQtZWMxZC00MGU2LTg0OWQtNzk3OTBkNjZkN2Qz LzEvZnpQOFFOTGdNenU4ZTk2cks5aFpsVU1Cd1BFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnWytpcOc 9u3FIyu0Fjwtc1hYpm5dJhEE2JqKCB0JXtosCYDMsZfgkK+TStClpgCUDf9hrN+m Azhx7vnsruAxbtJ6eCegZQthpaigp1ZUleZqOjFgF6QlOm+pB3fTGY0kTxcvQtbN zi2Djz+XcDpkpGOAQfWhDF6rHm/5sSkJRWGclRrYNGGpcM/LpS7aqgD+7B4syoUD zihasKxvDk3KXgLjMeeNKhYxG++7+XZXdDHLARO2VVeWi1MEfUiWVaTowoeED+bK pLF3w9u52Y2njO4DxMO1n8JdMlVLxZUpC8oT5fVZTA3bVAZbgVQ4xrTxLNkTmIjk tkZN9av40oKdNw== -----END CERTIFICATE-----Generated at Fri Dec 19 03:48:16 2025 by rpki-client