This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft File: cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft (raw, json) Hash identifier: nEG/JyVTlxwx3xvr3eVYfbq0ylFL7sq96QMogCnchYc= Subject key identifier: 42:30:37:3B:66:34:68:E9:5E:A9:FA:FA:90:E6:E4:0F:8E:02:60:F4 Authority key identifier: 71:90:F5:D5:F9:2A:48:63:62:17:7A:42:B3:D5:EF:DA:20:E2:20:E1 Certificate issuer: /CN=7190f5d5f92a486362177a42b3d5efda20e220e1 Certificate serial: 019B19BAE23E49B65A5B03C50A76EE17765D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cZD11fkqSGNiF3pCs9Xv2iDiIOE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft Manifest number: 15E9 Signing time: Sat 13 Dec 2025 22:00:36 +0000 Manifest this update: Sat 13 Dec 2025 22:00:36 +0000 Manifest next update: Sun 14 Dec 2025 22:00:36 +0000 Files and hashes: 1: 0uVokjA0n-IKYM4dLwrHfcYoXtI.roa (hash: h5xCuikP/FGyLSLux1dmHiJam1SLoPwDAncSRikSHHc=) 2: cZD11fkqSGNiF3pCs9Xv2iDiIOE.crl (hash: F9etjJGygSQ7l2mDNrE8yBEldCqj0GY0h/Fu/rlwx5U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.crl rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft rsync://rpki.ripe.net/repository/DEFAULT/cZD11fkqSGNiF3pCs9Xv2iDiIOE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 17:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:19:ba:e2:3e:49:b6:5a:5b:03:c5:0a:76:ee:17:76:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7190f5d5f92a486362177a42b3d5efda20e220e1 Validity Not Before: Dec 13 22:00:36 2025 GMT Not After : Dec 14 22:00:36 2025 GMT Subject: CN=4230373b663468e95ea9fafa90e6e40f8e0260f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:c5:15:35:ac:89:9d:57:93:be:8b:ba:af:51: e9:fe:89:39:65:3f:ba:be:09:c1:88:c7:30:c8:52: 8b:85:bb:8b:dd:84:fc:ef:aa:98:72:c7:d1:8a:3c: 7d:ed:10:d0:b3:4c:a0:8e:0d:05:41:e1:a2:f6:9d: b7:19:67:e6:94:f8:ce:2e:b7:9d:3b:b5:99:4a:39: f9:dc:74:a6:5e:1e:e9:b1:1e:f0:40:fd:af:ea:54: 23:de:4c:9f:b6:8c:54:df:71:45:f8:4a:f4:39:59: 11:06:72:5d:94:ab:93:d1:a2:b2:57:dd:7f:0b:f6: ee:c3:4e:1a:e3:3e:b9:e1:fa:37:95:e9:87:c1:4b: cc:62:11:42:a0:38:cc:c9:5f:19:18:59:77:c4:d1: 34:3d:a0:00:2b:ef:d6:21:8f:5b:7a:f2:49:cb:cf: 0d:7f:d8:1f:5f:6d:24:20:2c:ef:d5:7b:fd:da:32: b0:b5:80:a7:16:fc:64:53:f1:80:92:a5:15:2a:5d: 13:02:06:30:11:98:8b:e2:cf:98:66:e4:37:7e:20: f6:43:79:97:79:d5:a5:a1:a8:da:b0:31:95:47:d7: f8:da:60:51:34:98:65:57:29:85:3f:db:e1:3f:86: 5d:69:6b:ca:15:e5:34:f4:d2:03:e6:47:ec:4c:17: e8:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:30:37:3B:66:34:68:E9:5E:A9:FA:FA:90:E6:E4:0F:8E:02:60:F4 X509v3 Authority Key Identifier: keyid:71:90:F5:D5:F9:2A:48:63:62:17:7A:42:B3:D5:EF:DA:20:E2:20:E1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cZD11fkqSGNiF3pCs9Xv2iDiIOE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:05:7b:c0:46:08:cb:3d:ef:3d:24:8f:af:c4:40:15:b9:e6: a2:90:b7:60:c2:61:a4:52:39:f8:89:8d:81:65:75:d6:75:37: 74:54:3e:5f:ac:17:84:0f:82:72:72:93:f8:35:6f:2f:9b:ab: 77:03:83:0b:f6:56:47:86:9c:86:bd:05:c8:24:e6:fb:7b:54: 35:5c:af:f7:9b:04:d1:29:c7:fb:86:a4:93:0b:6c:44:5e:52: b7:d9:75:11:2a:b8:dd:b1:99:97:7a:c3:b8:6c:fe:f3:3b:22: 7d:60:da:fa:b2:b5:d8:57:c4:c6:b0:1a:4c:6c:94:37:3c:2f: 8c:3d:b0:bb:51:08:44:3c:1b:f5:1c:ca:bb:bb:fa:aa:54:3d: 53:a4:94:bf:95:fa:b9:91:4b:cb:39:99:8d:32:8f:97:86:76: 31:5a:b5:36:87:ff:4a:e8:ba:5d:70:b2:1d:be:39:21:90:db: a5:c1:ab:e2:1d:a4:13:d2:c7:5a:ac:44:2f:30:92:48:c4:c6: ba:d6:4e:d4:1e:3a:0d:48:e6:b9:4c:d0:2a:67:0d:7d:16:7f: b2:46:1c:b4:40:7f:6d:c6:25:b6:d2:25:9a:61:3b:7e:9a:57: b4:41:8c:5a:cb:23:44:9d:7c:07:3a:92:c5:f7:9e:c1:fb:6f: 13:06:f3:64 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsZuuI+SbZaWwPFCnbuF3ZdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcxOTBmNWQ1ZjkyYTQ4NjM2MjE3N2E0MmIzZDVlZmRhMjBl MjIwZTEwHhcNMjUxMjEzMjIwMDM2WhcNMjUxMjE0MjIwMDM2WjAzMTEwLwYDVQQD Eyg0MjMwMzczYjY2MzQ2OGU5NWVhOWZhZmE5MGU2ZTQwZjhlMDI2MGY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA68UVNayJnVeTvou6r1Hp/ok5ZT+6 vgnBiMcwyFKLhbuL3YT876qYcsfRijx97RDQs0ygjg0FQeGi9p23GWfmlPjOLred O7WZSjn53HSmXh7psR7wQP2v6lQj3kyftoxU33FF+Er0OVkRBnJdlKuT0aKyV91/ C/buw04a4z654fo3lemHwUvMYhFCoDjMyV8ZGFl3xNE0PaAAK+/WIY9bevJJy88N f9gfX20kICzv1Xv92jKwtYCnFvxkU/GAkqUVKl0TAgYwEZiL4s+YZuQ3fiD2Q3mX edWloajasDGVR9f42mBRNJhlVymFP9vhP4ZdaWvKFeU09NID5kfsTBfo2QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEIwNztmNGjpXqn6+pDm5A+OAmD0MB8GA1UdIwQY MBaAFHGQ9dX5KkhjYhd6QrPV79og4iDhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY1pEMTFma3FTR05pRjNwQ3M5WHYyaURpSU9FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS82OGEwMTQtN2RiYS00NDMwLThkZGUt MDFjODI3ZDZlMGZlLzEvY1pEMTFma3FTR05pRjNwQ3M5WHYyaURpSU9FLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNS82OGEwMTQtN2RiYS00NDMwLThkZGUtMDFjODI3ZDZlMGZl LzEvY1pEMTFma3FTR05pRjNwQ3M5WHYyaURpSU9FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcAV7wEYI yz3vPSSPr8RAFbnmopC3YMJhpFI5+ImNgWV11nU3dFQ+X6wXhA+CcnKT+DVvL5ur dwODC/ZWR4achr0FyCTm+3tUNVyv95sE0SnH+4akkwtsRF5St9l1ESq43bGZl3rD uGz+8zsifWDa+rK12FfExrAaTGyUNzwvjD2wu1EIRDwb9RzKu7v6qlQ9U6SUv5X6 uZFLyzmZjTKPl4Z2MVq1Nof/Sui6XXCyHb45IZDbpcGr4h2kE9LHWqxELzCSSMTG utZO1B46DUjmuUzQKmcNfRZ/skYctEB/bcYlttIlmmE7fppXtEGMWssjRJ18BzqS xfeewftvEwbzZA== -----END CERTIFICATE-----Generated at Sun Dec 14 01:57:47 2025 by rpki-client