This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft File: zmdqMChOFLAsxt2qA053VAbkYaY.mft (raw, json) Hash identifier: wXTp8bJBw9idnumQr9o42fuBdGkKdjOiJ/NqJLHmqxc= Subject key identifier: 83:10:0C:D5:41:59:27:F9:2D:31:FA:2D:A1:5E:FF:71:39:35:1D:94 Authority key identifier: CE:67:6A:30:28:4E:14:B0:2C:C6:DD:AA:03:4E:77:54:06:E4:61:A6 Certificate issuer: /CN=ce676a30284e14b02cc6ddaa034e775406e461a6 Certificate serial: 019B0EC9F682B8D21BCB4240E472A5350F7F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zmdqMChOFLAsxt2qA053VAbkYaY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft Manifest number: 0B09 Signing time: Thu 11 Dec 2025 19:01:15 +0000 Manifest this update: Thu 11 Dec 2025 19:01:15 +0000 Manifest next update: Fri 12 Dec 2025 19:01:15 +0000 Files and hashes: 1: CXaycMVQIz4mD7AGkHky2lc1t_E.roa (hash: XQ8QKr5tV5GANcYht5PHTQQD2/hz4d9yrWShPJMOBBM=) 2: zmdqMChOFLAsxt2qA053VAbkYaY.crl (hash: p6nGK7s7YNs+va6oIAeWu5Zi7g5jh7sUAOulZIlrPEU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft rsync://rpki.ripe.net/repository/DEFAULT/zmdqMChOFLAsxt2qA053VAbkYaY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 14:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0e:c9:f6:82:b8:d2:1b:cb:42:40:e4:72:a5:35:0f:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ce676a30284e14b02cc6ddaa034e775406e461a6 Validity Not Before: Dec 11 19:01:15 2025 GMT Not After : Dec 12 19:01:15 2025 GMT Subject: CN=83100cd5415927f92d31fa2da15eff7139351d94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:0e:e0:97:19:0a:10:7d:94:75:23:73:44:02: 53:7f:dc:fa:2f:1c:a1:3a:1e:b8:06:75:1c:20:9e: 64:84:1b:87:17:49:b5:d1:5c:88:de:05:8c:99:65: 13:b0:7f:32:72:59:24:f6:60:33:9c:a5:a9:42:57: 7c:a9:89:57:ed:1a:6f:fa:49:6f:ce:db:6d:3c:14: 4d:97:1f:e5:8c:57:f4:01:2e:c9:c1:3e:33:a4:c8: 03:89:4c:a5:7c:d9:f8:b1:e1:e5:bf:a0:3a:77:5f: e7:c6:a0:b4:dc:de:08:77:2c:cc:93:2b:61:55:08: 7b:cc:a1:ab:88:26:51:d7:17:f0:01:b8:b1:03:1e: 62:df:d8:3c:25:a8:a9:73:1d:96:88:9b:10:10:3c: 8b:a2:bc:a7:a3:2e:2b:fc:1f:bb:91:40:3b:5f:59: 2b:bd:a5:e2:96:48:df:7c:33:ac:e7:f2:b6:24:3d: cc:9f:7a:60:3c:a6:e3:8c:0b:f1:6c:82:ce:59:3f: 5d:88:fc:0f:6d:cb:76:51:d9:43:2f:f5:07:c6:df: e7:0f:88:df:8d:93:c9:d3:4d:a4:56:8e:d0:9b:5e: 4e:7b:0f:15:08:e3:d2:c4:ad:c6:38:77:10:65:0c: 5e:38:1b:27:38:26:1f:a5:a1:f2:b3:a1:1c:a3:b1: fe:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:10:0C:D5:41:59:27:F9:2D:31:FA:2D:A1:5E:FF:71:39:35:1D:94 X509v3 Authority Key Identifier: keyid:CE:67:6A:30:28:4E:14:B0:2C:C6:DD:AA:03:4E:77:54:06:E4:61:A6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zmdqMChOFLAsxt2qA053VAbkYaY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d1:7f:fc:e7:b3:69:99:da:2a:42:13:20:48:9b:0d:a0:db:cb: 7c:48:6b:40:d7:6e:23:2a:49:eb:27:8e:af:3a:1e:56:04:41: e5:bd:d4:37:19:a7:a3:04:8c:b5:1a:b0:43:7b:67:2d:c2:f8: 2f:86:bc:94:ae:45:36:62:1c:28:7d:b0:92:42:03:33:77:cb: b9:8a:50:73:d4:67:49:67:32:85:e0:2b:21:41:72:f9:45:8e: 2d:51:53:41:e6:71:ff:c5:0f:56:4c:1c:00:80:0b:4e:70:d6: a5:6e:70:e2:9c:b4:26:eb:c1:18:9d:e6:2c:46:50:54:e6:f7: 2a:cf:1a:d0:d3:27:31:c3:8f:c3:0b:b0:50:05:e7:91:8b:d2: 8d:80:85:d8:96:0d:01:05:8f:c4:54:9a:52:ee:3e:96:cc:69: 67:f1:3a:c9:37:6d:52:91:d7:77:c3:2c:82:3a:24:fe:24:be: 70:aa:cb:1c:45:d5:f2:24:f2:46:06:b5:86:dc:92:29:10:be: 88:e3:48:b5:54:be:86:68:5a:eb:66:b8:16:e7:20:87:ee:1f: 24:d7:0d:1c:d1:5a:45:aa:82:75:9c:11:96:54:99:2b:e2:80: 84:3d:56:81:c9:b9:cd:54:f9:d8:07:fa:b7:aa:fe:fb:41:b9: 22:92:0a:d7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsOyfaCuNIby0JA5HKlNQ9/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNlNjc2YTMwMjg0ZTE0YjAyY2M2ZGRhYTAzNGU3NzU0MDZl NDYxYTYwHhcNMjUxMjExMTkwMTE1WhcNMjUxMjEyMTkwMTE1WjAzMTEwLwYDVQQD Eyg4MzEwMGNkNTQxNTkyN2Y5MmQzMWZhMmRhMTVlZmY3MTM5MzUxZDk0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5A7glxkKEH2UdSNzRAJTf9z6Lxyh Oh64BnUcIJ5khBuHF0m10VyI3gWMmWUTsH8yclkk9mAznKWpQld8qYlX7Rpv+klv ztttPBRNlx/ljFf0AS7JwT4zpMgDiUylfNn4seHlv6A6d1/nxqC03N4IdyzMkyth VQh7zKGriCZR1xfwAbixAx5i39g8Jaipcx2WiJsQEDyLorynoy4r/B+7kUA7X1kr vaXilkjffDOs5/K2JD3Mn3pgPKbjjAvxbILOWT9diPwPbct2UdlDL/UHxt/nD4jf jZPJ002kVo7Qm15Oew8VCOPSxK3GOHcQZQxeOBsnOCYfpaHys6Eco7H+mQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIMQDNVBWSf5LTH6LaFe/3E5NR2UMB8GA1UdIwQY MBaAFM5najAoThSwLMbdqgNOd1QG5GGmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvem1kcU1DaE9GTEFzeHQycUEwNTNWQWJrWWFZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC9iODYwNWEtMjEzNi00Mzg5LWE0MDUt ZWE2MDY1NzA5NDZhLzEvem1kcU1DaE9GTEFzeHQycUEwNTNWQWJrWWFZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC9iODYwNWEtMjEzNi00Mzg5LWE0MDUtZWE2MDY1NzA5NDZh LzEvem1kcU1DaE9GTEFzeHQycUEwNTNWQWJrWWFZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA0X/857Np mdoqQhMgSJsNoNvLfEhrQNduIypJ6yeOrzoeVgRB5b3UNxmnowSMtRqwQ3tnLcL4 L4a8lK5FNmIcKH2wkkIDM3fLuYpQc9RnSWcyheArIUFy+UWOLVFTQeZx/8UPVkwc AIALTnDWpW5w4py0JuvBGJ3mLEZQVOb3Ks8a0NMnMcOPwwuwUAXnkYvSjYCF2JYN AQWPxFSaUu4+lsxpZ/E6yTdtUpHXd8Msgjok/iS+cKrLHEXV8iTyRga1htySKRC+ iONItVS+hmha62a4Fucgh+4fJNcNHNFaRaqCdZwRllSZK+KAhD1Wgcm5zVT52Af6 t6r++0G5IpIK1w== -----END CERTIFICATE-----Generated at Thu Dec 11 23:06:46 2025 by rpki-client