This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.mft File: zYMT5B5kagnNAeLm9HOdO9I2xP8.mft (raw, json) Hash identifier: HUM1tgSpumNVfyFbHbqou/NFGLAzVDhzXzgPbxZRJZg= Subject key identifier: 0A:B4:2D:BF:6D:6B:2F:3E:30:F8:B2:7A:67:A2:44:48:96:E3:74:EB Authority key identifier: CD:83:13:E4:1E:64:6A:09:CD:01:E2:E6:F4:73:9D:3B:D2:36:C4:FF Certificate issuer: /CN=cd8313e41e646a09cd01e2e6f4739d3bd236c4ff Certificate serial: 019B11CA7BEB5FA9050F72A60BA267F01482 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.mft Manifest number: 1780 Signing time: Fri 12 Dec 2025 09:00:41 +0000 Manifest this update: Fri 12 Dec 2025 09:00:41 +0000 Manifest next update: Sat 13 Dec 2025 09:00:41 +0000 Files and hashes: 1: CMjm3mT93yGkp8LUoyzkdQ6l3EE.roa (hash: TkauNWMtnY8DBb4v5VsfB1yBCMV9bCsSOJxWA8/FXoo=) 2: HkTCrKZqDwa8EUL4YflDFIxvuSo.roa (hash: zO36rkW4iEPf0HW9ThqXz35RBy/UdvCTSm39AhOu1Wg=) 3: KcTcayFrsZLodbwf3DiREG7aMgQ.roa (hash: 8/vbDhWMe2EfxMGVicJi+/pUGnJZy6R4MjOjEjkxjUk=) 4: LsmwcIccA3zM4d7kxqt3XhLcSa0.roa (hash: 98WTFaz7XPqlrJj7+XyfBTJEw1Sf7UEiPzA9D8zWsIw=) 5: PneAThfusF70GWHWywmhFb0vzKg.roa (hash: 0kjnbKbpSjxRU2te032pdWFUGrUsCjxiyKJ48H1DPUU=) 6: QPCXSoVGqmo5YTCi73-CSDuyZ-M.roa (hash: BYlFE9CUTQ67gGcO7goW8z5RieIlu+Sp4h/7HCES0Bg=) 7: T-x5NWBWP7z0RtMavKGuf9lbyTk.roa (hash: 5meL33wuT4ICoWjsr5JwrdL6iizp93b+W5Vq2RQt4cs=) 8: Tvzwy8915xjtj1VO-nUlxadrJf0.roa (hash: 3HBDaFXyl/IL77d9OkQ1M1njyjo3lIiwhNWOJqmRMac=) 9: YPhWBSPHGs5SvVUlaCiCKWmqFfE.roa (hash: 5GbYaE22J8Owy6TgFxnM856qPEXWo4AxIXtfMEPnMxs=) 10: Yqt3Kg8k1YJOv7s88RcINuiKaCE.roa (hash: nWZ5K8Cmhazakp99a9slUSDcrdtW/sXazmS+lE8qgb8=) 11: d-qZVEez3-tqSbLZHyKHdZ5qcJA.roa (hash: +81/qDkled7/tuehBezhqXR9TX8Qi/57Cwe4Hugu7Ps=) 12: e3hNMZozjl2a8wTj5jqUKt2netU.roa (hash: z65fVe11ggvNgyomVpHPZ3mT5uEYvV6n9cNO6WIVkOQ=) 13: jcSJxEfFuIOqv-vUuvBQckyf-ZI.roa (hash: V8+8ahCoa4BEtoKDRdWiWxQzrt5GRgWy4qkSi1g/uZs=) 14: lcN6tqSn03IPMO2AvpfpxpGgDQY.roa (hash: 8fvPqg+8qqIeW9Kd8tRNl8Xlys8MO8b9CTy9FA3u9tA=) 15: lzFclAiK-AKgH976Yl_uXg9r5wM.roa (hash: H/cy8Ymyjy+9oeeIlZQHYMPSRfjOx2uqFxTFGhSTiGE=) 16: oLt7xT_rHP-Hxh3lUeggtdVEvTs.roa (hash: hblIrYC6F95+wg2sH5P/uCfjsNRvIhmQ2s3oU6U1S/g=) 17: ogeSaiZjPO4Kd4PF4MmZ3E0M2dA.roa (hash: Y6nye2lCZkZiTnuBzh99LMq3fLt8LGMzc9QAvB3SwlM=) 18: p-aeeSEszU3aapQ0yEslN0bhQQ8.roa (hash: Mh/Q23651bJq9potJm5ecJKYPprCxzH57rPx/Ooy5iY=) 19: r40XtPdgr8Y3RxrHTUe0xVuomM0.roa (hash: t4ySxCeAxHkHkDK1q9KhuYpYVZshrBVi3KJ4uODs/8Q=) 20: rD4_vnlr510eZLzrr2aCnfyAvEE.roa (hash: dL+NP4nhH4zwWo5a+tL5dbCaIelO5RMTVy2uI8g69YI=) 21: rdclR5rmMPPiGdub64u9CAD4cr0.roa (hash: wXgXLOiDxEJK62XQ7DLJMuxi7/zXmFbGyGpgUuOv+8k=) 22: tNteV-bYipxacIdsneN2kRS27vI.roa (hash: DK40xOAWm2KZPWxZ02RGtb+aUbxm0wIjZBTHx/mZzWs=) 23: uzMFOnPKpMqU8CP0ss6Mpv56PiE.roa (hash: F8nsfvroSbli8FdaVZTheRyMCu5cUrtu6qwv9yns62A=) 24: zYMT5B5kagnNAeLm9HOdO9I2xP8.crl (hash: CjrWK1CMsL7qeFomH/5HpLCiHRRx0SMOET2R4tBWRrg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.crl rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.mft rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Dec 2025 08:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:11:ca:7b:eb:5f:a9:05:0f:72:a6:0b:a2:67:f0:14:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cd8313e41e646a09cd01e2e6f4739d3bd236c4ff Validity Not Before: Dec 12 09:00:41 2025 GMT Not After : Dec 13 09:00:41 2025 GMT Subject: CN=0ab42dbf6d6b2f3e30f8b27a67a2444896e374eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:02:52:ae:e3:3c:ac:7b:44:aa:f7:2d:72:ad: e6:68:43:52:f5:4e:5a:c2:2a:61:ed:4b:7a:e4:da: 55:67:fe:a1:d0:8a:4b:18:c5:6f:43:5d:05:00:e7: 0c:bc:90:49:2d:91:cb:9a:cf:f2:aa:2f:00:ac:a9: 79:8e:b6:28:15:83:06:f8:fd:00:62:a1:d4:ac:41: 66:37:53:08:34:24:17:87:9b:ea:86:05:cd:04:fd: 38:e0:e9:ab:ba:b4:48:59:00:68:3d:b8:81:88:e2: 25:fb:3c:cc:c2:f6:5e:e9:fe:9e:f9:f5:42:5c:1d: 36:f0:90:4c:e5:c6:38:fe:c5:44:be:15:f5:fa:e0: f6:c2:27:ff:a5:be:8d:68:00:5f:a7:df:c3:ba:2e: 78:62:6a:49:c2:80:4a:1e:dc:1d:d4:e4:20:fe:53: cb:cb:d6:17:3b:3c:3e:57:d9:52:b0:5d:2e:fd:b6: f0:52:c9:59:a9:9c:1c:66:41:5e:1c:56:2b:a3:47: ab:56:41:7e:bc:85:5c:aa:cd:62:58:ff:4d:5a:3a: 05:78:27:04:12:67:9a:79:13:7c:82:95:b7:42:d1: 1f:bc:8d:a0:8d:34:cc:87:28:57:b5:d4:5b:3f:a9: f6:fe:3d:a7:f7:3e:f1:e7:da:2a:6f:be:a6:79:21: 37:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:B4:2D:BF:6D:6B:2F:3E:30:F8:B2:7A:67:A2:44:48:96:E3:74:EB X509v3 Authority Key Identifier: keyid:CD:83:13:E4:1E:64:6A:09:CD:01:E2:E6:F4:73:9D:3B:D2:36:C4:FF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6f:bd:b0:3c:0d:8b:dc:fd:99:ee:6a:2c:75:7f:3d:c2:e5:16: f0:9a:e1:2d:fa:c6:e6:0a:a5:a6:5c:0e:53:70:4f:d4:37:a1: eb:98:1b:72:75:8f:c2:51:68:7e:f9:7d:94:a9:66:27:aa:69: 82:65:ed:cf:b6:62:15:7d:9c:97:c0:1a:7f:f2:37:96:31:dd: 89:50:29:69:20:e6:83:8f:0b:6b:5e:1b:76:c7:55:38:f8:72: 96:25:eb:32:e9:10:6f:b4:f8:4e:82:08:c2:8a:31:2b:14:3b: 0d:94:33:75:28:59:a9:fd:eb:d3:49:9b:94:c1:da:98:f4:55: f4:f1:2e:8d:f1:d8:fd:84:89:fb:62:92:be:05:ed:8c:eb:9d: 15:1c:a2:fd:2f:7f:5f:c1:5d:ea:47:70:63:86:e1:a9:6e:88: a3:41:08:47:e5:ab:2b:46:19:5d:57:89:93:13:d5:04:a9:07: e0:fe:b5:07:c5:24:1e:40:81:a8:6e:ae:06:ec:2c:c1:69:b6: c5:cd:9d:50:60:e6:96:e0:7c:2e:35:b4:f9:46:a5:e0:45:ec: 91:1e:9e:59:f3:2b:57:09:22:95:50:a9:bb:f6:4a:cc:48:08: f3:b2:5d:9c:67:26:cf:eb:2e:da:e3:da:bd:86:0f:ad:d3:67: 73:0a:ec:5d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsRynvrX6kFD3KmC6Jn8BSCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkODMxM2U0MWU2NDZhMDljZDAxZTJlNmY0NzM5ZDNiZDIz NmM0ZmYwHhcNMjUxMjEyMDkwMDQxWhcNMjUxMjEzMDkwMDQxWjAzMTEwLwYDVQQD EygwYWI0MmRiZjZkNmIyZjNlMzBmOGIyN2E2N2EyNDQ0ODk2ZTM3NGViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4gJSruM8rHtEqvctcq3maENS9U5a wiph7Ut65NpVZ/6h0IpLGMVvQ10FAOcMvJBJLZHLms/yqi8ArKl5jrYoFYMG+P0A YqHUrEFmN1MINCQXh5vqhgXNBP044OmrurRIWQBoPbiBiOIl+zzMwvZe6f6e+fVC XB028JBM5cY4/sVEvhX1+uD2wif/pb6NaABfp9/Dui54YmpJwoBKHtwd1OQg/lPL y9YXOzw+V9lSsF0u/bbwUslZqZwcZkFeHFYro0erVkF+vIVcqs1iWP9NWjoFeCcE EmeaeRN8gpW3QtEfvI2gjTTMhyhXtdRbP6n2/j2n9z7x59oqb76meSE3EQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAq0Lb9tay8+MPiyemeiREiW43TrMB8GA1UdIwQY MBaAFM2DE+QeZGoJzQHi5vRznTvSNsT/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvellNVDVCNWthZ25OQWVMbTlIT2RPOUkyeFA4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS8zNDY1ZjMtMDNjMi00ZWFhLWE2NzQt ODg2MmI1MTczMTdjLzEvellNVDVCNWthZ25OQWVMbTlIT2RPOUkyeFA4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZS8zNDY1ZjMtMDNjMi00ZWFhLWE2NzQtODg2MmI1MTczMTdj LzEvellNVDVCNWthZ25OQWVMbTlIT2RPOUkyeFA4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAb72wPA2L 3P2Z7mosdX89wuUW8JrhLfrG5gqlplwOU3BP1Deh65gbcnWPwlFofvl9lKlmJ6pp gmXtz7ZiFX2cl8Aaf/I3ljHdiVApaSDmg48La14bdsdVOPhyliXrMukQb7T4ToII wooxKxQ7DZQzdShZqf3r00mblMHamPRV9PEujfHY/YSJ+2KSvgXtjOudFRyi/S9/ X8Fd6kdwY4bhqW6Io0EIR+WrK0YZXVeJkxPVBKkH4P61B8UkHkCBqG6uBuwswWm2 xc2dUGDmluB8LjW0+Ual4EXskR6eWfMrVwkilVCpu/ZKzEgI87JdnGcmz+su2uPa vYYPrdNncwrsXQ== -----END CERTIFICATE-----Generated at Fri Dec 12 15:45:44 2025 by rpki-client