This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/dc8f9b-06d6-44d3-9a38-286a5ee6e043/1/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.mft File: zY6OvYD8-ISXXkK0a_TlSHk_Kcs.mft (raw, json) Hash identifier: 4cEMbFqln66hdJnDRVJA8oC/K641yGbD1UYInt9/7bM= Subject key identifier: 38:86:89:6E:CB:BD:20:56:4C:62:BD:33:8B:78:DD:CC:3C:7A:A4:3A Authority key identifier: CD:8E:8E:BD:80:FC:F8:84:97:5E:42:B4:6B:F4:E5:48:79:3F:29:CB Certificate issuer: /CN=cd8e8ebd80fcf884975e42b46bf4e548793f29cb Certificate serial: 019B1F187C87F43ABDF864FA50F9541936BF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/dc8f9b-06d6-44d3-9a38-286a5ee6e043/1/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.mft Manifest number: 0D2B Signing time: Sun 14 Dec 2025 23:00:57 +0000 Manifest this update: Sun 14 Dec 2025 23:00:57 +0000 Manifest next update: Mon 15 Dec 2025 23:00:57 +0000 Files and hashes: 1: pbWUlF6kph4C-luLlJFzTT778aw.roa (hash: FFtm0Ye7lx+oD8pt9jf446A0y5P8uQmRXJuEy3Pug1Q=) 2: zY6OvYD8-ISXXkK0a_TlSHk_Kcs.crl (hash: S9tnoxSmsTRtNlTbI/KG0sgrvf44dpb/vHTTVXG0hLY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/dc8f9b-06d6-44d3-9a38-286a5ee6e043/1/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.crl rsync://rpki.ripe.net/repository/DEFAULT/c2/dc8f9b-06d6-44d3-9a38-286a5ee6e043/1/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.mft rsync://rpki.ripe.net/repository/DEFAULT/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1f:18:7c:87:f4:3a:bd:f8:64:fa:50:f9:54:19:36:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cd8e8ebd80fcf884975e42b46bf4e548793f29cb Validity Not Before: Dec 14 23:00:57 2025 GMT Not After : Dec 15 23:00:57 2025 GMT Subject: CN=3886896ecbbd20564c62bd338b78ddcc3c7aa43a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:6a:25:69:60:8b:62:dc:fa:30:e0:6d:63:56: a5:6a:d7:6f:91:5a:37:de:d9:e0:26:19:f1:82:62: 6d:9c:6c:49:63:91:a2:1f:9d:64:7b:a2:db:32:d3: 81:0d:2d:99:1b:ea:b2:ad:95:2d:7c:db:2d:ca:28: ee:6e:5c:44:77:8f:00:6e:0a:80:3f:fb:fd:46:82: 95:28:29:4f:6e:17:08:83:c4:ad:85:a6:95:5b:9a: be:54:2a:a4:9f:43:95:38:88:ef:5f:76:21:b8:16: 4c:b4:78:c8:6d:66:aa:0a:d4:e3:02:ba:1d:59:1d: 86:ee:37:a3:35:e0:61:a7:27:3d:b4:34:a6:6d:f8: 2b:87:0c:16:c0:bf:6d:a6:19:b8:9c:1a:69:0a:93: 13:db:35:7a:1a:95:0f:c1:11:23:13:8d:d6:12:cf: 7b:e8:b5:87:4e:3b:18:f1:f8:79:92:c6:1a:d7:3b: d6:34:c2:1c:42:a4:e7:5c:ff:c8:f3:07:39:67:02: c7:1a:82:a0:86:bf:5a:22:16:5b:49:48:3b:1a:cf: 1c:cf:e9:ed:23:61:78:67:41:53:3d:7d:40:71:e7: 95:8e:08:5a:9d:bf:b7:f5:74:6c:bc:76:b1:da:3c: fb:34:55:9e:60:07:e4:8a:90:a2:9c:05:20:d9:a7: b5:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:86:89:6E:CB:BD:20:56:4C:62:BD:33:8B:78:DD:CC:3C:7A:A4:3A X509v3 Authority Key Identifier: keyid:CD:8E:8E:BD:80:FC:F8:84:97:5E:42:B4:6B:F4:E5:48:79:3F:29:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/dc8f9b-06d6-44d3-9a38-286a5ee6e043/1/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/dc8f9b-06d6-44d3-9a38-286a5ee6e043/1/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 00:2f:a1:98:47:63:39:7a:28:4f:f0:3d:62:00:1e:c9:86:37: 6a:7d:d6:53:89:4c:e6:98:6b:bb:d2:0f:a4:5c:3f:4e:44:52: 60:22:3f:cf:da:48:7a:ff:8a:6f:6c:5c:ea:c5:5e:61:a4:fb: fe:2b:a5:f0:da:d8:be:47:80:7e:82:19:b8:57:c9:c0:87:2c: 47:54:3a:de:e6:41:4e:38:45:c1:8f:a1:fc:5d:f3:3f:3a:35: d3:18:3c:70:fd:43:c5:bc:af:a3:24:cc:4d:0c:92:81:86:97: e4:97:79:00:1f:73:e4:6a:6d:bd:4a:19:3d:4c:11:dd:dc:2c: 4b:e3:24:31:fd:cf:56:0f:05:c2:7d:1e:b0:b3:aa:f4:b3:41: 18:a4:df:f8:a1:5b:6f:84:10:4d:15:b4:52:28:0c:58:89:fd: 3e:3d:11:99:ed:08:8b:20:8f:6f:fd:e9:69:11:56:31:0d:49: 90:13:d9:4a:d7:3e:0a:04:89:c2:3a:87:97:64:94:4c:53:ab: ca:45:ca:96:bd:56:36:cf:b0:15:c0:61:b9:53:5c:94:47:43: 09:31:d8:74:f1:56:5d:fa:38:f7:bc:95:1a:71:11:f1:f3:6b: 06:68:0a:b5:28:da:dc:f4:92:51:b3:87:85:30:07:f8:ed:23: 3b:9d:8e:31 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsfGHyH9Dq9+GT6UPlUGTa/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkOGU4ZWJkODBmY2Y4ODQ5NzVlNDJiNDZiZjRlNTQ4Nzkz ZjI5Y2IwHhcNMjUxMjE0MjMwMDU3WhcNMjUxMjE1MjMwMDU3WjAzMTEwLwYDVQQD EygzODg2ODk2ZWNiYmQyMDU2NGM2MmJkMzM4Yjc4ZGRjYzNjN2FhNDNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmGolaWCLYtz6MOBtY1alatdvkVo3 3tngJhnxgmJtnGxJY5GiH51ke6LbMtOBDS2ZG+qyrZUtfNstyijublxEd48AbgqA P/v9RoKVKClPbhcIg8SthaaVW5q+VCqkn0OVOIjvX3YhuBZMtHjIbWaqCtTjArod WR2G7jejNeBhpyc9tDSmbfgrhwwWwL9tphm4nBppCpMT2zV6GpUPwREjE43WEs97 6LWHTjsY8fh5ksYa1zvWNMIcQqTnXP/I8wc5ZwLHGoKghr9aIhZbSUg7Gs8cz+nt I2F4Z0FTPX1AceeVjghanb+39XRsvHax2jz7NFWeYAfkipCinAUg2ae1QwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDiGiW7LvSBWTGK9M4t43cw8eqQ6MB8GA1UdIwQY MBaAFM2Ojr2A/PiEl15CtGv05Uh5PynLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvelk2T3ZZRDgtSVNYWGtLMGFfVGxTSGtfS2NzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi9kYzhmOWItMDZkNi00NGQzLTlhMzgt Mjg2YTVlZTZlMDQzLzEvelk2T3ZZRDgtSVNYWGtLMGFfVGxTSGtfS2NzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMi9kYzhmOWItMDZkNi00NGQzLTlhMzgtMjg2YTVlZTZlMDQz LzEvelk2T3ZZRDgtSVNYWGtLMGFfVGxTSGtfS2NzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAC+hmEdj OXooT/A9YgAeyYY3an3WU4lM5phru9IPpFw/TkRSYCI/z9pIev+Kb2xc6sVeYaT7 /iul8NrYvkeAfoIZuFfJwIcsR1Q63uZBTjhFwY+h/F3zPzo10xg8cP1DxbyvoyTM TQySgYaX5Jd5AB9z5GptvUoZPUwR3dwsS+MkMf3PVg8Fwn0esLOq9LNBGKTf+KFb b4QQTRW0UigMWIn9Pj0Rme0IiyCPb/3paRFWMQ1JkBPZStc+CgSJwjqHl2SUTFOr ykXKlr1WNs+wFcBhuVNclEdDCTHYdPFWXfo497yVGnER8fNrBmgKtSja3PSSUbOH hTAH+O0jO52OMQ== -----END CERTIFICATE-----Generated at Mon Dec 15 04:54:32 2025 by rpki-client