This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/a82f43-502b-42fb-88eb-83bd66f4e6f6/1/zsY7h6iuwJPb5H3MqShg6oQSKOA.mft File: zsY7h6iuwJPb5H3MqShg6oQSKOA.mft (raw, json) Hash identifier: n0FcnsPgjX01HElkbfDAjqlx7lgyGlk0eWkyIYkYqDY= Subject key identifier: 78:67:E9:FF:EB:46:36:20:F4:FD:6A:16:45:A7:54:6F:79:99:F1:9E Authority key identifier: CE:C6:3B:87:A8:AE:C0:93:DB:E4:7D:CC:A9:28:60:EA:84:12:28:E0 Certificate issuer: /CN=cec63b87a8aec093dbe47dcca92860ea841228e0 Certificate serial: 019B341F999ADBF822E44035EB44006B03EC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zsY7h6iuwJPb5H3MqShg6oQSKOA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/a82f43-502b-42fb-88eb-83bd66f4e6f6/1/zsY7h6iuwJPb5H3MqShg6oQSKOA.mft Manifest number: 0C8C Signing time: Fri 19 Dec 2025 01:00:44 +0000 Manifest this update: Fri 19 Dec 2025 01:00:44 +0000 Manifest next update: Sat 20 Dec 2025 01:00:44 +0000 Files and hashes: 1: oDVjxYPm7vPq-9FQVAv-wdPcmhE.roa (hash: SVNTWU/SFE8BeAZ7Bb0M+S0ysWhdx0WLLM1QECYtWDg=) 2: zsY7h6iuwJPb5H3MqShg6oQSKOA.crl (hash: KAf7cmGCWMxN3Vdpd0Mr4ufMojwOT4sIZzoIAQ5AaUY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/a82f43-502b-42fb-88eb-83bd66f4e6f6/1/zsY7h6iuwJPb5H3MqShg6oQSKOA.crl rsync://rpki.ripe.net/repository/DEFAULT/cb/a82f43-502b-42fb-88eb-83bd66f4e6f6/1/zsY7h6iuwJPb5H3MqShg6oQSKOA.mft rsync://rpki.ripe.net/repository/DEFAULT/zsY7h6iuwJPb5H3MqShg6oQSKOA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:34:1f:99:9a:db:f8:22:e4:40:35:eb:44:00:6b:03:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cec63b87a8aec093dbe47dcca92860ea841228e0 Validity Not Before: Dec 19 01:00:44 2025 GMT Not After : Dec 20 01:00:44 2025 GMT Subject: CN=7867e9ffeb463620f4fd6a1645a7546f7999f19e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:4b:7b:95:34:30:34:33:3a:61:e0:44:23:1a: 2e:64:65:f0:ef:b9:bf:b5:3f:2a:6b:cc:8f:9f:45: 99:98:5b:f0:0c:53:69:24:39:41:40:1d:a9:84:06: fb:24:1b:03:3d:c0:fd:ee:aa:5c:4f:05:a1:23:79: 41:05:cf:70:f7:97:12:9d:c7:cd:8e:91:e3:9b:52: 6f:84:72:b3:4d:55:52:ac:c8:8c:9d:ed:50:fd:6f: 5a:79:81:73:ed:11:42:93:42:9c:2b:06:53:e8:43: 5c:ee:d0:bc:3b:39:4b:83:fa:7d:bd:03:ef:8d:28: 5e:4b:4d:2d:a1:9c:cc:c8:27:1d:53:cb:e7:0a:7c: 6e:bb:c4:3a:c9:33:a3:69:41:00:f4:8a:66:9c:23: 52:62:6a:e5:9f:04:48:fe:f8:c3:20:d3:d7:12:a7: 78:5e:91:34:be:08:d8:a8:b3:54:fd:cd:31:ee:e8: 38:87:c5:c9:62:ed:db:69:1d:96:08:85:45:79:c9: 54:f4:d9:a6:db:2c:6f:3e:66:ba:ce:db:60:30:e9: fe:7b:cd:c3:1b:56:66:71:53:11:b4:e5:1a:f7:af: d2:1b:c2:71:e8:a5:f0:0a:7b:53:99:c0:af:7d:58: 52:41:a0:a2:f1:24:d5:e7:c1:e8:40:1d:b6:26:a3: 24:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:67:E9:FF:EB:46:36:20:F4:FD:6A:16:45:A7:54:6F:79:99:F1:9E X509v3 Authority Key Identifier: keyid:CE:C6:3B:87:A8:AE:C0:93:DB:E4:7D:CC:A9:28:60:EA:84:12:28:E0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zsY7h6iuwJPb5H3MqShg6oQSKOA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/a82f43-502b-42fb-88eb-83bd66f4e6f6/1/zsY7h6iuwJPb5H3MqShg6oQSKOA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/a82f43-502b-42fb-88eb-83bd66f4e6f6/1/zsY7h6iuwJPb5H3MqShg6oQSKOA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:a0:54:d8:df:f3:8f:45:57:fe:4f:85:ab:81:7a:6e:ea:3e: c1:72:10:ef:fa:24:ff:85:34:9b:68:7a:69:16:2f:5a:50:4b: 4d:32:ae:91:a2:2d:1c:ba:07:35:f5:bf:66:b4:4e:1b:8c:f7: c4:e0:86:8b:c1:65:dc:12:18:3f:e6:0b:e5:82:3b:bc:f1:cd: cf:45:ef:2a:a4:08:d8:d3:13:d3:66:bc:e6:fa:32:4c:ac:03: e7:d4:a9:90:06:ff:58:33:38:06:52:ec:9b:31:47:21:f4:d4: 20:88:06:f6:72:aa:c2:7d:78:2e:74:c5:0e:8d:6c:7f:ef:39: eb:bd:8c:69:1b:1a:61:06:89:2f:32:32:b1:96:5b:27:d3:69: 92:a8:8f:8d:2e:dc:ee:a4:f4:a2:22:7a:94:45:db:41:f3:0f: 1c:77:bc:ff:ee:82:fd:36:b6:aa:22:d9:76:9c:8e:05:f6:1f: a2:6d:a5:e9:a4:8b:4c:e8:4a:78:e7:df:6b:a9:f4:60:8e:4f: 88:25:67:59:97:ef:83:1c:3c:d4:27:fd:dd:5a:2b:69:39:70: 89:fa:b4:9f:12:d2:5b:b8:7b:87:c4:34:77:33:0a:e2:40:c1: d4:5f:2b:14:6a:5f:ed:a3:86:bc:16:6f:47:19:6e:a8:41:7c: a5:ff:f7:ea -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs0H5ma2/gi5EA160QAawPsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNlYzYzYjg3YThhZWMwOTNkYmU0N2RjY2E5Mjg2MGVhODQx MjI4ZTAwHhcNMjUxMjE5MDEwMDQ0WhcNMjUxMjIwMDEwMDQ0WjAzMTEwLwYDVQQD Eyg3ODY3ZTlmZmViNDYzNjIwZjRmZDZhMTY0NWE3NTQ2Zjc5OTlmMTllMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyUt7lTQwNDM6YeBEIxouZGXw77m/ tT8qa8yPn0WZmFvwDFNpJDlBQB2phAb7JBsDPcD97qpcTwWhI3lBBc9w95cSncfN jpHjm1JvhHKzTVVSrMiMne1Q/W9aeYFz7RFCk0KcKwZT6ENc7tC8OzlLg/p9vQPv jSheS00toZzMyCcdU8vnCnxuu8Q6yTOjaUEA9IpmnCNSYmrlnwRI/vjDINPXEqd4 XpE0vgjYqLNU/c0x7ug4h8XJYu3baR2WCIVFeclU9Nmm2yxvPma6zttgMOn+e83D G1ZmcVMRtOUa96/SG8Jx6KXwCntTmcCvfVhSQaCi8STV58HoQB22JqMkfQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHhn6f/rRjYg9P1qFkWnVG95mfGeMB8GA1UdIwQY MBaAFM7GO4eorsCT2+R9zKkoYOqEEijgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvenNZN2g2aXV3SlBiNUgzTXFTaGc2b1FTS09BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi9hODJmNDMtNTAyYi00MmZiLTg4ZWIt ODNiZDY2ZjRlNmY2LzEvenNZN2g2aXV3SlBiNUgzTXFTaGc2b1FTS09BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYi9hODJmNDMtNTAyYi00MmZiLTg4ZWItODNiZDY2ZjRlNmY2 LzEvenNZN2g2aXV3SlBiNUgzTXFTaGc2b1FTS09BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWKBU2N/z j0VX/k+Fq4F6buo+wXIQ7/ok/4U0m2h6aRYvWlBLTTKukaItHLoHNfW/ZrROG4z3 xOCGi8Fl3BIYP+YL5YI7vPHNz0XvKqQI2NMT02a85voyTKwD59SpkAb/WDM4BlLs mzFHIfTUIIgG9nKqwn14LnTFDo1sf+85672MaRsaYQaJLzIysZZbJ9NpkqiPjS7c 7qT0oiJ6lEXbQfMPHHe8/+6C/Ta2qiLZdpyOBfYfom2l6aSLTOhKeOffa6n0YI5P iCVnWZfvgxw81Cf93VoraTlwifq0nxLSW7h7h8Q0dzMK4kDB1F8rFGpf7aOGvBZv RxluqEF8pf/36g== -----END CERTIFICATE-----Generated at Fri Dec 19 06:39:40 2025 by rpki-client