This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/091841-02fe-44db-ba16-a5e13b4fb12b/1/RoZEuS85TK82Z722rz44aZxU8xU.mft File: RoZEuS85TK82Z722rz44aZxU8xU.mft (raw, json) Hash identifier: 1QQc1jEuDbU1VE4VIkrzAUhm8q8nN12DAfvKAcfOFXM= Subject key identifier: 33:35:E5:05:6D:FA:0D:5C:63:49:43:B0:1E:E2:E8:FE:D4:72:5A:08 Authority key identifier: 46:86:44:B9:2F:39:4C:AF:36:67:BD:B6:AF:3E:38:69:9C:54:F3:15 Certificate issuer: /CN=468644b92f394caf3667bdb6af3e38699c54f315 Certificate serial: 019B066C9308E6869D536D38A25C95FF7F20 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RoZEuS85TK82Z722rz44aZxU8xU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/091841-02fe-44db-ba16-a5e13b4fb12b/1/RoZEuS85TK82Z722rz44aZxU8xU.mft Manifest number: 0773 Signing time: Wed 10 Dec 2025 04:02:17 +0000 Manifest this update: Wed 10 Dec 2025 04:02:17 +0000 Manifest next update: Thu 11 Dec 2025 04:02:17 +0000 Files and hashes: 1: RoZEuS85TK82Z722rz44aZxU8xU.crl (hash: JFamMkHwRWrFUadlpPjL/g43k/aIsq+8f2nxtcJd9XM=) 2: UDnOw3yx7p_S6g0u-gxFkiQH6Ow.roa (hash: pt8gQb/ZyizTIVjVAR2lPtfMoGj527YNLleTVGkzd88=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/091841-02fe-44db-ba16-a5e13b4fb12b/1/RoZEuS85TK82Z722rz44aZxU8xU.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/091841-02fe-44db-ba16-a5e13b4fb12b/1/RoZEuS85TK82Z722rz44aZxU8xU.mft rsync://rpki.ripe.net/repository/DEFAULT/RoZEuS85TK82Z722rz44aZxU8xU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 11 Dec 2025 01:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:06:6c:93:08:e6:86:9d:53:6d:38:a2:5c:95:ff:7f:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=468644b92f394caf3667bdb6af3e38699c54f315 Validity Not Before: Dec 10 04:02:17 2025 GMT Not After : Dec 11 04:02:17 2025 GMT Subject: CN=3335e5056dfa0d5c634943b01ee2e8fed4725a08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:14:4e:70:0a:e3:73:86:c6:2c:55:43:74:e3: 3c:e8:61:f9:8c:4e:48:4b:5c:4c:51:3d:62:d0:6f: 10:4b:a5:00:18:67:03:35:f7:52:2e:0d:88:ac:3e: 31:41:a5:40:7b:5d:a1:32:04:c2:1c:b7:ea:3f:8d: 99:89:77:25:97:e5:db:7f:9a:f9:79:7e:ff:0a:21: 06:81:fa:98:68:41:d1:d8:b4:aa:60:76:61:ad:ee: 7d:22:a9:4a:63:1c:7f:5e:6f:ed:44:ec:2a:ab:00: 0f:28:c5:1a:3f:14:32:03:7a:41:be:9a:e4:3b:dd: 48:42:c9:9b:b9:1f:e3:f6:54:05:10:97:d3:1e:8c: 15:16:d1:e0:27:7b:a8:81:5e:e0:88:d9:75:57:47: 29:72:2d:ff:9e:4a:91:23:f6:0c:b7:26:b8:cc:47: 1b:50:2f:3d:2b:a2:d2:0a:e2:59:e6:ce:3a:59:1c: 73:17:92:73:ac:d1:10:7c:c3:d1:dd:07:5e:1e:19: 4b:9c:a4:5f:82:08:1b:b9:0e:e0:fd:d6:cc:72:28: 42:25:75:e3:0a:f1:4b:6e:f2:04:ff:5f:ce:64:9a: ad:8a:71:70:b5:fc:e1:da:57:20:78:84:32:0b:84: 8f:75:58:0e:18:21:42:0d:01:ff:5e:73:e6:88:fa: 5e:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:35:E5:05:6D:FA:0D:5C:63:49:43:B0:1E:E2:E8:FE:D4:72:5A:08 X509v3 Authority Key Identifier: keyid:46:86:44:B9:2F:39:4C:AF:36:67:BD:B6:AF:3E:38:69:9C:54:F3:15 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RoZEuS85TK82Z722rz44aZxU8xU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/091841-02fe-44db-ba16-a5e13b4fb12b/1/RoZEuS85TK82Z722rz44aZxU8xU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/091841-02fe-44db-ba16-a5e13b4fb12b/1/RoZEuS85TK82Z722rz44aZxU8xU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a4:f2:f7:41:1c:0f:8f:63:45:6c:32:42:42:2c:74:7d:50:4d: b5:5e:10:7a:1d:ee:a8:84:62:cf:b7:fa:c0:18:7e:05:ee:3f: 1b:a4:c5:a9:f5:da:cf:d2:97:da:ed:b0:f1:1d:65:84:3e:bc: d3:1e:73:c5:ca:e8:be:b1:20:88:14:b9:21:d8:3c:aa:e6:a0: 6e:d0:d4:95:da:06:ab:3c:d3:3c:65:fb:7b:d8:91:ff:7c:94: 36:06:fb:6a:a1:5f:28:9e:45:05:99:14:85:06:bd:27:7f:4f: 7e:71:ae:38:a3:a0:7b:4f:0a:f4:27:5e:da:6c:ce:1b:0b:fb: 0f:c7:8c:91:ba:02:68:46:ec:4a:21:61:6e:c8:77:5a:42:63: e7:2e:81:c3:f4:2e:9b:c4:e6:d1:5d:69:84:07:55:ca:52:9b: 1f:8c:8c:76:bf:77:24:1e:f1:a3:da:82:97:af:11:d4:5a:2a: 5a:a4:1f:d8:ad:b8:9d:a4:aa:c1:eb:60:55:2a:2c:c2:cd:74: 88:2b:5d:70:31:a8:5e:69:18:2f:6f:21:96:b9:67:9e:c2:3f: 4c:0b:45:21:00:52:84:d0:3f:02:73:9c:77:a5:0a:6e:be:8f: 79:9f:62:22:b4:df:a8:78:50:53:48:23:5f:06:72:fa:03:61: 17:2c:f4:4f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsGbJMI5oadU204olyV/38gMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ2ODY0NGI5MmYzOTRjYWYzNjY3YmRiNmFmM2UzODY5OWM1 NGYzMTUwHhcNMjUxMjEwMDQwMjE3WhcNMjUxMjExMDQwMjE3WjAzMTEwLwYDVQQD EygzMzM1ZTUwNTZkZmEwZDVjNjM0OTQzYjAxZWUyZThmZWQ0NzI1YTA4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4hROcArjc4bGLFVDdOM86GH5jE5I S1xMUT1i0G8QS6UAGGcDNfdSLg2IrD4xQaVAe12hMgTCHLfqP42ZiXcll+Xbf5r5 eX7/CiEGgfqYaEHR2LSqYHZhre59IqlKYxx/Xm/tROwqqwAPKMUaPxQyA3pBvprk O91IQsmbuR/j9lQFEJfTHowVFtHgJ3uogV7giNl1V0cpci3/nkqRI/YMtya4zEcb UC89K6LSCuJZ5s46WRxzF5JzrNEQfMPR3QdeHhlLnKRfgggbuQ7g/dbMcihCJXXj CvFLbvIE/1/OZJqtinFwtfzh2lcgeIQyC4SPdVgOGCFCDQH/XnPmiPpe5wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDM15QVt+g1cY0lDsB7i6P7UcloIMB8GA1UdIwQY MBaAFEaGRLkvOUyvNme9tq8+OGmcVPMVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUm9aRXVTODVUSzgyWjcyMnJ6NDRhWnhVOHhVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy8wOTE4NDEtMDJmZS00NGRiLWJhMTYt YTVlMTNiNGZiMTJiLzEvUm9aRXVTODVUSzgyWjcyMnJ6NDRhWnhVOHhVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy8wOTE4NDEtMDJmZS00NGRiLWJhMTYtYTVlMTNiNGZiMTJi LzEvUm9aRXVTODVUSzgyWjcyMnJ6NDRhWnhVOHhVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApPL3QRwP j2NFbDJCQix0fVBNtV4Qeh3uqIRiz7f6wBh+Be4/G6TFqfXaz9KX2u2w8R1lhD68 0x5zxcrovrEgiBS5Idg8quagbtDUldoGqzzTPGX7e9iR/3yUNgb7aqFfKJ5FBZkU hQa9J39PfnGuOKOge08K9Cde2mzOGwv7D8eMkboCaEbsSiFhbsh3WkJj5y6Bw/Qu m8Tm0V1phAdVylKbH4yMdr93JB7xo9qCl68R1FoqWqQf2K24naSqwetgVSosws10 iCtdcDGoXmkYL28hlrlnnsI/TAtFIQBShNA/AnOcd6UKbr6PeZ9iIrTfqHhQU0gj XwZy+gNhFyz0Tw== -----END CERTIFICATE-----Generated at Wed Dec 10 09:45:01 2025 by rpki-client