This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/d01d58-5418-4217-89ae-23a84eedd956/1/0zWMPscfwZpqyYRrr03lmDY1cpM.mft File: 0zWMPscfwZpqyYRrr03lmDY1cpM.mft (raw, json) Hash identifier: o/dM320cSl2Ft30sayvFPCF3XhquR4nxOaPSUkS02vA= Subject key identifier: 89:A7:36:21:AE:2C:F1:8F:FE:D1:17:F2:45:AD:85:14:A1:59:2F:08 Authority key identifier: D3:35:8C:3E:C7:1F:C1:9A:6A:C9:84:6B:AF:4D:E5:98:36:35:72:93 Certificate issuer: /CN=d3358c3ec71fc19a6ac9846baf4de59836357293 Certificate serial: 019B5B651CD6081CEAA1D37DC984D8C9ECA1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0zWMPscfwZpqyYRrr03lmDY1cpM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/d01d58-5418-4217-89ae-23a84eedd956/1/0zWMPscfwZpqyYRrr03lmDY1cpM.mft Manifest number: 1729 Signing time: Fri 26 Dec 2025 16:01:51 +0000 Manifest this update: Fri 26 Dec 2025 16:01:51 +0000 Manifest next update: Sat 27 Dec 2025 16:01:51 +0000 Files and hashes: 1: 0zWMPscfwZpqyYRrr03lmDY1cpM.crl (hash: SUu/K9LsyijPPqMpCz9HUT5kH8uravhdVUzuL0qqJO4=) 2: LYl-ckZTCA5UyIouoIve31n38qY.roa (hash: vPSTPP2+IXPu60S6+w3ugZNedqIYo00aGNP955WAY1c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/d01d58-5418-4217-89ae-23a84eedd956/1/0zWMPscfwZpqyYRrr03lmDY1cpM.crl rsync://rpki.ripe.net/repository/DEFAULT/fa/d01d58-5418-4217-89ae-23a84eedd956/1/0zWMPscfwZpqyYRrr03lmDY1cpM.mft rsync://rpki.ripe.net/repository/DEFAULT/0zWMPscfwZpqyYRrr03lmDY1cpM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 11:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5b:65:1c:d6:08:1c:ea:a1:d3:7d:c9:84:d8:c9:ec:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d3358c3ec71fc19a6ac9846baf4de59836357293 Validity Not Before: Dec 26 16:01:51 2025 GMT Not After : Dec 27 16:01:51 2025 GMT Subject: CN=89a73621ae2cf18ffed117f245ad8514a1592f08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:68:f5:d3:4b:74:65:c6:59:04:c9:1e:f4:8f: 56:d8:c5:e1:94:1e:f0:2b:08:94:6c:7c:0e:3d:7b: 43:a6:68:d4:35:e5:36:ac:3a:ae:21:3c:d4:a7:a4: d6:6c:1e:43:92:df:e9:24:fa:0f:a1:52:02:0b:e1: f6:9c:f0:42:2f:33:20:2c:be:73:54:51:43:98:7a: 92:fd:50:68:42:21:ed:1e:59:0e:a1:de:c0:b7:13: 3a:d2:9b:fb:50:a5:fe:21:47:1b:46:39:f7:ff:65: 0d:90:b9:43:e5:5f:e0:aa:f8:5f:e5:db:2f:67:47: 26:1f:cf:db:96:63:7e:f1:b2:3c:2d:4a:67:38:d6: 40:94:a1:e6:7d:56:91:99:94:49:91:90:ea:d4:0b: c7:d7:b4:cd:b2:a1:2a:32:47:27:9a:e3:d2:a1:e8: 89:60:fc:41:76:4b:b9:85:36:ec:f9:99:82:1e:4e: 63:b1:14:6d:3b:d2:af:b3:8a:96:f2:7c:4f:ed:61: 88:80:3d:f6:a9:4a:b9:95:0d:7a:ee:bc:3d:2e:c6: 60:97:2a:e8:4a:89:4a:70:79:d6:5d:15:58:4e:21: fe:d7:f3:be:8a:f6:74:ee:c8:fc:2e:36:f6:d7:26: 00:98:74:70:44:5b:c4:07:e3:13:a1:28:3c:97:bc: c0:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:A7:36:21:AE:2C:F1:8F:FE:D1:17:F2:45:AD:85:14:A1:59:2F:08 X509v3 Authority Key Identifier: keyid:D3:35:8C:3E:C7:1F:C1:9A:6A:C9:84:6B:AF:4D:E5:98:36:35:72:93 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0zWMPscfwZpqyYRrr03lmDY1cpM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/d01d58-5418-4217-89ae-23a84eedd956/1/0zWMPscfwZpqyYRrr03lmDY1cpM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/d01d58-5418-4217-89ae-23a84eedd956/1/0zWMPscfwZpqyYRrr03lmDY1cpM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 06:7d:78:bf:1c:b4:2d:5d:70:f9:bc:02:aa:b3:59:ce:58:3f: d0:47:a0:16:61:08:da:35:2e:57:6a:9d:94:3d:01:6d:9c:6a: d2:82:c5:f6:07:6f:9a:84:bd:c5:cc:3b:28:a3:87:40:cf:53: 24:81:65:3d:81:f1:3d:02:00:5e:b7:5c:e4:67:65:53:21:a9: 23:13:d7:d5:2c:e5:6a:4a:6a:aa:44:be:0f:50:e0:41:da:92: d1:80:fe:74:c3:96:aa:d7:06:57:91:4e:37:81:74:7a:19:4d: cc:01:48:16:7a:b8:09:6e:8b:c9:07:3a:f6:a8:5c:9d:bf:74: 90:6f:45:e9:ec:60:fd:b0:24:cf:74:f3:aa:f2:72:da:6c:2d: 8a:3b:9f:a3:5b:d0:5c:0f:c8:a5:5b:20:61:5f:b2:09:02:8e: 4c:0e:1c:83:ba:9e:5e:df:10:3d:45:19:27:00:eb:45:32:0d: 09:a3:24:a6:55:f7:41:6a:33:e3:52:22:55:26:79:20:85:41: 59:c2:92:42:ee:02:63:9c:39:4c:38:0e:d2:53:04:9a:49:f9: 8f:bd:d1:40:76:88:ea:50:39:de:d9:6b:32:4f:b4:fe:26:61: fe:72:9a:67:13:08:81:4d:88:d7:1d:07:47:83:fd:6f:ee:db: a6:bd:6c:aa -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtbZRzWCBzqodN9yYTYyeyhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQzMzU4YzNlYzcxZmMxOWE2YWM5ODQ2YmFmNGRlNTk4MzYz NTcyOTMwHhcNMjUxMjI2MTYwMTUxWhcNMjUxMjI3MTYwMTUxWjAzMTEwLwYDVQQD Eyg4OWE3MzYyMWFlMmNmMThmZmVkMTE3ZjI0NWFkODUxNGExNTkyZjA4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAumj100t0ZcZZBMke9I9W2MXhlB7w KwiUbHwOPXtDpmjUNeU2rDquITzUp6TWbB5Dkt/pJPoPoVICC+H2nPBCLzMgLL5z VFFDmHqS/VBoQiHtHlkOod7AtxM60pv7UKX+IUcbRjn3/2UNkLlD5V/gqvhf5dsv Z0cmH8/blmN+8bI8LUpnONZAlKHmfVaRmZRJkZDq1AvH17TNsqEqMkcnmuPSoeiJ YPxBdku5hTbs+ZmCHk5jsRRtO9Kvs4qW8nxP7WGIgD32qUq5lQ167rw9LsZglyro SolKcHnWXRVYTiH+1/O+ivZ07sj8Ljb21yYAmHRwRFvEB+MToSg8l7zABQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFImnNiGuLPGP/tEX8kWthRShWS8IMB8GA1UdIwQY MBaAFNM1jD7HH8GaasmEa69N5Zg2NXKTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMHpXTVBzY2Z3WnBxeVlScnIwM2xtRFkxY3BNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS9kMDFkNTgtNTQxOC00MjE3LTg5YWUt MjNhODRlZWRkOTU2LzEvMHpXTVBzY2Z3WnBxeVlScnIwM2xtRFkxY3BNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYS9kMDFkNTgtNTQxOC00MjE3LTg5YWUtMjNhODRlZWRkOTU2 LzEvMHpXTVBzY2Z3WnBxeVlScnIwM2xtRFkxY3BNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABn14vxy0 LV1w+bwCqrNZzlg/0EegFmEI2jUuV2qdlD0BbZxq0oLF9gdvmoS9xcw7KKOHQM9T JIFlPYHxPQIAXrdc5GdlUyGpIxPX1SzlakpqqkS+D1DgQdqS0YD+dMOWqtcGV5FO N4F0ehlNzAFIFnq4CW6LyQc69qhcnb90kG9F6exg/bAkz3TzqvJy2mwtijufo1vQ XA/IpVsgYV+yCQKOTA4cg7qeXt8QPUUZJwDrRTINCaMkplX3QWoz41IiVSZ5IIVB WcKSQu4CY5w5TDgO0lMEmkn5j73RQHaI6lA53tlrMk+0/iZh/nKaZxMIgU2I1x0H R4P9b+7bpr1sqg== -----END CERTIFICATE-----Generated at Fri Dec 26 17:43:29 2025 by rpki-client