This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/82d222-2202-45f2-b904-47472ed3becb/1/ZhBOT32fONjiKi0yvgGQMZMMGkc.mft File: ZhBOT32fONjiKi0yvgGQMZMMGkc.mft (raw, json) Hash identifier: Nhda+kU/gxwcCtbcKCNL4jwgav2OmPmib/LeWzwrUqE= Subject key identifier: F6:DA:85:8C:B2:73:68:24:B8:23:4A:CF:DC:16:F8:7C:3F:65:DC:38 Authority key identifier: 66:10:4E:4F:7D:9F:38:D8:E2:2A:2D:32:BE:01:90:31:93:0C:1A:47 Certificate issuer: /CN=66104e4f7d9f38d8e22a2d32be019031930c1a47 Certificate serial: 019AF35259DE5FE720824DF8FF5576D6A650 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZhBOT32fONjiKi0yvgGQMZMMGkc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/82d222-2202-45f2-b904-47472ed3becb/1/ZhBOT32fONjiKi0yvgGQMZMMGkc.mft Manifest number: 1763 Signing time: Sat 06 Dec 2025 11:00:51 +0000 Manifest this update: Sat 06 Dec 2025 11:00:51 +0000 Manifest next update: Sun 07 Dec 2025 11:00:51 +0000 Files and hashes: 1: CBx-FeJj7z4oTrZiVmY-MbHnzM4.roa (hash: 1bONPKFzyDS/3APoxZR25vqyDAsgCQifSMXpTfL4F0s=) 2: WxxzockSF-0jbEBubYwjKIfgtaw.roa (hash: uNom3cZ42KKzlsjBXTYNfCi+Ksse/PrjCfplRbo7jWE=) 3: ZhBOT32fONjiKi0yvgGQMZMMGkc.crl (hash: p6ABGb9gw1JNsak957pJMAUGiKC+EHg0JrAexz98PzM=) 4: hAuohYiSHygUFUxTjuX1SWN5QDE.roa (hash: MotGMSUysnMBdzXEwoyDH1EBq/l4jrQRez7lyisrMeA=) 5: n6ANVJpjfADW-mInHpVlhLdkL5w.roa (hash: E28ZlsfhOnBkyIyOKkYfx6xyMrKE5R52d/SAANOKtIs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/82d222-2202-45f2-b904-47472ed3becb/1/ZhBOT32fONjiKi0yvgGQMZMMGkc.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/82d222-2202-45f2-b904-47472ed3becb/1/ZhBOT32fONjiKi0yvgGQMZMMGkc.mft rsync://rpki.ripe.net/repository/DEFAULT/ZhBOT32fONjiKi0yvgGQMZMMGkc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:52:59:de:5f:e7:20:82:4d:f8:ff:55:76:d6:a6:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66104e4f7d9f38d8e22a2d32be019031930c1a47 Validity Not Before: Dec 6 11:00:51 2025 GMT Not After : Dec 7 11:00:51 2025 GMT Subject: CN=f6da858cb2736824b8234acfdc16f87c3f65dc38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:66:a4:d7:07:93:93:36:fc:19:74:01:e3:ab: 62:54:7a:c0:ee:8e:b8:15:0c:62:79:34:af:c3:af: 4c:19:d3:15:b3:72:59:00:3c:da:fb:bb:12:d7:0e: dd:cb:df:33:42:67:76:92:8f:f7:31:9f:56:ba:26: 70:9f:58:51:75:2d:79:36:47:aa:cb:d2:6f:0d:36: 35:a1:0c:c5:dd:10:95:07:ff:11:41:06:fb:86:d9: 9f:dd:27:c1:15:28:13:0d:7a:ad:d9:46:25:96:14: 00:5a:4d:d6:50:68:4c:c9:67:7c:e8:a8:22:48:02: 54:89:8e:3e:a8:1d:70:f7:ce:cd:3e:08:70:e6:5c: 7a:97:84:f9:d8:33:fb:60:26:8a:c8:66:18:4f:d9: 5f:a6:5b:b3:3a:17:46:fe:00:81:b2:3d:e9:13:0c: 9c:22:e1:7f:72:f6:6e:64:cc:5b:e7:7b:7a:90:92: 05:02:ea:66:4c:aa:10:7b:69:05:0c:26:fd:1e:66: 13:6b:d0:38:9c:e0:20:c3:8e:c3:58:67:15:a0:45: d0:d9:33:fc:66:c2:d4:e0:0e:ef:19:09:78:a5:d4: 84:31:1e:b9:a1:42:38:99:5f:90:6b:76:65:95:1e: 58:6b:7f:33:6d:80:d4:e0:21:eb:6d:41:39:21:67: ba:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:DA:85:8C:B2:73:68:24:B8:23:4A:CF:DC:16:F8:7C:3F:65:DC:38 X509v3 Authority Key Identifier: keyid:66:10:4E:4F:7D:9F:38:D8:E2:2A:2D:32:BE:01:90:31:93:0C:1A:47 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZhBOT32fONjiKi0yvgGQMZMMGkc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/82d222-2202-45f2-b904-47472ed3becb/1/ZhBOT32fONjiKi0yvgGQMZMMGkc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/82d222-2202-45f2-b904-47472ed3becb/1/ZhBOT32fONjiKi0yvgGQMZMMGkc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7b:85:81:1e:42:b5:0d:bd:2f:60:e8:5b:39:0d:80:26:14:79: 66:d4:50:69:ff:81:0c:28:df:15:ed:b0:e9:77:2c:1b:2a:3d: f1:39:d7:2a:fd:a5:f5:07:ec:97:d4:b3:c2:03:23:95:bd:ed: 2c:46:1b:f7:73:14:5c:fc:6d:a8:25:c3:0c:59:02:46:f2:34: 6e:97:3e:6e:59:3b:14:fc:ae:a2:7a:86:0b:0c:21:1b:9d:ab: 8f:48:07:58:dd:93:bd:21:3b:91:56:1c:96:48:f3:9e:92:32: 6c:65:bd:ba:4f:e1:fd:c9:1a:68:a4:74:89:a8:b1:c6:c4:4d: 73:ea:b3:5c:5d:23:73:2b:01:a9:b6:0a:80:ae:33:6b:4b:35: 3b:f5:0c:7e:e4:67:72:39:e8:90:ac:59:d5:c7:b2:12:75:91: ee:f9:3f:f6:73:5c:2b:46:83:e5:87:f3:0a:1e:fa:68:8d:50: 0c:6f:a5:91:ae:29:e6:23:f9:9d:b0:9e:db:d1:17:0e:e4:8e: 8c:cb:01:52:01:aa:8d:5d:08:0a:bd:27:4d:76:07:b5:43:a6: 1d:4d:38:2a:58:eb:96:ce:32:af:f9:76:dd:ea:c1:87:74:8e: a3:fe:91:4c:11:8f:e9:9a:91:18:ce:fd:22:ec:da:86:21:a4: 50:c1:39:4b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzUlneX+cggk34/1V21qZQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY2MTA0ZTRmN2Q5ZjM4ZDhlMjJhMmQzMmJlMDE5MDMxOTMw YzFhNDcwHhcNMjUxMjA2MTEwMDUxWhcNMjUxMjA3MTEwMDUxWjAzMTEwLwYDVQQD EyhmNmRhODU4Y2IyNzM2ODI0YjgyMzRhY2ZkYzE2Zjg3YzNmNjVkYzM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1mak1weTkzb8GXQB46tiVHrA7o64 FQxieTSvw69MGdMVs3JZADza+7sS1w7dy98zQmd2ko/3MZ9WuiZwn1hRdS15Nkeq y9JvDTY1oQzF3RCVB/8RQQb7htmf3SfBFSgTDXqt2UYllhQAWk3WUGhMyWd86Kgi SAJUiY4+qB1w987NPghw5lx6l4T52DP7YCaKyGYYT9lfpluzOhdG/gCBsj3pEwyc IuF/cvZuZMxb53t6kJIFAupmTKoQe2kFDCb9HmYTa9A4nOAgw47DWGcVoEXQ2TP8 ZsLU4A7vGQl4pdSEMR65oUI4mV+Qa3ZllR5Ya38zbYDU4CHrbUE5IWe6SwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPbahYyyc2gkuCNKz9wW+Hw/Zdw4MB8GA1UdIwQY MBaAFGYQTk99nzjY4iotMr4BkDGTDBpHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWmhCT1QzMmZPTmppS2kweXZnR1FNWk1NR2tjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS84MmQyMjItMjIwMi00NWYyLWI5MDQt NDc0NzJlZDNiZWNiLzEvWmhCT1QzMmZPTmppS2kweXZnR1FNWk1NR2tjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS84MmQyMjItMjIwMi00NWYyLWI5MDQtNDc0NzJlZDNiZWNi LzEvWmhCT1QzMmZPTmppS2kweXZnR1FNWk1NR2tjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAe4WBHkK1 Db0vYOhbOQ2AJhR5ZtRQaf+BDCjfFe2w6XcsGyo98TnXKv2l9Qfsl9SzwgMjlb3t LEYb93MUXPxtqCXDDFkCRvI0bpc+blk7FPyuonqGCwwhG52rj0gHWN2TvSE7kVYc lkjznpIybGW9uk/h/ckaaKR0iaixxsRNc+qzXF0jcysBqbYKgK4za0s1O/UMfuRn cjnokKxZ1ceyEnWR7vk/9nNcK0aD5YfzCh76aI1QDG+lka4p5iP5nbCe29EXDuSO jMsBUgGqjV0ICr0nTXYHtUOmHU04Kljrls4yr/l23erBh3SOo/6RTBGP6ZqRGM79 IuzahiGkUME5Sw== -----END CERTIFICATE-----Generated at Sat Dec 6 14:48:36 2025 by rpki-client