This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.mft File: Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.mft (raw, json) Hash identifier: 4RzNxOhsz6+7SyfN6e4qmdUvuKkhdKUJGX1tSM+NHLA= Subject key identifier: 6A:11:8D:91:6F:C3:B3:ED:70:33:E3:5B:E3:0A:7A:2E:2A:3F:E2:6A Authority key identifier: 67:C2:5A:41:F1:C5:22:8E:10:EA:94:1C:E7:07:8F:43:CD:90:9B:63 Certificate issuer: /CN=67c25a41f1c5228e10ea941ce7078f43cd909b63 Certificate serial: 019AF163D1A624459524A12A8FEA3CCC28D5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.mft Manifest number: 1671 Signing time: Sat 06 Dec 2025 02:00:41 +0000 Manifest this update: Sat 06 Dec 2025 02:00:41 +0000 Manifest next update: Sun 07 Dec 2025 02:00:41 +0000 Files and hashes: 1: Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.crl (hash: h+mrgeC3sJqZfKc12Hh8YDU6rjDLMIL6sGutVcYjQr0=) 2: lHo6E8O3jVZPWE_3CSGUh-yWmns.roa (hash: EcydcckC44FXLMG0RzB+bDpZsk7fNTw0ZBUYetuTeMA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.crl rsync://rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.mft rsync://rpki.ripe.net/repository/DEFAULT/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:63:d1:a6:24:45:95:24:a1:2a:8f:ea:3c:cc:28:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67c25a41f1c5228e10ea941ce7078f43cd909b63 Validity Not Before: Dec 6 02:00:41 2025 GMT Not After : Dec 7 02:00:41 2025 GMT Subject: CN=6a118d916fc3b3ed7033e35be30a7a2e2a3fe26a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:78:1e:86:7c:8f:ea:d9:a6:11:c6:8f:ef:58: f8:2d:88:49:02:26:d1:3d:9a:f7:a0:75:de:fc:14: 8c:db:f6:9d:3a:eb:5f:43:01:bf:cb:8c:0d:db:03: fc:b1:f8:43:c3:7e:09:35:6a:29:81:c4:87:42:df: 23:32:c0:85:41:ab:19:69:69:fc:f2:d6:e1:cd:6b: bc:06:36:38:0a:0a:c5:82:f8:28:4d:2f:84:2a:e7: 6e:db:7d:ac:9e:9e:d3:db:07:1c:11:2c:05:a7:47: d0:f4:3b:e0:58:8d:e9:c7:d1:97:37:8a:17:1b:5a: b4:c1:dc:c6:5f:d1:ea:5e:a4:b4:ea:c8:8d:1e:5b: 2b:da:34:56:df:72:72:39:5d:89:2e:8d:fd:e7:66: d9:9b:bf:45:0f:70:00:91:09:8a:71:48:26:c4:4b: e8:78:73:89:a0:0d:ea:df:8a:94:f5:40:9a:28:74: cd:bd:6b:54:fb:92:b3:fe:ec:93:84:38:e8:64:4b: 2a:91:d9:43:08:35:17:e5:fa:f9:a5:b6:b6:83:c0: 2c:b3:5f:5e:67:52:ee:55:8d:49:0e:c6:a6:8b:df: 63:be:bf:34:50:39:65:41:13:30:6a:b4:3f:58:d2: 88:86:16:c9:a0:63:b7:30:a6:02:38:18:c2:05:07: b2:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:11:8D:91:6F:C3:B3:ED:70:33:E3:5B:E3:0A:7A:2E:2A:3F:E2:6A X509v3 Authority Key Identifier: keyid:67:C2:5A:41:F1:C5:22:8E:10:EA:94:1C:E7:07:8F:43:CD:90:9B:63 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a1a6c2-d7c1-42e8-a38f-fc910c0b19ae/1/Z8JaQfHFIo4Q6pQc5wePQ82Qm2M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:6a:cc:1e:57:e2:4c:3b:12:85:2a:55:8b:48:4e:51:41:6b: 8a:75:bc:5f:4a:3a:d4:ca:a5:c8:b3:22:fd:42:99:df:6f:e9: 44:99:f6:42:30:9a:25:0f:4a:24:2c:d6:0a:34:db:7c:c3:5b: 10:43:1d:10:69:2c:68:d0:b7:32:c0:9b:dd:aa:44:e8:17:d0: c3:a8:43:5e:0d:97:90:aa:c3:7b:65:f4:55:1d:23:61:18:42: 7c:b9:c4:c7:01:ee:5a:de:3a:e8:a2:64:67:bb:8f:cf:14:cf: f2:28:f2:ea:ed:20:fb:42:b9:9c:e3:86:c8:75:35:ff:3f:c5: 76:18:c4:c5:d5:80:27:aa:48:62:97:3b:d2:e7:47:23:76:8f: 9a:91:bc:fb:db:34:72:78:6f:54:d4:23:20:30:12:b2:6d:bf: de:b9:2c:74:0b:f1:02:a8:d3:92:8a:53:53:74:03:cc:79:61: 23:4e:21:e6:9d:95:4b:58:be:89:54:68:ad:c1:c8:d8:d3:d2: 51:34:a9:97:a8:43:4b:de:ee:db:42:ac:12:9a:5e:b7:66:1e: e5:9a:f3:90:1e:d3:e0:3a:1b:de:18:17:57:51:fa:3c:84:85: 54:b3:4e:85:b6:c8:0a:d5:29:08:46:2f:cf:ea:d2:5d:91:22: 5d:31:90:20 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxY9GmJEWVJKEqj+o8zCjVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY3YzI1YTQxZjFjNTIyOGUxMGVhOTQxY2U3MDc4ZjQzY2Q5 MDliNjMwHhcNMjUxMjA2MDIwMDQxWhcNMjUxMjA3MDIwMDQxWjAzMTEwLwYDVQQD Eyg2YTExOGQ5MTZmYzNiM2VkNzAzM2UzNWJlMzBhN2EyZTJhM2ZlMjZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx3gehnyP6tmmEcaP71j4LYhJAibR PZr3oHXe/BSM2/adOutfQwG/y4wN2wP8sfhDw34JNWopgcSHQt8jMsCFQasZaWn8 8tbhzWu8BjY4CgrFgvgoTS+EKudu232snp7T2wccESwFp0fQ9DvgWI3px9GXN4oX G1q0wdzGX9HqXqS06siNHlsr2jRW33JyOV2JLo3952bZm79FD3AAkQmKcUgmxEvo eHOJoA3q34qU9UCaKHTNvWtU+5Kz/uyThDjoZEsqkdlDCDUX5fr5pba2g8Ass19e Z1LuVY1JDsami99jvr80UDllQRMwarQ/WNKIhhbJoGO3MKYCOBjCBQeyiwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGoRjZFvw7PtcDPjW+MKei4qP+JqMB8GA1UdIwQY MBaAFGfCWkHxxSKOEOqUHOcHj0PNkJtjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWjhKYVFmSEZJbzRRNnBRYzV3ZVBRODJRbTJNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9hMWE2YzItZDdjMS00MmU4LWEzOGYt ZmM5MTBjMGIxOWFlLzEvWjhKYVFmSEZJbzRRNnBRYzV3ZVBRODJRbTJNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS9hMWE2YzItZDdjMS00MmU4LWEzOGYtZmM5MTBjMGIxOWFl LzEvWjhKYVFmSEZJbzRRNnBRYzV3ZVBRODJRbTJNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI2rMHlfi TDsShSpVi0hOUUFrinW8X0o61MqlyLMi/UKZ32/pRJn2QjCaJQ9KJCzWCjTbfMNb EEMdEGksaNC3MsCb3apE6BfQw6hDXg2XkKrDe2X0VR0jYRhCfLnExwHuWt466KJk Z7uPzxTP8ijy6u0g+0K5nOOGyHU1/z/FdhjExdWAJ6pIYpc70udHI3aPmpG8+9s0 cnhvVNQjIDASsm2/3rksdAvxAqjTkopTU3QDzHlhI04h5p2VS1i+iVRorcHI2NPS UTSpl6hDS97u20KsEppet2Ye5ZrzkB7T4Dob3hgXV1H6PISFVLNOhbbICtUpCEYv z+rSXZEiXTGQIA== -----END CERTIFICATE-----Generated at Sat Dec 6 06:58:02 2025 by rpki-client