This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/3091e8-3c60-41cc-85e0-e32d6f6f3ccc/1/ROzsULCd1G04TQgbUH0juv71HJw.mft File: ROzsULCd1G04TQgbUH0juv71HJw.mft (raw, json) Hash identifier: yP2rel5/f7NMIBgs+KZnyKDhB0IewKKnE9PhNcxW2ys= Subject key identifier: DC:7A:CD:E4:04:B6:C9:33:7D:DB:01:38:F5:AC:21:E6:E7:0F:55:C1 Authority key identifier: 44:EC:EC:50:B0:9D:D4:6D:38:4D:08:1B:50:7D:23:BA:FE:F5:1C:9C Certificate issuer: /CN=44ecec50b09dd46d384d081b507d23bafef51c9c Certificate serial: 019AF1D1F5F773FFE0E8F857A6E2243004CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ROzsULCd1G04TQgbUH0juv71HJw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/3091e8-3c60-41cc-85e0-e32d6f6f3ccc/1/ROzsULCd1G04TQgbUH0juv71HJw.mft Manifest number: 175F Signing time: Sat 06 Dec 2025 04:01:00 +0000 Manifest this update: Sat 06 Dec 2025 04:01:00 +0000 Manifest next update: Sun 07 Dec 2025 04:01:00 +0000 Files and hashes: 1: ROzsULCd1G04TQgbUH0juv71HJw.crl (hash: 5F7TsQjBhqlABrG5rr6FIG7SvnaJPyOAVWubUn66JVI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/3091e8-3c60-41cc-85e0-e32d6f6f3ccc/1/ROzsULCd1G04TQgbUH0juv71HJw.crl rsync://rpki.ripe.net/repository/DEFAULT/12/3091e8-3c60-41cc-85e0-e32d6f6f3ccc/1/ROzsULCd1G04TQgbUH0juv71HJw.mft rsync://rpki.ripe.net/repository/DEFAULT/ROzsULCd1G04TQgbUH0juv71HJw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 04:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d1:f5:f7:73:ff:e0:e8:f8:57:a6:e2:24:30:04:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44ecec50b09dd46d384d081b507d23bafef51c9c Validity Not Before: Dec 6 04:01:00 2025 GMT Not After : Dec 7 04:01:00 2025 GMT Subject: CN=dc7acde404b6c9337ddb0138f5ac21e6e70f55c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:9b:cf:51:d0:41:3b:84:fc:d8:5f:b7:c4:e2: f9:63:30:71:c0:df:e0:e1:10:ba:aa:15:30:e4:b8: 58:a3:04:e5:52:53:ad:ea:68:44:8d:de:f5:c5:5a: 59:38:fb:4f:3c:5c:61:4b:d9:92:db:6b:3a:04:b0: eb:ed:e3:c2:d0:95:26:04:8c:87:05:22:55:d0:67: 8c:f7:bb:1a:a5:6e:51:7a:74:7b:3a:2f:72:07:15: 22:29:57:d2:76:51:88:7c:a5:93:b4:ab:bf:72:c8: dd:c2:38:38:38:d6:ef:12:9e:91:7a:e4:be:7d:73: 4e:65:5b:d7:26:f8:ab:b7:fb:76:af:d4:16:7c:9f: 74:5a:4c:02:7e:e2:6e:55:51:db:f1:c8:02:98:11: 74:0d:4d:6d:38:3d:e5:0a:ad:af:6d:1e:a7:11:c0: 11:0f:f2:e9:8c:d2:a8:f5:5d:11:3a:5a:0e:ec:a1: f7:8a:f3:70:5b:ca:7f:90:ad:c5:e6:c6:16:32:3f: c8:ee:13:6d:08:80:4c:30:94:fc:63:85:5d:15:32: 95:46:91:63:ba:4f:4a:2c:c3:48:ef:30:fa:3a:32: 58:e3:e0:0d:12:92:84:ec:16:cf:ae:54:1b:30:be: d3:70:ec:f5:da:a9:42:cf:22:73:d6:b1:0d:5a:d8: 9f:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:7A:CD:E4:04:B6:C9:33:7D:DB:01:38:F5:AC:21:E6:E7:0F:55:C1 X509v3 Authority Key Identifier: keyid:44:EC:EC:50:B0:9D:D4:6D:38:4D:08:1B:50:7D:23:BA:FE:F5:1C:9C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ROzsULCd1G04TQgbUH0juv71HJw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/3091e8-3c60-41cc-85e0-e32d6f6f3ccc/1/ROzsULCd1G04TQgbUH0juv71HJw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/3091e8-3c60-41cc-85e0-e32d6f6f3ccc/1/ROzsULCd1G04TQgbUH0juv71HJw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8f:6f:67:f8:25:07:3a:30:70:4f:8b:37:10:66:46:0f:2d:41: 2a:86:16:b7:9c:6d:65:95:4c:33:89:2a:ec:48:0d:65:42:c9: c2:8a:2f:71:3b:d5:05:42:16:45:8f:38:75:e9:63:42:72:46: a3:c2:ca:0d:39:2b:0f:45:0d:69:b9:a9:ec:87:7c:a2:0e:0e: 1d:ab:ef:8c:26:9b:58:87:28:2a:41:05:3a:0d:1a:14:ba:aa: 7d:d2:0d:7d:66:83:c2:f0:82:d6:bd:d0:df:49:0f:e7:b3:09: 71:c0:08:d9:6a:42:b3:56:47:15:f0:0d:a3:e2:36:b9:2d:63: 7b:51:eb:18:aa:ab:b6:3d:0d:ca:c9:fb:4a:0b:69:00:30:6e: 98:2a:8e:06:c8:ed:e0:44:1d:05:3f:d1:a6:1b:74:0a:38:3f: 18:4e:67:0d:f0:6f:6c:d6:1d:ed:f5:82:26:fe:49:62:c5:6e: 76:7b:c9:9a:17:cb:1e:01:f3:9d:12:d3:e5:0f:52:f0:0a:d1: 4d:a6:1b:bd:ce:01:85:ac:40:93:0c:cb:c8:e9:e6:99:55:e1: 09:d6:f8:9b:9d:9c:e8:fa:97:8d:58:c4:47:fb:08:4a:e9:81: 4c:5b:09:7c:71:2b:f2:4c:68:20:8d:e7:d5:24:2b:68:13:2a: 92:d1:ae:fa -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0fX3c//g6PhXpuIkMATLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ0ZWNlYzUwYjA5ZGQ0NmQzODRkMDgxYjUwN2QyM2JhZmVm NTFjOWMwHhcNMjUxMjA2MDQwMTAwWhcNMjUxMjA3MDQwMTAwWjAzMTEwLwYDVQQD EyhkYzdhY2RlNDA0YjZjOTMzN2RkYjAxMzhmNWFjMjFlNmU3MGY1NWMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn5vPUdBBO4T82F+3xOL5YzBxwN/g 4RC6qhUw5LhYowTlUlOt6mhEjd71xVpZOPtPPFxhS9mS22s6BLDr7ePC0JUmBIyH BSJV0GeM97sapW5RenR7Oi9yBxUiKVfSdlGIfKWTtKu/csjdwjg4ONbvEp6ReuS+ fXNOZVvXJvirt/t2r9QWfJ90WkwCfuJuVVHb8cgCmBF0DU1tOD3lCq2vbR6nEcAR D/LpjNKo9V0ROloO7KH3ivNwW8p/kK3F5sYWMj/I7hNtCIBMMJT8Y4VdFTKVRpFj uk9KLMNI7zD6OjJY4+ANEpKE7BbPrlQbML7TcOz12qlCzyJz1rENWtifHwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNx6zeQEtskzfdsBOPWsIebnD1XBMB8GA1UdIwQY MBaAFETs7FCwndRtOE0IG1B9I7r+9RycMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUk96c1VMQ2QxRzA0VFFnYlVIMGp1djcxSEp3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi8zMDkxZTgtM2M2MC00MWNjLTg1ZTAt ZTMyZDZmNmYzY2NjLzEvUk96c1VMQ2QxRzA0VFFnYlVIMGp1djcxSEp3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi8zMDkxZTgtM2M2MC00MWNjLTg1ZTAtZTMyZDZmNmYzY2Nj LzEvUk96c1VMQ2QxRzA0VFFnYlVIMGp1djcxSEp3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAj29n+CUH OjBwT4s3EGZGDy1BKoYWt5xtZZVMM4kq7EgNZULJwoovcTvVBUIWRY84deljQnJG o8LKDTkrD0UNabmp7Id8og4OHavvjCabWIcoKkEFOg0aFLqqfdINfWaDwvCC1r3Q 30kP57MJccAI2WpCs1ZHFfANo+I2uS1je1HrGKqrtj0Nysn7SgtpADBumCqOBsjt 4EQdBT/Rpht0Cjg/GE5nDfBvbNYd7fWCJv5JYsVudnvJmhfLHgHznRLT5Q9S8ArR TaYbvc4BhaxAkwzLyOnmmVXhCdb4m52c6PqXjVjER/sISumBTFsJfHEr8kxoII3n 1SQraBMqktGu+g== -----END CERTIFICATE-----Generated at Sat Dec 6 14:22:23 2025 by rpki-client