This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/09c3b1-72eb-433a-96cb-48777aa961e9/1/g-ZAPPcyIcEX6km8kjT-b0oR14A.mft File: g-ZAPPcyIcEX6km8kjT-b0oR14A.mft (raw, json) Hash identifier: GTQYr/cVNAehDm7KcYbf/1eJe/Q81BXcMsBJ0GIKxIo= Subject key identifier: E8:5B:37:05:2D:14:CE:DC:E6:16:96:8E:98:57:09:B3:65:37:0E:FB Authority key identifier: 83:E6:40:3C:F7:32:21:C1:17:EA:49:BC:92:34:FE:6F:4A:11:D7:80 Certificate issuer: /CN=83e6403cf73221c117ea49bc9234fe6f4a11d780 Certificate serial: 019AF1640694B7E32698CF394E5D27471DAF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g-ZAPPcyIcEX6km8kjT-b0oR14A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/09c3b1-72eb-433a-96cb-48777aa961e9/1/g-ZAPPcyIcEX6km8kjT-b0oR14A.mft Manifest number: 1254 Signing time: Sat 06 Dec 2025 02:00:55 +0000 Manifest this update: Sat 06 Dec 2025 02:00:55 +0000 Manifest next update: Sun 07 Dec 2025 02:00:55 +0000 Files and hashes: 1: Z__qWjsTqKN6H6Uy48R_joDrg6A.roa (hash: hy+rnvr7Ps+zzGaNk6QHsEt8A1/U9k/JFaxCitWq0s8=) 2: g-ZAPPcyIcEX6km8kjT-b0oR14A.crl (hash: 5tKlV3Ii/aVldGLAGWoKsnp3psByW//eL6y+fW+qhjY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/09c3b1-72eb-433a-96cb-48777aa961e9/1/g-ZAPPcyIcEX6km8kjT-b0oR14A.crl rsync://rpki.ripe.net/repository/DEFAULT/13/09c3b1-72eb-433a-96cb-48777aa961e9/1/g-ZAPPcyIcEX6km8kjT-b0oR14A.mft rsync://rpki.ripe.net/repository/DEFAULT/g-ZAPPcyIcEX6km8kjT-b0oR14A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:64:06:94:b7:e3:26:98:cf:39:4e:5d:27:47:1d:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83e6403cf73221c117ea49bc9234fe6f4a11d780 Validity Not Before: Dec 6 02:00:55 2025 GMT Not After : Dec 7 02:00:55 2025 GMT Subject: CN=e85b37052d14cedce616968e985709b365370efb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:a8:ca:ef:e3:7c:f1:67:8d:b2:c5:f7:ca:87: 9b:a6:e1:5a:ca:1e:13:c8:c3:ed:6c:0c:17:8a:dc: 64:db:a6:3c:85:0c:39:25:29:f7:51:20:bf:42:12: 05:4d:9f:45:1d:79:e7:53:e7:62:17:8b:d3:05:8c: 5a:05:bc:43:d3:ac:10:3c:a2:03:6d:f0:87:fe:60: 12:46:99:e1:57:14:16:46:f6:19:28:8e:3b:d4:45: 6a:4f:9a:07:c9:b5:c7:f9:f9:3f:e4:b3:92:da:73: 1a:06:25:53:70:67:df:82:d9:d2:b0:c9:c8:8f:7a: d1:63:fa:4a:05:dd:2a:24:58:39:ca:70:69:bc:9c: b1:81:72:5f:11:58:98:14:db:56:46:43:10:92:59: 08:f6:92:5d:fa:30:73:dc:1e:88:1c:62:ef:a8:f6: 18:93:4b:60:05:0f:c2:0a:1c:8c:89:79:bb:92:5c: e1:f9:bf:2f:65:1d:71:64:5f:9d:9c:42:08:79:8d: f7:1f:32:32:77:bf:87:64:ec:b5:23:ce:e8:45:3f: e8:65:cb:ae:99:f1:a0:f7:65:e2:43:91:59:92:ac: d4:14:d1:7c:06:58:84:84:57:6c:02:73:e0:15:c1: da:c5:e6:41:a0:d1:68:71:f3:92:7a:ba:fd:ea:ea: ca:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:5B:37:05:2D:14:CE:DC:E6:16:96:8E:98:57:09:B3:65:37:0E:FB X509v3 Authority Key Identifier: keyid:83:E6:40:3C:F7:32:21:C1:17:EA:49:BC:92:34:FE:6F:4A:11:D7:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g-ZAPPcyIcEX6km8kjT-b0oR14A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/09c3b1-72eb-433a-96cb-48777aa961e9/1/g-ZAPPcyIcEX6km8kjT-b0oR14A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/09c3b1-72eb-433a-96cb-48777aa961e9/1/g-ZAPPcyIcEX6km8kjT-b0oR14A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 01:06:fb:33:96:49:95:ab:c0:e4:7f:38:8a:7c:27:1e:c1:1f: 93:e9:27:9a:76:39:85:38:37:ad:5c:b4:79:24:78:41:54:d8: 6d:32:b9:1c:50:74:7e:e2:92:00:db:4e:bc:67:27:9d:73:1a: f7:c8:13:ba:f1:bf:9f:56:22:81:cc:65:86:67:94:b4:86:5d: 08:3a:3b:cd:6b:61:fb:41:13:49:3b:a5:fe:e0:d1:b4:35:cb: 32:14:ef:cd:49:65:d2:da:45:24:84:79:3f:2d:e8:5e:72:e3: 5d:f5:e4:d5:df:93:58:56:aa:95:2c:d7:40:7b:ae:c7:d3:f9: 52:a1:74:c4:51:a5:d2:b1:1a:45:1e:5d:ad:5e:d0:29:e0:61: 4c:5e:9d:7f:9a:f2:6c:98:4c:64:51:34:6b:ea:ed:ff:38:37: c0:e8:b3:8a:bf:8d:85:b8:67:33:ad:7b:72:c0:1c:3d:c9:a0: 5f:42:de:e3:61:3f:95:a8:80:b0:4b:6c:00:c1:a7:95:be:83: d2:90:f2:56:97:0d:9f:db:0f:bd:c8:e3:35:8b:e4:07:89:99: 9c:fb:e5:4e:b4:46:76:00:a2:a3:2b:b6:22:54:a2:66:f4:b4: 2e:f8:ec:c9:f5:b0:2d:5b:88:bb:b1:3f:65:49:43:9e:c5:b4: 8a:fd:d7:03 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxZAaUt+MmmM85Tl0nRx2vMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgzZTY0MDNjZjczMjIxYzExN2VhNDliYzkyMzRmZTZmNGEx MWQ3ODAwHhcNMjUxMjA2MDIwMDU1WhcNMjUxMjA3MDIwMDU1WjAzMTEwLwYDVQQD EyhlODViMzcwNTJkMTRjZWRjZTYxNjk2OGU5ODU3MDliMzY1MzcwZWZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA06jK7+N88WeNssX3yoebpuFayh4T yMPtbAwXitxk26Y8hQw5JSn3USC/QhIFTZ9FHXnnU+diF4vTBYxaBbxD06wQPKID bfCH/mASRpnhVxQWRvYZKI471EVqT5oHybXH+fk/5LOS2nMaBiVTcGffgtnSsMnI j3rRY/pKBd0qJFg5ynBpvJyxgXJfEViYFNtWRkMQklkI9pJd+jBz3B6IHGLvqPYY k0tgBQ/CChyMiXm7klzh+b8vZR1xZF+dnEIIeY33HzIyd7+HZOy1I87oRT/oZcuu mfGg92XiQ5FZkqzUFNF8BliEhFdsAnPgFcHaxeZBoNFocfOSerr96urK+wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOhbNwUtFM7c5haWjphXCbNlNw77MB8GA1UdIwQY MBaAFIPmQDz3MiHBF+pJvJI0/m9KEdeAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZy1aQVBQY3lJY0VYNmttOGtqVC1iMG9SMTRBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy8wOWMzYjEtNzJlYi00MzNhLTk2Y2It NDg3NzdhYTk2MWU5LzEvZy1aQVBQY3lJY0VYNmttOGtqVC1iMG9SMTRBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy8wOWMzYjEtNzJlYi00MzNhLTk2Y2ItNDg3NzdhYTk2MWU5 LzEvZy1aQVBQY3lJY0VYNmttOGtqVC1iMG9SMTRBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAQb7M5ZJ lavA5H84inwnHsEfk+knmnY5hTg3rVy0eSR4QVTYbTK5HFB0fuKSANtOvGcnnXMa 98gTuvG/n1YigcxlhmeUtIZdCDo7zWth+0ETSTul/uDRtDXLMhTvzUll0tpFJIR5 Py3oXnLjXfXk1d+TWFaqlSzXQHuux9P5UqF0xFGl0rEaRR5drV7QKeBhTF6df5ry bJhMZFE0a+rt/zg3wOizir+NhbhnM617csAcPcmgX0Le42E/laiAsEtsAMGnlb6D 0pDyVpcNn9sPvcjjNYvkB4mZnPvlTrRGdgCioyu2IlSiZvS0LvjsyfWwLVuIu7E/ ZUlDnsW0iv3XAw== -----END CERTIFICATE-----Generated at Sat Dec 6 12:18:30 2025 by rpki-client