This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/a58803-24e7-46cf-b244-9da7887f6a2f/1/zE4rrFHZy3KbGnVijua0ycHp_8g.mft File: zE4rrFHZy3KbGnVijua0ycHp_8g.mft (raw, json) Hash identifier: z6WmFlRft5AuCcot4OIIaSRB7FaEuMqRCPaUe6/2ntw= Subject key identifier: 28:4B:87:AD:BA:60:D6:9C:BE:47:83:EC:A0:71:D0:93:38:8F:CF:9A Authority key identifier: CC:4E:2B:AC:51:D9:CB:72:9B:1A:75:62:8E:E6:B4:C9:C1:E9:FF:C8 Certificate issuer: /CN=cc4e2bac51d9cb729b1a75628ee6b4c9c1e9ffc8 Certificate serial: 019AF1D274846752CAA85E1E31A904A8693F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zE4rrFHZy3KbGnVijua0ycHp_8g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/a58803-24e7-46cf-b244-9da7887f6a2f/1/zE4rrFHZy3KbGnVijua0ycHp_8g.mft Manifest number: 030C Signing time: Sat 06 Dec 2025 04:01:32 +0000 Manifest this update: Sat 06 Dec 2025 04:01:32 +0000 Manifest next update: Sun 07 Dec 2025 04:01:32 +0000 Files and hashes: 1: O_wHUsAPrNDflBZDUMtdY6xsx-Y.roa (hash: ARirtfJZlvrV6Gh7ZW/gDyQsG60JpK7a/eIqEIlcaSo=) 2: zE4rrFHZy3KbGnVijua0ycHp_8g.crl (hash: d/nvT/RtzRmN494g39jF2GBkWfLR/7TwCRrC1XYVQ14=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/a58803-24e7-46cf-b244-9da7887f6a2f/1/zE4rrFHZy3KbGnVijua0ycHp_8g.crl rsync://rpki.ripe.net/repository/DEFAULT/14/a58803-24e7-46cf-b244-9da7887f6a2f/1/zE4rrFHZy3KbGnVijua0ycHp_8g.mft rsync://rpki.ripe.net/repository/DEFAULT/zE4rrFHZy3KbGnVijua0ycHp_8g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 04:01:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d2:74:84:67:52:ca:a8:5e:1e:31:a9:04:a8:69:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cc4e2bac51d9cb729b1a75628ee6b4c9c1e9ffc8 Validity Not Before: Dec 6 04:01:32 2025 GMT Not After : Dec 7 04:01:32 2025 GMT Subject: CN=284b87adba60d69cbe4783eca071d093388fcf9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:f7:fe:8f:60:ec:30:18:53:62:9b:4e:bf:97: bc:c0:d9:04:db:65:21:37:a7:c1:f9:b4:99:49:c1: ab:89:7f:a6:87:30:3e:a9:bf:28:f9:54:f8:c2:a2: 47:ee:2d:d3:b1:84:7e:34:b9:f6:30:46:09:72:04: ef:ba:03:3c:09:40:af:be:9e:09:88:1b:c5:39:a3: 6c:58:59:a9:8a:f4:6f:bd:89:45:f8:e4:82:ad:cb: aa:ef:37:03:b5:df:d8:8c:24:55:b2:b6:d8:70:8c: 86:4c:33:7e:87:26:86:11:23:05:17:cf:89:2c:f8: c6:23:70:57:19:e7:12:d5:db:37:03:9f:10:0c:65: f3:3d:06:03:69:ce:30:32:2d:dd:5c:df:c3:ee:5b: cd:5c:3a:56:92:bc:d5:d2:17:c3:e0:27:40:98:f0: ba:70:a7:7e:d3:e0:15:16:e4:f4:0b:d1:b7:d3:e3: 07:ce:88:10:69:76:69:fc:7f:52:b2:49:b4:d7:7f: 6a:25:15:ee:c5:d5:5b:54:a6:27:4b:e3:77:65:39: 81:b2:c6:a5:67:6f:af:bf:05:fe:d2:4c:f5:87:7a: 93:eb:72:37:3b:fa:01:53:39:f2:ab:0d:e8:f8:22: 43:2e:dc:60:9d:fe:2c:07:30:4e:b3:4f:0e:9a:9c: 0f:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:4B:87:AD:BA:60:D6:9C:BE:47:83:EC:A0:71:D0:93:38:8F:CF:9A X509v3 Authority Key Identifier: keyid:CC:4E:2B:AC:51:D9:CB:72:9B:1A:75:62:8E:E6:B4:C9:C1:E9:FF:C8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zE4rrFHZy3KbGnVijua0ycHp_8g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/a58803-24e7-46cf-b244-9da7887f6a2f/1/zE4rrFHZy3KbGnVijua0ycHp_8g.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/a58803-24e7-46cf-b244-9da7887f6a2f/1/zE4rrFHZy3KbGnVijua0ycHp_8g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a8:06:44:62:15:55:a2:30:0f:34:c9:30:13:57:2e:93:28:45: a4:fc:8c:08:14:98:03:ec:3a:6c:4b:53:97:dd:23:2b:11:28: 68:d5:38:c3:d3:ea:9a:06:ab:10:69:e9:bd:a1:0e:45:93:7a: 1b:dd:07:b9:bf:dd:9f:59:ec:f4:81:09:da:75:d3:3e:5a:fa: c3:07:e8:41:c7:0a:4b:2f:8e:2c:75:ec:df:16:1c:24:f3:db: ee:8c:fb:4c:7b:81:c0:72:41:29:be:2c:f0:40:4f:d4:26:93: a9:16:7a:87:1a:92:d8:5c:13:bf:eb:97:e8:89:0c:05:f3:14: 5c:7f:b3:43:8c:63:ef:bf:bf:ff:03:68:6d:55:9c:f0:19:0a: 1d:36:75:4d:4f:d6:53:c1:c3:0b:55:0a:7a:1c:c5:74:4d:55: 87:42:25:3b:d2:97:f3:00:64:76:6e:81:43:18:a3:fe:58:8e: 7d:87:0d:ab:2f:2a:91:9f:d9:16:b9:00:78:1d:6f:ad:06:d6: cf:1a:84:d2:22:e0:a2:1d:55:0d:77:fc:f2:ab:4e:1e:9e:4b: 7d:d8:e1:dc:a5:97:96:5b:41:98:67:7e:c5:a0:3f:28:8e:cc: a7:89:02:4b:8c:a6:d8:bb:12:ae:64:e7:57:f2:45:6f:af:16: e8:a0:86:fb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0nSEZ1LKqF4eMakEqGk/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNjNGUyYmFjNTFkOWNiNzI5YjFhNzU2MjhlZTZiNGM5YzFl OWZmYzgwHhcNMjUxMjA2MDQwMTMyWhcNMjUxMjA3MDQwMTMyWjAzMTEwLwYDVQQD EygyODRiODdhZGJhNjBkNjljYmU0NzgzZWNhMDcxZDA5MzM4OGZjZjlhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoPf+j2DsMBhTYptOv5e8wNkE22Uh N6fB+bSZScGriX+mhzA+qb8o+VT4wqJH7i3TsYR+NLn2MEYJcgTvugM8CUCvvp4J iBvFOaNsWFmpivRvvYlF+OSCrcuq7zcDtd/YjCRVsrbYcIyGTDN+hyaGESMFF8+J LPjGI3BXGecS1ds3A58QDGXzPQYDac4wMi3dXN/D7lvNXDpWkrzV0hfD4CdAmPC6 cKd+0+AVFuT0C9G30+MHzogQaXZp/H9Sskm0139qJRXuxdVbVKYnS+N3ZTmBssal Z2+vvwX+0kz1h3qT63I3O/oBUznyqw3o+CJDLtxgnf4sBzBOs08OmpwPrQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFChLh626YNacvkeD7KBx0JM4j8+aMB8GA1UdIwQY MBaAFMxOK6xR2ctymxp1Yo7mtMnB6f/IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvekU0cnJGSFp5M0tiR25WaWp1YTB5Y0hwXzhnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC9hNTg4MDMtMjRlNy00NmNmLWIyNDQt OWRhNzg4N2Y2YTJmLzEvekU0cnJGSFp5M0tiR25WaWp1YTB5Y0hwXzhnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC9hNTg4MDMtMjRlNy00NmNmLWIyNDQtOWRhNzg4N2Y2YTJm LzEvekU0cnJGSFp5M0tiR25WaWp1YTB5Y0hwXzhnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqAZEYhVV ojAPNMkwE1cukyhFpPyMCBSYA+w6bEtTl90jKxEoaNU4w9PqmgarEGnpvaEORZN6 G90Hub/dn1ns9IEJ2nXTPlr6wwfoQccKSy+OLHXs3xYcJPPb7oz7THuBwHJBKb4s 8EBP1CaTqRZ6hxqS2FwTv+uX6IkMBfMUXH+zQ4xj77+//wNobVWc8BkKHTZ1TU/W U8HDC1UKehzFdE1Vh0IlO9KX8wBkdm6BQxij/liOfYcNqy8qkZ/ZFrkAeB1vrQbW zxqE0iLgoh1VDXf88qtOHp5Lfdjh3KWXlltBmGd+xaA/KI7Mp4kCS4ym2LsSrmTn V/JFb68W6KCG+w== -----END CERTIFICATE-----Generated at Sat Dec 6 12:33:23 2025 by rpki-client