This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/384d03-f479-4bb2-a8ad-ad510e05da92/1/ZnKfnQeG9ooezVxakrw5LYaRl14.mft File: ZnKfnQeG9ooezVxakrw5LYaRl14.mft (raw, json) Hash identifier: ZE457QBfL16O4Qp13SVLr0bBgw34bdW/WqZ5GJdhu3A= Subject key identifier: 38:36:DE:A1:D7:2F:00:51:96:BA:31:81:01:0D:45:3D:9F:F0:9B:32 Authority key identifier: 66:72:9F:9D:07:86:F6:8A:1E:CD:5C:5A:92:BC:39:2D:86:91:97:5E Certificate issuer: /CN=66729f9d0786f68a1ecd5c5a92bc392d8691975e Certificate serial: 019AF50A873BA780EBD68D68DCD383D363CE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZnKfnQeG9ooezVxakrw5LYaRl14.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/384d03-f479-4bb2-a8ad-ad510e05da92/1/ZnKfnQeG9ooezVxakrw5LYaRl14.mft Manifest number: 1346 Signing time: Sat 06 Dec 2025 19:01:39 +0000 Manifest this update: Sat 06 Dec 2025 19:01:39 +0000 Manifest next update: Sun 07 Dec 2025 19:01:39 +0000 Files and hashes: 1: 8P_S0IiROCk_5OYQ6mxMJ_E_ykg.roa (hash: hKXKA4mluIkjfh1vqK/elg6N0eojlwBUTy51lDcZmFo=) 2: ZnKfnQeG9ooezVxakrw5LYaRl14.crl (hash: y4hparnzdvyyUV05pHjCRn5d8vtVYO0inuV+dXBXGIY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/384d03-f479-4bb2-a8ad-ad510e05da92/1/ZnKfnQeG9ooezVxakrw5LYaRl14.crl rsync://rpki.ripe.net/repository/DEFAULT/17/384d03-f479-4bb2-a8ad-ad510e05da92/1/ZnKfnQeG9ooezVxakrw5LYaRl14.mft rsync://rpki.ripe.net/repository/DEFAULT/ZnKfnQeG9ooezVxakrw5LYaRl14.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 19:01:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:0a:87:3b:a7:80:eb:d6:8d:68:dc:d3:83:d3:63:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66729f9d0786f68a1ecd5c5a92bc392d8691975e Validity Not Before: Dec 6 19:01:39 2025 GMT Not After : Dec 7 19:01:39 2025 GMT Subject: CN=3836dea1d72f005196ba3181010d453d9ff09b32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:0c:92:6f:98:c6:ae:37:dd:32:c3:ee:5b:1d: 4e:30:54:74:27:6a:c5:7f:4a:04:6d:07:ed:19:ed: 6e:71:35:25:ed:1e:49:1d:bd:58:a1:95:17:67:30: 2f:66:9d:15:4b:61:95:0f:d1:9f:24:71:4c:b7:9c: 8f:af:7a:19:24:ee:b6:9c:5e:18:b1:26:3c:35:a7: b6:5d:57:1c:81:08:13:59:ac:45:0e:14:14:d2:6a: 3f:e9:c4:7e:c9:ff:42:9e:6a:38:fa:fb:48:1b:99: d1:76:d8:c5:ca:0e:22:f2:e0:a7:a5:c9:d9:b5:04: a7:b8:e3:6b:a7:b4:63:fa:d9:70:0e:b8:e6:51:82: 77:bf:2b:02:c8:43:8f:8d:c2:e5:12:52:6c:99:00: 5a:e7:4e:96:03:11:13:fb:c3:76:15:26:aa:ec:c0: cd:85:f2:54:0f:d0:e6:ac:26:21:1f:7f:b2:f3:d5: 2b:62:ea:a8:c2:87:1a:25:c7:6c:5c:2f:5b:17:d1: f9:74:3c:a1:fb:dd:ee:1c:9f:d7:03:96:fd:b1:7e: 8f:9a:09:d3:30:89:5b:94:41:ca:56:18:18:34:a4: 9d:97:1a:07:e0:6f:29:51:86:37:8e:c4:ed:96:e0: 92:61:86:3e:21:bb:f1:da:51:11:a1:bb:72:e9:b5: 1c:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:36:DE:A1:D7:2F:00:51:96:BA:31:81:01:0D:45:3D:9F:F0:9B:32 X509v3 Authority Key Identifier: keyid:66:72:9F:9D:07:86:F6:8A:1E:CD:5C:5A:92:BC:39:2D:86:91:97:5E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZnKfnQeG9ooezVxakrw5LYaRl14.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/384d03-f479-4bb2-a8ad-ad510e05da92/1/ZnKfnQeG9ooezVxakrw5LYaRl14.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/384d03-f479-4bb2-a8ad-ad510e05da92/1/ZnKfnQeG9ooezVxakrw5LYaRl14.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 09:f0:14:5d:e3:70:d2:b7:73:57:24:cd:3d:e5:66:d6:f4:7c: 46:44:31:d2:61:20:73:be:0d:9a:f7:7a:9a:33:c2:81:6e:0a: 93:de:be:35:91:7d:f1:67:5d:8d:42:6d:15:68:86:e6:18:e4: 52:76:da:4c:6b:38:fe:e6:36:6b:33:fe:cf:bd:40:64:82:ac: 3b:f5:4b:05:fc:dd:0c:8a:6d:1f:27:c0:a4:cb:e4:3b:f3:6e: 73:46:ca:80:fe:d8:0e:ad:6c:9f:8c:16:28:da:0c:26:25:13: c7:5d:10:f3:94:39:40:50:27:75:48:e4:2c:4b:1a:90:32:87: 82:d1:b1:3b:5a:63:bf:e7:55:2d:0d:a1:37:ec:5d:3b:b7:49: 69:0d:e6:e7:4f:59:d8:d9:51:3e:93:b5:50:6d:9b:2f:c6:71: 80:92:d2:19:bd:5e:75:8f:46:5b:9c:eb:bd:14:08:bd:d9:82: e3:a8:e4:62:f2:37:c3:9d:14:42:c6:fc:ad:49:ec:b3:27:a4: 0e:49:e0:76:1f:30:f9:ae:aa:26:f8:61:06:46:94:d0:44:81: f0:6f:75:7f:20:7c:f2:d4:67:ac:5a:2b:2e:eb:13:d4:5b:21: 5f:8c:c4:71:1d:93:f2:40:3f:26:cc:a3:f3:fb:3d:34:f5:8e: e3:25:0b:b9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1Coc7p4Dr1o1o3NOD02POMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY2NzI5ZjlkMDc4NmY2OGExZWNkNWM1YTkyYmMzOTJkODY5 MTk3NWUwHhcNMjUxMjA2MTkwMTM5WhcNMjUxMjA3MTkwMTM5WjAzMTEwLwYDVQQD EygzODM2ZGVhMWQ3MmYwMDUxOTZiYTMxODEwMTBkNDUzZDlmZjA5YjMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnAySb5jGrjfdMsPuWx1OMFR0J2rF f0oEbQftGe1ucTUl7R5JHb1YoZUXZzAvZp0VS2GVD9GfJHFMt5yPr3oZJO62nF4Y sSY8Nae2XVccgQgTWaxFDhQU0mo/6cR+yf9Cnmo4+vtIG5nRdtjFyg4i8uCnpcnZ tQSnuONrp7Rj+tlwDrjmUYJ3vysCyEOPjcLlElJsmQBa506WAxET+8N2FSaq7MDN hfJUD9DmrCYhH3+y89UrYuqowocaJcdsXC9bF9H5dDyh+93uHJ/XA5b9sX6PmgnT MIlblEHKVhgYNKSdlxoH4G8pUYY3jsTtluCSYYY+Ibvx2lERobty6bUczwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDg23qHXLwBRlroxgQENRT2f8JsyMB8GA1UdIwQY MBaAFGZyn50HhvaKHs1cWpK8OS2GkZdeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWm5LZm5RZUc5b29lelZ4YWtydzVMWWFSbDE0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy8zODRkMDMtZjQ3OS00YmIyLWE4YWQt YWQ1MTBlMDVkYTkyLzEvWm5LZm5RZUc5b29lelZ4YWtydzVMWWFSbDE0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy8zODRkMDMtZjQ3OS00YmIyLWE4YWQtYWQ1MTBlMDVkYTky LzEvWm5LZm5RZUc5b29lelZ4YWtydzVMWWFSbDE0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACfAUXeNw 0rdzVyTNPeVm1vR8RkQx0mEgc74Nmvd6mjPCgW4Kk96+NZF98WddjUJtFWiG5hjk UnbaTGs4/uY2azP+z71AZIKsO/VLBfzdDIptHyfApMvkO/Nuc0bKgP7YDq1sn4wW KNoMJiUTx10Q85Q5QFAndUjkLEsakDKHgtGxO1pjv+dVLQ2hN+xdO7dJaQ3m509Z 2NlRPpO1UG2bL8ZxgJLSGb1edY9GW5zrvRQIvdmC46jkYvI3w50UQsb8rUnssyek Dkngdh8w+a6qJvhhBkaU0ESB8G91fyB88tRnrForLusT1FshX4zEcR2T8kA/Jsyj 8/s9NPWO4yULuQ== -----END CERTIFICATE-----Generated at Sun Dec 7 01:30:20 2025 by rpki-client