This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/7be02f-28f5-4209-935a-82d8ebe99424/1/Ze3JFheq3wwsx_H115bb237YWQ0.mft File: Ze3JFheq3wwsx_H115bb237YWQ0.mft (raw, json) Hash identifier: GwahDFUjKnFTRY44nXJRRaXXdCthyfu217uGIqnVgo0= Subject key identifier: 13:75:DE:66:EA:5B:7D:D8:12:D9:6C:99:43:9C:AE:75:60:D8:59:D1 Authority key identifier: 65:ED:C9:16:17:AA:DF:0C:2C:C7:F1:F5:D7:96:DB:DB:7E:D8:59:0D Certificate issuer: /CN=65edc91617aadf0c2cc7f1f5d796dbdb7ed8590d Certificate serial: 019B360E2FA18301D9E271B454D88E529A7F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ze3JFheq3wwsx_H115bb237YWQ0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/7be02f-28f5-4209-935a-82d8ebe99424/1/Ze3JFheq3wwsx_H115bb237YWQ0.mft Manifest number: 074F Signing time: Fri 19 Dec 2025 10:00:57 +0000 Manifest this update: Fri 19 Dec 2025 10:00:57 +0000 Manifest next update: Sat 20 Dec 2025 10:00:57 +0000 Files and hashes: 1: C0Em9awMYVhNg2sMId10Ef0_Qvw.roa (hash: nirBzQQ6k8BEyGM3hSdFnZ+pftgQMVbe2wljIKMV4wk=) 2: Ze3JFheq3wwsx_H115bb237YWQ0.crl (hash: Jc22Ujpwan3EY50oPiUK4Rn7tnxHDC9wLDva3m7T+QQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/7be02f-28f5-4209-935a-82d8ebe99424/1/Ze3JFheq3wwsx_H115bb237YWQ0.crl rsync://rpki.ripe.net/repository/DEFAULT/26/7be02f-28f5-4209-935a-82d8ebe99424/1/Ze3JFheq3wwsx_H115bb237YWQ0.mft rsync://rpki.ripe.net/repository/DEFAULT/Ze3JFheq3wwsx_H115bb237YWQ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 07:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:36:0e:2f:a1:83:01:d9:e2:71:b4:54:d8:8e:52:9a:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=65edc91617aadf0c2cc7f1f5d796dbdb7ed8590d Validity Not Before: Dec 19 10:00:57 2025 GMT Not After : Dec 20 10:00:57 2025 GMT Subject: CN=1375de66ea5b7dd812d96c99439cae7560d859d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:68:59:9e:91:ab:43:a9:43:f6:d9:f1:c0:52: 0a:78:51:3e:ee:9e:48:61:15:78:48:51:c8:29:67: 9d:81:a7:d5:28:c9:db:62:fa:6d:cf:52:7a:a7:e1: 08:51:cf:6e:58:39:7c:a1:e0:cc:8e:ba:32:99:9c: 42:4d:c3:53:85:f2:16:98:19:2b:8d:db:9d:f1:90: 77:2b:80:d1:6b:d4:c6:9f:ad:0b:74:5b:73:2f:ea: 1e:08:d0:a8:a5:2e:d7:8e:16:3d:7e:ec:e6:0b:9f: 9a:2b:45:44:dc:ba:46:04:f4:59:b7:d0:9c:27:31: 9c:60:2d:2c:f8:eb:c3:b3:75:37:4c:86:aa:f9:fb: 66:11:fe:ec:69:86:19:b7:5d:f3:02:02:27:be:43: 72:b8:ef:42:c1:0b:f8:68:83:f9:bc:2f:d2:a9:95: 85:c2:28:7c:41:d9:a6:83:3e:e2:af:7b:6a:c4:62: c5:de:1b:05:e9:c2:b1:79:fe:fc:9a:48:30:33:3b: e1:8f:aa:8c:17:58:76:76:0e:b9:5f:d9:e1:6c:15: 70:f6:d1:e9:e2:49:8c:20:6f:28:5f:4a:65:50:46: 88:ea:a7:4b:9e:55:76:3c:d8:f0:35:55:6d:ea:56: a5:b3:d2:d1:41:ef:7f:84:e1:a1:da:a7:bf:c9:cb: 8a:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:75:DE:66:EA:5B:7D:D8:12:D9:6C:99:43:9C:AE:75:60:D8:59:D1 X509v3 Authority Key Identifier: keyid:65:ED:C9:16:17:AA:DF:0C:2C:C7:F1:F5:D7:96:DB:DB:7E:D8:59:0D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ze3JFheq3wwsx_H115bb237YWQ0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/7be02f-28f5-4209-935a-82d8ebe99424/1/Ze3JFheq3wwsx_H115bb237YWQ0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/26/7be02f-28f5-4209-935a-82d8ebe99424/1/Ze3JFheq3wwsx_H115bb237YWQ0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 39:fd:24:86:fc:91:e3:92:20:d5:f2:75:fe:29:6e:73:e9:c8: a5:ac:f6:28:22:9d:0f:fb:1d:52:e3:c0:f9:0c:e3:ad:43:f1: 9b:c3:bd:ac:d8:da:7c:62:3b:7d:f1:eb:12:8b:7f:c1:9f:6a: 14:b4:56:ac:b3:e3:d8:a5:4f:bf:39:82:0f:a3:77:5a:b3:06: 12:5c:5f:f1:bd:38:d3:18:d9:97:42:43:fc:ae:d2:1b:5d:cb: f0:7c:23:3e:e7:21:bd:86:16:fa:64:79:91:90:a9:6c:cf:93: 90:51:0b:a8:4d:59:b1:c5:04:4a:d2:da:1c:2d:2c:13:b0:b1: 79:90:96:78:0a:b1:e5:d9:65:99:f8:4f:6d:d8:51:ca:58:78: 30:cb:f2:e3:40:c5:36:dd:f3:ce:83:e4:20:cd:2c:d7:f1:09: d4:f8:b2:97:6f:3e:32:d1:4a:be:98:f8:1b:67:a5:06:97:e3: 0f:e7:8f:6c:4a:4b:dd:8c:7c:78:5a:c4:8d:7d:45:b3:b5:24: b9:fd:c5:a9:8b:92:e9:76:3c:2d:f6:1b:e8:3a:ac:4f:c8:0d: 8e:ea:74:69:31:e4:be:1f:a7:e7:3e:61:48:8a:c3:c6:fb:0c: ce:23:93:52:17:90:a0:39:b1:ad:65:b3:8d:0d:6a:fd:3d:28: 2c:e5:d9:66 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs2Di+hgwHZ4nG0VNiOUpp/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY1ZWRjOTE2MTdhYWRmMGMyY2M3ZjFmNWQ3OTZkYmRiN2Vk ODU5MGQwHhcNMjUxMjE5MTAwMDU3WhcNMjUxMjIwMTAwMDU3WjAzMTEwLwYDVQQD EygxMzc1ZGU2NmVhNWI3ZGQ4MTJkOTZjOTk0MzljYWU3NTYwZDg1OWQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApGhZnpGrQ6lD9tnxwFIKeFE+7p5I YRV4SFHIKWedgafVKMnbYvptz1J6p+EIUc9uWDl8oeDMjroymZxCTcNThfIWmBkr jdud8ZB3K4DRa9TGn60LdFtzL+oeCNCopS7XjhY9fuzmC5+aK0VE3LpGBPRZt9Cc JzGcYC0s+OvDs3U3TIaq+ftmEf7saYYZt13zAgInvkNyuO9CwQv4aIP5vC/SqZWF wih8Qdmmgz7ir3tqxGLF3hsF6cKxef78mkgwMzvhj6qMF1h2dg65X9nhbBVw9tHp 4kmMIG8oX0plUEaI6qdLnlV2PNjwNVVt6lals9LRQe9/hOGh2qe/ycuKqQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBN13mbqW33YEtlsmUOcrnVg2FnRMB8GA1UdIwQY MBaAFGXtyRYXqt8MLMfx9deW29t+2FkNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWmUzSkZoZXEzd3dzeF9IMTE1YmIyMzdZV1EwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi83YmUwMmYtMjhmNS00MjA5LTkzNWEt ODJkOGViZTk5NDI0LzEvWmUzSkZoZXEzd3dzeF9IMTE1YmIyMzdZV1EwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNi83YmUwMmYtMjhmNS00MjA5LTkzNWEtODJkOGViZTk5NDI0 LzEvWmUzSkZoZXEzd3dzeF9IMTE1YmIyMzdZV1EwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOf0khvyR 45Ig1fJ1/iluc+nIpaz2KCKdD/sdUuPA+QzjrUPxm8O9rNjafGI7ffHrEot/wZ9q FLRWrLPj2KVPvzmCD6N3WrMGElxf8b040xjZl0JD/K7SG13L8HwjPuchvYYW+mR5 kZCpbM+TkFELqE1ZscUEStLaHC0sE7CxeZCWeAqx5dllmfhPbdhRylh4MMvy40DF Nt3zzoPkIM0s1/EJ1Piyl28+MtFKvpj4G2elBpfjD+ePbEpL3Yx8eFrEjX1Fs7Uk uf3FqYuS6XY8LfYb6DqsT8gNjup0aTHkvh+n5z5hSIrDxvsMziOTUheQoDmxrWWz jQ1q/T0oLOXZZg== -----END CERTIFICATE-----Generated at Fri Dec 19 12:04:03 2025 by rpki-client