This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/7be02f-28f5-4209-935a-82d8ebe99424/1/Ze3JFheq3wwsx_H115bb237YWQ0.mft File: Ze3JFheq3wwsx_H115bb237YWQ0.mft (raw, json) Hash identifier: OZx03k7j2C1iQFMa3p4NKes6X6ImaqxW27+NvuMk5fE= Subject key identifier: 92:2D:F2:0F:EE:BF:BB:40:88:E6:9A:B2:70:36:05:73:89:1D:7C:77 Authority key identifier: 65:ED:C9:16:17:AA:DF:0C:2C:C7:F1:F5:D7:96:DB:DB:7E:D8:59:0D Certificate issuer: /CN=65edc91617aadf0c2cc7f1f5d796dbdb7ed8590d Certificate serial: 019AF276D8696A57AFB5BB5E34A5EFED9D72 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ze3JFheq3wwsx_H115bb237YWQ0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/7be02f-28f5-4209-935a-82d8ebe99424/1/Ze3JFheq3wwsx_H115bb237YWQ0.mft Manifest number: 072C Signing time: Sat 06 Dec 2025 07:01:06 +0000 Manifest this update: Sat 06 Dec 2025 07:01:06 +0000 Manifest next update: Sun 07 Dec 2025 07:01:06 +0000 Files and hashes: 1: C0Em9awMYVhNg2sMId10Ef0_Qvw.roa (hash: nirBzQQ6k8BEyGM3hSdFnZ+pftgQMVbe2wljIKMV4wk=) 2: Ze3JFheq3wwsx_H115bb237YWQ0.crl (hash: hxW7VamMYu46+HYGvbrY+qavmcsdB8GYlKr8eT9JMu8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/7be02f-28f5-4209-935a-82d8ebe99424/1/Ze3JFheq3wwsx_H115bb237YWQ0.crl rsync://rpki.ripe.net/repository/DEFAULT/26/7be02f-28f5-4209-935a-82d8ebe99424/1/Ze3JFheq3wwsx_H115bb237YWQ0.mft rsync://rpki.ripe.net/repository/DEFAULT/Ze3JFheq3wwsx_H115bb237YWQ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:d8:69:6a:57:af:b5:bb:5e:34:a5:ef:ed:9d:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=65edc91617aadf0c2cc7f1f5d796dbdb7ed8590d Validity Not Before: Dec 6 07:01:06 2025 GMT Not After : Dec 7 07:01:06 2025 GMT Subject: CN=922df20feebfbb4088e69ab270360573891d7c77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ae:05:bf:ea:4a:86:33:a6:94:b8:90:cf:ed: 5d:bb:8d:aa:5a:09:6f:52:03:3d:6e:95:92:d1:5d: 80:c7:2c:1e:8a:77:bc:30:84:0c:c0:76:a7:72:a8: 15:b7:8e:27:1f:9a:20:be:50:9e:5d:cf:12:73:a2: 9d:2a:76:fe:7c:9c:b5:4f:43:0f:7d:eb:79:7a:52: 0f:80:77:f6:42:d2:12:3a:4b:ec:44:85:f3:f5:af: 30:5c:10:fe:74:e5:1b:8d:f8:83:73:e4:52:14:d9: d8:92:82:89:da:7b:47:6a:9e:6d:6f:98:91:4b:4c: 04:85:7c:3c:cf:dd:b4:55:2b:3f:b8:f9:9e:b1:10: f3:ac:fd:47:6d:0b:0a:ba:a7:bd:ea:84:2a:37:93: 6d:ef:51:aa:95:c7:cc:a5:11:c2:61:83:d4:81:e7: 32:d7:ef:9b:ea:2c:0f:a4:3f:dc:5d:5a:fa:29:cd: fa:a2:7b:93:90:0d:24:dd:8a:a9:8e:78:09:5f:5f: 0a:96:78:96:0c:73:44:ea:5d:f9:d8:ad:0e:6b:fb: e5:48:4c:ed:a2:c4:23:7b:6e:7e:9e:39:6f:f0:83: c5:34:4c:46:2a:79:73:94:87:a6:6c:e5:f1:a9:1a: 8d:7c:b9:e8:0b:8d:fd:8f:d1:58:64:b0:32:65:25: bd:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:2D:F2:0F:EE:BF:BB:40:88:E6:9A:B2:70:36:05:73:89:1D:7C:77 X509v3 Authority Key Identifier: keyid:65:ED:C9:16:17:AA:DF:0C:2C:C7:F1:F5:D7:96:DB:DB:7E:D8:59:0D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ze3JFheq3wwsx_H115bb237YWQ0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/7be02f-28f5-4209-935a-82d8ebe99424/1/Ze3JFheq3wwsx_H115bb237YWQ0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/26/7be02f-28f5-4209-935a-82d8ebe99424/1/Ze3JFheq3wwsx_H115bb237YWQ0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 01:5a:37:95:77:0d:4b:41:22:0d:28:0b:13:84:e1:7c:64:2e: ca:5c:07:c6:bc:8e:e4:ce:3b:51:77:f4:34:62:6a:0a:3f:fa: 23:93:3a:55:40:d3:4c:8a:ac:9e:61:fb:e2:5f:97:44:d8:e9: ea:cb:8e:b1:28:8d:ae:6b:8b:82:06:c5:b5:d5:57:52:17:35: cd:0d:30:f7:d8:16:b6:75:8e:ff:ac:03:5e:48:02:20:4d:27: 77:05:1c:99:9e:e1:12:da:db:63:ca:7e:16:d2:8b:a6:b0:54: ca:a2:81:4c:ad:a3:89:bc:76:63:60:e8:94:fb:07:1d:70:c8: 16:82:25:71:4e:b6:2e:d8:bc:28:23:26:ae:d4:8d:26:63:dd: fb:1a:e7:c8:b9:3e:1f:50:95:27:a7:80:3d:a5:5c:64:77:0f: 38:e8:23:a7:e7:6e:dc:56:a6:61:a6:39:f8:e0:16:87:82:aa: 46:f5:19:ff:73:03:52:84:f8:53:13:30:a9:32:82:dc:af:51: e2:8a:61:db:e2:4c:c3:fa:7e:d2:59:d8:01:87:bc:2d:27:e8: 68:74:e6:26:09:bf:3a:4f:f7:69:25:61:cc:95:cf:da:c4:c8: 84:f5:c2:6b:8a:11:08:91:f3:31:13:bb:40:51:93:3e:57:72: fe:05:8d:07 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydthpalevtbteNKXv7Z1yMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY1ZWRjOTE2MTdhYWRmMGMyY2M3ZjFmNWQ3OTZkYmRiN2Vk ODU5MGQwHhcNMjUxMjA2MDcwMTA2WhcNMjUxMjA3MDcwMTA2WjAzMTEwLwYDVQQD Eyg5MjJkZjIwZmVlYmZiYjQwODhlNjlhYjI3MDM2MDU3Mzg5MWQ3Yzc3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx64Fv+pKhjOmlLiQz+1du42qWglv UgM9bpWS0V2Axyweine8MIQMwHancqgVt44nH5ogvlCeXc8Sc6KdKnb+fJy1T0MP fet5elIPgHf2QtISOkvsRIXz9a8wXBD+dOUbjfiDc+RSFNnYkoKJ2ntHap5tb5iR S0wEhXw8z920VSs/uPmesRDzrP1HbQsKuqe96oQqN5Nt71GqlcfMpRHCYYPUgecy 1++b6iwPpD/cXVr6Kc36onuTkA0k3YqpjngJX18KlniWDHNE6l352K0Oa/vlSEzt osQje25+njlv8IPFNExGKnlzlIembOXxqRqNfLnoC439j9FYZLAyZSW9IwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJIt8g/uv7tAiOaasnA2BXOJHXx3MB8GA1UdIwQY MBaAFGXtyRYXqt8MLMfx9deW29t+2FkNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWmUzSkZoZXEzd3dzeF9IMTE1YmIyMzdZV1EwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi83YmUwMmYtMjhmNS00MjA5LTkzNWEt ODJkOGViZTk5NDI0LzEvWmUzSkZoZXEzd3dzeF9IMTE1YmIyMzdZV1EwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNi83YmUwMmYtMjhmNS00MjA5LTkzNWEtODJkOGViZTk5NDI0 LzEvWmUzSkZoZXEzd3dzeF9IMTE1YmIyMzdZV1EwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAVo3lXcN S0EiDSgLE4ThfGQuylwHxryO5M47UXf0NGJqCj/6I5M6VUDTTIqsnmH74l+XRNjp 6suOsSiNrmuLggbFtdVXUhc1zQ0w99gWtnWO/6wDXkgCIE0ndwUcmZ7hEtrbY8p+ FtKLprBUyqKBTK2jibx2Y2DolPsHHXDIFoIlcU62Lti8KCMmrtSNJmPd+xrnyLk+ H1CVJ6eAPaVcZHcPOOgjp+du3FamYaY5+OAWh4KqRvUZ/3MDUoT4UxMwqTKC3K9R 4oph2+JMw/p+0lnYAYe8LSfoaHTmJgm/Ok/3aSVhzJXP2sTIhPXCa4oRCJHzMRO7 QFGTPldy/gWNBw== -----END CERTIFICATE-----Generated at Sat Dec 6 09:23:27 2025 by rpki-client