This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft File: zQPRPdJvAESig_xqEedWoqK1aRs.mft (raw, json) Hash identifier: TO+a0eosMqsuVaxYDu8PIxJUdjwWMWAcJAAESazu8DY= Subject key identifier: C5:0C:C6:37:39:41:03:FE:8F:82:69:C3:9C:75:A9:A3:0F:13:65:04 Authority key identifier: CD:03:D1:3D:D2:6F:00:44:A2:83:FC:6A:11:E7:56:A2:A2:B5:69:1B Certificate issuer: /CN=cd03d13dd26f0044a283fc6a11e756a2a2b5691b Certificate serial: 019AF87905E703A85D94057C3C9587CAED3C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zQPRPdJvAESig_xqEedWoqK1aRs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft Manifest number: 026A Signing time: Sun 07 Dec 2025 11:01:12 +0000 Manifest this update: Sun 07 Dec 2025 11:01:12 +0000 Manifest next update: Mon 08 Dec 2025 11:01:12 +0000 Files and hashes: 1: yLKyshLk5Y8qo2HfRt0bfJWqtcI.roa (hash: CLpNYZZ3o+zwOI76Lm9XQZQEHlIeProjGVosiuqFQCw=) 2: zQPRPdJvAESig_xqEedWoqK1aRs.crl (hash: ezlxEPJh5n5w6n0cJbe1ihMs5raIiVmB5BzT8UuU67o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft rsync://rpki.ripe.net/repository/DEFAULT/zQPRPdJvAESig_xqEedWoqK1aRs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 08 Dec 2025 08:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f8:79:05:e7:03:a8:5d:94:05:7c:3c:95:87:ca:ed:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cd03d13dd26f0044a283fc6a11e756a2a2b5691b Validity Not Before: Dec 7 11:01:12 2025 GMT Not After : Dec 8 11:01:12 2025 GMT Subject: CN=c50cc637394103fe8f8269c39c75a9a30f136504 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e3:2f:55:bd:c9:be:42:95:70:86:69:7f:f3: db:94:e7:0d:65:2b:e8:74:7e:28:dc:60:29:a4:e8: d1:f1:c7:6c:c0:c6:39:ee:63:9c:97:e4:20:58:4d: 39:b8:62:bf:a1:90:fe:b0:ba:7f:eb:a4:03:c1:78: a9:7c:36:81:6b:49:21:8a:22:6e:ff:41:40:bb:7f: 1b:ba:07:cf:6e:33:42:50:db:f1:1b:14:17:47:cd: 85:e3:26:d2:d5:d5:b3:4f:05:bb:98:09:c3:0f:3a: f6:07:75:d4:23:81:eb:dd:73:94:f1:b3:23:32:70: ac:9c:08:c6:a2:34:c9:40:bb:62:19:bf:a7:b7:46: a8:ec:67:2a:71:41:70:81:9a:f2:c7:08:ee:0d:25: 6e:e0:0b:c0:d4:1d:80:6a:94:b0:6f:5c:9d:1c:18: 18:d7:37:a6:f3:c0:e7:f3:9d:6d:7c:15:29:64:b0: 8e:2a:8f:99:d1:f6:4d:90:46:ad:4e:0f:e8:7b:48: 4c:ca:d6:00:0a:ee:79:78:2c:82:20:c3:93:50:59: bf:ac:a0:f5:dd:99:c1:4a:2f:26:4e:dd:cf:9c:26: d9:0f:d8:71:c4:25:ac:a6:8e:81:50:10:a8:e9:6b: 39:40:0b:2c:e4:72:ce:d6:a3:b8:5d:ab:46:8c:a8: d5:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:0C:C6:37:39:41:03:FE:8F:82:69:C3:9C:75:A9:A3:0F:13:65:04 X509v3 Authority Key Identifier: keyid:CD:03:D1:3D:D2:6F:00:44:A2:83:FC:6A:11:E7:56:A2:A2:B5:69:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zQPRPdJvAESig_xqEedWoqK1aRs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 77:30:9c:d7:98:c7:6b:16:9b:5b:c0:84:ad:36:2b:58:c0:09: 7d:bb:f5:88:15:f5:b3:ea:26:df:95:e7:2b:26:3a:be:74:86: 2b:27:d7:9a:53:f6:22:a1:f0:bf:73:dd:65:44:e4:d9:4a:19: ab:af:b0:e7:40:d6:fb:f8:aa:54:22:3c:7c:91:7a:50:b6:44: 7c:a3:1f:c0:16:e5:a1:87:d2:81:67:8b:65:b1:ee:64:b9:f2: d1:3b:40:c8:8e:64:f8:77:e9:d9:6a:c4:79:7d:ef:95:cc:12: 20:8d:f6:92:1c:bb:b0:8a:5c:ca:f2:c1:5d:d2:02:9b:1f:f5: 0a:35:d6:6e:ee:63:ce:2a:d6:cb:1f:e3:62:e3:5c:06:17:9a: 6a:28:91:a6:b5:9e:e7:89:28:fe:62:dc:df:08:d0:33:ae:3a: 78:12:bf:40:2e:b0:39:a3:e1:3c:43:7a:ae:94:c8:f3:51:3f: ea:64:6f:aa:0e:6d:22:c0:86:bd:58:79:63:1d:62:35:11:bb: 5b:11:70:a8:42:64:70:a9:6d:f0:63:08:55:93:0f:63:43:98: 3f:90:b5:4b:1e:6d:08:c7:8a:2a:1c:2b:5b:ef:98:e7:a0:14: 4e:5f:26:fe:ac:19:97:ce:a1:ee:b0:7e:fc:f6:38:2e:f1:82: 48:8e:68:55 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr4eQXnA6hdlAV8PJWHyu08MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkMDNkMTNkZDI2ZjAwNDRhMjgzZmM2YTExZTc1NmEyYTJi NTY5MWIwHhcNMjUxMjA3MTEwMTEyWhcNMjUxMjA4MTEwMTEyWjAzMTEwLwYDVQQD EyhjNTBjYzYzNzM5NDEwM2ZlOGY4MjY5YzM5Yzc1YTlhMzBmMTM2NTA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtuMvVb3JvkKVcIZpf/PblOcNZSvo dH4o3GAppOjR8cdswMY57mOcl+QgWE05uGK/oZD+sLp/66QDwXipfDaBa0khiiJu /0FAu38bugfPbjNCUNvxGxQXR82F4ybS1dWzTwW7mAnDDzr2B3XUI4Hr3XOU8bMj MnCsnAjGojTJQLtiGb+nt0ao7GcqcUFwgZryxwjuDSVu4AvA1B2AapSwb1ydHBgY 1zem88Dn851tfBUpZLCOKo+Z0fZNkEatTg/oe0hMytYACu55eCyCIMOTUFm/rKD1 3ZnBSi8mTt3PnCbZD9hxxCWspo6BUBCo6Ws5QAss5HLO1qO4XatGjKjVPwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMUMxjc5QQP+j4Jpw5x1qaMPE2UEMB8GA1UdIwQY MBaAFM0D0T3SbwBEooP8ahHnVqKitWkbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvelFQUlBkSnZBRVNpZ194cUVlZFdvcUsxYVJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi9jZmQ0MWUtMzk4ZC00ZjFiLTk5OTUt MWEzZmY1MzJiYzIwLzEvelFQUlBkSnZBRVNpZ194cUVlZFdvcUsxYVJzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi9jZmQ0MWUtMzk4ZC00ZjFiLTk5OTUtMWEzZmY1MzJiYzIw LzEvelFQUlBkSnZBRVNpZ194cUVlZFdvcUsxYVJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdzCc15jH axabW8CErTYrWMAJfbv1iBX1s+om35XnKyY6vnSGKyfXmlP2IqHwv3PdZUTk2UoZ q6+w50DW+/iqVCI8fJF6ULZEfKMfwBbloYfSgWeLZbHuZLny0TtAyI5k+Hfp2WrE eX3vlcwSII32khy7sIpcyvLBXdICmx/1CjXWbu5jzirWyx/jYuNcBheaaiiRprWe 54ko/mLc3wjQM646eBK/QC6wOaPhPEN6rpTI81E/6mRvqg5tIsCGvVh5Yx1iNRG7 WxFwqEJkcKlt8GMIVZMPY0OYP5C1Sx5tCMeKKhwrW++Y56AUTl8m/qwZl86h7rB+ /PY4LvGCSI5oVQ== -----END CERTIFICATE-----Generated at Sun Dec 7 16:35:05 2025 by rpki-client