This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft File: 9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft (raw, json) Hash identifier: 1eSVnkkoSyziNIhFuSkag+rXvVRgcj6b7yfZGlnhVpI= Subject key identifier: 59:5B:C7:19:FE:38:E8:45:02:20:FF:2B:39:A6:6F:BD:67:33:77:EA Authority key identifier: F4:C6:49:94:E2:4D:4A:EF:DC:42:A8:83:1F:E0:DC:E2:0D:60:46:89 Certificate issuer: /CN=f4c64994e24d4aefdc42a8831fe0dce20d604689 Certificate serial: 019AF352B95A00BC80A5AE40459C86818FD3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9MZJlOJNSu_cQqiDH-Dc4g1gRok.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft Manifest number: 1764 Signing time: Sat 06 Dec 2025 11:01:16 +0000 Manifest this update: Sat 06 Dec 2025 11:01:16 +0000 Manifest next update: Sun 07 Dec 2025 11:01:16 +0000 Files and hashes: 1: 9MZJlOJNSu_cQqiDH-Dc4g1gRok.crl (hash: z/ia1g2+Q71h8nqnuFnJ6gCrCKDCdCH+iyyaMtAloBE=) 2: bRo1FpRQdGW3rrEgf9LP2ZyYMbs.roa (hash: ZwgslFPNqU25lgzTk3XOIv2Nozx6fjcmPWKTGmYvfPU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.crl rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft rsync://rpki.ripe.net/repository/DEFAULT/9MZJlOJNSu_cQqiDH-Dc4g1gRok.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:52:b9:5a:00:bc:80:a5:ae:40:45:9c:86:81:8f:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f4c64994e24d4aefdc42a8831fe0dce20d604689 Validity Not Before: Dec 6 11:01:16 2025 GMT Not After : Dec 7 11:01:16 2025 GMT Subject: CN=595bc719fe38e8450220ff2b39a66fbd673377ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:18:3b:c1:f9:95:a1:f5:33:c9:cb:5e:ba:a9: e4:5c:32:67:36:23:27:08:b6:4c:83:93:6f:b5:80: 92:5e:89:77:97:d3:e6:f7:36:4b:2b:bc:52:e0:c4: 1d:0e:cf:c4:94:b8:f0:6c:e7:75:e2:f8:ef:65:4d: ad:2b:5d:19:f1:90:9f:85:21:f0:5e:5e:16:1f:43: c1:d3:1f:f0:e8:e9:83:04:1b:11:15:b9:85:c6:86: 8d:09:1f:93:72:1e:fc:28:ed:67:13:40:64:08:84: 39:33:3d:53:71:3d:5c:9f:d8:6b:33:fc:74:97:20: 5c:11:8d:96:a6:a5:16:74:cd:72:df:16:af:e5:e4: e1:a8:29:2e:b3:e6:a1:6b:ef:f8:c2:ed:02:49:cb: ff:d6:de:77:bc:2c:e9:9f:14:53:2c:70:4c:5b:2c: 3f:04:1a:9e:02:f8:80:07:d9:54:69:01:39:9e:85: 21:e0:4a:fb:31:51:45:d9:ce:64:a2:85:df:6b:ed: 43:9f:55:83:49:03:a5:9d:a7:eb:90:d1:a5:d2:85: b9:88:90:ee:35:ec:de:98:95:34:a3:a6:be:33:e2: 68:fd:99:23:78:f7:a0:1b:ec:f9:19:b0:d5:ed:17: 65:a3:b6:7d:fa:aa:64:4f:63:4e:ff:b3:1a:a7:ad: f5:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:5B:C7:19:FE:38:E8:45:02:20:FF:2B:39:A6:6F:BD:67:33:77:EA X509v3 Authority Key Identifier: keyid:F4:C6:49:94:E2:4D:4A:EF:DC:42:A8:83:1F:E0:DC:E2:0D:60:46:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9MZJlOJNSu_cQqiDH-Dc4g1gRok.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:99:d5:9f:20:84:ea:86:8f:38:84:bd:88:66:7a:7f:f7:81: 34:9a:00:5f:8e:7c:1c:cc:52:42:ec:e2:83:24:db:c8:5c:c9: b9:67:64:19:43:60:54:e9:fa:51:eb:97:09:87:49:1b:bf:33: 03:c9:56:aa:2a:c7:6e:22:ba:d0:72:f7:b9:1e:d1:13:e9:5f: ca:57:a0:ac:e1:b4:b8:e7:78:2d:83:a9:2b:b0:cd:aa:bb:0f: 7d:f1:fb:9e:87:9d:82:3e:7d:58:ff:00:e8:77:6e:1b:1b:52: 6a:ae:dc:dc:e9:18:38:ff:93:07:a0:ea:57:3f:d0:8d:46:53: dd:65:2e:fb:c3:a9:c6:74:60:82:b5:d5:08:f8:77:77:be:28: 1a:a0:df:00:4d:3f:b2:8d:e8:b8:38:e4:42:4f:0a:e7:59:21: 53:1e:51:ba:39:c2:6f:f5:1f:dd:2b:28:a5:41:68:df:f5:01: 61:f1:59:1c:33:fd:7f:92:1f:06:4b:35:f4:c2:b3:6b:8e:17: e6:9d:69:fa:a9:17:1a:db:24:34:3c:d9:08:18:38:9a:36:0a: de:c4:d4:62:de:75:1f:51:8f:9d:1e:a6:1f:03:e5:01:40:ca: 0d:be:3b:53:e8:42:9f:4f:62:cb:aa:fc:2e:e0:b0:16:08:92: f6:db:fa:3c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzUrlaALyApa5ARZyGgY/TMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY0YzY0OTk0ZTI0ZDRhZWZkYzQyYTg4MzFmZTBkY2UyMGQ2 MDQ2ODkwHhcNMjUxMjA2MTEwMTE2WhcNMjUxMjA3MTEwMTE2WjAzMTEwLwYDVQQD Eyg1OTViYzcxOWZlMzhlODQ1MDIyMGZmMmIzOWE2NmZiZDY3MzM3N2VhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyBg7wfmVofUzycteuqnkXDJnNiMn CLZMg5NvtYCSXol3l9Pm9zZLK7xS4MQdDs/ElLjwbOd14vjvZU2tK10Z8ZCfhSHw Xl4WH0PB0x/w6OmDBBsRFbmFxoaNCR+Tch78KO1nE0BkCIQ5Mz1TcT1cn9hrM/x0 lyBcEY2WpqUWdM1y3xav5eThqCkus+aha+/4wu0CScv/1t53vCzpnxRTLHBMWyw/ BBqeAviAB9lUaQE5noUh4Er7MVFF2c5kooXfa+1Dn1WDSQOlnafrkNGl0oW5iJDu NezemJU0o6a+M+Jo/ZkjePegG+z5GbDV7Rdlo7Z9+qpkT2NO/7Map6313QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFlbxxn+OOhFAiD/Kzmmb71nM3fqMB8GA1UdIwQY MBaAFPTGSZTiTUrv3EKogx/g3OINYEaJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOU1aSmxPSk5TdV9jUXFpREgtRGM0ZzFnUm9rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy82NDY1OGQtZDVlYi00ODliLWJjMTUt Mzg1NTY5OGZiNTdmLzEvOU1aSmxPSk5TdV9jUXFpREgtRGM0ZzFnUm9rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMy82NDY1OGQtZDVlYi00ODliLWJjMTUtMzg1NTY5OGZiNTdm LzEvOU1aSmxPSk5TdV9jUXFpREgtRGM0ZzFnUm9rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL5nVnyCE 6oaPOIS9iGZ6f/eBNJoAX458HMxSQuzigyTbyFzJuWdkGUNgVOn6UeuXCYdJG78z A8lWqirHbiK60HL3uR7RE+lfylegrOG0uOd4LYOpK7DNqrsPffH7noedgj59WP8A 6HduGxtSaq7c3OkYOP+TB6DqVz/QjUZT3WUu+8OpxnRggrXVCPh3d74oGqDfAE0/ so3ouDjkQk8K51khUx5RujnCb/Uf3SsopUFo3/UBYfFZHDP9f5IfBks19MKza44X 5p1p+qkXGtskNDzZCBg4mjYK3sTUYt51H1GPnR6mHwPlAUDKDb47U+hCn09iy6r8 LuCwFgiS9tv6PA== -----END CERTIFICATE-----Generated at Sat Dec 6 14:53:21 2025 by rpki-client