This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/c7a7f5-e3a2-493b-a8bd-7bdb672e0c54/1/ZLkPNFJfgAJep3y2GOdRmYKrhZI.mft File: ZLkPNFJfgAJep3y2GOdRmYKrhZI.mft (raw, json) Hash identifier: KcllAcAp9ieKSFv10UcEfboXMyjJ4iPBx2+l3Mv8gWs= Subject key identifier: 26:8A:CC:AE:3E:AB:9F:74:18:BB:29:C2:93:81:2B:3C:23:E7:62:FB Authority key identifier: 64:B9:0F:34:52:5F:80:02:5E:A7:7C:B6:18:E7:51:99:82:AB:85:92 Certificate issuer: /CN=64b90f34525f80025ea77cb618e7519982ab8592 Certificate serial: 019AF12DB1A4619ED6EEF2CED5F733EA0D0F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZLkPNFJfgAJep3y2GOdRmYKrhZI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/c7a7f5-e3a2-493b-a8bd-7bdb672e0c54/1/ZLkPNFJfgAJep3y2GOdRmYKrhZI.mft Manifest number: 175F Signing time: Sat 06 Dec 2025 01:01:34 +0000 Manifest this update: Sat 06 Dec 2025 01:01:34 +0000 Manifest next update: Sun 07 Dec 2025 01:01:34 +0000 Files and hashes: 1: ZLkPNFJfgAJep3y2GOdRmYKrhZI.crl (hash: RZMGH44YRjDHeZvw+NUO54NQAZPMxOpU7mEhgAkSgCk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/c7a7f5-e3a2-493b-a8bd-7bdb672e0c54/1/ZLkPNFJfgAJep3y2GOdRmYKrhZI.crl rsync://rpki.ripe.net/repository/DEFAULT/40/c7a7f5-e3a2-493b-a8bd-7bdb672e0c54/1/ZLkPNFJfgAJep3y2GOdRmYKrhZI.mft rsync://rpki.ripe.net/repository/DEFAULT/ZLkPNFJfgAJep3y2GOdRmYKrhZI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:b1:a4:61:9e:d6:ee:f2:ce:d5:f7:33:ea:0d:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=64b90f34525f80025ea77cb618e7519982ab8592 Validity Not Before: Dec 6 01:01:34 2025 GMT Not After : Dec 7 01:01:34 2025 GMT Subject: CN=268accae3eab9f7418bb29c293812b3c23e762fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:5c:d7:fc:94:7b:ec:e1:e1:8f:a2:23:55:37: 4d:d1:89:3c:db:3b:ae:d2:11:2c:c5:76:e2:e2:74: 2d:58:03:73:8f:d7:5a:92:17:c5:5b:06:26:2d:45: 26:17:df:36:28:18:d3:12:a0:f4:8f:b3:d4:39:20: b2:4e:44:62:4d:5b:f4:a5:da:58:90:a0:c9:3f:75: 8f:52:0e:20:5d:07:2f:c2:e3:23:9d:a2:d2:5a:ea: 96:29:a5:de:05:8a:ef:55:44:be:ff:c3:bb:86:d8: 16:af:f5:0f:ea:1d:f5:15:75:e4:8f:0e:45:85:fc: 2e:f9:09:0f:ba:ac:98:87:51:bb:7d:d2:78:0b:4e: 11:d9:0f:4e:93:93:24:c8:66:18:1e:99:b4:21:29: 3d:4e:52:f4:ba:d7:93:58:dc:9e:b8:ba:22:3d:56: 78:12:e7:94:ab:59:18:fc:d1:cd:41:4d:88:35:51: 46:02:9c:f0:56:fd:24:29:c5:17:19:99:6e:b4:7c: 8a:66:c8:fb:e4:8b:aa:ec:d5:2e:c8:26:6d:5c:09: 2b:b6:53:d4:66:bd:33:12:db:31:d0:57:d3:93:f6: e1:6f:bc:bd:cc:72:3d:ee:f9:fe:36:6b:d7:74:7e: 5d:30:7e:30:ab:d6:1f:7d:fa:27:79:f7:8f:e0:02: 91:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:8A:CC:AE:3E:AB:9F:74:18:BB:29:C2:93:81:2B:3C:23:E7:62:FB X509v3 Authority Key Identifier: keyid:64:B9:0F:34:52:5F:80:02:5E:A7:7C:B6:18:E7:51:99:82:AB:85:92 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZLkPNFJfgAJep3y2GOdRmYKrhZI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/c7a7f5-e3a2-493b-a8bd-7bdb672e0c54/1/ZLkPNFJfgAJep3y2GOdRmYKrhZI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/c7a7f5-e3a2-493b-a8bd-7bdb672e0c54/1/ZLkPNFJfgAJep3y2GOdRmYKrhZI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c9:5f:3d:e1:7e:85:11:8e:14:2e:ed:c9:37:1c:77:cc:56:b1: b2:e0:b5:5e:6e:9d:72:0b:8d:54:63:5e:f1:d1:bd:c8:fb:4c: 62:86:f1:32:ec:06:7f:ad:02:57:3e:da:dd:f2:d9:8e:40:0e: 4b:87:8a:46:df:82:4f:00:de:dc:c6:a4:8e:1c:08:59:3b:44: 88:4c:0a:56:76:71:04:6f:e6:f1:a3:8f:8e:66:58:d7:4c:9c: ab:0b:7f:c5:b2:77:75:20:07:07:25:ba:52:fa:68:85:33:06: e6:03:d4:00:1f:91:f5:c7:c8:5a:a9:52:05:a2:f2:27:26:34: f6:a8:65:3b:6a:1a:61:4d:5f:99:76:c8:40:3d:1d:ab:d7:6e: 95:00:e0:3e:28:64:a9:78:d5:40:9c:55:20:48:b3:c3:4e:12: 99:cb:77:e0:c5:07:78:3b:54:7d:6a:92:01:50:2a:b8:f5:1f: c9:7c:67:c3:4d:bf:e3:09:2d:fa:fb:27:55:a4:04:e5:fe:2b: f3:ad:4c:5e:fd:56:7a:0d:1c:d0:7b:e0:e6:03:c6:9d:9e:d8: 85:24:72:37:e3:58:2a:8d:7d:78:e4:d3:61:c5:08:cf:6f:c3: 8f:ff:14:a3:66:da:47:5e:e1:bc:fe:b8:a3:e7:5e:0b:23:d0: e5:b1:2c:f4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLbGkYZ7W7vLO1fcz6g0PMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY0YjkwZjM0NTI1ZjgwMDI1ZWE3N2NiNjE4ZTc1MTk5ODJh Yjg1OTIwHhcNMjUxMjA2MDEwMTM0WhcNMjUxMjA3MDEwMTM0WjAzMTEwLwYDVQQD EygyNjhhY2NhZTNlYWI5Zjc0MThiYjI5YzI5MzgxMmIzYzIzZTc2MmZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtVzX/JR77OHhj6IjVTdN0Yk82zuu 0hEsxXbi4nQtWANzj9dakhfFWwYmLUUmF982KBjTEqD0j7PUOSCyTkRiTVv0pdpY kKDJP3WPUg4gXQcvwuMjnaLSWuqWKaXeBYrvVUS+/8O7htgWr/UP6h31FXXkjw5F hfwu+QkPuqyYh1G7fdJ4C04R2Q9Ok5MkyGYYHpm0ISk9TlL0uteTWNyeuLoiPVZ4 EueUq1kY/NHNQU2INVFGApzwVv0kKcUXGZlutHyKZsj75Iuq7NUuyCZtXAkrtlPU Zr0zEtsx0FfTk/bhb7y9zHI97vn+NmvXdH5dMH4wq9YfffonefeP4AKRmQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCaKzK4+q590GLspwpOBKzwj52L7MB8GA1UdIwQY MBaAFGS5DzRSX4ACXqd8thjnUZmCq4WSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWkxrUE5GSmZnQUplcDN5MkdPZFJtWUtyaFpJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC9jN2E3ZjUtZTNhMi00OTNiLWE4YmQt N2JkYjY3MmUwYzU0LzEvWkxrUE5GSmZnQUplcDN5MkdPZFJtWUtyaFpJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC9jN2E3ZjUtZTNhMi00OTNiLWE4YmQtN2JkYjY3MmUwYzU0 LzEvWkxrUE5GSmZnQUplcDN5MkdPZFJtWUtyaFpJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAyV894X6F EY4ULu3JNxx3zFaxsuC1Xm6dcguNVGNe8dG9yPtMYobxMuwGf60CVz7a3fLZjkAO S4eKRt+CTwDe3MakjhwIWTtEiEwKVnZxBG/m8aOPjmZY10ycqwt/xbJ3dSAHByW6 UvpohTMG5gPUAB+R9cfIWqlSBaLyJyY09qhlO2oaYU1fmXbIQD0dq9dulQDgPihk qXjVQJxVIEizw04Smct34MUHeDtUfWqSAVAquPUfyXxnw02/4wkt+vsnVaQE5f4r 861MXv1Weg0c0Hvg5gPGnZ7YhSRyN+NYKo19eOTTYcUIz2/Dj/8Uo2baR17hvP64 o+deCyPQ5bEs9A== -----END CERTIFICATE-----Generated at Sat Dec 6 11:06:25 2025 by rpki-client