This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft File: zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft (raw, json) Hash identifier: 1IOmNsB6VtewCdrSTL0wJeKxB+NfmXdmqctj+0aW5uo= Subject key identifier: 88:A0:FA:AE:A7:14:BD:24:6D:A3:AA:99:38:12:5C:6A:F8:6F:8B:E2 Authority key identifier: CD:DD:90:2A:12:71:27:00:27:E4:57:77:78:EA:35:88:3B:45:15:F6 Certificate issuer: /CN=cddd902a1271270027e4577778ea35883b4515f6 Certificate serial: 019AF19BD69990F19156D1EDA021436EE626 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft Manifest number: 1767 Signing time: Sat 06 Dec 2025 03:01:53 +0000 Manifest this update: Sat 06 Dec 2025 03:01:53 +0000 Manifest next update: Sun 07 Dec 2025 03:01:53 +0000 Files and hashes: 1: Ylu4oY650LeSLzKfRWZsKd7D6d4.roa (hash: at13Jjp52CyKiekCDznMGprsJGH6Ha6O/Aegpe9S1N0=) 2: zd2QKhJxJwAn5Fd3eOo1iDtFFfY.crl (hash: if0twHpZmGxz8G4qMEwqCFQzMThE9Mry3LvSPtKgMf8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.crl rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft rsync://rpki.ripe.net/repository/DEFAULT/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:d6:99:90:f1:91:56:d1:ed:a0:21:43:6e:e6:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cddd902a1271270027e4577778ea35883b4515f6 Validity Not Before: Dec 6 03:01:53 2025 GMT Not After : Dec 7 03:01:53 2025 GMT Subject: CN=88a0faaea714bd246da3aa9938125c6af86f8be2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:62:52:a0:b3:85:a4:7a:a2:ea:0f:1f:e7:f5: 91:eb:14:05:56:4c:7b:b8:5a:a2:91:ef:0c:a0:60: 4d:8c:28:c0:b1:2d:aa:3b:3e:10:e7:ce:ad:f6:ba: fc:85:65:3d:3f:06:0e:8f:8c:97:55:20:4e:58:03: 4f:73:01:70:1b:63:4c:57:16:06:08:cb:89:69:6a: cb:c8:d9:67:be:dd:6e:ff:08:4c:13:fb:71:2b:0b: 58:e4:af:bb:9d:0c:f5:87:5d:e3:fb:fc:ed:9e:a9: be:c7:97:dc:4b:8b:b8:c5:5c:69:11:df:3a:b1:2d: 8d:4b:a1:48:08:da:c1:3c:77:64:1c:e8:80:f4:64: 3e:56:82:fd:cc:8d:6d:8d:f9:7f:08:e4:2a:6a:e2: ce:02:d0:8f:31:a7:0a:e5:09:5a:64:90:31:19:74: 6e:7c:c2:aa:ac:b0:23:a2:02:4d:d3:c7:c8:9f:15: 52:07:f3:ee:7b:fa:55:5b:b1:ab:4e:e6:eb:a5:6e: 9a:fb:49:d4:d4:fc:da:82:43:ad:55:ff:69:ff:c5: 0c:e2:b8:89:42:ac:5a:11:74:43:a4:ed:79:f7:d1: e7:68:2d:7b:c1:a2:0c:e1:c2:eb:eb:9a:98:3e:f9: df:98:e4:56:67:dd:18:2a:4b:b3:75:f3:39:ca:98: e8:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:A0:FA:AE:A7:14:BD:24:6D:A3:AA:99:38:12:5C:6A:F8:6F:8B:E2 X509v3 Authority Key Identifier: keyid:CD:DD:90:2A:12:71:27:00:27:E4:57:77:78:EA:35:88:3B:45:15:F6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8b:08:4d:cf:78:90:e7:dc:a4:56:7c:5e:ce:e8:29:7b:e9:b3: a4:cc:6d:96:1a:8f:dd:a3:eb:2c:ba:49:cb:39:73:29:5e:36: 62:f6:c2:2e:45:16:28:7a:61:4a:f6:45:47:d4:78:a5:a3:b6: 08:3c:d4:26:93:b8:c9:c9:3b:3d:8a:11:97:36:cf:76:e6:02: 39:60:e5:2c:19:b7:21:1d:ab:70:14:e0:a8:06:42:d5:fe:ba: cd:73:f8:59:22:9a:cc:58:fa:96:db:f9:f5:41:5c:e8:90:d7: d7:14:b9:fd:4a:4e:56:9b:40:de:8b:2c:c4:ab:54:2e:83:2d: fd:1e:6c:22:f0:dd:c5:9d:02:fd:c9:1a:bd:59:52:07:dc:a8: 4a:65:53:db:77:df:b8:86:f3:6c:03:f8:de:70:43:82:7b:9e: ec:8b:fa:21:ac:e6:b3:d3:4c:19:bf:86:f3:ac:ff:09:d2:de: c1:f5:da:6e:78:75:10:7a:ae:43:de:3a:3e:f7:f6:0b:88:30: fe:0d:da:9a:8a:ff:52:46:16:97:99:9c:32:99:8b:78:bc:35: 07:39:39:5e:7d:f1:f5:3f:7a:46:eb:7c:c1:73:31:67:01:c1: 13:fa:d3:01:21:6d:67:09:a5:ef:64:58:a4:e2:8e:7a:33:d1: c3:43:bc:f5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm9aZkPGRVtHtoCFDbuYmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkZGQ5MDJhMTI3MTI3MDAyN2U0NTc3Nzc4ZWEzNTg4M2I0 NTE1ZjYwHhcNMjUxMjA2MDMwMTUzWhcNMjUxMjA3MDMwMTUzWjAzMTEwLwYDVQQD Eyg4OGEwZmFhZWE3MTRiZDI0NmRhM2FhOTkzODEyNWM2YWY4NmY4YmUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnmJSoLOFpHqi6g8f5/WR6xQFVkx7 uFqike8MoGBNjCjAsS2qOz4Q586t9rr8hWU9PwYOj4yXVSBOWANPcwFwG2NMVxYG CMuJaWrLyNlnvt1u/whME/txKwtY5K+7nQz1h13j+/ztnqm+x5fcS4u4xVxpEd86 sS2NS6FICNrBPHdkHOiA9GQ+VoL9zI1tjfl/COQqauLOAtCPMacK5QlaZJAxGXRu fMKqrLAjogJN08fInxVSB/Pue/pVW7GrTubrpW6a+0nU1PzagkOtVf9p/8UM4riJ QqxaEXRDpO1599HnaC17waIM4cLr65qYPvnfmORWZ90YKkuzdfM5ypjofwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIig+q6nFL0kbaOqmTgSXGr4b4viMB8GA1UdIwQY MBaAFM3dkCoScScAJ+RXd3jqNYg7RRX2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvemQyUUtoSnhKd0FuNUZkM2VPbzFpRHRGRmZZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS83YTFlYjQtMjkwYS00Njg2LThiYmEt ZGM3NTQyMTM4OTUyLzEvemQyUUtoSnhKd0FuNUZkM2VPbzFpRHRGRmZZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MS83YTFlYjQtMjkwYS00Njg2LThiYmEtZGM3NTQyMTM4OTUy LzEvemQyUUtoSnhKd0FuNUZkM2VPbzFpRHRGRmZZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiwhNz3iQ 59ykVnxezugpe+mzpMxtlhqP3aPrLLpJyzlzKV42YvbCLkUWKHphSvZFR9R4paO2 CDzUJpO4yck7PYoRlzbPduYCOWDlLBm3IR2rcBTgqAZC1f66zXP4WSKazFj6ltv5 9UFc6JDX1xS5/UpOVptA3ossxKtULoMt/R5sIvDdxZ0C/ckavVlSB9yoSmVT23ff uIbzbAP43nBDgnue7Iv6Iazms9NMGb+G86z/CdLewfXabnh1EHquQ946Pvf2C4gw /g3amor/UkYWl5mcMpmLeLw1Bzk5Xn3x9T96Rut8wXMxZwHBE/rTASFtZwml72RY pOKOejPRw0O89Q== -----END CERTIFICATE-----Generated at Sat Dec 6 08:29:31 2025 by rpki-client