This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft File: Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft (raw, json) Hash identifier: JClw3GSr2Ur40IaRExuoZVqj0aOE9ZMWW1MlVqTC4ow= Subject key identifier: 27:20:6C:B9:E3:7F:B9:DC:B5:A2:A3:EE:F0:0F:70:7F:C6:45:1D:ED Authority key identifier: 4B:3E:59:6A:24:D4:36:50:CB:60:E8:FC:C9:E4:4D:6F:8C:92:9D:35 Certificate issuer: /CN=4b3e596a24d43650cb60e8fcc9e44d6f8c929d35 Certificate serial: 019AF2090B0408FFCAA5E4039D8943888426 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft Manifest number: 078A Signing time: Sat 06 Dec 2025 05:01:10 +0000 Manifest this update: Sat 06 Dec 2025 05:01:10 +0000 Manifest next update: Sun 07 Dec 2025 05:01:10 +0000 Files and hashes: 1: 69EZo_UvSYLCIwLzPyqCblCyZzI.roa (hash: 2naW8CuEgpZKAi+BoeweFMMKRLa2fsvkiMt8udbwEtM=) 2: Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl (hash: PJXOpxPJD1X7xzct2BV4avHlTirwOTne6j7M3ft7E+I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:0b:04:08:ff:ca:a5:e4:03:9d:89:43:88:84:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4b3e596a24d43650cb60e8fcc9e44d6f8c929d35 Validity Not Before: Dec 6 05:01:10 2025 GMT Not After : Dec 7 05:01:10 2025 GMT Subject: CN=27206cb9e37fb9dcb5a2a3eef00f707fc6451ded Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:fa:56:66:c3:fe:b5:15:dd:bd:6e:83:27:df: d4:7d:75:3d:9d:ec:b0:27:d0:2c:ca:7a:15:3b:29: a0:2f:8d:e0:d5:37:01:1b:91:27:99:dd:c3:95:50: b6:2c:65:c5:e4:fe:1f:9f:6b:92:a1:c0:48:6e:e2: 14:41:44:94:ac:d7:d7:6e:92:01:c0:0e:04:f3:67: 0b:7b:a5:06:da:84:fa:c8:5f:61:e7:70:df:95:2c: ec:e5:44:d6:3b:45:d5:82:de:9d:74:9f:79:62:94: 5a:89:5d:fd:9a:94:29:e1:bb:94:ab:7d:e1:45:81: 56:93:5b:93:ae:40:1d:1b:8c:47:53:86:29:22:c9: a5:76:13:bf:44:46:fe:00:b2:7e:ee:3e:9f:d1:2c: 09:b7:13:9b:44:18:15:36:ea:1f:6b:1a:09:6b:eb: b9:53:ad:a4:be:c7:28:6a:22:47:f0:4d:df:68:74: 85:3a:b0:34:0b:b2:d0:d0:92:01:6a:b8:ba:db:48: ac:24:ad:f2:71:db:c8:d2:4b:e3:eb:9a:6c:f1:7b: d6:a4:2d:6b:4b:8e:d4:b0:89:1f:91:aa:c0:fb:18: 68:e8:04:20:05:b9:04:a7:51:78:ff:11:65:1c:6e: 9b:3b:13:f4:75:f9:84:57:9f:2e:f7:6f:c6:5c:46: 01:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:20:6C:B9:E3:7F:B9:DC:B5:A2:A3:EE:F0:0F:70:7F:C6:45:1D:ED X509v3 Authority Key Identifier: keyid:4B:3E:59:6A:24:D4:36:50:CB:60:E8:FC:C9:E4:4D:6F:8C:92:9D:35 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/4b2fb2-c0ab-4eec-8d01-33d18bf6df55/1/Sz5ZaiTUNlDLYOj8yeRNb4ySnTU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:48:01:5d:da:cd:b6:4b:45:e4:60:fa:b1:c3:36:8c:41:1f: 50:04:9f:0f:14:c6:25:bc:9d:6a:39:62:2e:ba:be:32:75:47: c9:77:17:dd:0e:20:0a:65:7c:ac:31:37:37:03:5c:11:99:fe: 9e:36:f6:f7:2a:c2:6a:60:71:ca:a2:c0:d2:7b:6f:e3:71:c4: 51:82:20:81:61:61:8c:d1:b7:b7:66:4f:2f:5d:03:44:76:58: aa:48:e7:64:69:5c:74:2a:62:31:8c:75:a1:9c:c7:8c:d7:db: 91:ea:ef:e7:61:cb:14:71:69:d8:eb:36:e0:de:4c:62:59:2e: 8f:b4:9e:86:6e:76:56:da:64:0a:d8:9e:fc:1c:bc:dd:c7:d7: 85:05:a7:93:94:9a:56:db:47:2f:a2:b9:23:f4:ca:ef:76:81: d2:96:e1:33:fd:07:6e:6c:a7:0c:f0:2b:d9:eb:ff:af:2e:3f: cf:a9:59:3c:96:c3:ad:77:37:c8:71:7a:b3:63:b4:b4:1e:59: 24:84:63:8b:44:33:b1:1b:91:9b:59:bb:ad:0e:09:29:fb:a6: d8:6e:bd:71:0d:70:44:cb:0a:40:2f:1e:2e:d3:78:86:a9:77: af:1e:8b:3c:04:3f:cd:d7:6b:3c:3a:96:cd:5d:90:da:34:ad: 46:62:c7:16 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCQsECP/KpeQDnYlDiIQmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRiM2U1OTZhMjRkNDM2NTBjYjYwZThmY2M5ZTQ0ZDZmOGM5 MjlkMzUwHhcNMjUxMjA2MDUwMTEwWhcNMjUxMjA3MDUwMTEwWjAzMTEwLwYDVQQD EygyNzIwNmNiOWUzN2ZiOWRjYjVhMmEzZWVmMDBmNzA3ZmM2NDUxZGVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuvpWZsP+tRXdvW6DJ9/UfXU9neyw J9AsynoVOymgL43g1TcBG5Enmd3DlVC2LGXF5P4fn2uSocBIbuIUQUSUrNfXbpIB wA4E82cLe6UG2oT6yF9h53DflSzs5UTWO0XVgt6ddJ95YpRaiV39mpQp4buUq33h RYFWk1uTrkAdG4xHU4YpIsmldhO/REb+ALJ+7j6f0SwJtxObRBgVNuofaxoJa+u5 U62kvscoaiJH8E3faHSFOrA0C7LQ0JIBari620isJK3ycdvI0kvj65ps8XvWpC1r S47UsIkfkarA+xho6AQgBbkEp1F4/xFlHG6bOxP0dfmEV58u92/GXEYBBQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCcgbLnjf7nctaKj7vAPcH/GRR3tMB8GA1UdIwQY MBaAFEs+WWok1DZQy2Do/MnkTW+Mkp01MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU3o1WmFpVFVObERMWU9qOHllUk5iNHlTblRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My80YjJmYjItYzBhYi00ZWVjLThkMDEt MzNkMThiZjZkZjU1LzEvU3o1WmFpVFVObERMWU9qOHllUk5iNHlTblRVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My80YjJmYjItYzBhYi00ZWVjLThkMDEtMzNkMThiZjZkZjU1 LzEvU3o1WmFpVFVObERMWU9qOHllUk5iNHlTblRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHUgBXdrN tktF5GD6scM2jEEfUASfDxTGJbydajliLrq+MnVHyXcX3Q4gCmV8rDE3NwNcEZn+ njb29yrCamBxyqLA0ntv43HEUYIggWFhjNG3t2ZPL10DRHZYqkjnZGlcdCpiMYx1 oZzHjNfbkerv52HLFHFp2Os24N5MYlkuj7Sehm52VtpkCtie/By83cfXhQWnk5Sa VttHL6K5I/TK73aB0pbhM/0HbmynDPAr2ev/ry4/z6lZPJbDrXc3yHF6s2O0tB5Z JIRji0QzsRuRm1m7rQ4JKfum2G69cQ1wRMsKQC8eLtN4hql3rx6LPAQ/zddrPDqW zV2Q2jStRmLHFg== -----END CERTIFICATE-----Generated at Sat Dec 6 10:32:04 2025 by rpki-client