This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.mft File: zRQ2kCMKRApot6iqmCefL2Xf7ig.mft (raw, json) Hash identifier: MSSHsyuSyYP1ILa8Ui2Tua+bqrNhturyLrigPLu1muw= Subject key identifier: 2C:B8:4E:84:A9:09:6F:DD:63:45:CA:C5:DA:68:39:67:3F:B7:AE:F3 Authority key identifier: CD:14:36:90:23:0A:44:0A:68:B7:A8:AA:98:27:9F:2F:65:DF:EE:28 Certificate issuer: /CN=cd143690230a440a68b7a8aa98279f2f65dfee28 Certificate serial: 019AF12E63B2077441DD276C0B5699391CB4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zRQ2kCMKRApot6iqmCefL2Xf7ig.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.mft Manifest number: 1463 Signing time: Sat 06 Dec 2025 01:02:20 +0000 Manifest this update: Sat 06 Dec 2025 01:02:20 +0000 Manifest next update: Sun 07 Dec 2025 01:02:20 +0000 Files and hashes: 1: vHQRV0jRUXExLLAYBdY2ODpzWoo.roa (hash: 7UhAMCr3OjHllJdnfdmjdJInrKVauXU3M4e5nn0fWuA=) 2: zRQ2kCMKRApot6iqmCefL2Xf7ig.crl (hash: RqEO0es8vNGxx854TImq0f/QYcI4wLE3F0zRjs5Chwo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.crl rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.mft rsync://rpki.ripe.net/repository/DEFAULT/zRQ2kCMKRApot6iqmCefL2Xf7ig.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:63:b2:07:74:41:dd:27:6c:0b:56:99:39:1c:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cd143690230a440a68b7a8aa98279f2f65dfee28 Validity Not Before: Dec 6 01:02:20 2025 GMT Not After : Dec 7 01:02:20 2025 GMT Subject: CN=2cb84e84a9096fdd6345cac5da6839673fb7aef3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:7d:82:20:35:19:d7:f6:d2:3f:b6:98:ab:fd: 00:1a:22:30:dd:27:35:3d:0f:a8:ba:27:79:48:3c: 1f:36:78:7c:c0:43:ba:9a:b6:e2:9e:02:b2:5a:61: 59:bc:92:12:11:0e:f8:e8:60:bb:9b:87:f3:9d:a1: 19:06:05:95:0f:bd:45:a4:cb:f3:55:31:f6:e0:86: 9e:56:13:21:27:29:10:20:6a:1a:cb:aa:c0:32:ac: db:af:08:e6:37:3b:23:80:4f:8b:24:f4:b4:9d:c5: a2:90:e9:c7:e1:be:e2:fc:27:8b:77:01:85:c8:d7: 4a:97:a1:ca:04:3f:98:82:a9:a3:a4:ee:95:c4:87: b1:d8:d1:df:1f:a8:8a:11:24:67:2d:5a:88:47:7f: 8e:61:01:7e:a1:2d:15:e3:a0:21:c2:bb:c1:bc:62: 77:4e:ef:8f:7f:7b:2c:83:83:36:14:b0:5b:f4:62: 26:58:e9:b7:f2:ff:bb:43:13:79:d4:d7:e5:ba:97: 0d:e8:9b:ec:04:d2:39:9b:15:0c:1d:b6:67:48:17: 0f:40:0e:c1:b2:86:e8:80:e9:a0:d2:4b:8a:6c:52: cb:99:42:6a:9c:83:ca:35:73:82:57:5b:c7:3b:bc: 57:83:9b:2c:7b:7d:81:04:7e:59:9b:e2:88:0b:dd: c8:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:B8:4E:84:A9:09:6F:DD:63:45:CA:C5:DA:68:39:67:3F:B7:AE:F3 X509v3 Authority Key Identifier: keyid:CD:14:36:90:23:0A:44:0A:68:B7:A8:AA:98:27:9F:2F:65:DF:EE:28 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zRQ2kCMKRApot6iqmCefL2Xf7ig.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:60:78:6f:fb:35:56:60:9d:1c:d1:4b:19:eb:3f:76:ef:bc: 83:80:30:cb:b3:f1:73:64:35:b8:14:4c:22:fe:a9:ae:86:f6: 1f:bc:81:a2:c7:32:08:2a:b7:dc:13:47:a2:e8:08:13:9a:1c: d2:bf:8b:40:01:08:dd:05:a9:32:29:40:17:aa:f3:9f:7d:25: 20:85:a3:8b:1b:21:ba:d6:a0:f8:03:ef:7f:5e:de:f4:c3:32: 78:9e:4d:a1:ab:3b:70:b0:16:b6:22:0b:33:34:6b:d5:c3:1f: dc:de:26:b8:07:b7:c3:d4:71:c6:f1:c0:6a:fe:2e:54:fd:22: ce:6c:31:80:e8:48:8b:70:ff:67:9e:a6:81:32:b7:63:f7:45: 25:3f:6b:cc:69:b3:92:e5:18:19:18:bf:6c:d2:36:d2:84:44: b7:98:70:53:3f:bb:f9:92:5e:8d:3c:a8:8d:82:5b:69:9c:e7: 06:f8:11:66:1e:ca:2a:18:66:58:85:f4:38:1b:72:84:47:d9: 09:ba:14:26:70:18:60:08:06:54:4f:95:ef:01:4b:4c:38:b8: 94:db:da:04:fc:e5:8a:b7:e2:9d:77:6e:09:eb:c4:c9:1c:95: 3e:a3:5a:e4:cf:ae:08:35:a8:a5:1c:47:fb:54:92:bd:3e:46: c5:f3:cb:ad -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLmOyB3RB3SdsC1aZORy0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkMTQzNjkwMjMwYTQ0MGE2OGI3YThhYTk4Mjc5ZjJmNjVk ZmVlMjgwHhcNMjUxMjA2MDEwMjIwWhcNMjUxMjA3MDEwMjIwWjAzMTEwLwYDVQQD EygyY2I4NGU4NGE5MDk2ZmRkNjM0NWNhYzVkYTY4Mzk2NzNmYjdhZWYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi32CIDUZ1/bSP7aYq/0AGiIw3Sc1 PQ+ouid5SDwfNnh8wEO6mrbingKyWmFZvJISEQ746GC7m4fznaEZBgWVD71FpMvz VTH24IaeVhMhJykQIGoay6rAMqzbrwjmNzsjgE+LJPS0ncWikOnH4b7i/CeLdwGF yNdKl6HKBD+YgqmjpO6VxIex2NHfH6iKESRnLVqIR3+OYQF+oS0V46AhwrvBvGJ3 Tu+Pf3ssg4M2FLBb9GImWOm38v+7QxN51NflupcN6JvsBNI5mxUMHbZnSBcPQA7B sobogOmg0kuKbFLLmUJqnIPKNXOCV1vHO7xXg5sse32BBH5Zm+KIC93IfwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCy4ToSpCW/dY0XKxdpoOWc/t67zMB8GA1UdIwQY MBaAFM0UNpAjCkQKaLeoqpgnny9l3+4oMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvelJRMmtDTUtSQXBvdDZpcW1DZWZMMlhmN2lnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OS8wOTQ1NmUtYTcxYy00M2IzLWJkNDAt OGVlM2Q5OGNhZDViLzEvelJRMmtDTUtSQXBvdDZpcW1DZWZMMlhmN2lnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OS8wOTQ1NmUtYTcxYy00M2IzLWJkNDAtOGVlM2Q5OGNhZDVi LzEvelJRMmtDTUtSQXBvdDZpcW1DZWZMMlhmN2lnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAamB4b/s1 VmCdHNFLGes/du+8g4Awy7Pxc2Q1uBRMIv6prob2H7yBoscyCCq33BNHougIE5oc 0r+LQAEI3QWpMilAF6rzn30lIIWjixshutag+APvf17e9MMyeJ5Noas7cLAWtiIL MzRr1cMf3N4muAe3w9RxxvHAav4uVP0izmwxgOhIi3D/Z56mgTK3Y/dFJT9rzGmz kuUYGRi/bNI20oREt5hwUz+7+ZJejTyojYJbaZznBvgRZh7KKhhmWIX0OBtyhEfZ CboUJnAYYAgGVE+V7wFLTDi4lNvaBPzlirfinXduCevEyRyVPqNa5M+uCDWopRxH +1SSvT5GxfPLrQ== -----END CERTIFICATE-----Generated at Sat Dec 6 10:00:56 2025 by rpki-client