This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/7a37ea-30d9-427b-a36e-64832b39057d/1/MzQyKd4lHMiCWnxEyP6T5KzbwRU.mft File: MzQyKd4lHMiCWnxEyP6T5KzbwRU.mft (raw, json) Hash identifier: LqyCTNvL8f8hoRSYz71dwl5+u9Pcs5/SgwShpwP1F3Y= Subject key identifier: F8:E3:78:3E:4D:3C:21:FF:78:D3:EA:DB:3C:C3:30:9F:93:42:25:7F Authority key identifier: 33:34:32:29:DE:25:1C:C8:82:5A:7C:44:C8:FE:93:E4:AC:DB:C1:15 Certificate issuer: /CN=33343229de251cc8825a7c44c8fe93e4acdbc115 Certificate serial: 019B3155E6A6AC0D3568B6001F046363E1BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MzQyKd4lHMiCWnxEyP6T5KzbwRU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/7a37ea-30d9-427b-a36e-64832b39057d/1/MzQyKd4lHMiCWnxEyP6T5KzbwRU.mft Manifest number: 15 Signing time: Thu 18 Dec 2025 12:01:11 +0000 Manifest this update: Thu 18 Dec 2025 12:01:11 +0000 Manifest next update: Fri 19 Dec 2025 12:01:11 +0000 Files and hashes: 1: 531zAUPBYKumyQ0xpfkhVrEVZeg.roa (hash: zmS5aMegf4cAdrpghAhABvhGFxJN7kA/8Rf6S1OUbjM=) 2: MzQyKd4lHMiCWnxEyP6T5KzbwRU.crl (hash: UOkVDWYhzuacf92NvLAV4OMIpoKcBgjxMJU/aZ/X38o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/7a37ea-30d9-427b-a36e-64832b39057d/1/MzQyKd4lHMiCWnxEyP6T5KzbwRU.crl rsync://rpki.ripe.net/repository/DEFAULT/4c/7a37ea-30d9-427b-a36e-64832b39057d/1/MzQyKd4lHMiCWnxEyP6T5KzbwRU.mft rsync://rpki.ripe.net/repository/DEFAULT/MzQyKd4lHMiCWnxEyP6T5KzbwRU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 12:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:31:55:e6:a6:ac:0d:35:68:b6:00:1f:04:63:63:e1:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33343229de251cc8825a7c44c8fe93e4acdbc115 Validity Not Before: Dec 18 12:01:11 2025 GMT Not After : Dec 19 12:01:11 2025 GMT Subject: CN=f8e3783e4d3c21ff78d3eadb3cc3309f9342257f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:06:d3:b6:85:2b:d6:48:10:85:de:6c:c3:b6: 55:de:6d:3f:7c:6c:10:96:37:ca:21:2f:19:96:95: ab:c6:0f:c0:39:08:bb:f8:b3:83:a3:45:b2:2a:22: a3:e9:45:d7:f0:f9:0f:fc:9d:fd:80:97:85:06:f0: af:2b:17:a7:91:59:56:38:64:70:f7:4b:7e:db:07: 4d:53:9f:bb:ba:71:b9:45:a7:55:a1:6e:f6:39:b6: 2b:59:c9:8e:a2:2e:ec:2e:82:24:34:a3:0b:6d:57: 8d:9d:ca:24:1c:74:d2:4e:b9:32:b2:4b:c7:00:4a: 02:15:93:c0:f9:2e:69:30:77:4b:b4:de:c8:04:b9: 33:2a:1e:04:ff:a3:46:f1:f5:dc:65:fa:4c:99:8f: 60:cc:ca:d5:57:49:76:42:ef:a1:e6:2a:ab:da:9d: 63:fb:75:21:5e:c6:5d:2a:fb:3d:8c:3f:11:df:b3: f0:ec:b4:8e:dd:3f:bd:73:c7:20:60:54:67:a3:88: 12:32:d5:59:88:cd:42:13:a1:76:7a:0e:0e:a8:ea: 34:fa:ec:ef:49:04:bb:e2:c5:6d:65:10:ad:9f:00: b3:c5:7c:25:f5:77:96:49:2d:82:41:87:4a:1f:f2: 79:88:53:04:cb:17:46:de:b8:a0:93:81:16:15:be: ad:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:E3:78:3E:4D:3C:21:FF:78:D3:EA:DB:3C:C3:30:9F:93:42:25:7F X509v3 Authority Key Identifier: keyid:33:34:32:29:DE:25:1C:C8:82:5A:7C:44:C8:FE:93:E4:AC:DB:C1:15 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MzQyKd4lHMiCWnxEyP6T5KzbwRU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/7a37ea-30d9-427b-a36e-64832b39057d/1/MzQyKd4lHMiCWnxEyP6T5KzbwRU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/7a37ea-30d9-427b-a36e-64832b39057d/1/MzQyKd4lHMiCWnxEyP6T5KzbwRU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2e:f9:9a:eb:a4:63:d5:a9:8d:de:79:a0:96:e5:03:f0:41:9b: 06:05:aa:f9:dd:c4:42:3e:42:6b:19:57:6c:9c:74:31:1c:5a: 65:d4:99:f0:4b:fc:27:e5:41:ca:b6:64:f8:ff:9f:b6:ca:82: 55:ab:99:c7:82:21:88:cc:72:e4:7c:78:2f:d2:73:5f:80:12: 88:75:74:72:76:1b:24:60:5b:3a:48:c4:3f:8f:f9:55:4e:0a: 67:94:84:6b:81:67:38:e8:53:4d:1e:9f:f1:b3:6b:c9:89:65: 58:af:d9:ae:ef:81:52:c6:50:f3:66:8b:90:00:d1:19:88:e6: c3:62:1d:ec:53:f6:b1:f5:9f:a1:d3:fd:0f:67:7f:9c:44:14: 90:b7:bb:28:f6:8a:99:0e:14:60:b5:15:78:6e:f7:5f:67:6a: 78:33:73:a8:a9:ad:3d:13:ad:96:47:d1:d3:b3:11:76:cb:b4: 3f:cb:58:01:dd:d6:cc:4c:91:7a:49:36:49:8f:de:c2:df:42: 77:9a:1b:7a:80:8b:6c:ab:2a:d2:99:4a:6d:7c:66:fb:c9:ee: 8f:ed:7f:dc:e4:53:86:7c:16:b5:5b:df:29:04:0a:0b:85:a0: 13:94:b8:d7:b6:70:95:67:6a:1c:21:ba:61:39:8e:71:04:06: 69:71:f3:9c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsxVeamrA01aLYAHwRjY+G8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMzMzQzMjI5ZGUyNTFjYzg4MjVhN2M0NGM4ZmU5M2U0YWNk YmMxMTUwHhcNMjUxMjE4MTIwMTExWhcNMjUxMjE5MTIwMTExWjAzMTEwLwYDVQQD EyhmOGUzNzgzZTRkM2MyMWZmNzhkM2VhZGIzY2MzMzA5ZjkzNDIyNTdmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3AbTtoUr1kgQhd5sw7ZV3m0/fGwQ ljfKIS8ZlpWrxg/AOQi7+LODo0WyKiKj6UXX8PkP/J39gJeFBvCvKxenkVlWOGRw 90t+2wdNU5+7unG5RadVoW72ObYrWcmOoi7sLoIkNKMLbVeNncokHHTSTrkyskvH AEoCFZPA+S5pMHdLtN7IBLkzKh4E/6NG8fXcZfpMmY9gzMrVV0l2Qu+h5iqr2p1j +3UhXsZdKvs9jD8R37Pw7LSO3T+9c8cgYFRno4gSMtVZiM1CE6F2eg4OqOo0+uzv SQS74sVtZRCtnwCzxXwl9XeWSS2CQYdKH/J5iFMEyxdG3rigk4EWFb6tgQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPjjeD5NPCH/eNPq2zzDMJ+TQiV/MB8GA1UdIwQY MBaAFDM0MineJRzIglp8RMj+k+Ss28EVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTXpReUtkNGxITWlDV254RXlQNlQ1S3pid1JVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy83YTM3ZWEtMzBkOS00MjdiLWEzNmUt NjQ4MzJiMzkwNTdkLzEvTXpReUtkNGxITWlDV254RXlQNlQ1S3pid1JVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yy83YTM3ZWEtMzBkOS00MjdiLWEzNmUtNjQ4MzJiMzkwNTdk LzEvTXpReUtkNGxITWlDV254RXlQNlQ1S3pid1JVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALvma66Rj 1amN3nmgluUD8EGbBgWq+d3EQj5CaxlXbJx0MRxaZdSZ8Ev8J+VByrZk+P+ftsqC VauZx4IhiMxy5Hx4L9JzX4ASiHV0cnYbJGBbOkjEP4/5VU4KZ5SEa4FnOOhTTR6f 8bNryYllWK/Zru+BUsZQ82aLkADRGYjmw2Id7FP2sfWfodP9D2d/nEQUkLe7KPaK mQ4UYLUVeG73X2dqeDNzqKmtPROtlkfR07MRdsu0P8tYAd3WzEyRekk2SY/ewt9C d5obeoCLbKsq0plKbXxm+8nuj+1/3ORThnwWtVvfKQQKC4WgE5S417ZwlWdqHCG6 YTmOcQQGaXHznA== -----END CERTIFICATE-----Generated at Thu Dec 18 18:00:39 2025 by rpki-client