This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/3bbe01-0a14-41bf-97da-2b2a8ba612fd/1/4z5OBZxk_xm-EKehUEV1YeRV0U8.mft File: 4z5OBZxk_xm-EKehUEV1YeRV0U8.mft (raw, json) Hash identifier: PnqayCbllNZReh+V86RTRQi58gz327QwNj5clUesrYA= Subject key identifier: A3:49:39:31:85:1F:53:99:76:39:CD:13:C2:7C:5C:67:58:86:1F:4E Authority key identifier: E3:3E:4E:05:9C:64:FF:19:BE:10:A7:A1:50:45:75:61:E4:55:D1:4F Certificate issuer: /CN=e33e4e059c64ff19be10a7a150457561e455d14f Certificate serial: 019AF31CE92128C7909DE3D1AB7B95365A8F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4z5OBZxk_xm-EKehUEV1YeRV0U8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/3bbe01-0a14-41bf-97da-2b2a8ba612fd/1/4z5OBZxk_xm-EKehUEV1YeRV0U8.mft Manifest number: 086A Signing time: Sat 06 Dec 2025 10:02:29 +0000 Manifest this update: Sat 06 Dec 2025 10:02:29 +0000 Manifest next update: Sun 07 Dec 2025 10:02:29 +0000 Files and hashes: 1: 4Vx5uY-wUi0YX0Kfqz3unLfjiuA.roa (hash: CqAh2hOC6+tjEARJLtXVTVdqWTjo1Zk7c/vuGkdSa5s=) 2: 4z5OBZxk_xm-EKehUEV1YeRV0U8.crl (hash: QbCFkZv79ju9+WdlIJK+Mm4F2mBAB3AvifqInLLmFN4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/3bbe01-0a14-41bf-97da-2b2a8ba612fd/1/4z5OBZxk_xm-EKehUEV1YeRV0U8.crl rsync://rpki.ripe.net/repository/DEFAULT/56/3bbe01-0a14-41bf-97da-2b2a8ba612fd/1/4z5OBZxk_xm-EKehUEV1YeRV0U8.mft rsync://rpki.ripe.net/repository/DEFAULT/4z5OBZxk_xm-EKehUEV1YeRV0U8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1c:e9:21:28:c7:90:9d:e3:d1:ab:7b:95:36:5a:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e33e4e059c64ff19be10a7a150457561e455d14f Validity Not Before: Dec 6 10:02:29 2025 GMT Not After : Dec 7 10:02:29 2025 GMT Subject: CN=a3493931851f53997639cd13c27c5c6758861f4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:00:eb:29:d2:ac:20:bf:87:a4:1b:76:ba:6a: 65:9a:19:95:31:9a:08:f2:b1:84:56:2e:b6:ce:5a: d9:a5:7b:28:de:ed:4f:42:9a:82:a5:3a:81:ac:21: 7f:db:e5:da:bf:d9:b0:6e:09:bc:e7:2a:f2:79:1c: e1:1d:97:b0:76:69:cc:d6:86:02:a4:1c:51:bd:24: 9e:2a:a5:79:8b:3f:c3:ac:79:d8:6a:39:83:bb:c2: c9:a6:fc:d0:d3:77:2a:c7:e5:d4:0e:83:67:64:25: 97:dd:7a:76:5e:aa:9f:93:8a:0d:5d:73:28:f5:54: 10:5a:0d:d1:f3:af:e4:95:74:33:66:cb:55:d0:8a: 11:e7:87:70:09:a0:81:80:f6:e1:52:23:49:ca:97: 5b:72:26:5b:44:24:74:48:5f:db:e2:b8:98:84:34: fe:7d:99:b6:03:ad:43:ba:d5:8c:52:4b:ec:ee:cc: 87:0d:68:92:bd:0b:a1:f9:29:ee:11:21:c9:26:c9: bb:d7:8e:04:03:41:db:fe:eb:a6:b3:1b:68:59:6f: 75:1e:07:46:26:1f:04:23:50:69:d1:c7:ce:f5:56: 16:01:ac:d9:11:32:48:8a:1e:e3:2c:33:a9:f0:0d: 86:c0:95:64:b3:96:7f:78:d9:c7:1d:d7:ff:db:fc: 75:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:49:39:31:85:1F:53:99:76:39:CD:13:C2:7C:5C:67:58:86:1F:4E X509v3 Authority Key Identifier: keyid:E3:3E:4E:05:9C:64:FF:19:BE:10:A7:A1:50:45:75:61:E4:55:D1:4F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4z5OBZxk_xm-EKehUEV1YeRV0U8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/3bbe01-0a14-41bf-97da-2b2a8ba612fd/1/4z5OBZxk_xm-EKehUEV1YeRV0U8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/56/3bbe01-0a14-41bf-97da-2b2a8ba612fd/1/4z5OBZxk_xm-EKehUEV1YeRV0U8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1e:13:8a:e7:bd:63:9e:d8:10:b6:09:06:8f:c8:0b:47:e2:e3: d5:db:cd:cf:ba:3b:82:a5:c4:18:0e:17:6b:3d:e8:0c:f3:cd: 16:b0:51:40:49:a6:c3:c2:37:c7:0d:a8:a0:46:dd:ef:07:68: e3:82:3d:e6:28:6c:df:7e:84:c7:a5:78:a0:dc:8d:ce:49:9c: 19:52:5e:39:42:1b:90:24:df:bc:b8:93:0d:6d:73:91:50:4d: 6b:b0:42:54:6c:83:a8:44:f4:13:11:f0:06:d5:ae:76:e6:09: ae:98:f2:cb:4f:44:3a:f1:d8:03:4f:fa:17:71:ae:94:37:2a: 69:66:b6:ea:9a:28:2f:ef:64:9b:52:d5:9d:43:10:96:1a:62: 3b:eb:e2:2c:54:67:55:33:05:e8:ea:42:a4:1a:99:a8:34:68: 1c:8b:97:19:98:b4:84:37:c6:a3:53:57:a2:3b:59:ba:76:1c: 85:2d:0b:6d:7a:79:83:c3:40:48:7b:98:a3:7b:d4:43:76:3f: e1:93:fa:d6:f6:a9:45:ba:84:2f:ad:ed:d1:51:96:29:fa:aa: 37:6a:7b:d9:36:20:52:10:49:92:92:8b:0c:1c:29:0c:ec:63: 99:f7:f2:c8:30:fb:cc:0d:b6:db:eb:93:4a:6b:c6:8e:58:c9: c8:b9:1e:a9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHOkhKMeQnePRq3uVNlqPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUzM2U0ZTA1OWM2NGZmMTliZTEwYTdhMTUwNDU3NTYxZTQ1 NWQxNGYwHhcNMjUxMjA2MTAwMjI5WhcNMjUxMjA3MTAwMjI5WjAzMTEwLwYDVQQD EyhhMzQ5MzkzMTg1MWY1Mzk5NzYzOWNkMTNjMjdjNWM2NzU4ODYxZjRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxwDrKdKsIL+HpBt2umplmhmVMZoI 8rGEVi62zlrZpXso3u1PQpqCpTqBrCF/2+Xav9mwbgm85yryeRzhHZewdmnM1oYC pBxRvSSeKqV5iz/DrHnYajmDu8LJpvzQ03cqx+XUDoNnZCWX3Xp2Xqqfk4oNXXMo 9VQQWg3R86/klXQzZstV0IoR54dwCaCBgPbhUiNJypdbciZbRCR0SF/b4riYhDT+ fZm2A61DutWMUkvs7syHDWiSvQuh+SnuESHJJsm7144EA0Hb/uumsxtoWW91HgdG Jh8EI1Bp0cfO9VYWAazZETJIih7jLDOp8A2GwJVks5Z/eNnHHdf/2/x17QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKNJOTGFH1OZdjnNE8J8XGdYhh9OMB8GA1UdIwQY MBaAFOM+TgWcZP8ZvhCnoVBFdWHkVdFPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNHo1T0JaeGtfeG0tRUtlaFVFVjFZZVJWMFU4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni8zYmJlMDEtMGExNC00MWJmLTk3ZGEt MmIyYThiYTYxMmZkLzEvNHo1T0JaeGtfeG0tRUtlaFVFVjFZZVJWMFU4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ni8zYmJlMDEtMGExNC00MWJmLTk3ZGEtMmIyYThiYTYxMmZk LzEvNHo1T0JaeGtfeG0tRUtlaFVFVjFZZVJWMFU4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHhOK571j ntgQtgkGj8gLR+Lj1dvNz7o7gqXEGA4Xaz3oDPPNFrBRQEmmw8I3xw2ooEbd7wdo 44I95ihs336Ex6V4oNyNzkmcGVJeOUIbkCTfvLiTDW1zkVBNa7BCVGyDqET0ExHw BtWuduYJrpjyy09EOvHYA0/6F3GulDcqaWa26pooL+9km1LVnUMQlhpiO+viLFRn VTMF6OpCpBqZqDRoHIuXGZi0hDfGo1NXojtZunYchS0LbXp5g8NASHuYo3vUQ3Y/ 4ZP61vapRbqEL63t0VGWKfqqN2p72TYgUhBJkpKLDBwpDOxjmffyyDD7zA222+uT SmvGjljJyLkeqQ== -----END CERTIFICATE-----Generated at Sat Dec 6 15:07:43 2025 by rpki-client