This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft File: zyJMhK66hZuQyJNsumFn7kxE7Oc.mft (raw, json) Hash identifier: y2ByATTq4BeoMKu57o9EzHh+VWTzqXgWxUigDLNuZiM= Subject key identifier: 0F:D7:AA:19:31:07:0F:31:4E:49:F9:08:D7:0D:6D:B4:82:56:55:61 Authority key identifier: CF:22:4C:84:AE:BA:85:9B:90:C8:93:6C:BA:61:67:EE:4C:44:EC:E7 Certificate issuer: /CN=cf224c84aeba859b90c8936cba6167ee4c44ece7 Certificate serial: 019AF240013C0D34E78B9D09251F5F4DCBF9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zyJMhK66hZuQyJNsumFn7kxE7Oc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft Manifest number: 07D5 Signing time: Sat 06 Dec 2025 06:01:12 +0000 Manifest this update: Sat 06 Dec 2025 06:01:12 +0000 Manifest next update: Sun 07 Dec 2025 06:01:12 +0000 Files and hashes: 1: n3lj8Imlf54KOqF_Kqk-h0qcwVk.roa (hash: 2POYPsdH+jKImtpOmPpWEy8yit+ATY6Eb8geD/u6vK4=) 2: zyJMhK66hZuQyJNsumFn7kxE7Oc.crl (hash: /SGPrMdg0W5MWn49/VLWHH/+lO4CckOGLtE7RVd1oYg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.crl rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft rsync://rpki.ripe.net/repository/DEFAULT/zyJMhK66hZuQyJNsumFn7kxE7Oc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:40:01:3c:0d:34:e7:8b:9d:09:25:1f:5f:4d:cb:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cf224c84aeba859b90c8936cba6167ee4c44ece7 Validity Not Before: Dec 6 06:01:12 2025 GMT Not After : Dec 7 06:01:12 2025 GMT Subject: CN=0fd7aa1931070f314e49f908d70d6db482565561 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:13:bd:cd:44:c2:c1:45:34:f8:13:11:38:76: ae:5a:75:38:a3:af:73:42:d2:b1:23:65:1f:60:be: 3e:80:d7:9b:40:f2:94:01:a1:6d:38:13:34:ec:d8: bb:ca:b1:89:6c:f6:3b:c8:48:8d:b0:c5:88:61:5e: d4:b7:f3:3a:51:81:c1:21:c3:c6:c0:ed:5e:e2:4c: 4d:76:a3:1b:d4:96:c0:df:ef:f4:d5:b0:28:52:e4: 37:03:4c:8c:16:7b:08:3c:ff:fa:02:de:4f:46:cc: 67:07:76:96:78:1b:f9:00:62:ef:74:bb:68:9e:58: ef:e0:fd:53:b5:e8:47:63:c3:59:3c:95:db:3f:a9: 75:e7:a1:46:ca:8d:32:ef:94:27:6d:14:f8:4b:d1: 45:42:8d:21:b8:72:f9:eb:68:41:b0:24:63:32:6d: 01:80:63:a1:8d:1b:48:1b:f8:44:95:50:ed:6b:53: 9e:ff:6c:4f:83:0e:23:18:f7:b4:f3:f0:9d:63:a7: 55:83:95:65:43:90:ab:ff:19:af:67:5f:9f:c0:4d: a8:b4:62:15:b7:af:2b:35:81:69:23:d8:65:a3:26: af:b6:17:19:dd:85:fe:a1:5b:35:6a:96:dc:40:f3: 03:10:0f:cf:f4:00:2d:3d:b4:d9:95:53:b4:4e:07: 15:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:D7:AA:19:31:07:0F:31:4E:49:F9:08:D7:0D:6D:B4:82:56:55:61 X509v3 Authority Key Identifier: keyid:CF:22:4C:84:AE:BA:85:9B:90:C8:93:6C:BA:61:67:EE:4C:44:EC:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zyJMhK66hZuQyJNsumFn7kxE7Oc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:fd:0c:9c:0c:3d:89:0b:88:6d:4a:bb:62:04:7d:39:22:be: 3c:1c:80:6d:92:ab:16:1a:ee:17:1e:ee:a6:50:0e:36:aa:c2: c9:72:dc:fd:a9:0b:c6:4a:49:20:e0:48:32:c9:6e:99:be:8e: 6b:93:bb:a0:9a:00:d0:0f:56:a4:48:db:2e:9d:5d:5d:dd:8a: 34:88:8e:e5:94:b4:19:0b:98:5f:8c:7b:df:e9:c4:eb:ae:d1: 1c:c4:ac:84:01:69:7a:3d:f5:97:12:29:ac:5f:c0:23:17:e4: d9:c0:bb:85:c5:6c:9c:95:87:34:d1:a3:09:8a:96:2c:e6:a5: 4e:c4:e5:b9:de:df:95:13:b6:5f:7a:a6:6d:28:4e:7b:64:ba: ba:ee:46:23:fe:2c:10:6b:87:e9:ad:dc:94:40:c4:28:7c:1f: b9:ac:00:7c:49:6d:6d:aa:98:87:dd:b6:e6:d7:76:83:fc:b1: 1d:67:55:e5:e9:9c:c6:72:a5:2e:65:c9:4b:f8:61:e8:7a:94: cb:e9:a8:16:35:4a:56:f6:30:8c:39:6a:3d:ef:94:b0:e4:61: 8a:75:8d:9c:9c:06:8e:02:15:ea:73:21:86:97:41:d6:a9:9b: 9c:08:bf:72:df:b1:ce:43:7c:f1:42:46:c0:2f:cd:41:66:50: 8b:70:1e:41 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryQAE8DTTni50JJR9fTcv5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNmMjI0Yzg0YWViYTg1OWI5MGM4OTM2Y2JhNjE2N2VlNGM0 NGVjZTcwHhcNMjUxMjA2MDYwMTEyWhcNMjUxMjA3MDYwMTEyWjAzMTEwLwYDVQQD EygwZmQ3YWExOTMxMDcwZjMxNGU0OWY5MDhkNzBkNmRiNDgyNTY1NTYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlxO9zUTCwUU0+BMROHauWnU4o69z QtKxI2UfYL4+gNebQPKUAaFtOBM07Ni7yrGJbPY7yEiNsMWIYV7Ut/M6UYHBIcPG wO1e4kxNdqMb1JbA3+/01bAoUuQ3A0yMFnsIPP/6At5PRsxnB3aWeBv5AGLvdLto nljv4P1TtehHY8NZPJXbP6l156FGyo0y75QnbRT4S9FFQo0huHL562hBsCRjMm0B gGOhjRtIG/hElVDta1Oe/2xPgw4jGPe08/CdY6dVg5VlQ5Cr/xmvZ1+fwE2otGIV t68rNYFpI9hloyavthcZ3YX+oVs1apbcQPMDEA/P9AAtPbTZlVO0TgcVmQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA/XqhkxBw8xTkn5CNcNbbSCVlVhMB8GA1UdIwQY MBaAFM8iTISuuoWbkMiTbLphZ+5MROznMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvenlKTWhLNjZoWnVReUpOc3VtRm43a3hFN09jLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi8wNzE2ZGYtMzQxYi00YTA4LWE0NTEt NTk2MjI1MDMxZWUzLzEvenlKTWhLNjZoWnVReUpOc3VtRm43a3hFN09jLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Zi8wNzE2ZGYtMzQxYi00YTA4LWE0NTEtNTk2MjI1MDMxZWUz LzEvenlKTWhLNjZoWnVReUpOc3VtRm43a3hFN09jLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbf0MnAw9 iQuIbUq7YgR9OSK+PByAbZKrFhruFx7uplAONqrCyXLc/akLxkpJIOBIMslumb6O a5O7oJoA0A9WpEjbLp1dXd2KNIiO5ZS0GQuYX4x73+nE667RHMSshAFpej31lxIp rF/AIxfk2cC7hcVsnJWHNNGjCYqWLOalTsTlud7flRO2X3qmbShOe2S6uu5GI/4s EGuH6a3clEDEKHwfuawAfEltbaqYh9225td2g/yxHWdV5emcxnKlLmXJS/hh6HqU y+moFjVKVvYwjDlqPe+UsORhinWNnJwGjgIV6nMhhpdB1qmbnAi/ct+xzkN88UJG wC/NQWZQi3AeQQ== -----END CERTIFICATE-----Generated at Sat Dec 6 07:21:09 2025 by rpki-client