This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/pZDvI7RWydsg0wdCkysBf8VyTlY.mft File: pZDvI7RWydsg0wdCkysBf8VyTlY.mft (raw, json) Hash identifier: Yd8quWyy4t2hgrVr5XxphaB089KB+tV7Q89h76QCP7E= Subject key identifier: 0F:B7:6E:4E:E2:C8:ED:EC:76:63:70:9E:B7:77:88:31:3B:5D:D2:D7 Authority key identifier: A5:90:EF:23:B4:56:C9:DB:20:D3:07:42:93:2B:01:7F:C5:72:4E:56 Certificate issuer: /CN=a590ef23b456c9db20d30742932b017fc5724e56 Certificate serial: 019AF1642E59B4CF010D7A2CCF82242681EA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pZDvI7RWydsg0wdCkysBf8VyTlY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/pZDvI7RWydsg0wdCkysBf8VyTlY.mft Manifest number: 0F16 Signing time: Sat 06 Dec 2025 02:01:05 +0000 Manifest this update: Sat 06 Dec 2025 02:01:05 +0000 Manifest next update: Sun 07 Dec 2025 02:01:05 +0000 Files and hashes: 1: pZDvI7RWydsg0wdCkysBf8VyTlY.crl (hash: haZkgZ3Aky5qfre6KNkAmuT7sIhQhxYoaMGA/S51lcE=) 2: qkuFYPmd6yVSJeAUkr6iVxoW6uI.roa (hash: 6R5f5Psj0EmX1v5BkourUurygRB3rOnwEBUagdishKo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/pZDvI7RWydsg0wdCkysBf8VyTlY.crl rsync://rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/pZDvI7RWydsg0wdCkysBf8VyTlY.mft rsync://rpki.ripe.net/repository/DEFAULT/pZDvI7RWydsg0wdCkysBf8VyTlY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:64:2e:59:b4:cf:01:0d:7a:2c:cf:82:24:26:81:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a590ef23b456c9db20d30742932b017fc5724e56 Validity Not Before: Dec 6 02:01:05 2025 GMT Not After : Dec 7 02:01:05 2025 GMT Subject: CN=0fb76e4ee2c8edec7663709eb77788313b5dd2d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:4c:b7:da:52:de:61:fc:e8:5a:44:27:87:dd: ce:c7:7c:f8:3c:67:4c:65:0b:5c:66:eb:1b:58:74: 21:73:6f:e2:21:9c:1e:5d:83:0b:44:a4:64:29:10: 36:4d:22:62:a1:a6:19:32:fb:db:d7:72:27:e3:6b: b8:b3:30:58:98:9d:80:2f:2f:2a:3b:68:e5:96:90: 1f:21:06:b2:d5:d6:23:3a:f1:d6:ea:dd:a1:33:9a: a6:1c:d6:ac:c8:73:b0:ff:88:f3:05:52:78:16:89: b2:15:d4:64:3e:c4:00:fa:9d:d8:68:e8:50:09:0d: 53:e0:24:55:21:b4:fc:aa:e7:37:2e:5b:88:43:eb: 5a:53:c7:6d:90:b1:4a:ea:f2:a2:10:54:01:08:06: 4d:38:89:77:86:8e:33:23:5c:13:49:2d:4c:d4:1f: 63:32:ea:c1:63:72:57:24:28:5a:92:bb:a9:a1:da: 9a:54:80:4d:3d:9b:49:44:ec:04:34:28:d0:8b:21: 7d:32:14:a4:47:00:5b:98:1e:4f:d4:13:79:85:b8: 56:50:5f:20:88:52:42:03:0c:2b:ae:01:02:4c:25: 62:67:4d:9a:38:b8:a6:d3:6f:7d:2a:b4:1a:ed:82: c9:0d:30:82:31:5f:61:10:2e:f6:98:db:82:d2:88: 85:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:B7:6E:4E:E2:C8:ED:EC:76:63:70:9E:B7:77:88:31:3B:5D:D2:D7 X509v3 Authority Key Identifier: keyid:A5:90:EF:23:B4:56:C9:DB:20:D3:07:42:93:2B:01:7F:C5:72:4E:56 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pZDvI7RWydsg0wdCkysBf8VyTlY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/pZDvI7RWydsg0wdCkysBf8VyTlY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/pZDvI7RWydsg0wdCkysBf8VyTlY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 76:7c:c0:18:64:be:79:6e:96:03:b4:57:14:e2:1a:b1:b8:58: 56:1f:1b:d9:49:0d:90:63:c5:84:d9:f5:31:38:b4:8f:c9:a5: 1d:2c:90:72:72:35:4a:20:c0:09:71:75:71:f8:af:75:5e:9d: 48:ce:2b:bd:8c:3b:57:30:21:13:77:dc:85:c4:42:f6:1f:3c: e6:6a:38:d8:17:e6:77:36:25:51:9f:b2:f0:9e:41:5e:6c:8d: 25:0a:a5:b1:c1:5a:32:af:d7:9f:50:d8:18:cd:08:42:6a:25: 3d:d2:74:ba:dc:8e:a9:ee:56:27:08:37:30:50:d9:e6:4f:f4: 24:d4:2a:ff:88:7e:56:d1:71:7c:87:70:41:0b:b1:68:84:31: c7:df:93:34:e0:2b:2f:3d:39:6d:c7:af:1a:05:f2:d3:66:39: ac:ca:5e:a4:27:54:90:98:9c:9d:13:5b:bf:27:52:2a:11:25: 94:a3:2d:a0:4d:71:9a:09:49:01:9d:06:ac:59:a0:58:d6:6a: 7c:d0:74:3a:76:ef:9d:a5:7a:5d:09:49:14:36:bb:38:a8:25: 8c:57:b3:3f:2c:24:c5:d7:a7:d8:58:39:1e:61:d5:4d:6b:af: 07:68:70:8e:16:9a:f2:a5:79:37:4b:df:f4:bb:16:e9:d2:94: 31:67:c5:5e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxZC5ZtM8BDXosz4IkJoHqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE1OTBlZjIzYjQ1NmM5ZGIyMGQzMDc0MjkzMmIwMTdmYzU3 MjRlNTYwHhcNMjUxMjA2MDIwMTA1WhcNMjUxMjA3MDIwMTA1WjAzMTEwLwYDVQQD EygwZmI3NmU0ZWUyYzhlZGVjNzY2MzcwOWViNzc3ODgzMTNiNWRkMmQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwUy32lLeYfzoWkQnh93Ox3z4PGdM ZQtcZusbWHQhc2/iIZweXYMLRKRkKRA2TSJioaYZMvvb13In42u4szBYmJ2ALy8q O2jllpAfIQay1dYjOvHW6t2hM5qmHNasyHOw/4jzBVJ4FomyFdRkPsQA+p3YaOhQ CQ1T4CRVIbT8quc3LluIQ+taU8dtkLFK6vKiEFQBCAZNOIl3ho4zI1wTSS1M1B9j MurBY3JXJChakrupodqaVIBNPZtJROwENCjQiyF9MhSkRwBbmB5P1BN5hbhWUF8g iFJCAwwrrgECTCViZ02aOLim0299KrQa7YLJDTCCMV9hEC72mNuC0oiFtwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA+3bk7iyO3sdmNwnrd3iDE7XdLXMB8GA1UdIwQY MBaAFKWQ7yO0VsnbINMHQpMrAX/Fck5WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcFpEdkk3Uld5ZHNnMHdkQ2t5c0JmOFZ5VGxZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC8zMTg1YzQtZDcyNC00MzVkLTgyNzct MTUyZDIwNGViZmEzLzEvcFpEdkk3Uld5ZHNnMHdkQ2t5c0JmOFZ5VGxZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NC8zMTg1YzQtZDcyNC00MzVkLTgyNzctMTUyZDIwNGViZmEz LzEvcFpEdkk3Uld5ZHNnMHdkQ2t5c0JmOFZ5VGxZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdnzAGGS+ eW6WA7RXFOIasbhYVh8b2UkNkGPFhNn1MTi0j8mlHSyQcnI1SiDACXF1cfivdV6d SM4rvYw7VzAhE3fchcRC9h885mo42BfmdzYlUZ+y8J5BXmyNJQqlscFaMq/Xn1DY GM0IQmolPdJ0utyOqe5WJwg3MFDZ5k/0JNQq/4h+VtFxfIdwQQuxaIQxx9+TNOAr Lz05bcevGgXy02Y5rMpepCdUkJicnRNbvydSKhEllKMtoE1xmglJAZ0GrFmgWNZq fNB0OnbvnaV6XQlJFDa7OKgljFezPywkxden2Fg5HmHVTWuvB2hwjhaa8qV5N0vf 9LsW6dKUMWfFXg== -----END CERTIFICATE-----Generated at Sat Dec 6 09:32:01 2025 by rpki-client