This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft File: Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft (raw, json) Hash identifier: BEt28Ge2o9avuQtONO51z6Hvbi48pwJLOhQ4i1HEoEc= Subject key identifier: 53:B7:BD:29:F8:BA:D0:F3:CD:95:B9:8F:66:83:DF:0B:26:59:1C:1C Authority key identifier: 09:DC:F1:E8:97:E5:98:EC:3F:1A:B6:0B:D4:43:32:87:26:DE:DA:E4 Certificate issuer: /CN=09dcf1e897e598ec3f1ab60bd443328726dedae4 Certificate serial: 019AF3C0755ABFB0B45BFFDD2D05CF46ADD3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cdzx6JflmOw_GrYL1EMyhybe2uQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft Manifest number: 15B1 Signing time: Sat 06 Dec 2025 13:01:07 +0000 Manifest this update: Sat 06 Dec 2025 13:01:07 +0000 Manifest next update: Sun 07 Dec 2025 13:01:07 +0000 Files and hashes: 1: 1-KS-11GCop4jdIEBghE-M8_v_g8.roa (hash: EqC/3yl9y80XofTy0F138kTU+PwB4qz9tGO9qfDtpgk=) 2: 28Clr4Ex1l2uqo6qlmoWgDRx4JU.roa (hash: idGohMKsNgyo0RBS8sMY69MlW8nQfQuAaP7Q0HBe0uM=) 3: 3RrW5Yatg2PUvnJMq7_H-tuFmj8.roa (hash: 5AaD0wsj8bY2cs7Xy1+SAntuaiPPTR2j1GucGYtil+8=) 4: 6Mu0G5eGnDMdTKqwRVWTSuG8bsw.roa (hash: moIyQZi4wCVA13IscbWLzRltLBx1xw7w1x6HIQR/1Hg=) 5: Cdzx6JflmOw_GrYL1EMyhybe2uQ.crl (hash: WY1YXWrtX7ioJxT/2HfkbHiQYovtTkBDV1LcREAf9IY=) 6: ZDWi8X9SmWmbAKCwE55Pm2H1s3Q.roa (hash: j4Bd1zsOhh9D77jUeZ1o5ZusSCW9cs9P4TtpELqNqCQ=) 7: nJT9Bh_tbP1He9594EppfoCQEts.roa (hash: EeLGem/zMOULX8JHQg+hYpRqNlikcSBKHqsuzrAaMZg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.crl rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft rsync://rpki.ripe.net/repository/DEFAULT/Cdzx6JflmOw_GrYL1EMyhybe2uQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:c0:75:5a:bf:b0:b4:5b:ff:dd:2d:05:cf:46:ad:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09dcf1e897e598ec3f1ab60bd443328726dedae4 Validity Not Before: Dec 6 13:01:07 2025 GMT Not After : Dec 7 13:01:07 2025 GMT Subject: CN=53b7bd29f8bad0f3cd95b98f6683df0b26591c1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:40:0c:54:f8:24:eb:65:e7:bb:f5:1e:40:b5: c3:3a:ef:41:79:21:56:4e:01:29:c3:dc:08:46:58: 52:18:64:41:2f:14:a7:a3:05:a6:b7:ab:bc:b3:a6: 35:43:af:4e:67:5e:c7:1b:b7:33:1b:33:8b:6e:ce: 80:3f:a5:f0:ba:fc:2e:ff:73:03:fb:99:f4:da:5b: 6e:98:b4:0b:86:f6:d1:2a:1a:62:00:d3:ae:a7:5a: 34:7e:e3:c3:12:01:ca:62:b3:d6:ec:00:a3:30:5c: 3d:2c:59:9c:4c:a9:b4:d9:13:af:6f:d3:fe:f0:58: 1d:66:1f:69:d3:2d:76:ee:87:db:15:57:a8:36:a0: 52:17:8c:97:37:41:f5:57:dc:d5:50:52:12:3a:79: fc:e3:d4:5e:a8:c4:8f:6a:33:7a:c1:fd:d3:85:5b: 15:60:2d:09:6b:f3:89:39:e2:04:78:44:0a:8d:50: fd:a0:43:99:b3:22:f6:09:67:d9:33:24:00:47:10: a7:26:36:c1:27:14:47:63:7b:f7:dc:4b:fa:8e:91: 41:55:4a:45:15:74:26:3a:a2:f0:7a:92:0c:e9:3e: f4:73:4f:30:2f:db:71:b1:5a:38:0a:ef:20:4f:2f: 20:7e:b5:80:45:f1:8b:3b:11:2e:97:ab:ba:3c:5a: 84:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:B7:BD:29:F8:BA:D0:F3:CD:95:B9:8F:66:83:DF:0B:26:59:1C:1C X509v3 Authority Key Identifier: keyid:09:DC:F1:E8:97:E5:98:EC:3F:1A:B6:0B:D4:43:32:87:26:DE:DA:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cdzx6JflmOw_GrYL1EMyhybe2uQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a7:d8:93:8a:99:0c:56:0e:f8:3d:d7:68:de:13:ec:f5:0a:f5: 35:74:cd:ad:8b:aa:19:9f:75:c0:57:5a:12:6f:4c:f7:2e:cc: e3:9c:2d:54:42:f4:a3:b9:4b:50:51:7f:0c:8c:55:5e:b8:e8: e2:47:d4:fb:3c:42:5c:ac:e5:d4:6c:20:50:57:e3:ef:b9:ce: ed:6f:48:d5:db:fb:8d:85:1f:d3:e0:ba:cc:56:9f:d6:55:50: e4:83:95:ec:f3:82:64:a2:03:a8:7b:1b:2c:42:a2:87:ce:7c: f1:cb:4c:39:12:c5:9b:c8:6d:38:ea:ff:c8:78:cf:af:a5:26: 9d:09:0d:ad:3c:cb:d7:39:b4:54:71:32:04:64:d3:d5:ce:2c: ed:31:58:49:8d:ac:d5:10:19:3c:66:ce:ee:ee:a9:3a:c1:0d: 95:ac:2c:19:6f:36:fd:69:8f:1d:d8:97:e7:28:aa:52:19:0d: e8:8b:36:95:62:76:15:de:e1:9a:d2:ea:05:e3:41:36:44:c0: 56:5c:6a:1d:45:00:8c:68:ac:3f:ac:1f:79:a4:b0:b9:0d:d3: 09:be:83:fd:47:43:15:c0:e0:bf:0c:58:07:43:77:84:f5:ef: ba:81:41:49:c1:b9:f3:c8:a8:a3:ee:c9:cf:9f:e4:7c:9f:1b: 0f:19:8b:38 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzwHVav7C0W//dLQXPRq3TMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5ZGNmMWU4OTdlNTk4ZWMzZjFhYjYwYmQ0NDMzMjg3MjZk ZWRhZTQwHhcNMjUxMjA2MTMwMTA3WhcNMjUxMjA3MTMwMTA3WjAzMTEwLwYDVQQD Eyg1M2I3YmQyOWY4YmFkMGYzY2Q5NWI5OGY2NjgzZGYwYjI2NTkxYzFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo0AMVPgk62Xnu/UeQLXDOu9BeSFW TgEpw9wIRlhSGGRBLxSnowWmt6u8s6Y1Q69OZ17HG7czGzOLbs6AP6Xwuvwu/3MD +5n02ltumLQLhvbRKhpiANOup1o0fuPDEgHKYrPW7ACjMFw9LFmcTKm02ROvb9P+ 8FgdZh9p0y127ofbFVeoNqBSF4yXN0H1V9zVUFISOnn849ReqMSPajN6wf3ThVsV YC0Ja/OJOeIEeEQKjVD9oEOZsyL2CWfZMyQARxCnJjbBJxRHY3v33Ev6jpFBVUpF FXQmOqLwepIM6T70c08wL9txsVo4Cu8gTy8gfrWARfGLOxEul6u6PFqEzwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFO3vSn4utDzzZW5j2aD3wsmWRwcMB8GA1UdIwQY MBaAFAnc8eiX5ZjsPxq2C9RDMocm3trkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ2R6eDZKZmxtT3dfR3JZTDFFTXloeWJlMnVRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC85YmM0Y2MtYjY0Ni00NzAxLTg5NzUt NjIzZTE5OWZkYmU5LzEvQ2R6eDZKZmxtT3dfR3JZTDFFTXloeWJlMnVRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NC85YmM0Y2MtYjY0Ni00NzAxLTg5NzUtNjIzZTE5OWZkYmU5 LzEvQ2R6eDZKZmxtT3dfR3JZTDFFTXloeWJlMnVRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAp9iTipkM Vg74Pddo3hPs9Qr1NXTNrYuqGZ91wFdaEm9M9y7M45wtVEL0o7lLUFF/DIxVXrjo 4kfU+zxCXKzl1GwgUFfj77nO7W9I1dv7jYUf0+C6zFaf1lVQ5IOV7POCZKIDqHsb LEKih8588ctMORLFm8htOOr/yHjPr6UmnQkNrTzL1zm0VHEyBGTT1c4s7TFYSY2s 1RAZPGbO7u6pOsENlawsGW82/WmPHdiX5yiqUhkN6Is2lWJ2Fd7hmtLqBeNBNkTA VlxqHUUAjGisP6wfeaSwuQ3TCb6D/UdDFcDgvwxYB0N3hPXvuoFBScG588ioo+7J z5/kfJ8bDxmLOA== -----END CERTIFICATE-----Generated at Sat Dec 6 22:26:36 2025 by rpki-client