This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft File: mZKB6H1em4dY8kDnju9xAsQBIYk.mft (raw, json) Hash identifier: G9WIOOCocwzTN1FbTtA/hJ/lLrz15XZMMzMY5VWlnhk= Subject key identifier: 77:DF:C2:BD:52:35:29:96:01:F2:9E:C2:0B:4E:AB:B9:9A:DC:BB:99 Authority key identifier: 99:92:81:E8:7D:5E:9B:87:58:F2:40:E7:8E:EF:71:02:C4:01:21:89 Certificate issuer: /CN=999281e87d5e9b8758f240e78eef7102c4012189 Certificate serial: 019AF50B126B7FE002A8113B8558C64136A1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mZKB6H1em4dY8kDnju9xAsQBIYk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft Manifest number: 16F4 Signing time: Sat 06 Dec 2025 19:02:14 +0000 Manifest this update: Sat 06 Dec 2025 19:02:14 +0000 Manifest next update: Sun 07 Dec 2025 19:02:14 +0000 Files and hashes: 1: PF8Dfwpieuc3szZWNlM6zxbOCaw.roa (hash: eEI5JJg+vshmiZesKoh8QcSvz/GrsPF5AtTzxYWQZk4=) 2: mZKB6H1em4dY8kDnju9xAsQBIYk.crl (hash: iwRin2mz4uzfYdSaLRauyU/71Jfh/8yAGmz/6lIGJkY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.crl rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft rsync://rpki.ripe.net/repository/DEFAULT/mZKB6H1em4dY8kDnju9xAsQBIYk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:0b:12:6b:7f:e0:02:a8:11:3b:85:58:c6:41:36:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=999281e87d5e9b8758f240e78eef7102c4012189 Validity Not Before: Dec 6 19:02:14 2025 GMT Not After : Dec 7 19:02:14 2025 GMT Subject: CN=77dfc2bd5235299601f29ec20b4eabb99adcbb99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:5e:d1:2b:bc:9d:fd:d8:4e:c8:19:12:b3:7f: ff:92:41:26:2a:96:b3:f3:5b:d0:3c:e7:a8:8c:3f: 9b:d9:40:9e:78:57:f9:e9:38:6d:99:36:ab:fe:20: f4:04:01:61:8b:29:9e:74:13:be:9e:bf:5f:37:78: 76:78:8d:41:a1:d8:fd:69:5d:ac:d7:90:6b:39:cd: fc:3b:6b:d7:12:be:cb:e7:4c:7d:67:a5:15:2f:3e: bb:dd:95:2f:c9:f5:bb:fe:57:2f:d4:3f:03:fc:3e: 70:12:87:44:ef:7f:e8:ac:c4:b2:3d:41:8c:7d:f8: 11:de:e4:d6:eb:54:77:1f:6a:b8:e5:14:49:8f:8d: b6:2b:09:56:8e:01:34:78:5a:9c:96:32:d9:24:f2: eb:96:18:fc:74:29:4f:8f:0d:a9:b8:c0:75:2f:df: c2:aa:63:b6:2f:44:79:41:ae:cc:4a:b3:5a:81:e8: d0:f8:0b:d9:95:fc:16:7a:2a:5f:f9:79:30:d6:6e: 07:8a:c6:68:7e:77:80:ab:fe:e5:a3:04:b9:de:74: 56:ba:2a:54:1b:5e:24:32:62:02:f8:23:79:21:85: b0:2b:bf:46:0d:a0:66:57:5f:85:e1:3e:52:c6:19: d0:eb:97:6d:3a:17:f9:10:fb:2d:f4:b7:84:e2:2d: ca:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:DF:C2:BD:52:35:29:96:01:F2:9E:C2:0B:4E:AB:B9:9A:DC:BB:99 X509v3 Authority Key Identifier: keyid:99:92:81:E8:7D:5E:9B:87:58:F2:40:E7:8E:EF:71:02:C4:01:21:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mZKB6H1em4dY8kDnju9xAsQBIYk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 51:c3:a0:f8:f1:d3:ad:50:7b:2e:54:a3:28:d6:6b:93:41:37: 8f:26:a9:bf:83:41:2c:12:6d:d4:7f:48:8e:15:cd:d8:02:52: dd:d0:b7:d5:d3:72:9a:56:b7:90:46:60:28:f0:d3:95:63:66: 66:97:66:b9:1b:39:2a:c9:f1:c2:db:ba:c2:a7:55:99:e5:49: 08:43:f0:62:62:0c:b8:54:02:58:cf:79:02:4b:74:f6:6a:76: 0f:69:5f:54:4c:85:12:76:22:91:8e:d0:13:2b:30:13:0b:69: 3a:78:90:c8:2c:37:27:7a:dd:ac:50:9c:c2:38:27:e5:6c:62: 62:1a:4b:0a:8b:84:c3:31:80:ea:a0:dd:da:5c:07:62:ec:60: 1e:1b:b5:25:bf:74:e4:19:bb:c3:31:40:59:9b:76:d6:3f:bb: 07:de:56:b4:aa:38:3a:a0:d2:c2:23:a4:0c:ae:a0:b2:38:ea: c1:a7:08:bc:e6:22:53:22:83:33:4a:ec:c4:1a:b4:49:ac:d0: af:47:17:43:67:fe:3e:8c:4a:7f:2c:33:5d:25:6a:e8:33:34: b4:7e:ae:38:7c:20:38:51:1c:07:98:e1:fe:42:6d:58:d5:eb: f5:76:a9:74:f1:95:f8:e3:86:59:59:a7:d2:b7:e3:bb:e7:da: d7:de:eb:85 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1CxJrf+ACqBE7hVjGQTahMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk5OTI4MWU4N2Q1ZTliODc1OGYyNDBlNzhlZWY3MTAyYzQw MTIxODkwHhcNMjUxMjA2MTkwMjE0WhcNMjUxMjA3MTkwMjE0WjAzMTEwLwYDVQQD Eyg3N2RmYzJiZDUyMzUyOTk2MDFmMjllYzIwYjRlYWJiOTlhZGNiYjk5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyV7RK7yd/dhOyBkSs3//kkEmKpaz 81vQPOeojD+b2UCeeFf56ThtmTar/iD0BAFhiymedBO+nr9fN3h2eI1Bodj9aV2s 15BrOc38O2vXEr7L50x9Z6UVLz673ZUvyfW7/lcv1D8D/D5wEodE73/orMSyPUGM ffgR3uTW61R3H2q45RRJj422KwlWjgE0eFqcljLZJPLrlhj8dClPjw2puMB1L9/C qmO2L0R5Qa7MSrNagejQ+AvZlfwWeipf+Xkw1m4HisZofneAq/7lowS53nRWuipU G14kMmIC+CN5IYWwK79GDaBmV1+F4T5SxhnQ65dtOhf5EPst9LeE4i3KCwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHffwr1SNSmWAfKewgtOq7ma3LuZMB8GA1UdIwQY MBaAFJmSgeh9XpuHWPJA547vcQLEASGJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbVpLQjZIMWVtNGRZOGtEbmp1OXhBc1FCSVlrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny9iODM4NjMtNWY0Yi00MmUzLWI4MjIt YTBmMDBiZTNiY2UxLzEvbVpLQjZIMWVtNGRZOGtEbmp1OXhBc1FCSVlrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ny9iODM4NjMtNWY0Yi00MmUzLWI4MjItYTBmMDBiZTNiY2Ux LzEvbVpLQjZIMWVtNGRZOGtEbmp1OXhBc1FCSVlrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUcOg+PHT rVB7LlSjKNZrk0E3jyapv4NBLBJt1H9IjhXN2AJS3dC31dNymla3kEZgKPDTlWNm ZpdmuRs5Ksnxwtu6wqdVmeVJCEPwYmIMuFQCWM95Akt09mp2D2lfVEyFEnYikY7Q EyswEwtpOniQyCw3J3rdrFCcwjgn5WxiYhpLCouEwzGA6qDd2lwHYuxgHhu1Jb90 5Bm7wzFAWZt21j+7B95WtKo4OqDSwiOkDK6gsjjqwacIvOYiUyKDM0rsxBq0SazQ r0cXQ2f+PoxKfywzXSVq6DM0tH6uOHwgOFEcB5jh/kJtWNXr9XapdPGV+OOGWVmn 0rfju+fa197rhQ== -----END CERTIFICATE-----Generated at Sat Dec 6 21:16:31 2025 by rpki-client