This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/1e2a0e-9514-4d70-903d-85706645e734/1/C_pzSNbB1xhjKDKHIHMPaE-iDtw.mft File: C_pzSNbB1xhjKDKHIHMPaE-iDtw.mft (raw, json) Hash identifier: 9pUdpNuFjYOxNq+hl3B672JAY+q2khXwaFW/2mQ2gtE= Subject key identifier: 46:30:DD:04:EB:28:9B:D6:5E:7D:0B:50:A2:52:F0:D7:4B:BE:8B:88 Authority key identifier: 0B:FA:73:48:D6:C1:D7:18:63:28:32:87:20:73:0F:68:4F:A2:0E:DC Certificate issuer: /CN=0bfa7348d6c1d7186328328720730f684fa20edc Certificate serial: 019AF19AEF903A90335F9DBDF80D9C181299 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C_pzSNbB1xhjKDKHIHMPaE-iDtw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/1e2a0e-9514-4d70-903d-85706645e734/1/C_pzSNbB1xhjKDKHIHMPaE-iDtw.mft Manifest number: 1766 Signing time: Sat 06 Dec 2025 03:00:54 +0000 Manifest this update: Sat 06 Dec 2025 03:00:54 +0000 Manifest next update: Sun 07 Dec 2025 03:00:54 +0000 Files and hashes: 1: C_pzSNbB1xhjKDKHIHMPaE-iDtw.crl (hash: dme8L5ayV9am9LOPOekdfe4+k7vCWg3HW2NUfYw8xPA=) 2: R78hXt59LE7w0KcWm8CyRlL8ojA.roa (hash: cdB5HrXSEQbNHbInJcgn28JFjatfOEw4A//fIUnff/A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/1e2a0e-9514-4d70-903d-85706645e734/1/C_pzSNbB1xhjKDKHIHMPaE-iDtw.crl rsync://rpki.ripe.net/repository/DEFAULT/79/1e2a0e-9514-4d70-903d-85706645e734/1/C_pzSNbB1xhjKDKHIHMPaE-iDtw.mft rsync://rpki.ripe.net/repository/DEFAULT/C_pzSNbB1xhjKDKHIHMPaE-iDtw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9a:ef:90:3a:90:33:5f:9d:bd:f8:0d:9c:18:12:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0bfa7348d6c1d7186328328720730f684fa20edc Validity Not Before: Dec 6 03:00:54 2025 GMT Not After : Dec 7 03:00:54 2025 GMT Subject: CN=4630dd04eb289bd65e7d0b50a252f0d74bbe8b88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:bf:9c:d6:ba:6f:56:25:ae:65:c1:5e:6b:da: 85:95:9f:bd:80:aa:c2:ca:0d:82:71:e2:ef:e9:87: 00:27:96:bf:9c:0a:9a:99:e4:44:f4:f6:93:3d:b2: de:9c:85:08:ca:a0:09:93:62:11:13:71:68:06:07: f3:3a:57:84:28:07:84:b6:d3:bf:37:fa:0a:64:43: 35:5f:2c:e9:e4:44:17:84:7c:06:dd:0e:9e:ea:53: 62:08:b7:b7:b8:25:7d:a3:2c:d8:47:1d:02:18:d2: 58:d7:59:fb:eb:f0:36:4f:40:ce:1c:57:0d:79:ea: 56:45:5a:d4:a2:e0:92:4e:d2:8d:30:75:ac:42:34: c3:da:9c:87:1e:6f:82:cb:1b:5e:b0:b8:f5:46:c6: c9:f1:e0:ea:60:a4:a7:d0:d5:8d:01:9c:ad:e5:62: 9a:b9:f0:e2:6b:02:ed:34:b9:93:20:57:0d:f4:5a: d6:24:d1:89:d9:b4:a8:4b:a0:f2:30:29:5e:89:4a: 49:9d:f9:01:b1:47:95:d5:b2:19:72:0a:46:2b:4c: 01:8b:7b:8c:a9:fd:46:ee:67:e0:ec:53:b2:e9:83: 1c:5c:de:77:34:3a:9a:06:95:21:2b:ed:a8:ae:e0: 5b:e6:21:a3:11:58:e4:36:a9:65:78:b0:9c:e7:3b: 8e:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:30:DD:04:EB:28:9B:D6:5E:7D:0B:50:A2:52:F0:D7:4B:BE:8B:88 X509v3 Authority Key Identifier: keyid:0B:FA:73:48:D6:C1:D7:18:63:28:32:87:20:73:0F:68:4F:A2:0E:DC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C_pzSNbB1xhjKDKHIHMPaE-iDtw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/1e2a0e-9514-4d70-903d-85706645e734/1/C_pzSNbB1xhjKDKHIHMPaE-iDtw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/79/1e2a0e-9514-4d70-903d-85706645e734/1/C_pzSNbB1xhjKDKHIHMPaE-iDtw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 42:fa:3e:d2:ef:2c:aa:bc:24:30:db:fa:51:c4:7c:70:f3:01: fe:79:46:31:8e:9f:25:2d:a4:bf:22:34:16:35:d4:ab:1f:b8: 41:9f:98:8d:fd:b9:79:a0:dc:93:1e:ac:31:58:b9:22:81:b7: 50:43:f4:2a:8e:73:6b:ae:6f:e5:ea:87:e3:a1:1f:48:c6:76: a1:7e:6c:e9:3f:53:b8:8c:7a:a0:62:22:f9:ea:67:6e:d0:74: 72:17:04:f8:45:f8:12:a4:27:f7:70:d4:a3:24:2e:82:6c:48: ca:f0:af:aa:48:30:5d:5b:0c:d5:1e:ea:f6:e4:10:b7:2e:4b: ff:66:79:e0:3f:b6:0b:e5:d7:95:fd:de:95:dc:32:2b:04:17: 7e:e9:0b:78:3b:ca:24:6b:1f:6d:76:9e:f2:9b:49:2c:35:df: 01:a3:7c:ac:eb:49:05:36:ef:ee:fd:a8:22:f9:0e:33:b9:ca: 3b:60:67:85:86:50:e5:79:57:d8:79:42:80:70:43:76:8a:3c: 41:3d:e1:7d:c6:2c:4d:9a:fb:82:54:a6:a4:e5:d5:2c:09:60: e5:3c:4c:53:94:03:ba:eb:92:89:49:a0:2f:9f:61:5e:6f:0e: 96:b1:3a:af:39:2b:0a:ad:c4:03:e0:27:49:b1:90:1e:85:43: ef:6c:9f:bf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmu+QOpAzX529+A2cGBKZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBiZmE3MzQ4ZDZjMWQ3MTg2MzI4MzI4NzIwNzMwZjY4NGZh MjBlZGMwHhcNMjUxMjA2MDMwMDU0WhcNMjUxMjA3MDMwMDU0WjAzMTEwLwYDVQQD Eyg0NjMwZGQwNGViMjg5YmQ2NWU3ZDBiNTBhMjUyZjBkNzRiYmU4Yjg4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkL+c1rpvViWuZcFea9qFlZ+9gKrC yg2CceLv6YcAJ5a/nAqameRE9PaTPbLenIUIyqAJk2IRE3FoBgfzOleEKAeEttO/ N/oKZEM1Xyzp5EQXhHwG3Q6e6lNiCLe3uCV9oyzYRx0CGNJY11n76/A2T0DOHFcN eepWRVrUouCSTtKNMHWsQjTD2pyHHm+CyxtesLj1RsbJ8eDqYKSn0NWNAZyt5WKa ufDiawLtNLmTIFcN9FrWJNGJ2bSoS6DyMCleiUpJnfkBsUeV1bIZcgpGK0wBi3uM qf1G7mfg7FOy6YMcXN53NDqaBpUhK+2oruBb5iGjEVjkNqlleLCc5zuOewIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEYw3QTrKJvWXn0LUKJS8NdLvouIMB8GA1UdIwQY MBaAFAv6c0jWwdcYYygyhyBzD2hPog7cMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ19welNOYkIxeGhqS0RLSElITVBhRS1pRHR3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS8xZTJhMGUtOTUxNC00ZDcwLTkwM2Qt ODU3MDY2NDVlNzM0LzEvQ19welNOYkIxeGhqS0RLSElITVBhRS1pRHR3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83OS8xZTJhMGUtOTUxNC00ZDcwLTkwM2QtODU3MDY2NDVlNzM0 LzEvQ19welNOYkIxeGhqS0RLSElITVBhRS1pRHR3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQvo+0u8s qrwkMNv6UcR8cPMB/nlGMY6fJS2kvyI0FjXUqx+4QZ+Yjf25eaDckx6sMVi5IoG3 UEP0Ko5za65v5eqH46EfSMZ2oX5s6T9TuIx6oGIi+epnbtB0chcE+EX4EqQn93DU oyQugmxIyvCvqkgwXVsM1R7q9uQQty5L/2Z54D+2C+XXlf3eldwyKwQXfukLeDvK JGsfbXae8ptJLDXfAaN8rOtJBTbv7v2oIvkOM7nKO2BnhYZQ5XlX2HlCgHBDdoo8 QT3hfcYsTZr7glSmpOXVLAlg5TxMU5QDuuuSiUmgL59hXm8OlrE6rzkrCq3EA+An SbGQHoVD72yfvw== -----END CERTIFICATE-----Generated at Sat Dec 6 09:31:57 2025 by rpki-client