This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/07476c-2c5b-40e9-b562-54fa30864c21/1/zlaqDiFVjJKkhlQkTgWWGh_PoPI.mft File: zlaqDiFVjJKkhlQkTgWWGh_PoPI.mft (raw, json) Hash identifier: E8l0dpMLpSbtIGSpY2wKaJiOLhIk1e2r7fNfv2uILuM= Subject key identifier: 92:0C:FE:88:A6:5B:A4:3B:2F:87:B2:F3:55:63:B4:AC:34:E5:05:30 Authority key identifier: CE:56:AA:0E:21:55:8C:92:A4:86:54:24:4E:05:96:1A:1F:CF:A0:F2 Certificate issuer: /CN=ce56aa0e21558c92a48654244e05961a1fcfa0f2 Certificate serial: 019AF2771E6DC3A4CBB486F3CEFA1033AEAA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zlaqDiFVjJKkhlQkTgWWGh_PoPI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/07476c-2c5b-40e9-b562-54fa30864c21/1/zlaqDiFVjJKkhlQkTgWWGh_PoPI.mft Manifest number: 1763 Signing time: Sat 06 Dec 2025 07:01:24 +0000 Manifest this update: Sat 06 Dec 2025 07:01:24 +0000 Manifest next update: Sun 07 Dec 2025 07:01:24 +0000 Files and hashes: 1: apVhYj18Bs_r1Q931zVqcqi5yvI.roa (hash: /gXE2P6qUcVxgRclWTrINQ6lVlcjG0089HciFUVuRsI=) 2: zlaqDiFVjJKkhlQkTgWWGh_PoPI.crl (hash: xuOU4Qmf3cncxZnBQSHv5gqjuqceN3/rqWk8AYjyoBk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/07476c-2c5b-40e9-b562-54fa30864c21/1/zlaqDiFVjJKkhlQkTgWWGh_PoPI.crl rsync://rpki.ripe.net/repository/DEFAULT/82/07476c-2c5b-40e9-b562-54fa30864c21/1/zlaqDiFVjJKkhlQkTgWWGh_PoPI.mft rsync://rpki.ripe.net/repository/DEFAULT/zlaqDiFVjJKkhlQkTgWWGh_PoPI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:77:1e:6d:c3:a4:cb:b4:86:f3:ce:fa:10:33:ae:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ce56aa0e21558c92a48654244e05961a1fcfa0f2 Validity Not Before: Dec 6 07:01:24 2025 GMT Not After : Dec 7 07:01:24 2025 GMT Subject: CN=920cfe88a65ba43b2f87b2f35563b4ac34e50530 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:fe:b1:4f:14:17:15:0e:cf:db:0b:02:e2:95: 0c:af:9d:e2:f2:7c:45:e0:e4:56:4d:ec:9f:1c:0c: e7:ce:78:b1:77:7c:99:71:04:6c:8a:3b:2b:d4:2f: 15:d6:b2:72:68:ed:59:b9:0d:5c:6d:36:5e:8d:c7: 64:91:c8:3e:d2:aa:69:66:02:30:8e:d7:4a:2f:cb: 20:40:f5:8f:21:69:ea:3a:21:a8:2d:59:6a:72:b4: 01:e6:7f:22:57:44:f5:10:00:f0:6f:84:fc:9e:26: 78:18:3c:35:30:65:6d:12:5d:6b:02:70:05:d8:fa: 85:c8:8a:42:83:cd:a6:81:a1:6e:dc:c9:60:6d:21: 09:42:1b:8b:c2:e7:e5:bd:1c:75:cb:11:67:a7:f9: 5d:63:3a:fc:a3:1e:c2:ac:63:f1:c9:6a:1a:ba:17: 50:db:df:eb:f3:6b:99:0c:32:47:4f:1d:5b:07:92: 70:1f:3e:12:dc:db:31:90:13:73:34:53:2c:67:39: 0c:50:01:7c:ca:78:c4:cc:43:14:60:07:b0:9e:37: a6:43:8b:33:4a:06:a4:f1:6f:e2:e3:76:8e:d7:8a: f0:af:26:85:c1:42:98:50:ae:16:d1:d8:d1:c9:95: e9:29:57:d5:aa:f3:e8:56:c3:3c:ed:3e:63:8b:d4: ce:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:0C:FE:88:A6:5B:A4:3B:2F:87:B2:F3:55:63:B4:AC:34:E5:05:30 X509v3 Authority Key Identifier: keyid:CE:56:AA:0E:21:55:8C:92:A4:86:54:24:4E:05:96:1A:1F:CF:A0:F2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zlaqDiFVjJKkhlQkTgWWGh_PoPI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/07476c-2c5b-40e9-b562-54fa30864c21/1/zlaqDiFVjJKkhlQkTgWWGh_PoPI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/82/07476c-2c5b-40e9-b562-54fa30864c21/1/zlaqDiFVjJKkhlQkTgWWGh_PoPI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 66:93:a3:5c:15:d7:50:c8:aa:e7:a2:84:6f:1e:42:2a:5f:de: 31:39:39:7c:41:f0:27:85:43:1b:17:b6:1f:68:9b:e0:49:70: a9:b4:1c:c0:dd:56:5b:cd:2f:ce:53:4c:f0:ad:4c:4e:75:70: 38:30:7f:10:69:4a:4b:1a:a4:4e:34:1c:dd:02:cc:ed:24:04: 0c:7e:46:36:87:25:31:9f:78:bf:59:0e:2e:1e:7b:6a:96:8e: 39:ca:f2:15:f5:a0:ef:08:74:10:4b:1f:cd:79:b7:3f:13:33: 5a:5f:e4:6f:64:34:aa:cb:fe:72:e6:fa:a2:84:c8:9b:3d:e7: 1e:dc:be:bf:9f:19:e2:71:93:e1:6f:2d:88:d4:12:bf:38:13: 21:e2:23:9b:0a:e9:b5:9b:c6:7f:4b:e9:29:6c:a3:dc:d0:f8: cd:16:67:92:94:5c:d0:b2:97:3e:86:c3:06:4a:f2:fb:f0:23: 5a:a3:86:76:b2:ce:37:ab:18:d2:d7:d3:2f:5f:5f:e9:f5:66: e7:52:2e:e8:c1:08:56:32:28:af:94:35:74:7d:a7:a2:3c:75: e3:ca:1a:7f:be:a9:15:dd:bf:9d:20:c2:89:42:b8:29:4e:10: 9f:0f:f0:33:63:19:88:7d:74:50:e6:b8:8e:2a:ba:55:28:17: ba:7d:ba:b6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydx5tw6TLtIbzzvoQM66qMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNlNTZhYTBlMjE1NThjOTJhNDg2NTQyNDRlMDU5NjFhMWZj ZmEwZjIwHhcNMjUxMjA2MDcwMTI0WhcNMjUxMjA3MDcwMTI0WjAzMTEwLwYDVQQD Eyg5MjBjZmU4OGE2NWJhNDNiMmY4N2IyZjM1NTYzYjRhYzM0ZTUwNTMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAof6xTxQXFQ7P2wsC4pUMr53i8nxF 4ORWTeyfHAznznixd3yZcQRsijsr1C8V1rJyaO1ZuQ1cbTZejcdkkcg+0qppZgIw jtdKL8sgQPWPIWnqOiGoLVlqcrQB5n8iV0T1EADwb4T8niZ4GDw1MGVtEl1rAnAF 2PqFyIpCg82mgaFu3MlgbSEJQhuLwuflvRx1yxFnp/ldYzr8ox7CrGPxyWoauhdQ 29/r82uZDDJHTx1bB5JwHz4S3NsxkBNzNFMsZzkMUAF8ynjEzEMUYAewnjemQ4sz Sgak8W/i43aO14rwryaFwUKYUK4W0djRyZXpKVfVqvPoVsM87T5ji9TOcQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJIM/oimW6Q7L4ey81VjtKw05QUwMB8GA1UdIwQY MBaAFM5Wqg4hVYySpIZUJE4Flhofz6DyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvemxhcURpRlZqSktraGxRa1RnV1dHaF9Qb1BJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Mi8wNzQ3NmMtMmM1Yi00MGU5LWI1NjIt NTRmYTMwODY0YzIxLzEvemxhcURpRlZqSktraGxRa1RnV1dHaF9Qb1BJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Mi8wNzQ3NmMtMmM1Yi00MGU5LWI1NjItNTRmYTMwODY0YzIx LzEvemxhcURpRlZqSktraGxRa1RnV1dHaF9Qb1BJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZpOjXBXX UMiq56KEbx5CKl/eMTk5fEHwJ4VDGxe2H2ib4ElwqbQcwN1WW80vzlNM8K1MTnVw ODB/EGlKSxqkTjQc3QLM7SQEDH5GNoclMZ94v1kOLh57apaOOcryFfWg7wh0EEsf zXm3PxMzWl/kb2Q0qsv+cub6ooTImz3nHty+v58Z4nGT4W8tiNQSvzgTIeIjmwrp tZvGf0vpKWyj3ND4zRZnkpRc0LKXPobDBkry+/AjWqOGdrLON6sY0tfTL19f6fVm 51Iu6MEIVjIor5Q1dH2nojx148oaf76pFd2/nSDCiUK4KU4Qnw/wM2MZiH10UOa4 jiq6VSgXun26tg== -----END CERTIFICATE-----Generated at Sat Dec 6 11:32:00 2025 by rpki-client