This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/8e23e5-db28-45ed-b67f-2add5e797c75/1/zdpbTOlfoL32BUFp53rvyCZd28Q.mft File: zdpbTOlfoL32BUFp53rvyCZd28Q.mft (raw, json) Hash identifier: JWRHAAZMZCmCYsuPyXy4hKAQCuG9c6XAchDGP813XT0= Subject key identifier: 7D:C7:B0:F1:67:B6:2E:AA:B6:40:F5:84:D6:2F:43:E7:6E:A0:45:FD Authority key identifier: CD:DA:5B:4C:E9:5F:A0:BD:F6:05:41:69:E7:7A:EF:C8:26:5D:DB:C4 Certificate issuer: /CN=cdda5b4ce95fa0bdf6054169e77aefc8265ddbc4 Certificate serial: 019AF61C59397E34869B3C454FF83636349C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zdpbTOlfoL32BUFp53rvyCZd28Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/8e23e5-db28-45ed-b67f-2add5e797c75/1/zdpbTOlfoL32BUFp53rvyCZd28Q.mft Manifest number: 16F6 Signing time: Sun 07 Dec 2025 00:00:44 +0000 Manifest this update: Sun 07 Dec 2025 00:00:44 +0000 Manifest next update: Mon 08 Dec 2025 00:00:44 +0000 Files and hashes: 1: 40_j8EnMOslOGeaUGeLQNCGHg64.roa (hash: BOU6u1kQjKsVBkJf+h9lI/7YbpbYLn1ZXJQhHit/Gyg=) 2: zdpbTOlfoL32BUFp53rvyCZd28Q.crl (hash: 0yHmW8a84XAFG5zIyNPljxVoqp6XpnbfHWDKOz0RN0E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/8e23e5-db28-45ed-b67f-2add5e797c75/1/zdpbTOlfoL32BUFp53rvyCZd28Q.crl rsync://rpki.ripe.net/repository/DEFAULT/84/8e23e5-db28-45ed-b67f-2add5e797c75/1/zdpbTOlfoL32BUFp53rvyCZd28Q.mft rsync://rpki.ripe.net/repository/DEFAULT/zdpbTOlfoL32BUFp53rvyCZd28Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f6:1c:59:39:7e:34:86:9b:3c:45:4f:f8:36:36:34:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cdda5b4ce95fa0bdf6054169e77aefc8265ddbc4 Validity Not Before: Dec 7 00:00:44 2025 GMT Not After : Dec 8 00:00:44 2025 GMT Subject: CN=7dc7b0f167b62eaab640f584d62f43e76ea045fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:92:37:7d:6c:a4:ef:2b:24:c0:25:99:f7:cc: 1f:21:ba:8f:fc:d9:7b:25:f8:08:7c:4e:d1:88:7d: c3:18:c3:e4:96:c2:3e:5d:62:08:d0:cc:14:8c:1d: 61:7d:54:ba:d7:68:f8:a2:41:34:1a:49:ca:4e:af: 47:96:a4:56:c1:39:e9:bd:3f:39:e5:ad:c5:9b:6d: 58:a3:51:4a:97:8d:8b:ee:09:25:c9:d6:e8:be:7f: da:22:e7:1d:93:db:d9:c0:34:ae:66:9b:e6:77:39: ff:e3:84:1d:b5:bc:49:12:4e:20:d7:0f:e4:58:0e: 5d:c6:28:24:55:f0:a6:a8:ec:2e:57:d7:a7:7a:27: 6d:e6:e5:e6:38:39:23:77:df:b8:de:c1:16:2b:ef: 7e:c5:5d:77:7c:0f:fa:ed:9d:4b:89:44:9a:56:11: 6c:7d:e5:93:7d:ec:e6:d8:c2:d0:fc:39:06:60:ed: 29:84:16:fc:49:7b:73:eb:43:ad:0a:7f:58:24:32: 76:de:fc:84:66:3a:52:8b:c2:af:9a:46:29:a8:80: 54:e2:27:44:07:48:20:bc:9a:6f:3d:e1:65:df:80: 24:0a:5c:52:57:0b:f1:9e:de:3d:d1:6b:1b:27:44: 5b:cc:46:2b:68:ce:0f:a4:bb:02:de:1b:49:2d:71: 00:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:C7:B0:F1:67:B6:2E:AA:B6:40:F5:84:D6:2F:43:E7:6E:A0:45:FD X509v3 Authority Key Identifier: keyid:CD:DA:5B:4C:E9:5F:A0:BD:F6:05:41:69:E7:7A:EF:C8:26:5D:DB:C4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zdpbTOlfoL32BUFp53rvyCZd28Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/8e23e5-db28-45ed-b67f-2add5e797c75/1/zdpbTOlfoL32BUFp53rvyCZd28Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/84/8e23e5-db28-45ed-b67f-2add5e797c75/1/zdpbTOlfoL32BUFp53rvyCZd28Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c4:3e:d3:6c:ac:5f:4b:54:d7:7d:25:02:e4:af:49:f8:33:64: a4:f3:a6:8f:0c:50:b5:59:1e:ef:37:4c:bc:64:79:72:be:1f: f2:79:03:82:86:f8:31:f2:a0:e9:cf:b8:e0:0a:4a:47:10:9a: 39:ca:b9:8d:c4:00:f1:6a:59:5a:2b:e3:34:60:18:87:3b:4b: 32:72:f1:3b:67:90:3e:b6:80:9a:a7:c1:86:fd:eb:d4:81:e1: 69:0b:4d:ea:d5:62:6a:b6:fa:8b:65:1f:45:ea:c4:82:1a:a7: 3d:f4:5c:c8:f2:16:87:fc:ec:61:de:8c:81:c6:a8:ee:b5:c2: c1:bb:4e:66:91:9a:23:ff:bd:d9:07:02:c8:5c:27:a7:43:c1: ca:15:4e:8f:de:34:3c:8b:a5:5c:45:dd:dd:7a:d6:86:0e:b7: 43:c7:24:52:f3:29:a4:1b:eb:03:84:53:f8:9a:9f:e2:56:47: 8d:53:24:ba:8a:e4:7f:e2:d9:06:71:fd:88:03:44:80:cf:9b: 0e:cc:53:54:88:0f:90:2b:18:93:ea:2c:1b:d6:1f:39:40:64: a1:61:b0:47:ef:8f:95:97:d2:97:ba:3e:a1:ac:1f:59:e9:d0: 3d:fe:a5:93:16:b0:85:11:f6:54:7c:43:30:f2:d1:1c:5e:c9: 68:80:d0:29 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr2HFk5fjSGmzxFT/g2NjScMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkZGE1YjRjZTk1ZmEwYmRmNjA1NDE2OWU3N2FlZmM4MjY1 ZGRiYzQwHhcNMjUxMjA3MDAwMDQ0WhcNMjUxMjA4MDAwMDQ0WjAzMTEwLwYDVQQD Eyg3ZGM3YjBmMTY3YjYyZWFhYjY0MGY1ODRkNjJmNDNlNzZlYTA0NWZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4pI3fWyk7yskwCWZ98wfIbqP/Nl7 JfgIfE7RiH3DGMPklsI+XWII0MwUjB1hfVS612j4okE0GknKTq9HlqRWwTnpvT85 5a3Fm21Yo1FKl42L7gklydbovn/aIucdk9vZwDSuZpvmdzn/44QdtbxJEk4g1w/k WA5dxigkVfCmqOwuV9eneidt5uXmODkjd9+43sEWK+9+xV13fA/67Z1LiUSaVhFs feWTfezm2MLQ/DkGYO0phBb8SXtz60OtCn9YJDJ23vyEZjpSi8KvmkYpqIBU4idE B0ggvJpvPeFl34AkClxSVwvxnt490WsbJ0RbzEYraM4PpLsC3htJLXEAFwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH3HsPFnti6qtkD1hNYvQ+duoEX9MB8GA1UdIwQY MBaAFM3aW0zpX6C99gVBaed678gmXdvEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvemRwYlRPbGZvTDMyQlVGcDUzcnZ5Q1pkMjhRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC84ZTIzZTUtZGIyOC00NWVkLWI2N2Yt MmFkZDVlNzk3Yzc1LzEvemRwYlRPbGZvTDMyQlVGcDUzcnZ5Q1pkMjhRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84NC84ZTIzZTUtZGIyOC00NWVkLWI2N2YtMmFkZDVlNzk3Yzc1 LzEvemRwYlRPbGZvTDMyQlVGcDUzcnZ5Q1pkMjhRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxD7TbKxf S1TXfSUC5K9J+DNkpPOmjwxQtVke7zdMvGR5cr4f8nkDgob4MfKg6c+44ApKRxCa Ocq5jcQA8WpZWivjNGAYhztLMnLxO2eQPraAmqfBhv3r1IHhaQtN6tViarb6i2Uf RerEghqnPfRcyPIWh/zsYd6Mgcao7rXCwbtOZpGaI/+92QcCyFwnp0PByhVOj940 PIulXEXd3XrWhg63Q8ckUvMppBvrA4RT+Jqf4lZHjVMkuorkf+LZBnH9iANEgM+b DsxTVIgPkCsYk+osG9YfOUBkoWGwR++PlZfSl7o+oawfWenQPf6lkxawhRH2VHxD MPLRHF7JaIDQKQ== -----END CERTIFICATE-----Generated at Sun Dec 7 03:06:21 2025 by rpki-client