This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/8e23e5-db28-45ed-b67f-2add5e797c75/1/zdpbTOlfoL32BUFp53rvyCZd28Q.mft File: zdpbTOlfoL32BUFp53rvyCZd28Q.mft (raw, json) Hash identifier: wbVoWh7j1JSGD/SCwcMBMJG1unP4CzQiYYSEmTWifoQ= Subject key identifier: 8D:B2:E4:4D:83:49:0D:F5:08:7A:28:02:A1:9F:AE:6B:6F:BD:4A:06 Authority key identifier: CD:DA:5B:4C:E9:5F:A0:BD:F6:05:41:69:E7:7A:EF:C8:26:5D:DB:C4 Certificate issuer: /CN=cdda5b4ce95fa0bdf6054169e77aefc8265ddbc4 Certificate serial: 019B2C2F3473463263D51D3325304CFB8482 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zdpbTOlfoL32BUFp53rvyCZd28Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/8e23e5-db28-45ed-b67f-2add5e797c75/1/zdpbTOlfoL32BUFp53rvyCZd28Q.mft Manifest number: 1712 Signing time: Wed 17 Dec 2025 12:00:49 +0000 Manifest this update: Wed 17 Dec 2025 12:00:49 +0000 Manifest next update: Thu 18 Dec 2025 12:00:49 +0000 Files and hashes: 1: 40_j8EnMOslOGeaUGeLQNCGHg64.roa (hash: BOU6u1kQjKsVBkJf+h9lI/7YbpbYLn1ZXJQhHit/Gyg=) 2: zdpbTOlfoL32BUFp53rvyCZd28Q.crl (hash: aRDAauhx8V/C7sGY2gFZWDR2q6Jbc0EWqzJC5chCYVI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/8e23e5-db28-45ed-b67f-2add5e797c75/1/zdpbTOlfoL32BUFp53rvyCZd28Q.crl rsync://rpki.ripe.net/repository/DEFAULT/84/8e23e5-db28-45ed-b67f-2add5e797c75/1/zdpbTOlfoL32BUFp53rvyCZd28Q.mft rsync://rpki.ripe.net/repository/DEFAULT/zdpbTOlfoL32BUFp53rvyCZd28Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 10:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2c:2f:34:73:46:32:63:d5:1d:33:25:30:4c:fb:84:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cdda5b4ce95fa0bdf6054169e77aefc8265ddbc4 Validity Not Before: Dec 17 12:00:49 2025 GMT Not After : Dec 18 12:00:49 2025 GMT Subject: CN=8db2e44d83490df5087a2802a19fae6b6fbd4a06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:61:20:d4:27:2a:03:61:3e:73:99:7f:1a:1f: d6:8e:84:35:61:32:96:94:e4:6d:83:87:5e:9b:bf: 01:60:4b:5a:43:08:ae:d6:88:37:4d:b7:0c:2f:f4: f6:b2:ab:88:ee:eb:ca:11:39:74:b2:55:19:70:7c: 63:e7:51:21:fd:3b:29:76:88:1b:d3:76:e9:2c:1a: 45:f6:ad:ec:26:a7:e2:6f:1a:e6:b2:47:10:85:6a: 26:ee:39:bb:77:d9:89:74:33:8a:d7:13:b3:46:71: ce:11:98:2f:44:ba:8b:3c:9b:a9:05:fe:5a:e7:c9: 50:8d:e1:2e:81:53:75:84:34:47:a2:46:07:8d:3c: 82:68:9f:1e:53:95:69:e2:4a:1a:2d:69:2f:81:83: 13:35:23:59:15:b0:7c:c4:b1:dd:2d:c3:81:f2:a0: 4b:1b:16:8c:df:15:81:b3:cc:c9:57:b9:10:a7:29: 9e:7b:97:a2:48:c1:17:fc:93:6b:39:93:5d:1e:e3: 14:87:fa:4a:7d:f5:88:a2:4a:5f:9a:53:f0:71:fb: da:e0:c5:9e:77:99:dd:b1:34:c9:c0:15:78:ec:d7: d4:38:85:5c:a4:4f:96:9b:26:98:cd:28:ca:56:b7: 74:03:43:73:a8:33:a4:8a:cf:cb:98:ff:3e:4b:65: e8:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:B2:E4:4D:83:49:0D:F5:08:7A:28:02:A1:9F:AE:6B:6F:BD:4A:06 X509v3 Authority Key Identifier: keyid:CD:DA:5B:4C:E9:5F:A0:BD:F6:05:41:69:E7:7A:EF:C8:26:5D:DB:C4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zdpbTOlfoL32BUFp53rvyCZd28Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/8e23e5-db28-45ed-b67f-2add5e797c75/1/zdpbTOlfoL32BUFp53rvyCZd28Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/84/8e23e5-db28-45ed-b67f-2add5e797c75/1/zdpbTOlfoL32BUFp53rvyCZd28Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b8:02:45:ab:1e:9f:17:04:ac:09:95:f7:a0:cb:61:69:d1:84: 12:9a:a9:3d:49:ce:43:87:5c:69:69:db:c9:74:2d:6b:32:be: 6b:53:1a:f5:39:6b:4f:f5:42:ea:f4:2e:60:b5:9e:1a:18:61: 1e:63:ab:3f:41:05:6f:8e:a5:ee:bd:a9:bc:22:54:77:e1:cb: 55:33:60:98:24:70:08:f0:aa:02:37:d1:12:10:14:70:87:ff: 70:95:1f:a2:18:9d:6b:30:b3:5a:82:79:f2:2d:1b:a4:a9:a3: ee:b1:31:65:47:96:26:43:c4:3e:43:3c:bc:7d:6d:88:82:30: c9:c2:fc:10:f2:33:d5:e4:31:1b:ed:f1:51:a6:26:e1:f9:9e: 11:87:a7:1e:c4:2a:50:22:9f:21:54:a4:e8:b3:e8:8f:be:0a: bc:82:e1:b3:97:6f:54:19:99:f9:cf:20:8c:78:0d:db:ae:53: ec:69:94:68:9d:9e:3d:9b:89:eb:9d:b1:af:14:4b:0c:04:f1: 83:2b:58:2c:1e:12:a9:42:cb:08:84:d1:c1:7c:86:97:50:90: 54:c6:a6:94:62:22:e2:ba:f0:10:a3:8e:67:67:d4:28:d1:79: da:4c:05:23:5f:c6:3f:f1:c2:aa:fc:73:2f:ac:d7:06:29:1f: b0:7c:6f:71 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZssLzRzRjJj1R0zJTBM+4SCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkZGE1YjRjZTk1ZmEwYmRmNjA1NDE2OWU3N2FlZmM4MjY1 ZGRiYzQwHhcNMjUxMjE3MTIwMDQ5WhcNMjUxMjE4MTIwMDQ5WjAzMTEwLwYDVQQD Eyg4ZGIyZTQ0ZDgzNDkwZGY1MDg3YTI4MDJhMTlmYWU2YjZmYmQ0YTA2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqGEg1CcqA2E+c5l/Gh/WjoQ1YTKW lORtg4dem78BYEtaQwiu1og3TbcML/T2squI7uvKETl0slUZcHxj51Eh/Tspdogb 03bpLBpF9q3sJqfibxrmskcQhWom7jm7d9mJdDOK1xOzRnHOEZgvRLqLPJupBf5a 58lQjeEugVN1hDRHokYHjTyCaJ8eU5Vp4koaLWkvgYMTNSNZFbB8xLHdLcOB8qBL GxaM3xWBs8zJV7kQpymee5eiSMEX/JNrOZNdHuMUh/pKffWIokpfmlPwcfva4MWe d5ndsTTJwBV47NfUOIVcpE+WmyaYzSjKVrd0A0NzqDOkis/LmP8+S2XozQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI2y5E2DSQ31CHooAqGfrmtvvUoGMB8GA1UdIwQY MBaAFM3aW0zpX6C99gVBaed678gmXdvEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvemRwYlRPbGZvTDMyQlVGcDUzcnZ5Q1pkMjhRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC84ZTIzZTUtZGIyOC00NWVkLWI2N2Yt MmFkZDVlNzk3Yzc1LzEvemRwYlRPbGZvTDMyQlVGcDUzcnZ5Q1pkMjhRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84NC84ZTIzZTUtZGIyOC00NWVkLWI2N2YtMmFkZDVlNzk3Yzc1 LzEvemRwYlRPbGZvTDMyQlVGcDUzcnZ5Q1pkMjhRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuAJFqx6f FwSsCZX3oMthadGEEpqpPUnOQ4dcaWnbyXQtazK+a1Ma9TlrT/VC6vQuYLWeGhhh HmOrP0EFb46l7r2pvCJUd+HLVTNgmCRwCPCqAjfREhAUcIf/cJUfohidazCzWoJ5 8i0bpKmj7rExZUeWJkPEPkM8vH1tiIIwycL8EPIz1eQxG+3xUaYm4fmeEYenHsQq UCKfIVSk6LPoj74KvILhs5dvVBmZ+c8gjHgN265T7GmUaJ2ePZuJ652xrxRLDATx gytYLB4SqULLCITRwXyGl1CQVMamlGIi4rrwEKOOZ2fUKNF52kwFI1/GP/HCqvxz L6zXBikfsHxvcQ== -----END CERTIFICATE-----Generated at Wed Dec 17 13:43:13 2025 by rpki-client