This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/fba0ec-de56-40a5-89cf-770d7e3c0620/1/z312VOh85PlnktVlxW4ZH0Ten1o.mft File: z312VOh85PlnktVlxW4ZH0Ten1o.mft (raw, json) Hash identifier: WwCO+XDLjNktFipg/y6CnFFsb0dDrtIoubN/odV3H8M= Subject key identifier: F6:49:9A:49:C6:05:25:46:96:CA:41:E9:2E:7D:78:F2:30:6D:23:A5 Authority key identifier: CF:7D:76:54:E8:7C:E4:F9:67:92:D5:65:C5:6E:19:1F:44:DE:9F:5A Certificate issuer: /CN=cf7d7654e87ce4f96792d565c56e191f44de9f5a Certificate serial: 019AF0BF056D075A2578B0D411E17736D0C5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z312VOh85PlnktVlxW4ZH0Ten1o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/fba0ec-de56-40a5-89cf-770d7e3c0620/1/z312VOh85PlnktVlxW4ZH0Ten1o.mft Manifest number: 1073 Signing time: Fri 05 Dec 2025 23:00:41 +0000 Manifest this update: Fri 05 Dec 2025 23:00:41 +0000 Manifest next update: Sat 06 Dec 2025 23:00:41 +0000 Files and hashes: 1: 1WlLcmmxweS7j8qiCskfARNsOMc.roa (hash: JYwBY6Xv7sFgQsJheKvHyCm021NA06+6lq9nOcGOlrI=) 2: z312VOh85PlnktVlxW4ZH0Ten1o.crl (hash: wuIeFNTiZWWr20IQ34Cty0kA185qs7NwGcpI7T47VV8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/fba0ec-de56-40a5-89cf-770d7e3c0620/1/z312VOh85PlnktVlxW4ZH0Ten1o.crl rsync://rpki.ripe.net/repository/DEFAULT/89/fba0ec-de56-40a5-89cf-770d7e3c0620/1/z312VOh85PlnktVlxW4ZH0Ten1o.mft rsync://rpki.ripe.net/repository/DEFAULT/z312VOh85PlnktVlxW4ZH0Ten1o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 23:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:bf:05:6d:07:5a:25:78:b0:d4:11:e1:77:36:d0:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cf7d7654e87ce4f96792d565c56e191f44de9f5a Validity Not Before: Dec 5 23:00:41 2025 GMT Not After : Dec 6 23:00:41 2025 GMT Subject: CN=f6499a49c605254696ca41e92e7d78f2306d23a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:12:cc:52:79:4a:db:b8:db:ee:79:3d:e3:53: 6b:8c:a2:95:d4:b7:88:0e:d0:d0:e7:2d:f0:43:4c: b6:dc:88:80:fd:7e:06:52:d3:6e:00:ec:b4:e3:53: f8:1d:ec:61:f5:df:6b:b7:77:92:b1:d6:f5:c6:fd: 9c:64:1c:d4:7c:3f:42:23:ad:1a:47:ab:0a:f7:bd: 5f:a1:f5:fa:ca:c5:c8:48:69:df:18:21:e8:ad:ab: ce:b9:1a:61:b2:be:42:2d:82:9f:df:be:5e:b8:20: 59:c8:06:fe:37:f0:01:97:d9:9f:fa:44:f7:f1:f6: f6:81:2d:e4:55:32:e6:12:ec:8a:d7:02:b9:c2:07: 62:c7:05:aa:70:23:8e:e1:ff:f8:c9:d9:cd:7d:99: 42:4f:37:e3:32:2a:a0:2e:ee:46:7a:b6:3a:f9:93: e0:3d:e8:a5:b1:74:a8:88:a1:bf:83:56:95:0e:18: d1:6d:77:92:78:b4:55:18:7b:e7:0c:df:92:88:3d: 91:31:33:c2:5e:bb:1b:5e:04:e0:ad:1e:d3:d2:c8: 2a:9c:f7:04:09:2e:94:63:5f:af:02:39:8f:57:17: aa:e7:99:cd:10:37:2e:4d:f3:cb:d9:d9:a7:2b:c7: d1:b0:d0:b5:51:6a:21:50:48:42:26:ef:a2:20:ac: 8e:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:49:9A:49:C6:05:25:46:96:CA:41:E9:2E:7D:78:F2:30:6D:23:A5 X509v3 Authority Key Identifier: keyid:CF:7D:76:54:E8:7C:E4:F9:67:92:D5:65:C5:6E:19:1F:44:DE:9F:5A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z312VOh85PlnktVlxW4ZH0Ten1o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/fba0ec-de56-40a5-89cf-770d7e3c0620/1/z312VOh85PlnktVlxW4ZH0Ten1o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/89/fba0ec-de56-40a5-89cf-770d7e3c0620/1/z312VOh85PlnktVlxW4ZH0Ten1o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a5:60:8c:a6:bf:01:c7:19:1f:43:b7:97:41:b8:66:f2:cd:8b: 8e:29:9f:e5:2a:63:24:ac:34:2f:dd:d8:fd:67:65:56:0a:3c: 84:7c:fd:89:50:fa:c2:af:c4:df:09:fe:ea:b4:b9:20:b2:0f: 8b:d8:56:5e:f1:7f:d5:26:f3:7d:98:d2:b5:a5:89:f4:64:22: f7:de:c3:8f:43:08:17:5d:86:65:75:20:64:d4:05:1f:5d:56: df:4c:57:3e:a8:22:7e:78:97:fe:f8:94:e4:e7:97:12:61:b0: c4:60:df:49:84:af:e0:64:8d:67:e5:49:44:c1:df:1b:b9:9e: a8:f2:c9:15:bd:3e:cf:31:41:cc:ae:c7:65:2e:4b:39:38:5a: 35:2f:21:b8:80:cd:8c:62:49:31:2d:24:f9:29:a8:dc:9c:be: 8a:11:61:8b:f0:11:a1:5e:db:3e:1f:35:56:13:8d:b7:cb:93: f7:8d:a2:b0:ae:b2:52:95:fd:86:80:27:f2:c1:fd:6b:62:2e: ec:33:81:bc:74:75:c1:fb:3d:4b:2d:35:73:58:22:42:86:94: 3a:1a:8e:81:01:37:d1:e3:32:9b:61:45:4b:88:4d:7b:bb:62: 85:ce:e0:14:22:b5:d7:a9:80:0d:68:21:91:5d:d0:a5:04:36: aa:31:7b:03 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwvwVtB1oleLDUEeF3NtDFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNmN2Q3NjU0ZTg3Y2U0Zjk2NzkyZDU2NWM1NmUxOTFmNDRk ZTlmNWEwHhcNMjUxMjA1MjMwMDQxWhcNMjUxMjA2MjMwMDQxWjAzMTEwLwYDVQQD EyhmNjQ5OWE0OWM2MDUyNTQ2OTZjYTQxZTkyZTdkNzhmMjMwNmQyM2E1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxxLMUnlK27jb7nk941NrjKKV1LeI DtDQ5y3wQ0y23IiA/X4GUtNuAOy041P4Hexh9d9rt3eSsdb1xv2cZBzUfD9CI60a R6sK971fofX6ysXISGnfGCHoravOuRphsr5CLYKf375euCBZyAb+N/ABl9mf+kT3 8fb2gS3kVTLmEuyK1wK5wgdixwWqcCOO4f/4ydnNfZlCTzfjMiqgLu5GerY6+ZPg PeilsXSoiKG/g1aVDhjRbXeSeLRVGHvnDN+SiD2RMTPCXrsbXgTgrR7T0sgqnPcE CS6UY1+vAjmPVxeq55nNEDcuTfPL2dmnK8fRsNC1UWohUEhCJu+iIKyO/QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPZJmknGBSVGlspB6S59ePIwbSOlMB8GA1UdIwQY MBaAFM99dlTofOT5Z5LVZcVuGR9E3p9aMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvejMxMlZPaDg1UGxua3RWbHhXNFpIMFRlbjFvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS9mYmEwZWMtZGU1Ni00MGE1LTg5Y2Yt NzcwZDdlM2MwNjIwLzEvejMxMlZPaDg1UGxua3RWbHhXNFpIMFRlbjFvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OS9mYmEwZWMtZGU1Ni00MGE1LTg5Y2YtNzcwZDdlM2MwNjIw LzEvejMxMlZPaDg1UGxua3RWbHhXNFpIMFRlbjFvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApWCMpr8B xxkfQ7eXQbhm8s2Ljimf5SpjJKw0L93Y/WdlVgo8hHz9iVD6wq/E3wn+6rS5ILIP i9hWXvF/1SbzfZjStaWJ9GQi997Dj0MIF12GZXUgZNQFH11W30xXPqgifniX/viU 5OeXEmGwxGDfSYSv4GSNZ+VJRMHfG7meqPLJFb0+zzFBzK7HZS5LOThaNS8huIDN jGJJMS0k+Smo3Jy+ihFhi/ARoV7bPh81VhONt8uT942isK6yUpX9hoAn8sH9a2Iu 7DOBvHR1wfs9Sy01c1giQoaUOhqOgQE30eMym2FFS4hNe7tihc7gFCK116mADWgh kV3QpQQ2qjF7Aw== -----END CERTIFICATE-----Generated at Sat Dec 6 06:58:06 2025 by rpki-client