This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/53f75e-42b9-4fae-b1be-26e7f3f2b11e/1/Zo1_de9C8L1xqpxmZo4KM9vhY08.mft File: Zo1_de9C8L1xqpxmZo4KM9vhY08.mft (raw, json) Hash identifier: gOWm8510Lh79Rwn0D3Z07yySlCV9esrZJjsVMsBzUH0= Subject key identifier: 78:0D:E3:D0:D2:5A:32:65:0D:43:F1:C7:CA:54:F0:A7:E3:8C:82:BC Authority key identifier: 66:8D:7F:75:EF:42:F0:BD:71:AA:9C:66:66:8E:0A:33:DB:E1:63:4F Certificate issuer: /CN=668d7f75ef42f0bd71aa9c66668e0a33dbe1634f Certificate serial: 019AF12D8C3EC104E403B1690927F44B36EB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zo1_de9C8L1xqpxmZo4KM9vhY08.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/53f75e-42b9-4fae-b1be-26e7f3f2b11e/1/Zo1_de9C8L1xqpxmZo4KM9vhY08.mft Manifest number: 1760 Signing time: Sat 06 Dec 2025 01:01:25 +0000 Manifest this update: Sat 06 Dec 2025 01:01:25 +0000 Manifest next update: Sun 07 Dec 2025 01:01:25 +0000 Files and hashes: 1: ZLef86UZ8-ykPDzWWLmzoQSdgC4.roa (hash: 9D+NhHpbmJi6ZpbrwdmFqtG+bLkEiMEM9kjTpQm+k4M=) 2: Zo1_de9C8L1xqpxmZo4KM9vhY08.crl (hash: PEETPTwQPATF3l8KD3/h2hrzoAPPcXHrWIGw520DPT0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/53f75e-42b9-4fae-b1be-26e7f3f2b11e/1/Zo1_de9C8L1xqpxmZo4KM9vhY08.crl rsync://rpki.ripe.net/repository/DEFAULT/8f/53f75e-42b9-4fae-b1be-26e7f3f2b11e/1/Zo1_de9C8L1xqpxmZo4KM9vhY08.mft rsync://rpki.ripe.net/repository/DEFAULT/Zo1_de9C8L1xqpxmZo4KM9vhY08.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:8c:3e:c1:04:e4:03:b1:69:09:27:f4:4b:36:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=668d7f75ef42f0bd71aa9c66668e0a33dbe1634f Validity Not Before: Dec 6 01:01:25 2025 GMT Not After : Dec 7 01:01:25 2025 GMT Subject: CN=780de3d0d25a32650d43f1c7ca54f0a7e38c82bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:1b:d9:35:76:68:6e:7f:ca:bf:fc:f7:7d:a8: 38:ad:4d:64:9a:bd:9d:42:fd:8b:5f:74:e3:ca:ed: 5c:7d:41:e1:b5:00:a6:c7:18:df:25:ee:e1:13:a0: d1:d5:69:eb:3d:ca:9b:74:c2:70:e7:77:9b:83:a0: 1e:9f:97:ce:2f:44:2e:67:20:76:24:de:b3:bf:c6: b5:6a:98:85:a3:cd:0d:bf:ae:2e:32:ca:8f:91:06: bf:45:67:ab:93:50:5d:18:22:93:61:9a:cd:34:03: 96:aa:dd:73:2f:ff:c2:95:c0:7a:d5:1c:84:cb:84: 26:77:65:c9:be:04:7a:37:41:bc:1b:e6:03:ef:69: 91:03:89:dd:51:5a:60:56:ae:e3:f5:28:9e:61:be: b0:8a:ee:23:ed:e4:7c:95:3a:9f:53:82:11:c4:4b: bf:72:9d:1b:d6:6c:6f:54:72:7b:a4:66:da:ff:d2: a5:08:b2:01:69:cd:a8:4e:3e:4b:66:71:40:5c:61: 5f:d4:25:58:c2:e8:ab:00:d5:01:16:f7:86:b1:1b: cf:5b:a5:23:a8:3f:c7:1c:44:81:ec:f0:bd:9c:12: e0:e3:ab:aa:a1:37:ec:70:48:0e:88:a9:b4:fb:6f: 25:bb:38:08:1a:39:ce:b8:85:58:9a:33:b0:66:86: 2a:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:0D:E3:D0:D2:5A:32:65:0D:43:F1:C7:CA:54:F0:A7:E3:8C:82:BC X509v3 Authority Key Identifier: keyid:66:8D:7F:75:EF:42:F0:BD:71:AA:9C:66:66:8E:0A:33:DB:E1:63:4F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zo1_de9C8L1xqpxmZo4KM9vhY08.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/53f75e-42b9-4fae-b1be-26e7f3f2b11e/1/Zo1_de9C8L1xqpxmZo4KM9vhY08.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/53f75e-42b9-4fae-b1be-26e7f3f2b11e/1/Zo1_de9C8L1xqpxmZo4KM9vhY08.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 11:92:ef:8f:4d:b7:7a:91:28:8f:04:4e:cf:c6:f1:2f:3d:9f: 60:30:b2:24:39:8c:27:cd:b8:7f:92:8a:7c:0a:ce:87:51:49: 19:0d:8c:5e:31:67:7c:a6:f5:55:fd:1e:75:38:5a:7d:e7:d3: 14:5a:2c:e2:c6:b7:00:50:2b:86:cc:fe:c7:30:9d:3a:9d:2d: f6:ae:f0:34:c5:51:de:94:65:2c:f5:67:8d:f8:11:51:51:86: af:aa:32:2a:5a:9e:61:03:18:a6:7b:5b:f3:16:44:1b:5d:a6: 11:8f:f6:bb:39:4c:97:5a:e8:b8:64:d2:91:78:ce:7a:bb:24: 02:7a:0f:03:d6:06:52:b0:d7:00:f8:46:61:49:1c:6f:3d:c8: e0:44:1d:3e:1e:f6:8b:3c:f7:8e:e7:70:c8:78:50:d4:3d:a2: d6:bb:7c:02:d4:9b:69:5a:e5:60:68:77:95:c7:cd:5d:ad:7b: a3:cf:47:11:a2:17:bf:e3:24:9f:f4:c6:3c:93:9d:01:ba:6a: a9:c5:e0:df:52:be:fe:0f:95:4e:be:bd:84:9e:b8:c7:0e:9a: d0:e9:f7:6d:71:33:2e:95:b7:c8:02:1c:93:0b:a5:d2:4d:58: 5f:b0:c1:e4:a4:41:42:c8:13:b3:9e:14:82:74:5f:ca:f3:02: b4:49:21:e4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLYw+wQTkA7FpCSf0SzbrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY2OGQ3Zjc1ZWY0MmYwYmQ3MWFhOWM2NjY2OGUwYTMzZGJl MTYzNGYwHhcNMjUxMjA2MDEwMTI1WhcNMjUxMjA3MDEwMTI1WjAzMTEwLwYDVQQD Eyg3ODBkZTNkMGQyNWEzMjY1MGQ0M2YxYzdjYTU0ZjBhN2UzOGM4MmJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqxvZNXZobn/Kv/z3fag4rU1kmr2d Qv2LX3Tjyu1cfUHhtQCmxxjfJe7hE6DR1WnrPcqbdMJw53ebg6Aen5fOL0QuZyB2 JN6zv8a1apiFo80Nv64uMsqPkQa/RWerk1BdGCKTYZrNNAOWqt1zL//ClcB61RyE y4Qmd2XJvgR6N0G8G+YD72mRA4ndUVpgVq7j9SieYb6wiu4j7eR8lTqfU4IRxEu/ cp0b1mxvVHJ7pGba/9KlCLIBac2oTj5LZnFAXGFf1CVYwuirANUBFveGsRvPW6Uj qD/HHESB7PC9nBLg46uqoTfscEgOiKm0+28luzgIGjnOuIVYmjOwZoYqQwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHgN49DSWjJlDUPxx8pU8KfjjIK8MB8GA1UdIwQY MBaAFGaNf3XvQvC9caqcZmaOCjPb4WNPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWm8xX2RlOUM4TDF4cXB4bVpvNEtNOXZoWTA4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Zi81M2Y3NWUtNDJiOS00ZmFlLWIxYmUt MjZlN2YzZjJiMTFlLzEvWm8xX2RlOUM4TDF4cXB4bVpvNEtNOXZoWTA4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Zi81M2Y3NWUtNDJiOS00ZmFlLWIxYmUtMjZlN2YzZjJiMTFl LzEvWm8xX2RlOUM4TDF4cXB4bVpvNEtNOXZoWTA4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEZLvj023 epEojwROz8bxLz2fYDCyJDmMJ824f5KKfArOh1FJGQ2MXjFnfKb1Vf0edThafefT FFos4sa3AFArhsz+xzCdOp0t9q7wNMVR3pRlLPVnjfgRUVGGr6oyKlqeYQMYpntb 8xZEG12mEY/2uzlMl1rouGTSkXjOerskAnoPA9YGUrDXAPhGYUkcbz3I4EQdPh72 izz3judwyHhQ1D2i1rt8AtSbaVrlYGh3lcfNXa17o89HEaIXv+Mkn/TGPJOdAbpq qcXg31K+/g+VTr69hJ64xw6a0On3bXEzLpW3yAIckwul0k1YX7DB5KRBQsgTs54U gnRfyvMCtEkh5A== -----END CERTIFICATE-----Generated at Sat Dec 6 06:56:57 2025 by rpki-client