This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.mft File: zkP-lNpK73rfscFih1rxysfLpLE.mft (raw, json) Hash identifier: /RaCYCf0g/fSy+X5W7s/2ORwAS9MyiJTGZi0xe6IqTU= Subject key identifier: 90:D0:E8:67:C2:9E:FA:AD:72:BF:33:F4:DC:BF:F1:27:15:CA:69:7E Authority key identifier: CE:43:FE:94:DA:4A:EF:7A:DF:B1:C1:62:87:5A:F1:CA:C7:CB:A4:B1 Certificate issuer: /CN=ce43fe94da4aef7adfb1c162875af1cac7cba4b1 Certificate serial: 019AF163D33FDBE592E1CCC805BA2E67F65C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zkP-lNpK73rfscFih1rxysfLpLE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.mft Manifest number: 1763 Signing time: Sat 06 Dec 2025 02:00:42 +0000 Manifest this update: Sat 06 Dec 2025 02:00:42 +0000 Manifest next update: Sun 07 Dec 2025 02:00:42 +0000 Files and hashes: 1: VI-dWQcY37xUT1kUINfwRf4ITOY.roa (hash: /K+hbbpjK6p98+FcPVOwuQPFXuHi6fBZ7x81PS6CuTg=) 2: zkP-lNpK73rfscFih1rxysfLpLE.crl (hash: ubNgvI4CY+Pc+DHf7aY7fPYal4IIBa9tXh5oC9LJze0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.crl rsync://rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.mft rsync://rpki.ripe.net/repository/DEFAULT/zkP-lNpK73rfscFih1rxysfLpLE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:63:d3:3f:db:e5:92:e1:cc:c8:05:ba:2e:67:f6:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ce43fe94da4aef7adfb1c162875af1cac7cba4b1 Validity Not Before: Dec 6 02:00:42 2025 GMT Not After : Dec 7 02:00:42 2025 GMT Subject: CN=90d0e867c29efaad72bf33f4dcbff12715ca697e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:4e:f7:af:83:d2:89:6f:55:cb:2f:81:d6:1e: ed:f3:44:4c:e4:4b:7c:45:6c:fc:8b:a5:66:5d:35: 11:16:24:1e:1b:b1:ac:f5:59:7c:71:8f:7b:2c:dc: 5e:48:b7:b0:d0:d2:26:2f:2f:b5:d3:f0:86:d0:0e: f2:31:e7:fa:e7:fe:95:2f:f9:e7:ab:da:b3:6b:a4: 19:87:5e:95:0a:45:3b:23:4a:e7:be:70:fc:ef:53: 97:c7:c9:91:22:2d:57:ff:e5:dc:2f:56:fd:ce:13: 8d:4a:34:e5:de:80:3a:ec:c7:cc:c0:7c:37:f9:1a: f5:48:4b:e8:a5:94:3d:36:48:79:30:32:18:0d:1a: 49:11:cd:8e:eb:56:23:a5:be:62:26:c0:37:18:ba: ec:27:c5:18:8d:f5:71:38:62:70:1d:4f:69:8c:28: 27:fe:f0:6a:d7:18:31:2e:90:c7:ce:f9:95:54:d8: 6f:5f:13:a6:ad:8a:6c:74:db:78:4e:c0:04:98:0f: 3d:cc:20:60:10:a4:47:91:72:d7:6f:21:d1:0a:b9: b3:17:a4:7b:19:3b:01:dc:de:93:5a:fa:30:8e:f3: 1b:e2:09:de:84:c0:b1:f1:a6:5a:20:78:01:a8:43: 73:86:55:bf:dd:46:33:94:60:c6:e1:77:51:8f:25: 47:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:D0:E8:67:C2:9E:FA:AD:72:BF:33:F4:DC:BF:F1:27:15:CA:69:7E X509v3 Authority Key Identifier: keyid:CE:43:FE:94:DA:4A:EF:7A:DF:B1:C1:62:87:5A:F1:CA:C7:CB:A4:B1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zkP-lNpK73rfscFih1rxysfLpLE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 33:61:b8:09:61:d3:dc:37:07:ee:b2:7a:b4:7d:90:c6:a9:24: 4a:1a:cc:e9:d0:3c:af:c5:17:67:bd:9e:67:2b:e9:e1:c3:fd: 4e:f0:dd:9f:bc:03:2f:0d:65:ca:f9:b9:e4:52:86:09:87:cb: f0:5f:a8:46:2f:f4:2a:5b:0b:8d:6f:f9:fc:f8:c6:80:5c:75: 69:55:56:7f:1d:5f:e6:00:c3:a6:8e:4d:1a:ed:be:e8:93:68: 1b:e5:e3:f7:cb:b9:2b:8c:fd:74:e0:66:02:f0:ad:45:05:6a: 52:5b:6f:95:b9:2e:ec:68:9d:f5:47:83:a9:63:a5:30:3f:4a: 32:72:59:94:11:f7:8d:d1:7a:12:9b:d0:3b:ea:a9:29:a1:e0: c4:6b:d8:f7:29:a2:2b:fb:3b:01:48:87:d7:ac:9c:27:2b:33: cb:74:8c:46:17:de:e1:43:43:62:74:43:90:c3:bc:ea:fe:c8: f9:f6:28:e9:a8:38:5a:69:71:1f:2c:dd:16:21:2f:07:f3:f8: 06:7d:cd:e0:dc:80:44:29:ad:dc:6f:82:f3:bc:e1:1e:bd:64: cf:b5:2f:12:b7:d9:48:24:cc:52:dc:1d:dd:13:43:46:46:ce: fa:f1:fa:54:20:36:a8:c6:aa:39:b4:8f:f5:f8:4f:f5:cc:8b: df:04:95:f7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxY9M/2+WS4czIBbouZ/ZcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNlNDNmZTk0ZGE0YWVmN2FkZmIxYzE2Mjg3NWFmMWNhYzdj YmE0YjEwHhcNMjUxMjA2MDIwMDQyWhcNMjUxMjA3MDIwMDQyWjAzMTEwLwYDVQQD Eyg5MGQwZTg2N2MyOWVmYWFkNzJiZjMzZjRkY2JmZjEyNzE1Y2E2OTdlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvk73r4PSiW9Vyy+B1h7t80RM5Et8 RWz8i6VmXTURFiQeG7Gs9Vl8cY97LNxeSLew0NImLy+10/CG0A7yMef65/6VL/nn q9qza6QZh16VCkU7I0rnvnD871OXx8mRIi1X/+XcL1b9zhONSjTl3oA67MfMwHw3 +Rr1SEvopZQ9Nkh5MDIYDRpJEc2O61Yjpb5iJsA3GLrsJ8UYjfVxOGJwHU9pjCgn /vBq1xgxLpDHzvmVVNhvXxOmrYpsdNt4TsAEmA89zCBgEKRHkXLXbyHRCrmzF6R7 GTsB3N6TWvowjvMb4gnehMCx8aZaIHgBqENzhlW/3UYzlGDG4XdRjyVHzQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJDQ6GfCnvqtcr8z9Ny/8ScVyml+MB8GA1UdIwQY MBaAFM5D/pTaSu9637HBYoda8crHy6SxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvemtQLWxOcEs3M3Jmc2NGaWgxcnh5c2ZMcExFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Zi9mOWQ4ZDAtY2MwMi00YWJmLTk5YmIt ZTAxOGRhNTNkMTI5LzEvemtQLWxOcEs3M3Jmc2NGaWgxcnh5c2ZMcExFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Zi9mOWQ4ZDAtY2MwMi00YWJmLTk5YmItZTAxOGRhNTNkMTI5 LzEvemtQLWxOcEs3M3Jmc2NGaWgxcnh5c2ZMcExFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAM2G4CWHT 3DcH7rJ6tH2QxqkkShrM6dA8r8UXZ72eZyvp4cP9TvDdn7wDLw1lyvm55FKGCYfL 8F+oRi/0KlsLjW/5/PjGgFx1aVVWfx1f5gDDpo5NGu2+6JNoG+Xj98u5K4z9dOBm AvCtRQVqUltvlbku7Gid9UeDqWOlMD9KMnJZlBH3jdF6EpvQO+qpKaHgxGvY9ymi K/s7AUiH16ycJyszy3SMRhfe4UNDYnRDkMO86v7I+fYo6ag4WmlxHyzdFiEvB/P4 Bn3N4NyARCmt3G+C87zhHr1kz7UvErfZSCTMUtwd3RNDRkbO+vH6VCA2qMaqObSP 9fhP9cyL3wSV9w== -----END CERTIFICATE-----Generated at Sat Dec 6 08:06:58 2025 by rpki-client