This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.mft File: pzh53iWUz91MnkIlVWKBsgjZRhQ.mft (raw, json) Hash identifier: OqYxZT1nBlCqE7SkZ7NSpzOdd0lF1PWk2dxctglVm/U= Subject key identifier: C4:C8:8E:C6:43:44:AA:EF:FF:48:C8:B9:4B:B5:3F:27:4C:25:3B:35 Authority key identifier: A7:38:79:DE:25:94:CF:DD:4C:9E:42:25:55:62:81:B2:08:D9:46:14 Certificate issuer: /CN=a73879de2594cfdd4c9e4225556281b208d94614 Certificate serial: 019AF540937DEB162C72D2199A2EFAEE0DB9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pzh53iWUz91MnkIlVWKBsgjZRhQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.mft Manifest number: 0A1F Signing time: Sat 06 Dec 2025 20:00:41 +0000 Manifest this update: Sat 06 Dec 2025 20:00:41 +0000 Manifest next update: Sun 07 Dec 2025 20:00:41 +0000 Files and hashes: 1: jCdTYmvYMmAVCpwgaEf86kYug58.roa (hash: ztqwVKV63uIGzbrcGebHuh3wlQjH5xZyStSjcOzpGqU=) 2: pzh53iWUz91MnkIlVWKBsgjZRhQ.crl (hash: 5aku1Ed6YNT4lKMqd8IwVh+abY8YgOnTV2XCHXRTics=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.crl rsync://rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.mft rsync://rpki.ripe.net/repository/DEFAULT/pzh53iWUz91MnkIlVWKBsgjZRhQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 14:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:40:93:7d:eb:16:2c:72:d2:19:9a:2e:fa:ee:0d:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a73879de2594cfdd4c9e4225556281b208d94614 Validity Not Before: Dec 6 20:00:41 2025 GMT Not After : Dec 7 20:00:41 2025 GMT Subject: CN=c4c88ec64344aaefff48c8b94bb53f274c253b35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:5d:78:e4:9c:e7:e8:01:88:66:b2:9e:a3:4b: 5a:b9:ea:f5:3d:d0:76:64:99:a3:48:b5:cc:fc:f8: 61:a6:49:33:ea:5c:b6:f0:eb:84:41:62:5c:49:30: 0c:0c:ef:9c:d5:6b:97:58:83:ac:3b:5f:85:9b:49: b9:f0:1a:22:a8:bb:8a:fb:6f:db:d8:38:f3:e8:de: e7:8a:1a:01:6f:27:a5:58:05:ac:d1:0b:ee:57:2d: 0e:25:34:0d:24:8f:8f:9e:1a:dd:6b:6f:32:93:41: 01:1d:37:c1:79:91:a3:2b:54:d2:8a:cf:3f:48:2e: d3:98:61:4f:eb:36:ab:ed:cf:18:f1:46:57:77:47: 3d:a8:79:36:64:06:9a:83:c8:e2:3d:e0:34:cb:77: 53:3e:58:6d:d7:25:21:95:35:eb:cf:1a:f4:1e:f5: 9f:21:aa:46:5c:59:04:b1:4c:49:cb:df:9e:e8:32: 77:51:fb:f6:dd:4c:40:d8:68:4e:95:ca:83:bd:9e: 97:e8:ab:51:78:1f:7c:20:b9:34:e4:d3:af:70:dd: 40:85:69:e8:f1:5a:99:58:37:c8:cf:20:fd:22:31: 3c:47:dd:6e:00:65:2f:61:06:9d:44:02:67:d8:9c: 13:b9:37:36:ed:a4:61:9b:e3:c3:b4:a3:74:ec:ef: a8:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:C8:8E:C6:43:44:AA:EF:FF:48:C8:B9:4B:B5:3F:27:4C:25:3B:35 X509v3 Authority Key Identifier: keyid:A7:38:79:DE:25:94:CF:DD:4C:9E:42:25:55:62:81:B2:08:D9:46:14 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pzh53iWUz91MnkIlVWKBsgjZRhQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 64:68:e8:01:5e:0b:30:90:a4:25:d9:c3:f4:c2:c8:2f:61:02: 46:05:bb:3c:c3:68:6e:d9:6d:fc:4a:80:ae:a5:d0:75:ff:e2: 77:00:38:9f:1a:2b:f4:4b:61:1f:b0:c3:29:45:87:b0:f4:e2: ab:a6:9c:45:7f:7d:45:03:66:2e:c1:ed:8f:5f:18:74:13:82: 37:d1:f5:ac:bf:85:23:62:6e:55:db:08:29:0e:0c:b0:70:55: 25:56:27:0c:52:c6:cf:af:95:73:7a:b5:01:25:98:9a:c9:6e: d7:01:a1:cd:dc:e8:99:01:f7:04:66:a4:03:58:eb:96:6b:80: 87:d5:64:2f:a0:49:db:5a:33:15:5d:43:f7:b4:a8:ce:a6:7e: 20:2e:77:c7:bc:43:1e:82:a2:3e:b8:c1:21:da:14:9f:3a:15: 68:94:5f:c3:0e:47:61:2d:a8:1f:bd:ac:4f:8c:2a:1d:4e:a6: 04:78:07:5b:e4:10:11:bf:2a:ca:d9:ed:f9:ce:3e:04:4f:50: de:85:f5:71:75:f5:5b:73:71:1d:95:7f:48:26:82:ef:1a:e3: 24:34:1d:f1:75:d0:a7:d0:fd:35:4f:bb:f1:e0:f2:d8:bb:6a: 61:ca:61:94:e9:39:db:69:9c:a5:15:1a:0e:f7:7d:21:94:d7: 6c:59:70:7e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1QJN96xYsctIZmi767g25MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE3Mzg3OWRlMjU5NGNmZGQ0YzllNDIyNTU1NjI4MWIyMDhk OTQ2MTQwHhcNMjUxMjA2MjAwMDQxWhcNMjUxMjA3MjAwMDQxWjAzMTEwLwYDVQQD EyhjNGM4OGVjNjQzNDRhYWVmZmY0OGM4Yjk0YmI1M2YyNzRjMjUzYjM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnF145Jzn6AGIZrKeo0tauer1PdB2 ZJmjSLXM/Phhpkkz6ly28OuEQWJcSTAMDO+c1WuXWIOsO1+Fm0m58BoiqLuK+2/b 2Djz6N7nihoBbyelWAWs0QvuVy0OJTQNJI+Pnhrda28yk0EBHTfBeZGjK1TSis8/ SC7TmGFP6zar7c8Y8UZXd0c9qHk2ZAaag8jiPeA0y3dTPlht1yUhlTXrzxr0HvWf IapGXFkEsUxJy9+e6DJ3Ufv23UxA2GhOlcqDvZ6X6KtReB98ILk05NOvcN1AhWno 8VqZWDfIzyD9IjE8R91uAGUvYQadRAJn2JwTuTc27aRhm+PDtKN07O+obwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMTIjsZDRKrv/0jIuUu1PydMJTs1MB8GA1UdIwQY MBaAFKc4ed4llM/dTJ5CJVVigbII2UYUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcHpoNTNpV1V6OTFNbmtJbFZXS0JzZ2paUmhRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NS9kYmYxODUtYjA4Ny00YjQ0LThmODEt OWY3ZDk3YzYzMTUyLzEvcHpoNTNpV1V6OTFNbmtJbFZXS0JzZ2paUmhRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NS9kYmYxODUtYjA4Ny00YjQ0LThmODEtOWY3ZDk3YzYzMTUy LzEvcHpoNTNpV1V6OTFNbmtJbFZXS0JzZ2paUmhRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZGjoAV4L MJCkJdnD9MLIL2ECRgW7PMNobtlt/EqArqXQdf/idwA4nxor9EthH7DDKUWHsPTi q6acRX99RQNmLsHtj18YdBOCN9H1rL+FI2JuVdsIKQ4MsHBVJVYnDFLGz6+Vc3q1 ASWYmslu1wGhzdzomQH3BGakA1jrlmuAh9VkL6BJ21ozFV1D97SozqZ+IC53x7xD HoKiPrjBIdoUnzoVaJRfww5HYS2oH72sT4wqHU6mBHgHW+QQEb8qytnt+c4+BE9Q 3oX1cXX1W3NxHZV/SCaC7xrjJDQd8XXQp9D9NU+78eDy2LtqYcphlOk522mcpRUa Dvd9IZTXbFlwfg== -----END CERTIFICATE-----Generated at Sat Dec 6 23:34:47 2025 by rpki-client