This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.mft File: pZyqKnNoBpiyyeGmyWQadPPOdug.mft (raw, json) Hash identifier: 51QttLlZns/ysDjphag+wfuo7V+IPpeozyl1VtKE5tA= Subject key identifier: BC:16:FF:92:B4:30:76:D7:D9:58:3A:64:86:68:DE:5C:BB:F0:4A:87 Authority key identifier: A5:9C:AA:2A:73:68:06:98:B2:C9:E1:A6:C9:64:1A:74:F3:CE:76:E8 Certificate issuer: /CN=a59caa2a73680698b2c9e1a6c9641a74f3ce76e8 Certificate serial: 019AF4D2897499D814EF2601C04C363AD7B3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pZyqKnNoBpiyyeGmyWQadPPOdug.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.mft Manifest number: 0BF8 Signing time: Sat 06 Dec 2025 18:00:29 +0000 Manifest this update: Sat 06 Dec 2025 18:00:29 +0000 Manifest next update: Sun 07 Dec 2025 18:00:29 +0000 Files and hashes: 1: _c_c0M25UwpZ7eHBk4pzeagMlVQ.roa (hash: 8jqy4hlWYt18GsvMo6F88//T4bDxnnNcBAAfWfrvPK8=) 2: pZyqKnNoBpiyyeGmyWQadPPOdug.crl (hash: UXKtHAVKyIHPp6f36e3OtPH1+bUPotb+Ds8M3giA9V0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.crl rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.mft rsync://rpki.ripe.net/repository/DEFAULT/pZyqKnNoBpiyyeGmyWQadPPOdug.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 18:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:d2:89:74:99:d8:14:ef:26:01:c0:4c:36:3a:d7:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a59caa2a73680698b2c9e1a6c9641a74f3ce76e8 Validity Not Before: Dec 6 18:00:29 2025 GMT Not After : Dec 7 18:00:29 2025 GMT Subject: CN=bc16ff92b43076d7d9583a648668de5cbbf04a87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:1e:35:8c:6b:a0:fc:97:8e:a3:75:28:f0:ef: 77:c2:ad:d9:a5:ad:ea:e1:28:7a:71:05:f7:5a:35: d5:31:a3:bb:31:16:13:78:c3:29:38:ce:42:7a:a5: ce:f1:80:3e:1b:57:c7:3f:a7:bc:13:40:1b:64:40: 45:3a:8b:93:13:43:17:c2:95:70:08:fe:7b:87:30: 89:c6:f1:3f:a8:c4:70:08:f3:4f:dd:40:60:e2:7d: 64:6d:c0:08:f0:1c:ec:5e:e0:53:33:34:00:5a:30: d4:c1:d2:23:3f:b1:84:71:20:a3:a2:17:d8:af:c3: 8f:ac:b4:96:ff:ae:12:4e:e6:e8:1c:d4:77:16:ad: 9f:63:ec:8e:88:50:9c:a4:99:c8:80:22:cb:78:a4: f0:41:7f:6f:83:4d:a4:3e:86:36:9e:b3:f1:82:95: 7b:81:8d:af:fc:f0:e4:6f:d9:ad:46:ef:2c:35:06: c4:0c:d1:2e:87:8f:e9:b6:2b:f3:7a:d1:f6:30:cd: b2:7a:b8:69:12:c9:c0:35:03:ec:19:1d:23:1b:8a: af:90:f2:10:0a:03:67:84:aa:ab:4d:ab:35:68:a0: 3c:26:d4:07:29:72:d8:df:47:b0:04:43:f5:6c:13: 68:dd:12:cb:7e:36:78:47:c6:0b:9a:06:91:3b:42: 2e:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:16:FF:92:B4:30:76:D7:D9:58:3A:64:86:68:DE:5C:BB:F0:4A:87 X509v3 Authority Key Identifier: keyid:A5:9C:AA:2A:73:68:06:98:B2:C9:E1:A6:C9:64:1A:74:F3:CE:76:E8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pZyqKnNoBpiyyeGmyWQadPPOdug.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/dd672f-5336-4f35-b3ef-ae91ab342be1/1/pZyqKnNoBpiyyeGmyWQadPPOdug.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:b6:39:ae:9a:da:78:25:6d:9c:b4:1f:24:f3:08:7d:2e:45: 11:b9:c0:9f:48:c6:e4:73:89:a0:eb:4c:23:dc:7d:a3:a8:09: a1:ac:4e:32:de:cd:40:91:10:b6:33:0a:b8:e6:34:37:64:1e: 76:fa:68:7e:3f:1f:23:4b:3c:39:7d:7a:45:e2:fd:a7:f4:6b: c2:e4:2f:d4:f9:55:12:0b:8f:7e:c0:2b:51:78:00:7e:82:b9: a3:c0:54:81:87:91:a2:a4:b6:96:8e:ab:b8:73:3a:5f:a3:96: 60:49:5b:75:0e:7c:5b:89:31:8c:7b:9b:0b:70:bd:ef:ad:1c: 3a:b9:06:3b:78:55:d2:ab:91:6a:8f:38:cc:41:48:4c:a0:9e: 89:37:00:03:17:cf:22:8d:00:c2:5f:81:22:4f:2f:5d:9a:58: 00:f1:e2:ed:2d:95:30:8c:00:d5:e2:77:67:e4:30:67:31:f9: 0f:3f:ea:78:89:5e:fb:b7:48:dc:dd:98:61:c5:e7:4c:13:ff: f0:ed:f2:07:b7:16:27:fb:eb:96:0c:5b:4c:e7:48:85:12:9e: 89:40:6d:ae:5d:55:b6:7d:17:08:3b:18:7d:94:ad:8f:e2:97: 7e:cd:ac:b1:d1:ff:64:33:b3:03:56:45:b7:ee:f4:55:4f:14: 83:a5:32:fc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr00ol0mdgU7yYBwEw2OtezMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE1OWNhYTJhNzM2ODA2OThiMmM5ZTFhNmM5NjQxYTc0ZjNj ZTc2ZTgwHhcNMjUxMjA2MTgwMDI5WhcNMjUxMjA3MTgwMDI5WjAzMTEwLwYDVQQD EyhiYzE2ZmY5MmI0MzA3NmQ3ZDk1ODNhNjQ4NjY4ZGU1Y2JiZjA0YTg3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4B41jGug/JeOo3Uo8O93wq3Zpa3q 4Sh6cQX3WjXVMaO7MRYTeMMpOM5CeqXO8YA+G1fHP6e8E0AbZEBFOouTE0MXwpVw CP57hzCJxvE/qMRwCPNP3UBg4n1kbcAI8BzsXuBTMzQAWjDUwdIjP7GEcSCjohfY r8OPrLSW/64STuboHNR3Fq2fY+yOiFCcpJnIgCLLeKTwQX9vg02kPoY2nrPxgpV7 gY2v/PDkb9mtRu8sNQbEDNEuh4/ptivzetH2MM2yerhpEsnANQPsGR0jG4qvkPIQ CgNnhKqrTas1aKA8JtQHKXLY30ewBEP1bBNo3RLLfjZ4R8YLmgaRO0Iu6wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLwW/5K0MHbX2Vg6ZIZo3ly78EqHMB8GA1UdIwQY MBaAFKWcqipzaAaYssnhpslkGnTzznboMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcFp5cUtuTm9CcGl5eWVHbXlXUWFkUFBPZHVnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9kZDY3MmYtNTMzNi00ZjM1LWIzZWYt YWU5MWFiMzQyYmUxLzEvcFp5cUtuTm9CcGl5eWVHbXlXUWFkUFBPZHVnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOC9kZDY3MmYtNTMzNi00ZjM1LWIzZWYtYWU5MWFiMzQyYmUx LzEvcFp5cUtuTm9CcGl5eWVHbXlXUWFkUFBPZHVnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK7Y5rpra eCVtnLQfJPMIfS5FEbnAn0jG5HOJoOtMI9x9o6gJoaxOMt7NQJEQtjMKuOY0N2Qe dvpofj8fI0s8OX16ReL9p/RrwuQv1PlVEguPfsArUXgAfoK5o8BUgYeRoqS2lo6r uHM6X6OWYElbdQ58W4kxjHubC3C9760cOrkGO3hV0quRao84zEFITKCeiTcAAxfP Io0Awl+BIk8vXZpYAPHi7S2VMIwA1eJ3Z+QwZzH5Dz/qeIle+7dI3N2YYcXnTBP/ 8O3yB7cWJ/vrlgxbTOdIhRKeiUBtrl1Vtn0XCDsYfZStj+KXfs2ssdH/ZDOzA1ZF t+70VU8Ug6Uy/A== -----END CERTIFICATE-----Generated at Sun Dec 7 04:03:57 2025 by rpki-client