This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/631521-d4b7-4f10-8c06-87aa285f807c/1/z173qHDUsUjrHU9P5mbtUFSt6uw.mft File: z173qHDUsUjrHU9P5mbtUFSt6uw.mft (raw, json) Hash identifier: Hytkmeaufvovw+cC9r1l6KsObiMhjbG1O2PF44mx1k8= Subject key identifier: 19:77:85:17:D6:A6:1A:A8:FA:3C:FC:64:6F:CC:69:FD:BC:5C:3F:6A Authority key identifier: CF:5E:F7:A8:70:D4:B1:48:EB:1D:4F:4F:E6:66:ED:50:54:AD:EA:EC Certificate issuer: /CN=cf5ef7a870d4b148eb1d4f4fe666ed5054adeaec Certificate serial: 019B3CEB91FEA65EF2E27958AD445A39911E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z173qHDUsUjrHU9P5mbtUFSt6uw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/631521-d4b7-4f10-8c06-87aa285f807c/1/z173qHDUsUjrHU9P5mbtUFSt6uw.mft Manifest number: 0EFE Signing time: Sat 20 Dec 2025 18:00:29 +0000 Manifest this update: Sat 20 Dec 2025 18:00:29 +0000 Manifest next update: Sun 21 Dec 2025 18:00:29 +0000 Files and hashes: 1: IG4gE3aIFq9mnBnmOmJWzHSGMI8.roa (hash: NFuQufrafEIV/iOKny+LtVRYLA0EJDhZvV8121UO+Jg=) 2: eR5EevbZ-cAP0rVdhXMRAu6R2DU.roa (hash: MFuL2PsX4eqPDfqD1XxiSAvnb9qnnDDl40Z3XSXhTPs=) 3: z173qHDUsUjrHU9P5mbtUFSt6uw.crl (hash: PY4a0Bu630Nh4FvWFneMMiBGdifJMpv/xJWavKkINsE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/631521-d4b7-4f10-8c06-87aa285f807c/1/z173qHDUsUjrHU9P5mbtUFSt6uw.crl rsync://rpki.ripe.net/repository/DEFAULT/be/631521-d4b7-4f10-8c06-87aa285f807c/1/z173qHDUsUjrHU9P5mbtUFSt6uw.mft rsync://rpki.ripe.net/repository/DEFAULT/z173qHDUsUjrHU9P5mbtUFSt6uw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 15:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3c:eb:91:fe:a6:5e:f2:e2:79:58:ad:44:5a:39:91:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cf5ef7a870d4b148eb1d4f4fe666ed5054adeaec Validity Not Before: Dec 20 18:00:29 2025 GMT Not After : Dec 21 18:00:29 2025 GMT Subject: CN=19778517d6a61aa8fa3cfc646fcc69fdbc5c3f6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:7d:e5:5f:2c:5b:9b:24:ff:2b:84:dd:a0:94: bf:f3:3d:85:ca:9f:c8:b5:95:49:f3:8f:94:ee:ef: ef:90:b4:c4:4f:f3:f4:ef:1e:04:43:5d:43:30:4c: 0d:66:1e:be:3a:5c:61:52:ea:3f:e2:64:76:46:e3: 29:dc:75:55:be:00:16:72:24:eb:2f:90:c8:bf:f0: 14:ff:c9:bf:fb:d6:cb:1d:25:93:95:e4:25:40:fa: cb:5d:95:73:17:ee:1c:54:87:bd:41:85:d3:0a:46: ca:24:a9:01:31:49:30:72:83:c5:97:de:de:00:b9: e2:ee:fd:43:e9:94:30:4d:30:28:d0:96:b6:0f:9a: 52:e5:7b:44:6c:9d:fd:95:ba:1c:2d:08:36:62:00: 80:a1:39:7d:bc:2c:ab:b1:c6:e5:50:2d:c0:11:ef: df:7c:61:a3:ec:3e:d0:f6:c8:44:a4:c2:41:f6:40: 9f:33:b5:ba:68:23:88:ff:f5:c3:6d:1c:cf:a0:af: 7b:44:0b:c2:9e:7e:c0:d1:ec:09:6b:b0:77:1a:13: ff:b4:65:27:a6:d0:6a:9f:2d:98:76:9e:90:18:f6: 9b:06:c3:f8:10:da:3a:a5:51:ee:f2:71:b4:cc:19: db:5b:c6:31:17:81:1a:e0:f1:f3:d4:05:58:92:f7: 7a:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:77:85:17:D6:A6:1A:A8:FA:3C:FC:64:6F:CC:69:FD:BC:5C:3F:6A X509v3 Authority Key Identifier: keyid:CF:5E:F7:A8:70:D4:B1:48:EB:1D:4F:4F:E6:66:ED:50:54:AD:EA:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z173qHDUsUjrHU9P5mbtUFSt6uw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/631521-d4b7-4f10-8c06-87aa285f807c/1/z173qHDUsUjrHU9P5mbtUFSt6uw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/be/631521-d4b7-4f10-8c06-87aa285f807c/1/z173qHDUsUjrHU9P5mbtUFSt6uw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a3:7a:b9:34:62:4d:8d:b7:72:d0:c8:03:9f:07:1b:17:9e:59: 2b:01:35:9c:d2:f3:8c:2a:57:d0:e5:d4:42:56:21:9c:c1:dd: cc:c0:18:46:1a:fe:20:b7:7d:89:57:78:da:ba:ac:a5:a6:d3: 66:4c:ba:b0:da:32:69:b0:96:43:c4:56:96:ee:8c:87:49:51: 68:50:04:0b:ed:45:dc:fd:6c:8b:9f:98:2b:b0:1d:85:cd:16: 0a:0d:cf:25:77:5e:c6:29:0b:fc:c2:a4:9d:79:d9:ee:c2:54: c6:20:8b:f4:5d:c8:0e:65:35:f1:00:02:80:43:9a:fe:fa:64: 33:f3:78:0a:0b:b1:8a:c7:45:e1:93:59:4c:98:14:ed:c2:04: 26:02:2f:84:5c:0f:fa:3c:b9:d1:8d:3b:ad:b2:bf:20:6c:b9: 78:1f:ce:a3:67:d9:44:95:ff:76:64:bd:81:33:e9:e6:25:35: db:14:ae:79:05:f9:fa:f5:6c:bb:0a:5c:9f:f7:a8:4f:1e:f4: 86:76:75:b5:65:13:7e:9d:1a:ff:00:6b:9a:a5:ed:19:40:30: ef:9c:12:98:9b:d9:49:88:eb:e5:7c:e5:de:e6:7c:48:1e:be: 27:c6:bc:65:61:a3:11:07:71:32:a7:63:b1:02:5c:1d:29:61: 58:7f:3e:c1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs865H+pl7y4nlYrURaOZEeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNmNWVmN2E4NzBkNGIxNDhlYjFkNGY0ZmU2NjZlZDUwNTRh ZGVhZWMwHhcNMjUxMjIwMTgwMDI5WhcNMjUxMjIxMTgwMDI5WjAzMTEwLwYDVQQD EygxOTc3ODUxN2Q2YTYxYWE4ZmEzY2ZjNjQ2ZmNjNjlmZGJjNWMzZjZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtn3lXyxbmyT/K4TdoJS/8z2Fyp/I tZVJ84+U7u/vkLTET/P07x4EQ11DMEwNZh6+OlxhUuo/4mR2RuMp3HVVvgAWciTr L5DIv/AU/8m/+9bLHSWTleQlQPrLXZVzF+4cVIe9QYXTCkbKJKkBMUkwcoPFl97e ALni7v1D6ZQwTTAo0Ja2D5pS5XtEbJ39lbocLQg2YgCAoTl9vCyrscblUC3AEe/f fGGj7D7Q9shEpMJB9kCfM7W6aCOI//XDbRzPoK97RAvCnn7A0ewJa7B3GhP/tGUn ptBqny2Ydp6QGPabBsP4ENo6pVHu8nG0zBnbW8YxF4Ea4PHz1AVYkvd6OwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBl3hRfWphqo+jz8ZG/Maf28XD9qMB8GA1UdIwQY MBaAFM9e96hw1LFI6x1PT+Zm7VBUrersMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvejE3M3FIRFVzVWpySFU5UDVtYnRVRlN0NnV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS82MzE1MjEtZDRiNy00ZjEwLThjMDYt ODdhYTI4NWY4MDdjLzEvejE3M3FIRFVzVWpySFU5UDVtYnRVRlN0NnV3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZS82MzE1MjEtZDRiNy00ZjEwLThjMDYtODdhYTI4NWY4MDdj LzEvejE3M3FIRFVzVWpySFU5UDVtYnRVRlN0NnV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAo3q5NGJN jbdy0MgDnwcbF55ZKwE1nNLzjCpX0OXUQlYhnMHdzMAYRhr+ILd9iVd42rqspabT Zky6sNoyabCWQ8RWlu6Mh0lRaFAEC+1F3P1si5+YK7Adhc0WCg3PJXdexikL/MKk nXnZ7sJUxiCL9F3IDmU18QACgEOa/vpkM/N4CguxisdF4ZNZTJgU7cIEJgIvhFwP +jy50Y07rbK/IGy5eB/Oo2fZRJX/dmS9gTPp5iU12xSueQX5+vVsuwpcn/eoTx70 hnZ1tWUTfp0a/wBrmqXtGUAw75wSmJvZSYjr5Xzl3uZ8SB6+J8a8ZWGjEQdxMqdj sQJcHSlhWH8+wQ== -----END CERTIFICATE-----Generated at Sun Dec 21 00:32:19 2025 by rpki-client