This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/631521-d4b7-4f10-8c06-87aa285f807c/1/z173qHDUsUjrHU9P5mbtUFSt6uw.mft File: z173qHDUsUjrHU9P5mbtUFSt6uw.mft (raw, json) Hash identifier: CI57WYRddwjQLewsWSodmEIU7UwoBA0UMqnjgvFgNB8= Subject key identifier: 95:A3:67:06:0D:20:F8:8D:C0:B6:30:8B:CC:B8:3A:63:EE:32:D7:1F Authority key identifier: CF:5E:F7:A8:70:D4:B1:48:EB:1D:4F:4F:E6:66:ED:50:54:AD:EA:EC Certificate issuer: /CN=cf5ef7a870d4b148eb1d4f4fe666ed5054adeaec Certificate serial: 019AF19BB50E7D68BBC2BC3F4161DF393978 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z173qHDUsUjrHU9P5mbtUFSt6uw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/631521-d4b7-4f10-8c06-87aa285f807c/1/z173qHDUsUjrHU9P5mbtUFSt6uw.mft Manifest number: 0ED7 Signing time: Sat 06 Dec 2025 03:01:44 +0000 Manifest this update: Sat 06 Dec 2025 03:01:44 +0000 Manifest next update: Sun 07 Dec 2025 03:01:44 +0000 Files and hashes: 1: IG4gE3aIFq9mnBnmOmJWzHSGMI8.roa (hash: NFuQufrafEIV/iOKny+LtVRYLA0EJDhZvV8121UO+Jg=) 2: eR5EevbZ-cAP0rVdhXMRAu6R2DU.roa (hash: MFuL2PsX4eqPDfqD1XxiSAvnb9qnnDDl40Z3XSXhTPs=) 3: z173qHDUsUjrHU9P5mbtUFSt6uw.crl (hash: 0UTl0M8KWmHCLX576zQeTwr8SeJILQEJKGqpCvFvVgU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/631521-d4b7-4f10-8c06-87aa285f807c/1/z173qHDUsUjrHU9P5mbtUFSt6uw.crl rsync://rpki.ripe.net/repository/DEFAULT/be/631521-d4b7-4f10-8c06-87aa285f807c/1/z173qHDUsUjrHU9P5mbtUFSt6uw.mft rsync://rpki.ripe.net/repository/DEFAULT/z173qHDUsUjrHU9P5mbtUFSt6uw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:b5:0e:7d:68:bb:c2:bc:3f:41:61:df:39:39:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cf5ef7a870d4b148eb1d4f4fe666ed5054adeaec Validity Not Before: Dec 6 03:01:44 2025 GMT Not After : Dec 7 03:01:44 2025 GMT Subject: CN=95a367060d20f88dc0b6308bccb83a63ee32d71f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:34:d0:86:8e:d9:de:4d:54:7b:a2:06:cc:cb: 2b:26:9f:b1:d7:bf:07:f9:45:6f:61:cf:53:e3:9e: 13:37:08:18:d0:bd:ed:07:93:7a:63:41:83:2e:00: f4:c7:75:82:72:34:b4:b5:06:3c:59:58:77:e3:0b: 68:5e:46:49:b0:f9:fe:97:e3:13:ba:37:b5:10:d4: 02:f1:3e:52:db:27:60:da:52:4d:61:17:d6:2a:fb: dd:71:d4:e4:16:c1:e3:50:ac:ce:72:20:f3:1f:31: 64:30:df:26:e1:20:68:27:69:3b:da:27:2c:d1:49: 10:00:67:0d:1b:3a:13:14:e0:e5:b8:44:82:f6:25: 87:85:74:9e:f7:7e:de:86:7b:b6:14:21:ff:49:70: 20:b3:ec:6a:a4:cc:11:43:a6:58:0e:34:6e:40:dc: 82:e8:06:65:8e:e0:ed:80:52:d0:30:64:38:d2:c5: f5:48:64:19:2b:8b:c5:cd:18:31:2f:70:af:f1:95: 27:06:4c:df:5d:f5:75:75:59:cc:6a:59:58:b7:f8: 8c:3b:93:33:95:9e:cc:a0:07:ce:ff:56:1e:01:f4: 6b:1f:e5:b1:b2:fe:0a:39:85:c7:cf:c3:c2:0d:9e: 65:42:68:db:de:92:00:a8:50:95:1d:0f:a1:af:03: 38:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:A3:67:06:0D:20:F8:8D:C0:B6:30:8B:CC:B8:3A:63:EE:32:D7:1F X509v3 Authority Key Identifier: keyid:CF:5E:F7:A8:70:D4:B1:48:EB:1D:4F:4F:E6:66:ED:50:54:AD:EA:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z173qHDUsUjrHU9P5mbtUFSt6uw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/631521-d4b7-4f10-8c06-87aa285f807c/1/z173qHDUsUjrHU9P5mbtUFSt6uw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/be/631521-d4b7-4f10-8c06-87aa285f807c/1/z173qHDUsUjrHU9P5mbtUFSt6uw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 83:a1:ef:e8:25:25:f6:fa:48:29:e0:61:53:15:9e:77:da:6b: d0:b0:2a:17:8f:e4:e8:88:74:b5:a8:a0:2f:e1:d3:ee:21:75: 4b:8e:ce:54:c7:d1:8b:b1:ca:29:7d:5f:2c:e1:6e:1a:65:97: c8:96:41:c4:64:e0:2c:c3:69:f1:6e:f0:f5:41:77:39:6e:bd: 21:e0:a6:c7:dd:f2:fd:06:e9:fa:35:0b:24:fd:ba:7d:aa:1d: 48:d5:6e:81:c2:1f:df:54:99:e6:2f:c0:a7:a1:58:0d:e8:e7: 71:1c:35:4e:f8:94:ae:e7:4c:b0:27:34:e4:b8:36:3e:b7:53: 18:70:45:1c:30:4f:0a:2d:4d:8f:77:15:57:2f:3e:71:e0:2c: 4a:19:15:26:bf:60:0d:83:91:d1:31:e3:84:04:07:ae:a5:ba: e2:d7:8b:ce:dc:da:91:78:1c:13:fe:41:5e:fd:7f:9a:8d:d2: 55:95:23:66:6a:75:24:99:0c:68:dd:c2:c3:e2:e2:1b:7e:5b: 0e:79:cb:00:ec:46:54:02:49:39:4d:fc:4c:f9:47:09:80:54: b1:1d:b8:3a:39:9a:6e:f7:ca:d4:69:c5:3c:ae:05:aa:ad:c1: 3e:b0:29:1d:43:43:2f:6e:ee:07:8f:ad:e9:2e:72:ed:6c:5a: 52:53:bb:b9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm7UOfWi7wrw/QWHfOTl4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNmNWVmN2E4NzBkNGIxNDhlYjFkNGY0ZmU2NjZlZDUwNTRh ZGVhZWMwHhcNMjUxMjA2MDMwMTQ0WhcNMjUxMjA3MDMwMTQ0WjAzMTEwLwYDVQQD Eyg5NWEzNjcwNjBkMjBmODhkYzBiNjMwOGJjY2I4M2E2M2VlMzJkNzFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvTTQho7Z3k1Ue6IGzMsrJp+x178H +UVvYc9T454TNwgY0L3tB5N6Y0GDLgD0x3WCcjS0tQY8WVh34wtoXkZJsPn+l+MT uje1ENQC8T5S2ydg2lJNYRfWKvvdcdTkFsHjUKzOciDzHzFkMN8m4SBoJ2k72ics 0UkQAGcNGzoTFODluESC9iWHhXSe937ehnu2FCH/SXAgs+xqpMwRQ6ZYDjRuQNyC 6AZljuDtgFLQMGQ40sX1SGQZK4vFzRgxL3Cv8ZUnBkzfXfV1dVnMallYt/iMO5Mz lZ7MoAfO/1YeAfRrH+Wxsv4KOYXHz8PCDZ5lQmjb3pIAqFCVHQ+hrwM4jwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJWjZwYNIPiNwLYwi8y4OmPuMtcfMB8GA1UdIwQY MBaAFM9e96hw1LFI6x1PT+Zm7VBUrersMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvejE3M3FIRFVzVWpySFU5UDVtYnRVRlN0NnV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS82MzE1MjEtZDRiNy00ZjEwLThjMDYt ODdhYTI4NWY4MDdjLzEvejE3M3FIRFVzVWpySFU5UDVtYnRVRlN0NnV3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZS82MzE1MjEtZDRiNy00ZjEwLThjMDYtODdhYTI4NWY4MDdj LzEvejE3M3FIRFVzVWpySFU5UDVtYnRVRlN0NnV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAg6Hv6CUl 9vpIKeBhUxWed9pr0LAqF4/k6Ih0taigL+HT7iF1S47OVMfRi7HKKX1fLOFuGmWX yJZBxGTgLMNp8W7w9UF3OW69IeCmx93y/Qbp+jULJP26faodSNVugcIf31SZ5i/A p6FYDejncRw1TviUrudMsCc05Lg2PrdTGHBFHDBPCi1Nj3cVVy8+ceAsShkVJr9g DYOR0THjhAQHrqW64teLztzakXgcE/5BXv1/mo3SVZUjZmp1JJkMaN3Cw+LiG35b DnnLAOxGVAJJOU38TPlHCYBUsR24OjmabvfK1GnFPK4Fqq3BPrApHUNDL27uB4+t 6S5y7WxaUlO7uQ== -----END CERTIFICATE-----Generated at Sat Dec 6 07:57:33 2025 by rpki-client