This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/b70e07-11b2-4a2a-8955-0e381bd413d3/1/ZLPjZgb6UsOkchyMoPszCZU0GVo.mft File: ZLPjZgb6UsOkchyMoPszCZU0GVo.mft (raw, json) Hash identifier: ceKJVH9fF8M2wvf1daO2riwj3lYR8rt8OBGfshE6SrU= Subject key identifier: 87:EC:7E:28:22:06:23:15:A1:FE:AE:E0:9B:EE:AA:CD:83:61:A0:5A Authority key identifier: 64:B3:E3:66:06:FA:52:C3:A4:72:1C:8C:A0:FB:33:09:95:34:19:5A Certificate issuer: /CN=64b3e36606fa52c3a4721c8ca0fb33099534195a Certificate serial: 019AF12D48BF119E81612D62D7F3138A9A32 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZLPjZgb6UsOkchyMoPszCZU0GVo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/b70e07-11b2-4a2a-8955-0e381bd413d3/1/ZLPjZgb6UsOkchyMoPszCZU0GVo.mft Manifest number: 175E Signing time: Sat 06 Dec 2025 01:01:07 +0000 Manifest this update: Sat 06 Dec 2025 01:01:07 +0000 Manifest next update: Sun 07 Dec 2025 01:01:07 +0000 Files and hashes: 1: ZLPjZgb6UsOkchyMoPszCZU0GVo.crl (hash: mf1+pUsJ8mtEGr0cuZH5tCWYRIHSO+BHttKfdKLS3ms=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/b70e07-11b2-4a2a-8955-0e381bd413d3/1/ZLPjZgb6UsOkchyMoPszCZU0GVo.crl rsync://rpki.ripe.net/repository/DEFAULT/ca/b70e07-11b2-4a2a-8955-0e381bd413d3/1/ZLPjZgb6UsOkchyMoPszCZU0GVo.mft rsync://rpki.ripe.net/repository/DEFAULT/ZLPjZgb6UsOkchyMoPszCZU0GVo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:48:bf:11:9e:81:61:2d:62:d7:f3:13:8a:9a:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=64b3e36606fa52c3a4721c8ca0fb33099534195a Validity Not Before: Dec 6 01:01:07 2025 GMT Not After : Dec 7 01:01:07 2025 GMT Subject: CN=87ec7e2822062315a1feaee09beeaacd8361a05a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:84:1b:15:c2:67:28:db:65:4a:85:82:20:b5: b5:e9:be:e0:50:7f:e6:67:74:53:c4:27:25:94:1b: fc:b4:75:a9:bd:ae:4d:f6:e1:eb:6c:7f:98:70:36: b4:79:ef:80:be:c6:b8:78:ae:f6:7d:0c:6a:0b:41: 36:b7:c8:b5:7e:e6:cd:e3:48:7c:c7:9e:fa:11:00: 99:33:19:21:b8:5e:e7:56:fa:f2:ac:a3:53:b3:53: 8e:6d:2c:03:d5:a5:25:66:17:40:37:8f:c7:4d:a1: 0c:b7:82:a1:2d:ea:1b:48:0a:96:5d:20:9f:86:db: 85:52:32:5d:5b:69:94:2d:b0:d5:4e:0b:9c:02:58: 64:68:f2:62:82:15:1d:4f:00:0a:bd:85:5a:ac:77: 57:14:4a:6a:25:f6:63:94:90:9a:72:08:9b:6d:b7: 55:21:62:e4:c2:4b:6a:61:e7:c3:06:6c:b8:ac:3b: 06:c3:75:c9:09:32:fa:3d:19:c3:2f:18:61:a2:83: 33:49:58:b2:ee:df:c9:ee:da:bc:b4:01:f2:e4:7d: 27:1e:34:27:1f:83:64:2e:7d:1d:4f:a9:e6:7b:d8: 73:63:d7:37:86:5e:62:b3:db:7e:37:69:0e:0a:57: ca:b5:81:87:7e:df:45:2c:16:c5:23:4e:5a:2d:96: 8a:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:EC:7E:28:22:06:23:15:A1:FE:AE:E0:9B:EE:AA:CD:83:61:A0:5A X509v3 Authority Key Identifier: keyid:64:B3:E3:66:06:FA:52:C3:A4:72:1C:8C:A0:FB:33:09:95:34:19:5A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZLPjZgb6UsOkchyMoPszCZU0GVo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/b70e07-11b2-4a2a-8955-0e381bd413d3/1/ZLPjZgb6UsOkchyMoPszCZU0GVo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/b70e07-11b2-4a2a-8955-0e381bd413d3/1/ZLPjZgb6UsOkchyMoPszCZU0GVo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 59:52:e7:5a:01:6a:bb:52:25:c7:63:bc:3c:df:dd:74:98:35: a9:5d:83:3e:c8:f6:f1:b6:cd:9a:7c:ee:d5:67:2d:d4:15:45: 29:60:25:4a:96:28:c1:25:04:82:d3:09:77:89:c4:b7:b0:d8: 77:1f:32:ac:ea:47:b3:e5:ab:29:8d:2a:3e:d8:7d:ad:be:26: fc:1a:96:44:3e:d8:bc:38:9a:8d:e2:25:f3:9b:9c:02:5a:ee: df:1b:7b:af:7f:95:e8:6a:d3:62:1d:e7:4a:44:b0:bd:7c:b6: c7:f8:8e:d6:26:df:7f:d6:73:fb:5d:3f:bc:3f:86:2f:11:bd: 90:c2:fb:86:6c:9c:3a:e5:a7:e1:2a:c9:17:72:76:15:e7:84: 6b:40:36:be:df:59:3d:dd:e8:d5:8f:b6:a2:0c:00:6b:e9:6e: d4:2a:3a:1b:2c:30:61:3b:3e:26:37:60:a8:68:bf:20:34:c8: ad:5c:e0:3c:a9:00:75:7d:4a:cc:85:ac:89:64:49:4a:45:ed: 0a:5a:9a:89:08:47:74:8c:89:da:3e:ab:6e:77:50:fa:38:50: 9f:a4:6f:d1:0d:f3:0b:b3:79:4f:fc:99:1d:52:fc:94:aa:d4: 11:19:7c:63:1c:e5:3c:14:ad:fa:de:1b:9e:5d:6c:6d:29:fa: 0c:09:8d:32 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLUi/EZ6BYS1i1/MTipoyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY0YjNlMzY2MDZmYTUyYzNhNDcyMWM4Y2EwZmIzMzA5OTUz NDE5NWEwHhcNMjUxMjA2MDEwMTA3WhcNMjUxMjA3MDEwMTA3WjAzMTEwLwYDVQQD Eyg4N2VjN2UyODIyMDYyMzE1YTFmZWFlZTA5YmVlYWFjZDgzNjFhMDVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzYQbFcJnKNtlSoWCILW16b7gUH/m Z3RTxCcllBv8tHWpva5N9uHrbH+YcDa0ee+Avsa4eK72fQxqC0E2t8i1fubN40h8 x576EQCZMxkhuF7nVvryrKNTs1OObSwD1aUlZhdAN4/HTaEMt4KhLeobSAqWXSCf htuFUjJdW2mULbDVTgucAlhkaPJighUdTwAKvYVarHdXFEpqJfZjlJCacgibbbdV IWLkwktqYefDBmy4rDsGw3XJCTL6PRnDLxhhooMzSViy7t/J7tq8tAHy5H0nHjQn H4NkLn0dT6nme9hzY9c3hl5is9t+N2kOClfKtYGHft9FLBbFI05aLZaKXwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIfsfigiBiMVof6u4Jvuqs2DYaBaMB8GA1UdIwQY MBaAFGSz42YG+lLDpHIcjKD7MwmVNBlaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWkxQalpnYjZVc09rY2h5TW9Qc3pDWlUwR1ZvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS9iNzBlMDctMTFiMi00YTJhLTg5NTUt MGUzODFiZDQxM2QzLzEvWkxQalpnYjZVc09rY2h5TW9Qc3pDWlUwR1ZvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYS9iNzBlMDctMTFiMi00YTJhLTg5NTUtMGUzODFiZDQxM2Qz LzEvWkxQalpnYjZVc09rY2h5TW9Qc3pDWlUwR1ZvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWVLnWgFq u1Ilx2O8PN/ddJg1qV2DPsj28bbNmnzu1Wct1BVFKWAlSpYowSUEgtMJd4nEt7DY dx8yrOpHs+WrKY0qPth9rb4m/BqWRD7YvDiajeIl85ucAlru3xt7r3+V6GrTYh3n SkSwvXy2x/iO1ibff9Zz+10/vD+GLxG9kML7hmycOuWn4SrJF3J2FeeEa0A2vt9Z Pd3o1Y+2ogwAa+lu1Co6GywwYTs+JjdgqGi/IDTIrVzgPKkAdX1KzIWsiWRJSkXt ClqaiQhHdIyJ2j6rbndQ+jhQn6Rv0Q3zC7N5T/yZHVL8lKrUERl8YxzlPBSt+t4b nl1sbSn6DAmNMg== -----END CERTIFICATE-----Generated at Sat Dec 6 07:21:58 2025 by rpki-client