This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/c9a9d1-b13c-403d-bd1c-d12a372f5173/1/znQefeZX5KEPk8qSxReoGywLJR4.mft File: znQefeZX5KEPk8qSxReoGywLJR4.mft (raw, json) Hash identifier: rI9EYH/YyFRGU9W/KHtsyXaAqE+wG+hxtXbSk6maETI= Subject key identifier: 53:A2:FA:6C:2E:35:04:0B:D4:CE:74:7F:6C:90:4E:15:46:4E:EC:88 Authority key identifier: CE:74:1E:7D:E6:57:E4:A1:0F:93:CA:92:C5:17:A8:1B:2C:0B:25:1E Certificate issuer: /CN=ce741e7de657e4a10f93ca92c517a81b2c0b251e Certificate serial: 019AF1D198AD030DA2D8FDC09A5B9B539E21 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/znQefeZX5KEPk8qSxReoGywLJR4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/c9a9d1-b13c-403d-bd1c-d12a372f5173/1/znQefeZX5KEPk8qSxReoGywLJR4.mft Manifest number: 0D55 Signing time: Sat 06 Dec 2025 04:00:36 +0000 Manifest this update: Sat 06 Dec 2025 04:00:36 +0000 Manifest next update: Sun 07 Dec 2025 04:00:36 +0000 Files and hashes: 1: ZIl-tGPYsmILe8aUvhHfFRisBTg.roa (hash: ELX+nfW5VdhOFYsiqhpPo4rEHXv1DoXfvUrKNYNv+iU=) 2: znQefeZX5KEPk8qSxReoGywLJR4.crl (hash: l8XKBCV6Dvz3nWmaMc6H/VElLbN1UPiNHrSDikQ6N/U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/c9a9d1-b13c-403d-bd1c-d12a372f5173/1/znQefeZX5KEPk8qSxReoGywLJR4.crl rsync://rpki.ripe.net/repository/DEFAULT/cd/c9a9d1-b13c-403d-bd1c-d12a372f5173/1/znQefeZX5KEPk8qSxReoGywLJR4.mft rsync://rpki.ripe.net/repository/DEFAULT/znQefeZX5KEPk8qSxReoGywLJR4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d1:98:ad:03:0d:a2:d8:fd:c0:9a:5b:9b:53:9e:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ce741e7de657e4a10f93ca92c517a81b2c0b251e Validity Not Before: Dec 6 04:00:36 2025 GMT Not After : Dec 7 04:00:36 2025 GMT Subject: CN=53a2fa6c2e35040bd4ce747f6c904e15464eec88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c8:19:08:33:b7:5b:87:f8:61:8d:72:e5:49: c4:7a:31:48:e5:df:46:26:c3:6d:90:3b:17:e9:78: 69:3f:3d:b2:72:f4:2e:4f:81:c8:5a:6b:04:20:87: 74:34:dc:e9:5b:53:78:fc:fa:fb:2a:67:0a:ad:08: a8:26:62:3c:ca:2c:c3:00:db:18:ad:af:95:fe:16: 9e:af:75:65:b8:6e:51:5e:27:8a:09:6d:a9:c1:75: 5c:df:42:a3:bd:3f:e5:b9:b2:c6:74:9a:06:d3:75: 10:0d:5a:6b:d3:e8:ce:74:66:c6:4b:69:49:6e:52: c7:52:2f:7a:2a:2b:ef:c1:b1:12:c7:4f:86:30:bd: 52:fa:26:85:1e:3d:cb:7e:1c:b7:1e:3c:4b:f6:2a: d8:0b:a0:81:fc:86:74:4b:a4:b5:40:9c:65:78:50: 73:5c:4b:50:f2:3c:0d:b3:ad:3d:b2:5b:62:e6:fa: 84:a6:86:c8:1e:21:dd:4d:b4:14:09:ca:19:0c:4c: 77:83:f9:1d:9a:8b:bd:2a:34:3a:d6:6c:41:d8:64: 93:12:1d:4f:3e:16:57:b7:61:77:30:2c:b2:f8:81: 90:77:c1:c3:b4:94:ff:97:65:b6:27:22:97:c4:27: 3a:21:47:41:52:9f:81:ca:c4:41:de:90:b3:6b:81: 8f:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:A2:FA:6C:2E:35:04:0B:D4:CE:74:7F:6C:90:4E:15:46:4E:EC:88 X509v3 Authority Key Identifier: keyid:CE:74:1E:7D:E6:57:E4:A1:0F:93:CA:92:C5:17:A8:1B:2C:0B:25:1E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/znQefeZX5KEPk8qSxReoGywLJR4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/c9a9d1-b13c-403d-bd1c-d12a372f5173/1/znQefeZX5KEPk8qSxReoGywLJR4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/c9a9d1-b13c-403d-bd1c-d12a372f5173/1/znQefeZX5KEPk8qSxReoGywLJR4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ac:e6:0e:95:59:0c:81:a6:d4:be:e7:46:35:89:1e:69:0f:6a: 10:ed:b8:dc:9f:b2:0c:ec:2c:10:21:98:93:ca:26:3c:3b:54: eb:ca:12:d6:d7:7d:7d:b1:08:4a:3e:2d:ae:38:3e:0f:98:6c: 49:1c:fd:fa:36:5a:56:ba:73:67:1a:81:5c:19:3f:f8:54:5d: d6:31:8e:d6:36:1b:e7:5b:72:85:c4:d0:40:19:d8:88:fe:50: 3f:9d:2b:7d:20:a8:7d:e9:74:f4:da:9a:a2:7d:88:e8:77:5a: 04:66:c5:bc:95:8c:cf:7f:7a:b2:59:bb:f9:15:33:df:f6:34: 75:51:4b:42:9b:27:74:6d:fe:0b:bc:3e:e2:1e:be:4b:d2:17: 73:0e:4d:35:67:c0:d5:4a:c6:e6:e4:4d:e5:98:57:59:25:bb: 58:b0:8c:c6:84:60:8d:dd:1f:87:5b:4a:20:25:89:1b:4a:61: 3d:98:58:0a:84:88:fe:16:ed:c6:a0:4e:c7:22:f7:f6:c8:c2: 42:0f:11:3a:a4:88:6d:72:15:86:ff:9f:29:6f:8b:bb:bd:78: 43:94:bf:b7:57:5e:ed:ff:61:8b:5c:22:ce:c9:93:36:72:e1: c4:da:7e:42:aa:c6:3b:23:c9:96:4f:e1:8c:0b:5b:49:98:49: 44:31:fe:52 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0ZitAw2i2P3AmlubU54hMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNlNzQxZTdkZTY1N2U0YTEwZjkzY2E5MmM1MTdhODFiMmMw YjI1MWUwHhcNMjUxMjA2MDQwMDM2WhcNMjUxMjA3MDQwMDM2WjAzMTEwLwYDVQQD Eyg1M2EyZmE2YzJlMzUwNDBiZDRjZTc0N2Y2YzkwNGUxNTQ2NGVlYzg4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs8gZCDO3W4f4YY1y5UnEejFI5d9G JsNtkDsX6XhpPz2ycvQuT4HIWmsEIId0NNzpW1N4/Pr7KmcKrQioJmI8yizDANsY ra+V/haer3VluG5RXieKCW2pwXVc30KjvT/lubLGdJoG03UQDVpr0+jOdGbGS2lJ blLHUi96KivvwbESx0+GML1S+iaFHj3Lfhy3HjxL9irYC6CB/IZ0S6S1QJxleFBz XEtQ8jwNs609slti5vqEpobIHiHdTbQUCcoZDEx3g/kdmou9KjQ61mxB2GSTEh1P PhZXt2F3MCyy+IGQd8HDtJT/l2W2JyKXxCc6IUdBUp+BysRB3pCza4GP5QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFOi+mwuNQQL1M50f2yQThVGTuyIMB8GA1UdIwQY MBaAFM50Hn3mV+ShD5PKksUXqBssCyUeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvem5RZWZlWlg1S0VQazhxU3hSZW9HeXdMSlI0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC9jOWE5ZDEtYjEzYy00MDNkLWJkMWMt ZDEyYTM3MmY1MTczLzEvem5RZWZlWlg1S0VQazhxU3hSZW9HeXdMSlI0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZC9jOWE5ZDEtYjEzYy00MDNkLWJkMWMtZDEyYTM3MmY1MTcz LzEvem5RZWZlWlg1S0VQazhxU3hSZW9HeXdMSlI0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArOYOlVkM gabUvudGNYkeaQ9qEO243J+yDOwsECGYk8omPDtU68oS1td9fbEISj4trjg+D5hs SRz9+jZaVrpzZxqBXBk/+FRd1jGO1jYb51tyhcTQQBnYiP5QP50rfSCofel09Nqa on2I6HdaBGbFvJWMz396slm7+RUz3/Y0dVFLQpsndG3+C7w+4h6+S9IXcw5NNWfA 1UrG5uRN5ZhXWSW7WLCMxoRgjd0fh1tKICWJG0phPZhYCoSI/hbtxqBOxyL39sjC Qg8ROqSIbXIVhv+fKW+Lu714Q5S/t1de7f9hi1wizsmTNnLhxNp+QqrGOyPJlk/h jAtbSZhJRDH+Ug== -----END CERTIFICATE-----Generated at Sat Dec 6 07:16:28 2025 by rpki-client