This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.mft File: ZAsfh3LG70hOLNLWYmPy75j6OWg.mft (raw, json) Hash identifier: YHm5HgNQ9enaURVgCeaBdiKOF8N5eZWA36Jiu0wJcn0= Subject key identifier: 9B:FB:07:14:DF:58:0B:41:25:27:40:CA:5E:1B:28:72:97:9F:1E:B4 Authority key identifier: 64:0B:1F:87:72:C6:EF:48:4E:2C:D2:D6:62:63:F2:EF:98:FA:39:68 Certificate issuer: /CN=640b1f8772c6ef484e2cd2d66263f2ef98fa3968 Certificate serial: 019AF276C9C333953A1667242CED72822DBB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZAsfh3LG70hOLNLWYmPy75j6OWg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.mft Manifest number: 1762 Signing time: Sat 06 Dec 2025 07:01:02 +0000 Manifest this update: Sat 06 Dec 2025 07:01:02 +0000 Manifest next update: Sun 07 Dec 2025 07:01:02 +0000 Files and hashes: 1: 5sIyZUUxUKqIAWVgUkx5eBGU5N0.roa (hash: 3M5MqZOHY6IgU/oY5PEX9Quago5F235Gft3ZQVLU+EE=) 2: ZAsfh3LG70hOLNLWYmPy75j6OWg.crl (hash: p2ySuW+qMASwo2F2+6D5fkb2Vu9RKtUcflsxGwRvczY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.crl rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.mft rsync://rpki.ripe.net/repository/DEFAULT/ZAsfh3LG70hOLNLWYmPy75j6OWg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:c9:c3:33:95:3a:16:67:24:2c:ed:72:82:2d:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=640b1f8772c6ef484e2cd2d66263f2ef98fa3968 Validity Not Before: Dec 6 07:01:02 2025 GMT Not After : Dec 7 07:01:02 2025 GMT Subject: CN=9bfb0714df580b41252740ca5e1b2872979f1eb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:c0:7b:48:8e:10:8b:d9:4a:7b:4a:39:ef:51: 9f:d4:64:d4:39:e4:18:42:76:3a:b2:39:27:a3:74: 6a:4b:3c:80:09:14:61:1b:d8:6e:bb:1d:28:56:04: 1e:50:3e:a6:0b:e5:47:25:47:f8:87:67:be:94:28: e5:5a:22:9d:e8:95:18:16:08:42:35:70:be:9a:92: 14:a5:63:57:fe:cb:39:67:92:0f:8c:fa:20:e3:85: 91:73:4e:ae:64:f6:69:74:bb:72:63:a4:e1:52:f1: 74:c1:02:65:66:22:ab:35:0b:70:0d:69:18:09:3e: 16:36:d8:d6:36:7b:f9:0a:72:6d:12:f7:33:d1:f0: ce:f5:a6:61:de:89:d1:7a:f9:e7:f2:26:ac:16:88: dc:93:17:fa:9e:98:90:5b:0d:52:cd:52:ae:e8:33: 81:1e:88:80:91:3d:f4:48:30:55:bf:42:d8:b1:1b: de:b8:22:d3:7e:f5:aa:72:b0:15:17:16:ef:9d:c2: 3a:45:20:9e:dc:56:9c:1f:3a:84:02:11:68:b3:69: 28:56:7b:d5:ac:51:60:4f:42:8d:f6:50:5e:52:2d: 97:bb:4e:83:a1:6e:00:df:a7:bc:3f:a9:c2:76:7c: 22:b3:74:9e:5a:73:17:fd:b7:99:a4:fb:1c:93:ab: 7a:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:FB:07:14:DF:58:0B:41:25:27:40:CA:5E:1B:28:72:97:9F:1E:B4 X509v3 Authority Key Identifier: keyid:64:0B:1F:87:72:C6:EF:48:4E:2C:D2:D6:62:63:F2:EF:98:FA:39:68 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZAsfh3LG70hOLNLWYmPy75j6OWg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:80:c6:0b:94:35:3a:da:4f:55:bb:42:8b:c0:b4:76:f9:77: 80:36:77:13:cf:a1:9d:9c:40:fd:3e:eb:7d:08:86:ff:ed:96: 3c:31:db:0b:9f:ed:71:fb:aa:54:a0:d4:22:0a:04:7c:d9:6b: b0:78:f9:b5:5e:5e:f0:c0:96:69:6f:ce:4f:05:11:d8:49:78: 7c:b7:da:ff:43:7a:18:47:e8:b1:bf:b5:5f:9e:b0:47:3d:4c: eb:3c:c0:bc:d8:9f:c7:b9:c4:95:d8:34:ad:4b:2b:bd:94:fb: 8e:1b:24:64:91:b6:f3:dd:eb:b0:57:46:ca:10:06:ab:ed:9b: b9:4b:5c:ed:bf:d5:6b:33:c6:66:8c:88:6e:bd:42:18:f9:4d: 6a:c5:0a:38:4c:b7:b8:d9:d4:cf:1c:06:e4:0a:e4:5e:0e:0b: 15:1e:ff:b6:9d:e5:18:d3:f3:cf:9d:8a:e3:4a:a1:15:c6:ba: cf:90:da:ac:4b:18:3a:19:ec:b7:8b:94:b4:f7:34:37:24:0c: cd:59:37:7b:33:7f:05:a3:df:01:46:5b:e4:fb:43:72:46:c1: b8:86:68:bf:86:af:e1:d3:5d:60:f7:7b:7e:6e:cd:92:24:91: 17:5e:e2:04:66:73:28:88:21:3b:3c:e3:68:54:52:f4:a0:05: 02:27:26:ab -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydsnDM5U6FmckLO1ygi27MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY0MGIxZjg3NzJjNmVmNDg0ZTJjZDJkNjYyNjNmMmVmOThm YTM5NjgwHhcNMjUxMjA2MDcwMTAyWhcNMjUxMjA3MDcwMTAyWjAzMTEwLwYDVQQD Eyg5YmZiMDcxNGRmNTgwYjQxMjUyNzQwY2E1ZTFiMjg3Mjk3OWYxZWI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoMB7SI4Qi9lKe0o571Gf1GTUOeQY QnY6sjkno3RqSzyACRRhG9huux0oVgQeUD6mC+VHJUf4h2e+lCjlWiKd6JUYFghC NXC+mpIUpWNX/ss5Z5IPjPog44WRc06uZPZpdLtyY6ThUvF0wQJlZiKrNQtwDWkY CT4WNtjWNnv5CnJtEvcz0fDO9aZh3onRevnn8iasFojckxf6npiQWw1SzVKu6DOB HoiAkT30SDBVv0LYsRveuCLTfvWqcrAVFxbvncI6RSCe3FacHzqEAhFos2koVnvV rFFgT0KN9lBeUi2Xu06DoW4A36e8P6nCdnwis3SeWnMX/beZpPsck6t6nwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJv7BxTfWAtBJSdAyl4bKHKXnx60MB8GA1UdIwQY MBaAFGQLH4dyxu9ITizS1mJj8u+Y+jloMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWkFzZmgzTEc3MGhPTE5MV1ltUHk3NWo2T1dnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS9hYWQ2MjYtZGFjZS00NGQ4LTgxOGQt Mzg3YWZhMGE1MzRmLzEvWkFzZmgzTEc3MGhPTE5MV1ltUHk3NWo2T1dnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNS9hYWQ2MjYtZGFjZS00NGQ4LTgxOGQtMzg3YWZhMGE1MzRm LzEvWkFzZmgzTEc3MGhPTE5MV1ltUHk3NWo2T1dnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAF4DGC5Q1 OtpPVbtCi8C0dvl3gDZ3E8+hnZxA/T7rfQiG/+2WPDHbC5/tcfuqVKDUIgoEfNlr sHj5tV5e8MCWaW/OTwUR2El4fLfa/0N6GEfosb+1X56wRz1M6zzAvNifx7nEldg0 rUsrvZT7jhskZJG2893rsFdGyhAGq+2buUtc7b/VazPGZoyIbr1CGPlNasUKOEy3 uNnUzxwG5ArkXg4LFR7/tp3lGNPzz52K40qhFca6z5DarEsYOhnst4uUtPc0NyQM zVk3ezN/BaPfAUZb5PtDckbBuIZov4av4dNdYPd7fm7NkiSRF17iBGZzKIghOzzj aFRS9KAFAicmqw== -----END CERTIFICATE-----Generated at Sat Dec 6 10:18:35 2025 by rpki-client